cjoint

Publicité


Publicité

Commentaire : Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:05-03-2016 01 Executado por Usuário (administrador) em PESSOAL (11-03-2016 12:37:07) Executando a partir de C:\Users\Usuário\Downloads Perfis Carregados: Usuário (Perfis Disponíveis: Usuário) Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: "C:\Program Files (x86)\Comodo\Dragon\dragon.exe" -- "%1") Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (HP) C:\Windows\System32\HPSIsvc.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (cFos Software GmbH) C:\Program Files\cFosSpeed\cfosspeed.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe () C:\Program Files\Andy\HandyAndy.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe () C:\Program Files\Andy\AndyADB.exe () C:\Program Files\Andy\AndyDnD.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe () C:\Program Files (x86)\yesforsearchesbnd\bugreport.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.11\deploy\LoLLauncher.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.51\deploy\LoLPatcher.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.188\deploy\LolClient.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-05] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-09-04] (Adobe Systems Incorporated) HKLM\...\Run: [cFosSpeed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1592768 2015-01-22] (cFos Software GmbH) HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated) HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.) HKLM-x32\...\Run: [Aeria Ignite] => C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2292912 2015-09-17] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [147456 2007-01-15] (Nero AG) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [uTorrent] => C:\Users\Usuário\AppData\Roaming\uTorrent\uTorrent.exe [1693024 2015-08-04] (BitTorrent Inc.) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1349384 2015-09-28] (Bogdan Sharkov) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4644184 2015-06-10] (Disc Soft Ltd) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Usuário\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Virtual WiFi Router] => C:\Program Files (x86)\Virtual WiFi Router\Virtual WiFi Router.exe [583168 2013-09-25] () HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {61f1c5db-59f0-11e5-83ee-382c4a8d2326} - "D:\Windows/Install.exe" HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {81f0bfac-d95c-11e5-84eb-382c4a8d2326} - "D:\AutoRun.exe" "motorola.html" HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {9923939d-2fa8-11e5-83b5-382c4a8d2326} - "D:\setup.exe" HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {ca495b20-5705-11e5-83e6-382c4a8d2326} - "D:\SISetup.exe" ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HandyAndy.lnk [2016-03-03] ShortcutTarget: HandyAndy.lnk -> C:\Program Files\Andy\HandyAndy.exe () Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe After Effects Setup.lnk [2015-04-12] ShortcutTarget: Adobe After Effects Setup.lnk -> C:\ProgramData\{da1d0227-5a74-6b07-da1d-d02275a7089d}\Adobe After Effects Setup.exe (Nenhum Arquivo) Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-02-08] ShortcutTarget: Curse.lnk -> C:\Users\Usuário\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc) Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skyrim_Installer-FIX.exe.lnk [2015-01-24] ShortcutTarget: Skyrim_Installer-FIX.exe.lnk -> C:\ProgramData\{1349a4d6-4bdc-405d-1349-9a4d64bd9359}\Skyrim_Installer-FIX.exe.exe (Nenhum Arquivo) Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\[MITO] No sei.lnk [2015-04-14] ShortcutTarget: [MITO] No sei.lnk -> C:\ProgramData\{4d07d3fd-e448-6756-4d07-7d3fde444ff7}\[MITO] No sei.exe (Nenhum Arquivo) CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\..\Interfaces\{F06BEE8E-2909-46A1-A0BB-277E994C2AA6}: [NameServer] 208.67.222.222,208.67.220.220 ManualProxies: Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKU\S-1-5-21-1710921975-364333607-2484523441-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SKY2&ocid=SKY2DHP&osmkt=pt-br HKU\S-1-5-21-1710921975-364333607-2484523441-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.com hxxp://www.google.com.br/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1710921975-364333607-2484523441-1001 -> {FC9D7A51-7EC8-4F5E-95D4-C7E69ADE196F} URL = hxxps://br.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=903578&p={searchTerms} BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-13] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-13] (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Usuário\AppData\Roaming\Mozilla\Firefox\Profiles\76mx32s4.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-11] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-09-17] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] () FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-13] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-13] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Usuário\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2015-03-17] (Raidcall) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-09-17] (Adobe Systems) FF Plugin HKU\S-1-5-21-1710921975-364333607-2484523441-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuário\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-02-19] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) Chrome: ======= CHR HomePage: Default -> hxxp://www.yessearches.com/?mode=nnnb&ptid=sto&uid=8C3AB59C6E783303BB8BE2FE8793E29B&v=20160112&ts=AHEpAXYtBH4lB0.. CHR StartupUrls: Default -> "hxxp://www.yessearches.com/?mode=nnnb&ptid=sto&uid=8C3AB59C6E783303BB8BE2FE8793E29B&v=20160112&ts=AHEpAXYtBH4lB0.." CHR DefaultSearchURL: Default -> hxxp://www.yessearches.com/chrome.php?q={searchTerms}&ts=AHEpAXYtBH4lB0..&v=20160112&uid=8C3AB59C6E783303BB8BE2FE8793E29B&ptid=sto&mode=nnnb CHR DefaultSearchKeyword: Default -> yessearches CHR DefaultSuggestURL: Default -> hxxp://suggestqueries.google.com/complete/search?q={searchTerms}&client=firefox CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.758\_platform_specific\win_x86\widevinecdmadapter.dll => Nenhum Arquivo CHR Plugin: (Shockwave Flash) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll => Nenhum Arquivo CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\pdf.dll => Nenhum Arquivo CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Nenhum Arquivo CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll => Nenhum Arquivo CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll => Nenhum Arquivo CHR Plugin: (Java Deployment Toolkit 8.0.450.15) - C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll => Nenhum Arquivo CHR Plugin: (Java(TM) Platform SE 8 U45) - C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll => Nenhum Arquivo CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) CHR Plugin: (Unity Player) - C:\Users\Usuário\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_203.dll => Nenhum Arquivo CHR Profile: C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-05] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATENÇÃO CHR Extension: (YouTube) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-05] CHR Extension: (Google Search) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-27] CHR Extension: (Documentos Google off-line) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-13] CHR Extension: (Google Wallet) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-21] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATENÇÃO CHR Extension: (Gmail) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08] ==================== Serviços (Whitelisted) ======================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [669872 2015-09-15] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2020056 2016-02-09] (Adobe Systems, Incorporated) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [501696 2015-01-22] (cFos Software GmbH) R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1345368 2015-06-10] (Disc Soft Ltd) R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2057072 2016-02-04] (Comodo) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237864 2015-02-18] (EasyAntiCheat Ltd) S2 ggbugreport; C:\Program Files (x86)\yesforsearchesbnd\bugreport.exe [1584728 2016-01-13] () S2 GtkFree; C:\Program Files (x86)\GtkFree\GtkFree Update\GtkFree.exe [294072 2016-01-13] () U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-02-24] (Hi-Rez Studios) [Arquivo não assinado] S3 Hoplon Update Service; C:\Program Files (x86)\Hoplon\UpdateService\HoplonUpdateService.exe [43744 2015-04-02] () S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [Arquivo não assinado] S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [266240 2007-01-15] (Nero AG) [Arquivo não assinado] S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3758336 2015-11-29] (INCA Internet Co., Ltd.) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) S3 ACTION_SVC; C:\Program Files (x86)\Mirillis\Action!\action_svc.exe [X] S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [X] ===================== Drivers (Whitelisted) ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2015-07-21] (Disc Soft Ltd) R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47160 2015-07-21] (Disc Soft Ltd) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 hxsyol; C:\Windows\system32\hxsy64.sys [86352 2015-12-23] () R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-08-27] (Intel Corporation) S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2011-10-08] (Marvell Semiconductor, Inc.) S3 smsbda; C:\Windows\system32\drivers\smsbda.sys [63392 2009-09-03] (Siano) R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-11-05] (VMware, Inc.) U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2013-08-22] (Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) S3 ZTEusbdvbh; C:\Windows\system32\DRIVERS\ZTEusbdvbh.sys [150656 2009-03-09] (ZTE Incorporated) S3 WinDivert1.1; \??\C:\Program Files\KMSpico\WinDivert.sys [X] S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X] S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três Meses Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-03-11 12:37 - 2016-03-11 12:38 - 00022932 _____ C:\Users\Usuário\Downloads\FRST.txt 2016-03-11 12:37 - 2016-03-11 12:37 - 00000000 ____D C:\FRST 2016-03-11 12:36 - 2016-03-11 12:36 - 02374144 _____ (Farbar) C:\Users\Usuário\Downloads\FRST64.exe 2016-03-11 12:34 - 2016-03-11 12:35 - 01725440 _____ (Farbar) C:\Users\Usuário\Downloads\FRST.exe 2016-03-10 11:59 - 2016-03-11 12:14 - 00003106 _____ C:\Windows\System32\Tasks\WinThruster 2016-03-10 11:59 - 2016-03-10 18:01 - 00000302 _____ C:\Windows\Tasks\WinThruster_UPDATES.job 2016-03-10 11:59 - 2016-03-10 18:01 - 00000294 _____ C:\Windows\Tasks\WinThruster_DEFAULT.job 2016-03-10 11:59 - 2016-03-10 11:59 - 00003026 _____ C:\Windows\System32\Tasks\WinThruster_UPDATES 2016-03-10 11:59 - 2016-03-10 11:59 - 00002870 _____ C:\Windows\System32\Tasks\WinThruster_DEFAULT 2016-03-10 11:59 - 2016-03-10 11:59 - 00001055 _____ C:\Users\Public\Desktop\WinThruster.lnk 2016-03-10 11:59 - 2016-03-10 11:59 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Solvusoft 2016-03-10 11:59 - 2016-03-10 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster 2016-03-10 11:59 - 2016-03-10 11:59 - 00000000 ____D C:\Program Files (x86)\WinThruster 2016-03-10 11:59 - 2015-11-25 13:01 - 00021624 _____ (solvusoft) C:\Windows\system32\roboot64.exe 2016-03-10 11:58 - 2016-03-10 11:59 - 03901072 _____ (solvusoft Corporation ) C:\Users\Usuário\Downloads\WinThruster_2016_Setup.exe 2016-03-10 11:56 - 2016-03-10 11:56 - 00002133 _____ C:\Users\Public\Desktop\WinDS PRO.lnk 2016-03-10 11:56 - 2016-03-10 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDS PRO 2016-03-10 11:55 - 2016-03-10 11:56 - 00000000 ____D C:\Users\Public\Documents\WinDS PRO 2016-03-10 11:49 - 2016-03-10 11:55 - 42671019 _____ C:\Users\Usuário\Downloads\WinDS PRO 2016.01.28.zip 2016-03-09 12:12 - 2016-03-09 17:58 - 00000304 _____ C:\Windows\Tasks\DLL-Files FixerASKUSER.job 2016-03-09 12:12 - 2016-03-09 12:13 - 00002880 _____ C:\Windows\System32\Tasks\DLL-Files FixerASKUSER 2016-03-09 12:12 - 2016-03-09 12:12 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 12:12 - 2016-03-09 12:12 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 00:28 - 2016-03-09 00:30 - 13767776 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\vc_redist.x86 (1).exe 2016-03-09 00:24 - 2016-03-09 02:00 - 02113273 _____ C:\Users\Usuário\Downloads\Não confirmado 266573.crdownload 2016-03-09 00:22 - 2016-03-09 00:22 - 00520193 _____ C:\Users\Usuário\Downloads\__32-msvcr120.dll12.0.21005.1.zip 2016-03-09 00:19 - 2016-03-11 12:13 - 00003112 _____ C:\Windows\System32\Tasks\RDReminder 2016-03-09 00:19 - 2016-03-09 11:51 - 00000312 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job 2016-03-09 00:19 - 2016-03-09 11:51 - 00000296 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2016-03-09 00:19 - 2016-03-09 00:19 - 00003034 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates 2016-03-09 00:19 - 2016-03-09 00:19 - 00003020 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2016-03-09 00:19 - 2016-03-09 00:19 - 00001100 _____ C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2016-03-09 00:19 - 2016-03-09 00:19 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\dll-files.com 2016-03-09 00:19 - 2016-03-09 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer 2016-03-09 00:19 - 2016-03-09 00:19 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer 2016-03-09 00:18 - 2016-03-09 00:19 - 05444000 _____ (Dll-Files.com ) C:\Users\Usuário\Downloads\dffsetup-msvcr120.exe 2016-03-09 00:14 - 2016-03-09 00:21 - 13767776 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\vc_redist.x86.exe 2016-03-09 00:06 - 2016-03-09 00:11 - 14572000 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\vc_redist.x64.exe 2016-03-08 23:59 - 2016-03-09 02:00 - 00077085 _____ C:\Users\Usuário\Downloads\Não confirmado 670824.crdownload 2016-03-08 23:58 - 2016-03-09 00:01 - 02336258 _____ C:\Users\Usuário\Downloads\citra-master.zip 2016-03-08 23:57 - 2016-03-10 11:14 - 00000000 ____D C:\Users\Usuário\Desktop\3DsEmulator (1) 2016-03-08 23:52 - 2016-03-08 23:56 - 11387205 _____ C:\Users\Usuário\Downloads\citra-latest-windows-amd64.7z 2016-03-08 09:34 - 2016-03-08 09:42 - 86495731 _____ C:\Users\Usuário\Downloads\Liu & Vokker - Don't Look Back.mp4 2016-03-05 15:04 - 2016-03-05 15:04 - 00408900 _____ C:\Users\Usuário\Downloads\photo.htm 2016-03-03 22:05 - 2016-03-03 22:05 - 00000000 ____D C:\Users\Usuário\.android 2016-03-03 22:04 - 2016-03-10 20:57 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\VMware 2016-03-03 22:01 - 2016-03-03 22:01 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Andy 2016-03-03 21:58 - 2016-03-03 21:58 - 00001505 _____ C:\Users\Public\Desktop\Start Andy.lnk 2016-03-03 21:58 - 2016-03-03 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy 2016-03-03 21:57 - 2015-11-25 18:10 - 00934080 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll 2016-03-03 21:57 - 2015-11-25 18:10 - 00392896 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe 2016-03-03 21:57 - 2015-11-25 18:10 - 00358080 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe 2016-03-03 21:57 - 2015-11-25 18:10 - 00066752 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys 2016-03-03 21:57 - 2015-11-25 18:10 - 00033472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys 2016-03-03 21:57 - 2015-11-25 17:52 - 00026816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys 2016-03-03 21:57 - 2015-11-06 11:57 - 00057536 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys 2016-03-03 21:57 - 2015-11-05 19:25 - 00075512 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys 2016-03-03 21:57 - 2015-11-05 19:25 - 00068288 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll 2016-03-03 21:57 - 2015-11-05 19:25 - 00064192 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll 2016-03-03 21:56 - 2016-03-11 12:08 - 00000000 ____D C:\Users\Todos os Usuários\VMware 2016-03-03 21:56 - 2016-03-11 12:08 - 00000000 ____D C:\ProgramData\VMware 2016-03-03 21:56 - 2016-03-03 21:56 - 01813972 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-03-03 21:56 - 2016-03-03 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware 2016-03-03 21:56 - 2016-03-03 21:56 - 00000000 ____D C:\Program Files\Common Files\VMware 2016-03-03 21:54 - 2016-03-03 22:05 - 00000000 ____D C:\Users\Usuário\Andy 2016-03-03 21:54 - 2016-03-03 21:55 - 00000000 ____D C:\Program Files\Andy 2016-03-03 21:54 - 2016-03-03 21:54 - 00000000 ____D C:\Program Files (x86)\VMware 2016-03-03 21:53 - 2016-03-03 21:54 - 00000000 ____D C:\Program Files\AndyOfflineInstaller46.2 2016-03-03 21:51 - 2016-03-10 20:57 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Andy 2016-03-03 21:12 - 2016-03-03 21:50 - 433648936 _____ C:\Users\Usuário\Downloads\Andy_v46.2_82_x64bit.exe 2016-03-03 07:23 - 2016-03-03 07:23 - 00000000 __SHD C:\found.000 2016-03-01 20:05 - 2016-03-01 20:05 - 66528965 _____ C:\Users\Usuário\Downloads\videoplayback (7) (1).mp4 2016-02-25 23:12 - 2016-02-25 23:12 - 00002246 _____ C:\Users\Public\Desktop\Blade & Soul.lnk 2016-02-25 23:12 - 2016-02-25 23:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2016-02-25 23:12 - 2016-02-25 23:12 - 00000000 ____D C:\Program Files (x86)\NCSOFT 2016-02-25 23:10 - 2016-02-25 23:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest 2016-02-25 23:10 - 2016-02-25 23:10 - 00000000 ____D C:\Program Files (x86)\NCWest 2016-02-25 22:51 - 2016-02-25 23:10 - 227195640 _____ (NC Interactive, LLC) C:\Users\Usuário\Downloads\BnS_Lite_Installer.exe 2016-02-24 21:05 - 2016-02-24 21:08 - 11170205 _____ C:\Users\Usuário\Downloads\FamiliaSacana1-Afilhiniadopapai.b1 2016-02-23 20:03 - 2016-02-23 20:03 - 01091016 _____ (Unity Technologies ApS) C:\Users\Usuário\Downloads\UnityWebPlayer (1).exe 2016-02-23 20:02 - 2016-02-23 20:02 - 01091016 _____ (Unity Technologies ApS) C:\Users\Usuário\Downloads\UnityWebPlayer.exe 2016-02-22 12:03 - 2016-02-22 12:03 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake 2016-02-22 12:03 - 2016-02-22 12:03 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\HandBrake Team 2016-02-22 12:02 - 2016-02-22 12:03 - 00000000 ____D C:\Program Files\Handbrake 2016-02-22 12:00 - 2016-02-22 12:02 - 15505879 _____ C:\Users\Usuário\Downloads\HandBrake-0.10.5-i686-Win_GUI.exe 2016-02-21 17:48 - 2016-02-21 17:48 - 04241603 _____ C:\Users\Usuário\Downloads\Como Diminuir o Ping de Jogos Online - By Adornelas.rar 2016-02-21 12:22 - 2016-02-21 12:38 - 23950599 _____ (CipSoft GmbH ) C:\Users\Usuário\Downloads\tibia860.exe 2016-02-20 09:38 - 2016-02-20 09:38 - 00001131 _____ C:\Users\Public\Desktop\MuMasteR.exe.lnk 2016-02-20 09:35 - 2016-02-20 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MuMasteR 2016-02-20 09:35 - 2016-02-20 09:35 - 00000000 ____D C:\Program Files (x86)\TeiaVirtual 2016-02-19 09:50 - 2016-02-19 09:50 - 00000000 ____D C:\Users\Usuário\Documents\League of Legends 2016-02-17 17:58 - 2016-02-17 18:06 - 00000132 _____ C:\Users\Usuário\AppData\Roaming\Preferências do Filtro IllExport CC da Adobe 2016-02-17 17:54 - 2016-02-17 17:54 - 00102147 _____ C:\Users\Usuário\Downloads\shields-Shapes4FREE.zip 2016-02-16 09:35 - 2016-02-16 09:36 - 13243105 _____ C:\Users\Usuário\Downloads\Banner (template e materiais).rar 2016-02-15 22:50 - 2016-02-15 22:56 - 96680198 _____ C:\Users\Usuário\Downloads\videoplayback (11).mp4 2016-02-15 20:14 - 2016-02-15 20:21 - 39069962 _____ C:\Users\Usuário\Downloads\videoplayback (10).mp4 2016-02-14 22:31 - 2016-02-14 22:32 - 00594331 _____ (web ) C:\Users\Usuário\Downloads\installer.exe 2016-02-14 20:56 - 2016-02-14 21:08 - 95222877 _____ C:\Users\Usuário\Downloads\videoplayback (9).mp4 2016-02-13 12:25 - 2016-02-13 12:25 - 00923552 _____ C:\Users\Usuário\Downloads\videoplayback (6).mp4.sfk 2016-02-12 18:03 - 2016-02-12 18:03 - 380813877 _____ C:\Windows\MEMORY.DMP 2016-02-12 18:03 - 2016-02-12 18:03 - 00285720 _____ C:\Windows\Minidump\021216-13968-01.dmp 2016-02-12 18:03 - 2016-02-12 18:03 - 00000000 ____D C:\Windows\Minidump 2016-02-10 23:52 - 2016-02-10 23:59 - 32916915 _____ C:\Users\Usuário\Downloads\videoplayback (8).mp4 2016-02-10 14:48 - 2016-02-10 14:48 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\RcGameBoxRU 2016-02-10 14:48 - 2016-02-10 14:48 - 00000000 ____D C:\RcGameBoxRU 2016-02-10 14:37 - 2016-02-11 09:19 - 00000000 ____D C:\Users\Usuário\AppData\LocalLow\raidcall 2016-02-10 14:37 - 2016-02-10 20:58 - 00000000 ____D C:\Program Files (x86)\RaidCall.RU 2016-02-10 14:37 - 2016-02-10 14:38 - 00000869 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall RaidCall.lnk 2016-02-10 14:37 - 2016-02-10 14:37 - 00001066 _____ C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\RaidCall.lnk 2016-02-10 14:37 - 2016-02-10 14:37 - 00001054 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RaidCall.lnk 2016-02-10 14:37 - 2016-02-10 14:37 - 00001042 _____ C:\Users\Usuário\Desktop\RaidCall.lnk 2016-02-10 14:37 - 2016-02-10 14:37 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\raidcall 2016-02-10 14:35 - 2016-02-10 14:37 - 06772944 _____ C:\Users\Usuário\Downloads\raidcall_v7.3.6.exe 2016-02-10 00:18 - 2016-02-10 00:18 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Steam 2016-02-10 00:18 - 2016-02-10 00:18 - 00000000 ____D C:\Users\Usuário\AppData\LocalLow\Lazy Bear Games 2016-02-09 23:10 - 2016-02-09 23:10 - 130850936 _____ C:\Users\Usuário\Downloads\Punch_Club_v1.06-GAMERPRO.exe 2016-02-08 13:33 - 2016-02-08 14:52 - 00673440 _____ C:\Users\Usuário\Downloads\OS MONSTROS DO REVIEW - QSN S02E01 - Rik.mp4-0-4886131250-1.sfk 2016-02-08 12:37 - 2016-02-08 12:38 - 00134064 _____ C:\Users\Usuário\Downloads\100 mil e o carai agora é 1 milhao.mp4-1280612668-972304665-0.sfk 2016-02-07 23:18 - 2016-02-07 23:18 - 03771992 _____ C:\Users\Usuário\Documents\Untitled.wmv.sfap0 2016-02-07 23:18 - 2016-02-07 23:18 - 00029536 _____ C:\Users\Usuário\Documents\Untitled.wmv.sfk 2016-02-07 23:08 - 2016-02-07 23:17 - 16146365 _____ C:\Users\Usuário\Downloads\HandBrake-0.10.3-i686-Win_GUI.exe 2016-02-07 23:01 - 2016-02-08 15:44 - 188552325 _____ C:\Users\Usuário\Documents\Untitled.wmv 2016-02-07 22:59 - 2016-02-07 22:59 - 00023376 _____ C:\Users\Usuário\Documents\Untitled.aa3 2016-02-07 22:59 - 2016-02-07 22:59 - 00000086 _____ C:\Users\Usuário\Documents\Untitled.aa3.sfl 2016-02-07 22:58 - 2016-02-08 12:38 - 00013424 _____ C:\Users\Usuário\Documents\Untitled.veg 2016-02-07 22:58 - 2016-02-07 22:58 - 00055248 _____ C:\Users\Usuário\Documents\Untitled.veg.bak 2016-02-07 22:36 - 2016-02-07 22:36 - 00310592 _____ C:\Users\Usuário\Downloads\100 mil e o carai agora é 1 milhao.mp4.sfk 2016-02-07 22:33 - 2016-02-07 22:35 - 10387608 _____ C:\Users\Usuário\Downloads\100 mil e o carai agora é 1 milhao.mp4 2016-02-06 20:35 - 2016-02-06 20:52 - 66528965 _____ C:\Users\Usuário\Downloads\videoplayback (7).mp4 2016-02-06 16:29 - 2016-02-06 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX 2016-02-06 16:18 - 2016-02-06 16:27 - 112206656 _____ (SQUARE ENIX CO., LTD.) C:\Users\Usuário\Downloads\ffxivsetup_ft.exe 2016-02-05 23:19 - 2016-02-05 23:26 - 33274896 _____ C:\Users\Usuário\Downloads\videoplayback (6).mp4 2016-02-05 21:52 - 2016-02-05 22:01 - 32427164 _____ C:\Users\Usuário\Downloads\videoplayback (5).mp4 2016-02-04 17:33 - 2016-02-04 17:34 - 03445395 _____ C:\Users\Usuário\Downloads\adobe photoshop cs6 ativar 3d.rar 2016-02-04 17:28 - 2016-02-04 17:29 - 00699487 _____ C:\Users\Usuário\Downloads\Active_3D-Photoshop_CS6(X32&X64) (1).rar 2016-02-04 17:24 - 2016-02-04 17:25 - 01121891 _____ C:\Users\Usuário\Downloads\3D Engines.zip 2016-02-04 16:37 - 2016-02-04 16:45 - 36594054 _____ C:\Users\Usuário\Downloads\videoplayback (4).mp4 2016-02-04 14:30 - 2016-02-04 14:36 - 31535231 _____ C:\Users\Usuário\Downloads\videoplayback (3).mp4 2016-02-01 00:19 - 2016-02-01 00:32 - 36594054 _____ C:\Users\Usuário\Downloads\videoplayback (2).mp4 2016-02-01 00:14 - 2016-02-01 00:18 - 05390412 _____ C:\Users\Usuário\Downloads\videoplayback (2).mp4.crdownload 2016-01-30 21:12 - 2016-01-30 21:18 - 31889348 _____ C:\Users\Usuário\Downloads\videoplayback (1).mp4 2016-01-30 16:10 - 2016-02-10 14:34 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\TS3Client 2016-01-30 16:10 - 2016-01-30 16:10 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2016-01-30 16:09 - 2016-01-30 16:10 - 00000000 ____D C:\Users\Usuário\AppData\Local\TeamSpeak 3 Client 2016-01-30 15:59 - 2016-01-30 16:08 - 29057448 _____ (TeamSpeak Systems GmbH) C:\Users\Usuário\Downloads\TeamSpeak3-Client-win32-3.0.18.2.exe 2016-01-29 18:12 - 2016-01-29 18:12 - 00148682 _____ C:\Users\Usuário\Downloads\Adobe_After_Effects_CS6 (2).html 2016-01-29 12:54 - 2016-01-29 12:54 - 00148680 _____ C:\Users\Usuário\Downloads\Adobe_After_Effects_CS6.html 2016-01-29 12:54 - 2016-01-29 12:54 - 00148679 _____ C:\Users\Usuário\Downloads\Adobe_After_Effects_CS6 (1).html 2016-01-28 21:22 - 2016-01-28 21:22 - 00000584 _____ C:\Users\Usuário\Documents\Default.sfvidcap 2016-01-28 17:11 - 2016-01-28 17:11 - 00539358 _____ C:\Users\Usuário\Downloads\abovea.zip 2016-01-28 17:06 - 2016-01-28 17:06 - 00673440 _____ C:\Users\Usuário\Downloads\OS MONSTROS DO REVIEW - QSN S02E01 - Rik.mp4.sfk 2016-01-28 17:00 - 2016-01-28 17:05 - 33308910 _____ C:\Users\Usuário\Downloads\OS MONSTROS DO REVIEW - QSN S02E01 - Rik.mp4 2016-01-22 11:27 - 2016-01-22 11:46 - 96819488 _____ (The GIMP Team ) C:\Users\Usuário\Downloads\gimp-2.8.16-setup.exe 2016-01-22 03:31 - 2016-02-22 11:57 - 00000000 ____D C:\Users\Usuário\Desktop\Warsongs 2016-01-21 18:14 - 2016-01-21 18:15 - 01001945 _____ C:\Users\Usuário\Downloads\Lunar_Revel_Intro_Wallpapers.zip 2016-01-20 02:36 - 2016-01-20 02:36 - 00000000 ____D C:\Users\Usuário\AppData\Local\Steam 2016-01-20 02:36 - 2016-01-20 02:36 - 00000000 ____D C:\Users\Usuário 2016-01-19 08:01 - 2016-01-19 08:01 - 00128955 _____ C:\Users\Usuário\Downloads\royal_inferno.zip 2016-01-18 00:13 - 2016-01-18 00:14 - 00011744 _____ C:\Users\Usuário\Downloads\ITS FUCKING APROVED.mp4.sfk 2016-01-18 00:13 - 2016-01-18 00:13 - 00784199 _____ C:\Users\Usuário\Downloads\ITS FUCKING APROVED.mp4 2016-01-17 01:29 - 2016-01-17 01:29 - 00668704 _____ C:\Users\Usuário\Downloads\UnityDownloadAssistant-5.3.1f1.exe 2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\Users\Usuário\AppData\Local\cFos 2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\Users\Todos os Usuários\cFos 2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Modelagem de Tráfego cFosSpeed 2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\ProgramData\cFos 2016-01-17 01:05 - 2015-01-22 17:54 - 01874880 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2016-01-17 00:58 - 2016-01-17 01:05 - 05361528 _____ C:\Users\Usuário\Downloads\cfosspeed-v1002.exe 2016-01-16 23:46 - 2016-01-16 23:52 - 00000000 ____D C:\Users\Usuário\AppData\Local\Mozilla 2016-01-16 23:45 - 2016-01-16 23:45 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-01-16 23:45 - 2016-01-16 23:45 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-01-16 23:01 - 2016-01-16 23:01 - 00248640 _____ C:\Users\Usuário\Downloads\Firefox Setup Stub 43.0.4.exe 2016-01-16 22:56 - 2016-01-16 22:56 - 00003240 _____ C:\Windows\System32\Tasks\{8503BE0E-AE44-44DE-9219-6F7DFDD1ECD6} 2016-01-16 22:47 - 2016-01-16 22:47 - 00015054 _____ C:\Windows\System32\Tasks\ACGPro Update 2016-01-16 22:44 - 2016-01-16 22:46 - 00000000 ____D C:\Users\Public\Documents\dmp 2016-01-16 22:43 - 2016-01-16 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual WiFi Router 2016-01-16 22:40 - 2016-01-16 22:41 - 01081214 _____ (Virtual WiFi Router, Inc. ) C:\Users\Usuário\Downloads\virtual-wi-fi-router-3-0-1-1-en-win.exe 2016-01-16 22:33 - 2016-01-16 22:34 - 00404992 _____ C:\Users\Usuário\Downloads\Easy Wi-Fi 1.0.0.msi 2016-01-14 19:46 - 2015-11-29 05:02 - 03758336 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\GameMon.des 2016-01-14 19:46 - 2004-12-30 09:43 - 00004682 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\npptNT2.sys 2016-01-14 19:46 - 2003-07-15 18:17 - 00005174 _____ C:\Windows\SysWOW64\nppt9x.vxd 2016-01-14 19:45 - 2016-01-14 19:45 - 00000000 ____D C:\Program Files\Common Files\INCA Shared 2016-01-14 15:30 - 2016-01-14 15:31 - 217459436 _____ C:\Users\Usuário\Downloads\Warsongs_-_League_of_Legends.zip 2016-01-14 05:28 - 2016-01-14 05:38 - 00000733 _____ C:\Users\Usuário\Desktop\Elsword.lnk 2016-01-14 05:11 - 2016-01-14 05:11 - 00400928 _____ () C:\Users\Usuário\Downloads\elsword.exe 2016-01-14 05:11 - 2016-01-14 05:11 - 00400928 _____ () C:\Users\Usuário\Downloads\elsword (1).exe 2016-01-11 20:12 - 2016-01-11 20:13 - 02404134 _____ C:\Users\Usuário\Desktop\12523070_110835572628754_3188291457574138373_n.psd 2016-01-10 14:59 - 2016-01-10 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-01-09 16:00 - 2016-01-09 16:42 - 171948587 _____ (Joe Williams ) C:\Users\Usuário\Downloads\WYD_Installer.exe 2016-01-06 21:29 - 2016-01-06 21:30 - 49112960 _____ (Curse) C:\Users\Usuário\Downloads\CurseClientSetup.exe 2016-01-05 14:23 - 2016-01-05 14:23 - 00001681 _____ C:\Users\Usuário\Desktop\Smite.lnk 2015-12-29 14:58 - 2015-12-29 14:58 - 00001776 _____ C:\Users\Usuário\Desktop\Warface.lnk 2015-12-27 23:57 - 2015-12-28 00:09 - 00000000 ____D C:\Users\Usuário\AppData\LocalLow\Daybreak Game Company 2015-12-27 23:57 - 2015-12-27 23:57 - 00000000 ____D C:\Users\Usuário\AppData\Local\SCE 2015-12-27 23:57 - 2015-12-27 23:57 - 00000000 ____D C:\Users\Usuário\AppData\Local\Daybreak Game Company 2015-12-27 22:06 - 2015-12-27 22:06 - 00000000 ____D C:\Users\Usuário\Documents\FreeReign 2015-12-27 22:06 - 2015-12-27 22:06 - 00000000 ____D C:\Users\Usuário\AppData\Local\FreeReign 2015-12-27 21:54 - 2015-12-27 21:54 - 00000000 ____D C:\Users\Usuário\AppData\Local\Ndemic Creations 2015-12-22 01:05 - 2015-12-22 01:05 - 00000222 _____ C:\Users\Usuário\Desktop\The Blue Flamingo.url 2015-12-16 19:45 - 2016-01-31 22:12 - 00000000 ____D C:\Users\Usuário\BrawlhallaReplays 2015-12-16 19:37 - 2015-12-16 19:37 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\BrawlhallaAir 2015-12-16 13:15 - 2015-12-16 13:17 - 15531796 _____ C:\Users\Usuário\Downloads\Major Lazer & DJ Snake - Lean On (feat. MØ) (Official Music Video).mp4 2015-12-14 20:09 - 2015-12-14 20:09 - 18911937 _____ C:\Users\Usuário\Downloads\Cartoon - Why We Lose (feat. Coleman Trapp) [NCS Release] (1).mp4 2015-12-14 20:09 - 2015-12-14 10:25 - 18911937 _____ C:\Users\Usuário\Desktop\Cartoon - Why We Lose (feat. Coleman Trapp) [NCS Release].mp4 2015-12-14 10:19 - 2015-12-14 10:25 - 18911937 _____ C:\Users\Usuário\Downloads\Cartoon - Why We Lose (feat. Coleman Trapp) [NCS Release].mp4 ==================== Três Meses Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-03-11 12:27 - 2015-01-21 14:49 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E241F84F-2514-4C13-A36F-0FB624D698C4} 2016-03-11 12:14 - 2015-01-21 11:27 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1710921975-364333607-2484523441-1001 2016-03-11 12:12 - 2015-01-21 15:01 - 00000000 ____D C:\Users\Usuário\AppData\Local\Adobe 2016-03-11 12:11 - 2015-01-21 14:54 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-03-11 12:11 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\AppReadiness 2016-03-11 12:10 - 2015-03-14 13:16 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess 2016-03-11 12:10 - 2015-03-14 13:16 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-03-11 12:10 - 2015-01-21 14:54 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-11 12:08 - 2015-09-13 12:08 - 00000964 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job 2016-03-11 12:08 - 2015-09-13 12:08 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-11 12:08 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-11 01:54 - 2015-09-13 12:08 - 00003930 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2016-03-11 01:54 - 2015-09-13 12:08 - 00003790 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-03-10 11:57 - 2015-01-24 10:03 - 00000000 ___HD C:\Windows\msdownld.tmp 2016-03-10 11:57 - 2015-01-24 09:38 - 00000000 ____D C:\Windows\SysWOW64\directx 2016-03-10 11:14 - 2015-12-03 12:48 - 00000000 ____D C:\Users\Usuário\Desktop\YOUTUBIU MUSIC 2016-03-10 06:30 - 2015-01-21 15:04 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Skype 2016-03-09 18:04 - 2015-01-21 11:22 - 00000000 ____D C:\Users\Usuário 2016-03-09 12:00 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-03-09 00:30 - 2015-01-22 08:05 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache 2016-03-09 00:30 - 2015-01-22 08:05 - 00000000 ____D C:\ProgramData\Package Cache 2016-03-08 20:26 - 2015-04-14 18:42 - 00000132 _____ C:\Users\Usuário\AppData\Roaming\Preferências do Formato PNG CC da Adobe 2016-03-05 01:44 - 2015-02-15 12:01 - 00000000 ____D C:\Program Files (x86)\Steam 2016-03-05 01:43 - 2015-03-21 05:13 - 00000000 ____D C:\Users\Usuário\AppData\Local\Warframe 2016-03-03 21:57 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf 2016-03-03 21:56 - 2013-08-31 13:31 - 00777386 _____ C:\Windows\system32\prfh0416.dat 2016-03-03 21:56 - 2013-08-31 13:31 - 00159506 _____ C:\Windows\system32\prfc0416.dat 2016-03-03 09:58 - 2015-09-14 18:54 - 00003850 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1442267692 2016-03-03 09:58 - 2015-09-14 18:54 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2016-03-03 09:58 - 2015-09-14 18:48 - 00000000 ____D C:\Program Files (x86)\Opera 2016-03-03 07:29 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\system32\NDF 2016-03-01 16:47 - 2015-04-10 18:51 - 00000000 ____D C:\Program Files (x86)\Battle.net 2016-02-27 14:16 - 2015-01-21 15:04 - 00000000 ____D C:\Users\Todos os Usuários\Skype 2016-02-27 14:16 - 2015-01-21 15:04 - 00000000 ____D C:\ProgramData\Skype 2016-02-27 00:22 - 2015-04-10 18:52 - 00000000 ____D C:\Users\Usuário\AppData\Local\Battle.net 2016-02-26 01:03 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-02-25 23:12 - 2015-02-01 06:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-02-24 21:43 - 2015-05-27 21:00 - 00000000 ____D C:\Program Files (x86)\Hearthstone 2016-02-24 09:05 - 2015-01-21 11:26 - 01797166 _____ C:\Windows\system32\PerfStringBackup.INI 2016-02-23 10:32 - 2015-04-12 20:21 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\HandBrake 2016-02-22 16:33 - 2015-04-02 15:20 - 00205672 ____H C:\Windows\SysWOW64\mlfcache.dat 2016-02-21 18:03 - 2015-01-24 09:36 - 00000000 ____D C:\Users\Usuário\AppData\Local\ElevatedDiagnostics 2016-02-17 18:07 - 2015-01-22 08:08 - 00000000 ____D C:\Users\Usuário\Documents\Corel 2016-02-17 17:59 - 2015-04-11 22:17 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\MAXON 2016-02-17 17:59 - 2015-01-21 11:22 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Adobe 2016-02-16 17:24 - 2013-08-22 11:44 - 05245312 _____ C:\Windows\system32\FNTCACHE.DAT 2016-02-15 16:58 - 2016-01-16 23:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-02-15 11:16 - 2015-01-21 14:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-02-12 18:18 - 2015-01-27 12:41 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-02-12 18:17 - 2015-01-21 13:54 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-02-12 18:17 - 2015-01-21 13:52 - 00000000 ____D C:\Users\Todos os Usuários\Adobe 2016-02-12 18:17 - 2015-01-21 13:52 - 00000000 ____D C:\ProgramData\Adobe 2016-02-12 18:15 - 2015-12-09 20:11 - 00000000 ____D C:\Users\Usuário\AppData\Local\Discord 2016-02-10 00:16 - 2015-01-23 18:12 - 00000000 ____D C:\Games ==================== Arquivos na raiz de alguns diretórios ======= 2015-10-21 17:46 - 2015-11-27 10:31 - 0000034 _____ () C:\Users\Usuário\AppData\Roaming\AdobeWLCMCache.dat 2015-09-05 14:46 - 2015-09-05 14:07 - 0012005 _____ () C:\Users\Usuário\AppData\Roaming\alsoft.ini 2015-04-08 12:00 - 2015-08-17 08:32 - 0000020 _____ () C:\Users\Usuário\AppData\Roaming\appdataFr3.bin 2016-02-17 17:58 - 2016-02-17 18:06 - 0000132 _____ () C:\Users\Usuário\AppData\Roaming\Preferências do Filtro IllExport CC da Adobe 2015-04-17 22:45 - 2015-04-17 22:45 - 0000132 _____ () C:\Users\Usuário\AppData\Roaming\Preferências do Formato GIF CC da Adobe 2015-04-14 18:42 - 2016-03-08 20:26 - 0000132 _____ () C:\Users\Usuário\AppData\Roaming\Preferências do Formato PNG CC da Adobe 2015-07-11 00:27 - 2015-12-24 16:19 - 0002207 _____ () C:\Users\Usuário\AppData\Roaming\SpeedRunnersLog.txt 2015-07-15 14:13 - 2015-12-24 16:19 - 0003411 _____ () C:\Users\Usuário\AppData\Roaming\TargetInvocationLog.txt 2015-04-19 11:44 - 2015-04-26 12:01 - 0003584 _____ () C:\Users\Usuário\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-08-19 07:58 - 2015-08-19 07:58 - 0000000 ___SH () C:\Users\Usuário\AppData\Local\LumaEmu 2015-01-21 11:44 - 2015-01-21 11:44 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Arquivos para serem movidos ou deletados: ==================== C:\Users\Usuário\CINEMA 4D 64 Bit.exe C:\Users\Usuário\DeSmuME_0.9.10_x64.exe C:\Users\Usuário\dxwebsetup (1).exe Alguns arquivos em TEMP: ==================== C:\Users\Usuário\AppData\Local\Temp\atcMedia2571449145975.exe C:\Users\Usuário\AppData\Local\Temp\bdfilters.dll C:\Users\Usuário\AppData\Local\Temp\jansi-32-git-Bukkit-jenkins-CraftBukkit-173.dll C:\Users\Usuário\AppData\Local\Temp\jansi-32-git-MCPC-Plus-jenkins-MCPC-Plus-Legacy-647.dll C:\Users\Usuário\AppData\Local\Temp\jre-8u60-windows-au.exe C:\Users\Usuário\AppData\Local\Temp\siinst.exe C:\Users\Usuário\AppData\Local\Temp\strings.dll C:\Users\Usuário\AppData\Local\Temp\tasklisten.exe C:\Users\Usuário\AppData\Local\Temp\utt81DD.tmp.exe ==================== Bamital & volsnap ================= (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\wininit.exe ESTÁ AUSENTE <==== ATENÇÃO C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2016-03-09 20:34 ==================== Fim de FRST.txt ============================

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:05-03-2016 01
Executado por Usuário (administrador) em PESSOAL (11-03-2016 12:37:07)
Executando a partir de C:\Users\Usuário\Downloads
Perfis Carregados: Usuário (Perfis Disponíveis: Usuário)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: "C:\Program Files (x86)\Comodo\Dragon\dragon.exe" -- "%1")
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(cFos Software GmbH) C:\Program Files\cFosSpeed\cfosspeed.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
() C:\Program Files\Andy\HandyAndy.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
() C:\Program Files\Andy\AndyADB.exe
() C:\Program Files\Andy\AndyDnD.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\yesforsearchesbnd\bugreport.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.11\deploy\LoLLauncher.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.51\deploy\LoLPatcher.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.188\deploy\LolClient.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-05] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-09-04] (Adobe Systems Incorporated)
HKLM\...\Run: [cFosSpeed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1592768 2015-01-22] (cFos Software GmbH)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RazerGameBooster] => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM-x32\...\Run: [Aeria Ignite] => C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2292912 2015-09-17] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [147456 2007-01-15] (Nero AG)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [uTorrent] => C:\Users\Usuário\AppData\Roaming\uTorrent\uTorrent.exe [1693024 2015-08-04] (BitTorrent Inc.)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Clownfish] => C:\Program Files (x86)\Clownfish\Clownfish.exe [1349384 2015-09-28] (Bogdan Sharkov)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4644184 2015-06-10] (Disc Soft Ltd)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Usuário\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\Run: [Virtual WiFi Router] => C:\Program Files (x86)\Virtual WiFi Router\Virtual WiFi Router.exe [583168 2013-09-25] ()
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {61f1c5db-59f0-11e5-83ee-382c4a8d2326} - "D:\Windows/Install.exe"
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {81f0bfac-d95c-11e5-84eb-382c4a8d2326} - "D:\AutoRun.exe" "motorola.html"
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {9923939d-2fa8-11e5-83b5-382c4a8d2326} - "D:\setup.exe"
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\...\MountPoints2: {ca495b20-5705-11e5-83e6-382c4a8d2326} - "D:\SISetup.exe"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-09-11] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HandyAndy.lnk [2016-03-03]
ShortcutTarget: HandyAndy.lnk -> C:\Program Files\Andy\HandyAndy.exe ()
Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe After Effects Setup.lnk [2015-04-12]
ShortcutTarget: Adobe After Effects Setup.lnk -> C:\ProgramData\{da1d0227-5a74-6b07-da1d-d02275a7089d}\Adobe After Effects Setup.exe (Nenhum Arquivo)
Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-02-08]
ShortcutTarget: Curse.lnk -> C:\Users\Usuário\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skyrim_Installer-FIX.exe.lnk [2015-01-24]
ShortcutTarget: Skyrim_Installer-FIX.exe.lnk -> C:\ProgramData\{1349a4d6-4bdc-405d-1349-9a4d64bd9359}\Skyrim_Installer-FIX.exe.exe (Nenhum Arquivo)
Startup: C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\[MITO] No sei.lnk [2015-04-14]
ShortcutTarget: [MITO] No sei.lnk -> C:\ProgramData\{4d07d3fd-e448-6756-4d07-7d3fde444ff7}\[MITO] No sei.exe (Nenhum Arquivo)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\..\Interfaces\{F06BEE8E-2909-46A1-A0BB-277E994C2AA6}: [NameServer] 208.67.222.222,208.67.220.220
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SKY2&ocid=SKY2DHP&osmkt=pt-br
HKU\S-1-5-21-1710921975-364333607-2484523441-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.com
hxxp://www.google.com.br/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1710921975-364333607-2484523441-1001 -> {FC9D7A51-7EC8-4F5E-95D4-C7E69ADE196F} URL = hxxps://br.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=903578&p={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-13] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-13] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Usuário\AppData\Roaming\Mozilla\Firefox\Profiles\76mx32s4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-11] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-09-17] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-13] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Usuário\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2015-03-17] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-09-17] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1710921975-364333607-2484523441-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuário\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-02-19] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.yessearches.com/?mode=nnnb&ptid=sto&uid=8C3AB59C6E783303BB8BE2FE8793E29B&v=20160112&ts=AHEpAXYtBH4lB0..
CHR StartupUrls: Default -> "hxxp://www.yessearches.com/?mode=nnnb&ptid=sto&uid=8C3AB59C6E783303BB8BE2FE8793E29B&v=20160112&ts=AHEpAXYtBH4lB0.."
CHR DefaultSearchURL: Default -> hxxp://www.yessearches.com/chrome.php?q={searchTerms}&ts=AHEpAXYtBH4lB0..&v=20160112&uid=8C3AB59C6E783303BB8BE2FE8793E29B&ptid=sto&mode=nnnb
CHR DefaultSearchKeyword: Default -> yessearches
CHR DefaultSuggestURL: Default -> hxxp://suggestqueries.google.com/complete/search?q={searchTerms}&client=firefox
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.758\_platform_specific\win_x86\widevinecdmadapter.dll => Nenhum Arquivo
CHR Plugin: (Shockwave Flash) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\pdf.dll => Nenhum Arquivo
CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Nenhum Arquivo
CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll => Nenhum Arquivo
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (Java Deployment Toolkit 8.0.450.15) - C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll => Nenhum Arquivo
CHR Plugin: (Java(TM) Platform SE 8 U45) - C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll => Nenhum Arquivo
CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\Usuário\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_203.dll => Nenhum Arquivo
CHR Profile: C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-05] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATENÇÃO
CHR Extension: (YouTube) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-05]
CHR Extension: (Google Search) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-27]
CHR Extension: (Documentos Google off-line) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-13]
CHR Extension: (Google Wallet) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-21] [UpdateUrl: hxxps://epicunitscan.info/00service/update2/crx] <==== ATENÇÃO
CHR Extension: (Gmail) - C:\Users\Usuário\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [669872 2015-09-15] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2020056 2016-02-09] (Adobe Systems, Incorporated)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [501696 2015-01-22] (cFos Software GmbH)
R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1345368 2015-06-10] (Disc Soft Ltd)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2057072 2016-02-04] (Comodo)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237864 2015-02-18] (EasyAntiCheat Ltd)
S2 ggbugreport; C:\Program Files (x86)\yesforsearchesbnd\bugreport.exe [1584728 2016-01-13] ()
S2 GtkFree; C:\Program Files (x86)\GtkFree\GtkFree Update\GtkFree.exe [294072 2016-01-13] ()
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-02-24] (Hi-Rez Studios) [Arquivo não assinado]
S3 Hoplon Update Service; C:\Program Files (x86)\Hoplon\UpdateService\HoplonUpdateService.exe [43744 2015-04-02] ()
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [Arquivo não assinado]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [266240 2007-01-15] (Nero AG) [Arquivo não assinado]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3758336 2015-11-29] (INCA Internet Co., Ltd.)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S3 ACTION_SVC; C:\Program Files (x86)\Mirillis\Action!\action_svc.exe [X]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2015-07-21] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47160 2015-07-21] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 hxsyol; C:\Windows\system32\hxsy64.sys [86352 2015-12-23] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-08-27] (Intel Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2011-10-08] (Marvell Semiconductor, Inc.)
S3 smsbda; C:\Windows\system32\drivers\smsbda.sys [63392 2009-09-03] (Siano)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-11-05] (VMware, Inc.)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2013-08-22] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 ZTEusbdvbh; C:\Windows\system32\DRIVERS\ZTEusbdvbh.sys [150656 2009-03-09] (ZTE Incorporated)
S3 WinDivert1.1; \??\C:\Program Files\KMSpico\WinDivert.sys [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-03-11 12:37 - 2016-03-11 12:38 - 00022932 _____ C:\Users\Usuário\Downloads\FRST.txt
2016-03-11 12:37 - 2016-03-11 12:37 - 00000000 ____D C:\FRST
2016-03-11 12:36 - 2016-03-11 12:36 - 02374144 _____ (Farbar) C:\Users\Usuário\Downloads\FRST64.exe
2016-03-11 12:34 - 2016-03-11 12:35 - 01725440 _____ (Farbar) C:\Users\Usuário\Downloads\FRST.exe
2016-03-10 11:59 - 2016-03-11 12:14 - 00003106 _____ C:\Windows\System32\Tasks\WinThruster
2016-03-10 11:59 - 2016-03-10 18:01 - 00000302 _____ C:\Windows\Tasks\WinThruster_UPDATES.job
2016-03-10 11:59 - 2016-03-10 18:01 - 00000294 _____ C:\Windows\Tasks\WinThruster_DEFAULT.job
2016-03-10 11:59 - 2016-03-10 11:59 - 00003026 _____ C:\Windows\System32\Tasks\WinThruster_UPDATES
2016-03-10 11:59 - 2016-03-10 11:59 - 00002870 _____ C:\Windows\System32\Tasks\WinThruster_DEFAULT
2016-03-10 11:59 - 2016-03-10 11:59 - 00001055 _____ C:\Users\Public\Desktop\WinThruster.lnk
2016-03-10 11:59 - 2016-03-10 11:59 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Solvusoft
2016-03-10 11:59 - 2016-03-10 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
2016-03-10 11:59 - 2016-03-10 11:59 - 00000000 ____D C:\Program Files (x86)\WinThruster
2016-03-10 11:59 - 2015-11-25 13:01 - 00021624 _____ (solvusoft) C:\Windows\system32\roboot64.exe
2016-03-10 11:58 - 2016-03-10 11:59 - 03901072 _____ (solvusoft Corporation ) C:\Users\Usuário\Downloads\WinThruster_2016_Setup.exe
2016-03-10 11:56 - 2016-03-10 11:56 - 00002133 _____ C:\Users\Public\Desktop\WinDS PRO.lnk
2016-03-10 11:56 - 2016-03-10 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDS PRO
2016-03-10 11:55 - 2016-03-10 11:56 - 00000000 ____D C:\Users\Public\Documents\WinDS PRO
2016-03-10 11:49 - 2016-03-10 11:55 - 42671019 _____ C:\Users\Usuário\Downloads\WinDS PRO 2016.01.28.zip
2016-03-09 12:12 - 2016-03-09 17:58 - 00000304 _____ C:\Windows\Tasks\DLL-Files FixerASKUSER.job
2016-03-09 12:12 - 2016-03-09 12:13 - 00002880 _____ C:\Windows\System32\Tasks\DLL-Files FixerASKUSER
2016-03-09 12:12 - 2016-03-09 12:12 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-09 12:12 - 2016-03-09 12:12 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-09 00:28 - 2016-03-09 00:30 - 13767776 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\vc_redist.x86 (1).exe
2016-03-09 00:24 - 2016-03-09 02:00 - 02113273 _____ C:\Users\Usuário\Downloads\Não confirmado 266573.crdownload
2016-03-09 00:22 - 2016-03-09 00:22 - 00520193 _____ C:\Users\Usuário\Downloads\__32-msvcr120.dll12.0.21005.1.zip
2016-03-09 00:19 - 2016-03-11 12:13 - 00003112 _____ C:\Windows\System32\Tasks\RDReminder
2016-03-09 00:19 - 2016-03-09 11:51 - 00000312 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2016-03-09 00:19 - 2016-03-09 11:51 - 00000296 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2016-03-09 00:19 - 2016-03-09 00:19 - 00003034 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2016-03-09 00:19 - 2016-03-09 00:19 - 00003020 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2016-03-09 00:19 - 2016-03-09 00:19 - 00001100 _____ C:\Users\Public\Desktop\Dll-Files Fixer.lnk
2016-03-09 00:19 - 2016-03-09 00:19 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\dll-files.com
2016-03-09 00:19 - 2016-03-09 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2016-03-09 00:19 - 2016-03-09 00:19 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2016-03-09 00:18 - 2016-03-09 00:19 - 05444000 _____ (Dll-Files.com ) C:\Users\Usuário\Downloads\dffsetup-msvcr120.exe
2016-03-09 00:14 - 2016-03-09 00:21 - 13767776 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\vc_redist.x86.exe
2016-03-09 00:06 - 2016-03-09 00:11 - 14572000 _____ (Microsoft Corporation) C:\Users\Usuário\Downloads\vc_redist.x64.exe
2016-03-08 23:59 - 2016-03-09 02:00 - 00077085 _____ C:\Users\Usuário\Downloads\Não confirmado 670824.crdownload
2016-03-08 23:58 - 2016-03-09 00:01 - 02336258 _____ C:\Users\Usuário\Downloads\citra-master.zip
2016-03-08 23:57 - 2016-03-10 11:14 - 00000000 ____D C:\Users\Usuário\Desktop\3DsEmulator (1)
2016-03-08 23:52 - 2016-03-08 23:56 - 11387205 _____ C:\Users\Usuário\Downloads\citra-latest-windows-amd64.7z
2016-03-08 09:34 - 2016-03-08 09:42 - 86495731 _____ C:\Users\Usuário\Downloads\Liu & Vokker - Don't Look Back.mp4
2016-03-05 15:04 - 2016-03-05 15:04 - 00408900 _____ C:\Users\Usuário\Downloads\photo.htm
2016-03-03 22:05 - 2016-03-03 22:05 - 00000000 ____D C:\Users\Usuário\.android
2016-03-03 22:04 - 2016-03-10 20:57 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\VMware
2016-03-03 22:01 - 2016-03-03 22:01 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Andy
2016-03-03 21:58 - 2016-03-03 21:58 - 00001505 _____ C:\Users\Public\Desktop\Start Andy.lnk
2016-03-03 21:58 - 2016-03-03 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Andy
2016-03-03 21:57 - 2015-11-25 18:10 - 00934080 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2016-03-03 21:57 - 2015-11-25 18:10 - 00392896 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2016-03-03 21:57 - 2015-11-25 18:10 - 00358080 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2016-03-03 21:57 - 2015-11-25 18:10 - 00066752 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2016-03-03 21:57 - 2015-11-25 18:10 - 00033472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys
2016-03-03 21:57 - 2015-11-25 17:52 - 00026816 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2016-03-03 21:57 - 2015-11-06 11:57 - 00057536 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2016-03-03 21:57 - 2015-11-05 19:25 - 00075512 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2016-03-03 21:57 - 2015-11-05 19:25 - 00068288 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2016-03-03 21:57 - 2015-11-05 19:25 - 00064192 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2016-03-03 21:56 - 2016-03-11 12:08 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2016-03-03 21:56 - 2016-03-11 12:08 - 00000000 ____D C:\ProgramData\VMware
2016-03-03 21:56 - 2016-03-03 21:56 - 01813972 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-03-03 21:56 - 2016-03-03 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2016-03-03 21:56 - 2016-03-03 21:56 - 00000000 ____D C:\Program Files\Common Files\VMware
2016-03-03 21:54 - 2016-03-03 22:05 - 00000000 ____D C:\Users\Usuário\Andy
2016-03-03 21:54 - 2016-03-03 21:55 - 00000000 ____D C:\Program Files\Andy
2016-03-03 21:54 - 2016-03-03 21:54 - 00000000 ____D C:\Program Files (x86)\VMware
2016-03-03 21:53 - 2016-03-03 21:54 - 00000000 ____D C:\Program Files\AndyOfflineInstaller46.2
2016-03-03 21:51 - 2016-03-10 20:57 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Andy
2016-03-03 21:12 - 2016-03-03 21:50 - 433648936 _____ C:\Users\Usuário\Downloads\Andy_v46.2_82_x64bit.exe
2016-03-03 07:23 - 2016-03-03 07:23 - 00000000 __SHD C:\found.000
2016-03-01 20:05 - 2016-03-01 20:05 - 66528965 _____ C:\Users\Usuário\Downloads\videoplayback (7) (1).mp4
2016-02-25 23:12 - 2016-02-25 23:12 - 00002246 _____ C:\Users\Public\Desktop\Blade & Soul.lnk
2016-02-25 23:12 - 2016-02-25 23:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT
2016-02-25 23:12 - 2016-02-25 23:12 - 00000000 ____D C:\Program Files (x86)\NCSOFT
2016-02-25 23:10 - 2016-02-25 23:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2016-02-25 23:10 - 2016-02-25 23:10 - 00000000 ____D C:\Program Files (x86)\NCWest
2016-02-25 22:51 - 2016-02-25 23:10 - 227195640 _____ (NC Interactive, LLC) C:\Users\Usuário\Downloads\BnS_Lite_Installer.exe
2016-02-24 21:05 - 2016-02-24 21:08 - 11170205 _____ C:\Users\Usuário\Downloads\FamiliaSacana1-Afilhiniadopapai.b1
2016-02-23 20:03 - 2016-02-23 20:03 - 01091016 _____ (Unity Technologies ApS) C:\Users\Usuário\Downloads\UnityWebPlayer (1).exe
2016-02-23 20:02 - 2016-02-23 20:02 - 01091016 _____ (Unity Technologies ApS) C:\Users\Usuário\Downloads\UnityWebPlayer.exe
2016-02-22 12:03 - 2016-02-22 12:03 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-02-22 12:03 - 2016-02-22 12:03 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\HandBrake Team
2016-02-22 12:02 - 2016-02-22 12:03 - 00000000 ____D C:\Program Files\Handbrake
2016-02-22 12:00 - 2016-02-22 12:02 - 15505879 _____ C:\Users\Usuário\Downloads\HandBrake-0.10.5-i686-Win_GUI.exe
2016-02-21 17:48 - 2016-02-21 17:48 - 04241603 _____ C:\Users\Usuário\Downloads\Como Diminuir o Ping de Jogos Online - By Adornelas.rar
2016-02-21 12:22 - 2016-02-21 12:38 - 23950599 _____ (CipSoft GmbH ) C:\Users\Usuário\Downloads\tibia860.exe
2016-02-20 09:38 - 2016-02-20 09:38 - 00001131 _____ C:\Users\Public\Desktop\MuMasteR.exe.lnk
2016-02-20 09:35 - 2016-02-20 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MuMasteR
2016-02-20 09:35 - 2016-02-20 09:35 - 00000000 ____D C:\Program Files (x86)\TeiaVirtual
2016-02-19 09:50 - 2016-02-19 09:50 - 00000000 ____D C:\Users\Usuário\Documents\League of Legends
2016-02-17 17:58 - 2016-02-17 18:06 - 00000132 _____ C:\Users\Usuário\AppData\Roaming\Preferências do Filtro IllExport CC da Adobe
2016-02-17 17:54 - 2016-02-17 17:54 - 00102147 _____ C:\Users\Usuário\Downloads\shields-Shapes4FREE.zip
2016-02-16 09:35 - 2016-02-16 09:36 - 13243105 _____ C:\Users\Usuário\Downloads\Banner (template e materiais).rar
2016-02-15 22:50 - 2016-02-15 22:56 - 96680198 _____ C:\Users\Usuário\Downloads\videoplayback (11).mp4
2016-02-15 20:14 - 2016-02-15 20:21 - 39069962 _____ C:\Users\Usuário\Downloads\videoplayback (10).mp4
2016-02-14 22:31 - 2016-02-14 22:32 - 00594331 _____ (web ) C:\Users\Usuário\Downloads\installer.exe
2016-02-14 20:56 - 2016-02-14 21:08 - 95222877 _____ C:\Users\Usuário\Downloads\videoplayback (9).mp4
2016-02-13 12:25 - 2016-02-13 12:25 - 00923552 _____ C:\Users\Usuário\Downloads\videoplayback (6).mp4.sfk
2016-02-12 18:03 - 2016-02-12 18:03 - 380813877 _____ C:\Windows\MEMORY.DMP
2016-02-12 18:03 - 2016-02-12 18:03 - 00285720 _____ C:\Windows\Minidump\021216-13968-01.dmp
2016-02-12 18:03 - 2016-02-12 18:03 - 00000000 ____D C:\Windows\Minidump
2016-02-10 23:52 - 2016-02-10 23:59 - 32916915 _____ C:\Users\Usuário\Downloads\videoplayback (8).mp4
2016-02-10 14:48 - 2016-02-10 14:48 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\RcGameBoxRU
2016-02-10 14:48 - 2016-02-10 14:48 - 00000000 ____D C:\RcGameBoxRU
2016-02-10 14:37 - 2016-02-11 09:19 - 00000000 ____D C:\Users\Usuário\AppData\LocalLow\raidcall
2016-02-10 14:37 - 2016-02-10 20:58 - 00000000 ____D C:\Program Files (x86)\RaidCall.RU
2016-02-10 14:37 - 2016-02-10 14:38 - 00000869 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall RaidCall.lnk
2016-02-10 14:37 - 2016-02-10 14:37 - 00001066 _____ C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\RaidCall.lnk
2016-02-10 14:37 - 2016-02-10 14:37 - 00001054 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RaidCall.lnk
2016-02-10 14:37 - 2016-02-10 14:37 - 00001042 _____ C:\Users\Usuário\Desktop\RaidCall.lnk
2016-02-10 14:37 - 2016-02-10 14:37 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\raidcall
2016-02-10 14:35 - 2016-02-10 14:37 - 06772944 _____ C:\Users\Usuário\Downloads\raidcall_v7.3.6.exe
2016-02-10 00:18 - 2016-02-10 00:18 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Steam
2016-02-10 00:18 - 2016-02-10 00:18 - 00000000 ____D C:\Users\Usuário\AppData\LocalLow\Lazy Bear Games
2016-02-09 23:10 - 2016-02-09 23:10 - 130850936 _____ C:\Users\Usuário\Downloads\Punch_Club_v1.06-GAMERPRO.exe
2016-02-08 13:33 - 2016-02-08 14:52 - 00673440 _____ C:\Users\Usuário\Downloads\OS MONSTROS DO REVIEW - QSN S02E01 - Rik.mp4-0-4886131250-1.sfk
2016-02-08 12:37 - 2016-02-08 12:38 - 00134064 _____ C:\Users\Usuário\Downloads\100 mil e o carai agora é 1 milhao.mp4-1280612668-972304665-0.sfk
2016-02-07 23:18 - 2016-02-07 23:18 - 03771992 _____ C:\Users\Usuário\Documents\Untitled.wmv.sfap0
2016-02-07 23:18 - 2016-02-07 23:18 - 00029536 _____ C:\Users\Usuário\Documents\Untitled.wmv.sfk
2016-02-07 23:08 - 2016-02-07 23:17 - 16146365 _____ C:\Users\Usuário\Downloads\HandBrake-0.10.3-i686-Win_GUI.exe
2016-02-07 23:01 - 2016-02-08 15:44 - 188552325 _____ C:\Users\Usuário\Documents\Untitled.wmv
2016-02-07 22:59 - 2016-02-07 22:59 - 00023376 _____ C:\Users\Usuário\Documents\Untitled.aa3
2016-02-07 22:59 - 2016-02-07 22:59 - 00000086 _____ C:\Users\Usuário\Documents\Untitled.aa3.sfl
2016-02-07 22:58 - 2016-02-08 12:38 - 00013424 _____ C:\Users\Usuário\Documents\Untitled.veg
2016-02-07 22:58 - 2016-02-07 22:58 - 00055248 _____ C:\Users\Usuário\Documents\Untitled.veg.bak
2016-02-07 22:36 - 2016-02-07 22:36 - 00310592 _____ C:\Users\Usuário\Downloads\100 mil e o carai agora é 1 milhao.mp4.sfk
2016-02-07 22:33 - 2016-02-07 22:35 - 10387608 _____ C:\Users\Usuário\Downloads\100 mil e o carai agora é 1 milhao.mp4
2016-02-06 20:35 - 2016-02-06 20:52 - 66528965 _____ C:\Users\Usuário\Downloads\videoplayback (7).mp4
2016-02-06 16:29 - 2016-02-06 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX
2016-02-06 16:18 - 2016-02-06 16:27 - 112206656 _____ (SQUARE ENIX CO., LTD.) C:\Users\Usuário\Downloads\ffxivsetup_ft.exe
2016-02-05 23:19 - 2016-02-05 23:26 - 33274896 _____ C:\Users\Usuário\Downloads\videoplayback (6).mp4
2016-02-05 21:52 - 2016-02-05 22:01 - 32427164 _____ C:\Users\Usuário\Downloads\videoplayback (5).mp4
2016-02-04 17:33 - 2016-02-04 17:34 - 03445395 _____ C:\Users\Usuário\Downloads\adobe photoshop cs6 ativar 3d.rar
2016-02-04 17:28 - 2016-02-04 17:29 - 00699487 _____ C:\Users\Usuário\Downloads\Active_3D-Photoshop_CS6(X32&X64) (1).rar
2016-02-04 17:24 - 2016-02-04 17:25 - 01121891 _____ C:\Users\Usuário\Downloads\3D Engines.zip
2016-02-04 16:37 - 2016-02-04 16:45 - 36594054 _____ C:\Users\Usuário\Downloads\videoplayback (4).mp4
2016-02-04 14:30 - 2016-02-04 14:36 - 31535231 _____ C:\Users\Usuário\Downloads\videoplayback (3).mp4
2016-02-01 00:19 - 2016-02-01 00:32 - 36594054 _____ C:\Users\Usuário\Downloads\videoplayback (2).mp4
2016-02-01 00:14 - 2016-02-01 00:18 - 05390412 _____ C:\Users\Usuário\Downloads\videoplayback (2).mp4.crdownload
2016-01-30 21:12 - 2016-01-30 21:18 - 31889348 _____ C:\Users\Usuário\Downloads\videoplayback (1).mp4
2016-01-30 16:10 - 2016-02-10 14:34 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\TS3Client
2016-01-30 16:10 - 2016-01-30 16:10 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-01-30 16:09 - 2016-01-30 16:10 - 00000000 ____D C:\Users\Usuário\AppData\Local\TeamSpeak 3 Client
2016-01-30 15:59 - 2016-01-30 16:08 - 29057448 _____ (TeamSpeak Systems GmbH) C:\Users\Usuário\Downloads\TeamSpeak3-Client-win32-3.0.18.2.exe
2016-01-29 18:12 - 2016-01-29 18:12 - 00148682 _____ C:\Users\Usuário\Downloads\Adobe_After_Effects_CS6 (2).html
2016-01-29 12:54 - 2016-01-29 12:54 - 00148680 _____ C:\Users\Usuário\Downloads\Adobe_After_Effects_CS6.html
2016-01-29 12:54 - 2016-01-29 12:54 - 00148679 _____ C:\Users\Usuário\Downloads\Adobe_After_Effects_CS6 (1).html
2016-01-28 21:22 - 2016-01-28 21:22 - 00000584 _____ C:\Users\Usuário\Documents\Default.sfvidcap
2016-01-28 17:11 - 2016-01-28 17:11 - 00539358 _____ C:\Users\Usuário\Downloads\abovea.zip
2016-01-28 17:06 - 2016-01-28 17:06 - 00673440 _____ C:\Users\Usuário\Downloads\OS MONSTROS DO REVIEW - QSN S02E01 - Rik.mp4.sfk
2016-01-28 17:00 - 2016-01-28 17:05 - 33308910 _____ C:\Users\Usuário\Downloads\OS MONSTROS DO REVIEW - QSN S02E01 - Rik.mp4
2016-01-22 11:27 - 2016-01-22 11:46 - 96819488 _____ (The GIMP Team ) C:\Users\Usuário\Downloads\gimp-2.8.16-setup.exe
2016-01-22 03:31 - 2016-02-22 11:57 - 00000000 ____D C:\Users\Usuário\Desktop\Warsongs
2016-01-21 18:14 - 2016-01-21 18:15 - 01001945 _____ C:\Users\Usuário\Downloads\Lunar_Revel_Intro_Wallpapers.zip
2016-01-20 02:36 - 2016-01-20 02:36 - 00000000 ____D C:\Users\Usuário\AppData\Local\Steam
2016-01-20 02:36 - 2016-01-20 02:36 - 00000000 ____D C:\Users\Usuário
2016-01-19 08:01 - 2016-01-19 08:01 - 00128955 _____ C:\Users\Usuário\Downloads\royal_inferno.zip
2016-01-18 00:13 - 2016-01-18 00:14 - 00011744 _____ C:\Users\Usuário\Downloads\ITS FUCKING APROVED.mp4.sfk
2016-01-18 00:13 - 2016-01-18 00:13 - 00784199 _____ C:\Users\Usuário\Downloads\ITS FUCKING APROVED.mp4
2016-01-17 01:29 - 2016-01-17 01:29 - 00668704 _____ C:\Users\Usuário\Downloads\UnityDownloadAssistant-5.3.1f1.exe
2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\Users\Usuário\AppData\Local\cFos
2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\Users\Todos os Usuários\cFos
2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Modelagem de Tráfego cFosSpeed
2016-01-17 01:05 - 2016-01-17 01:05 - 00000000 ____D C:\ProgramData\cFos
2016-01-17 01:05 - 2015-01-22 17:54 - 01874880 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2016-01-17 00:58 - 2016-01-17 01:05 - 05361528 _____ C:\Users\Usuário\Downloads\cfosspeed-v1002.exe
2016-01-16 23:46 - 2016-01-16 23:52 - 00000000 ____D C:\Users\Usuário\AppData\Local\Mozilla
2016-01-16 23:45 - 2016-01-16 23:45 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-16 23:45 - 2016-01-16 23:45 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-01-16 23:01 - 2016-01-16 23:01 - 00248640 _____ C:\Users\Usuário\Downloads\Firefox Setup Stub 43.0.4.exe
2016-01-16 22:56 - 2016-01-16 22:56 - 00003240 _____ C:\Windows\System32\Tasks\{8503BE0E-AE44-44DE-9219-6F7DFDD1ECD6}
2016-01-16 22:47 - 2016-01-16 22:47 - 00015054 _____ C:\Windows\System32\Tasks\ACGPro Update
2016-01-16 22:44 - 2016-01-16 22:46 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-01-16 22:43 - 2016-01-16 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual WiFi Router
2016-01-16 22:40 - 2016-01-16 22:41 - 01081214 _____ (Virtual WiFi Router, Inc. ) C:\Users\Usuário\Downloads\virtual-wi-fi-router-3-0-1-1-en-win.exe
2016-01-16 22:33 - 2016-01-16 22:34 - 00404992 _____ C:\Users\Usuário\Downloads\Easy Wi-Fi 1.0.0.msi
2016-01-14 19:46 - 2015-11-29 05:02 - 03758336 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\GameMon.des
2016-01-14 19:46 - 2004-12-30 09:43 - 00004682 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\npptNT2.sys
2016-01-14 19:46 - 2003-07-15 18:17 - 00005174 _____ C:\Windows\SysWOW64\nppt9x.vxd
2016-01-14 19:45 - 2016-01-14 19:45 - 00000000 ____D C:\Program Files\Common Files\INCA Shared
2016-01-14 15:30 - 2016-01-14 15:31 - 217459436 _____ C:\Users\Usuário\Downloads\Warsongs_-_League_of_Legends.zip
2016-01-14 05:28 - 2016-01-14 05:38 - 00000733 _____ C:\Users\Usuário\Desktop\Elsword.lnk
2016-01-14 05:11 - 2016-01-14 05:11 - 00400928 _____ () C:\Users\Usuário\Downloads\elsword.exe
2016-01-14 05:11 - 2016-01-14 05:11 - 00400928 _____ () C:\Users\Usuário\Downloads\elsword (1).exe
2016-01-11 20:12 - 2016-01-11 20:13 - 02404134 _____ C:\Users\Usuário\Desktop\12523070_110835572628754_3188291457574138373_n.psd
2016-01-10 14:59 - 2016-01-10 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-09 16:00 - 2016-01-09 16:42 - 171948587 _____ (Joe Williams ) C:\Users\Usuário\Downloads\WYD_Installer.exe
2016-01-06 21:29 - 2016-01-06 21:30 - 49112960 _____ (Curse) C:\Users\Usuário\Downloads\CurseClientSetup.exe
2016-01-05 14:23 - 2016-01-05 14:23 - 00001681 _____ C:\Users\Usuário\Desktop\Smite.lnk
2015-12-29 14:58 - 2015-12-29 14:58 - 00001776 _____ C:\Users\Usuário\Desktop\Warface.lnk
2015-12-27 23:57 - 2015-12-28 00:09 - 00000000 ____D C:\Users\Usuário\AppData\LocalLow\Daybreak Game Company
2015-12-27 23:57 - 2015-12-27 23:57 - 00000000 ____D C:\Users\Usuário\AppData\Local\SCE
2015-12-27 23:57 - 2015-12-27 23:57 - 00000000 ____D C:\Users\Usuário\AppData\Local\Daybreak Game Company
2015-12-27 22:06 - 2015-12-27 22:06 - 00000000 ____D C:\Users\Usuário\Documents\FreeReign
2015-12-27 22:06 - 2015-12-27 22:06 - 00000000 ____D C:\Users\Usuário\AppData\Local\FreeReign
2015-12-27 21:54 - 2015-12-27 21:54 - 00000000 ____D C:\Users\Usuário\AppData\Local\Ndemic Creations
2015-12-22 01:05 - 2015-12-22 01:05 - 00000222 _____ C:\Users\Usuário\Desktop\The Blue Flamingo.url
2015-12-16 19:45 - 2016-01-31 22:12 - 00000000 ____D C:\Users\Usuário\BrawlhallaReplays
2015-12-16 19:37 - 2015-12-16 19:37 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\BrawlhallaAir
2015-12-16 13:15 - 2015-12-16 13:17 - 15531796 _____ C:\Users\Usuário\Downloads\Major Lazer & DJ Snake - Lean On (feat. MØ) (Official Music Video).mp4
2015-12-14 20:09 - 2015-12-14 20:09 - 18911937 _____ C:\Users\Usuário\Downloads\Cartoon - Why We Lose (feat. Coleman Trapp) [NCS Release] (1).mp4
2015-12-14 20:09 - 2015-12-14 10:25 - 18911937 _____ C:\Users\Usuário\Desktop\Cartoon - Why We Lose (feat. Coleman Trapp) [NCS Release].mp4
2015-12-14 10:19 - 2015-12-14 10:25 - 18911937 _____ C:\Users\Usuário\Downloads\Cartoon - Why We Lose (feat. Coleman Trapp) [NCS Release].mp4

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-03-11 12:27 - 2015-01-21 14:49 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E241F84F-2514-4C13-A36F-0FB624D698C4}
2016-03-11 12:14 - 2015-01-21 11:27 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1710921975-364333607-2484523441-1001
2016-03-11 12:12 - 2015-01-21 15:01 - 00000000 ____D C:\Users\Usuário\AppData\Local\Adobe
2016-03-11 12:11 - 2015-01-21 14:54 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-11 12:11 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\AppReadiness
2016-03-11 12:10 - 2015-03-14 13:16 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2016-03-11 12:10 - 2015-03-14 13:16 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-03-11 12:10 - 2015-01-21 14:54 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-11 12:08 - 2015-09-13 12:08 - 00000964 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-03-11 12:08 - 2015-09-13 12:08 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-11 12:08 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-11 01:54 - 2015-09-13 12:08 - 00003930 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-03-11 01:54 - 2015-09-13 12:08 - 00003790 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-10 11:57 - 2015-01-24 10:03 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-03-10 11:57 - 2015-01-24 09:38 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-03-10 11:14 - 2015-12-03 12:48 - 00000000 ____D C:\Users\Usuário\Desktop\YOUTUBIU MUSIC
2016-03-10 06:30 - 2015-01-21 15:04 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Skype
2016-03-09 18:04 - 2015-01-21 11:22 - 00000000 ____D C:\Users\Usuário
2016-03-09 12:00 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-09 00:30 - 2015-01-22 08:05 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-03-09 00:30 - 2015-01-22 08:05 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-08 20:26 - 2015-04-14 18:42 - 00000132 _____ C:\Users\Usuário\AppData\Roaming\Preferências do Formato PNG CC da Adobe
2016-03-05 01:44 - 2015-02-15 12:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-03-05 01:43 - 2015-03-21 05:13 - 00000000 ____D C:\Users\Usuário\AppData\Local\Warframe
2016-03-03 21:57 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf
2016-03-03 21:56 - 2013-08-31 13:31 - 00777386 _____ C:\Windows\system32\prfh0416.dat
2016-03-03 21:56 - 2013-08-31 13:31 - 00159506 _____ C:\Windows\system32\prfc0416.dat
2016-03-03 09:58 - 2015-09-14 18:54 - 00003850 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1442267692
2016-03-03 09:58 - 2015-09-14 18:54 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-03 09:58 - 2015-09-14 18:48 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-03 07:29 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\system32\NDF
2016-03-01 16:47 - 2015-04-10 18:51 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-02-27 14:16 - 2015-01-21 15:04 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-02-27 14:16 - 2015-01-21 15:04 - 00000000 ____D C:\ProgramData\Skype
2016-02-27 00:22 - 2015-04-10 18:52 - 00000000 ____D C:\Users\Usuário\AppData\Local\Battle.net
2016-02-26 01:03 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-02-25 23:12 - 2015-02-01 06:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-24 21:43 - 2015-05-27 21:00 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-02-24 09:05 - 2015-01-21 11:26 - 01797166 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-23 10:32 - 2015-04-12 20:21 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\HandBrake
2016-02-22 16:33 - 2015-04-02 15:20 - 00205672 ____H C:\Windows\SysWOW64\mlfcache.dat
2016-02-21 18:03 - 2015-01-24 09:36 - 00000000 ____D C:\Users\Usuário\AppData\Local\ElevatedDiagnostics
2016-02-17 18:07 - 2015-01-22 08:08 - 00000000 ____D C:\Users\Usuário\Documents\Corel
2016-02-17 17:59 - 2015-04-11 22:17 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\MAXON
2016-02-17 17:59 - 2015-01-21 11:22 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Adobe
2016-02-16 17:24 - 2013-08-22 11:44 - 05245312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-15 16:58 - 2016-01-16 23:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-15 11:16 - 2015-01-21 14:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-12 18:18 - 2015-01-27 12:41 - 00000000 ____D C:\Users\Usuário\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-12 18:17 - 2015-01-21 13:54 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-12 18:17 - 2015-01-21 13:52 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-02-12 18:17 - 2015-01-21 13:52 - 00000000 ____D C:\ProgramData\Adobe
2016-02-12 18:15 - 2015-12-09 20:11 - 00000000 ____D C:\Users\Usuário\AppData\Local\Discord
2016-02-10 00:16 - 2015-01-23 18:12 - 00000000 ____D C:\Games

==================== Arquivos na raiz de alguns diretórios =======

2015-10-21 17:46 - 2015-11-27 10:31 - 0000034 _____ () C:\Users\Usuário\AppData\Roaming\AdobeWLCMCache.dat
2015-09-05 14:46 - 2015-09-05 14:07 - 0012005 _____ () C:\Users\Usuário\AppData\Roaming\alsoft.ini
2015-04-08 12:00 - 2015-08-17 08:32 - 0000020 _____ () C:\Users\Usuário\AppData\Roaming\appdataFr3.bin
2016-02-17 17:58 - 2016-02-17 18:06 - 0000132 _____ () C:\Users\Usuário\AppData\Roaming\Preferências do Filtro IllExport CC da Adobe
2015-04-17 22:45 - 2015-04-17 22:45 - 0000132 _____ () C:\Users\Usuário\AppData\Roaming\Preferências do Formato GIF CC da Adobe
2015-04-14 18:42 - 2016-03-08 20:26 - 0000132 _____ () C:\Users\Usuário\AppData\Roaming\Preferências do Formato PNG CC da Adobe
2015-07-11 00:27 - 2015-12-24 16:19 - 0002207 _____ () C:\Users\Usuário\AppData\Roaming\SpeedRunnersLog.txt
2015-07-15 14:13 - 2015-12-24 16:19 - 0003411 _____ () C:\Users\Usuário\AppData\Roaming\TargetInvocationLog.txt
2015-04-19 11:44 - 2015-04-26 12:01 - 0003584 _____ () C:\Users\Usuário\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-19 07:58 - 2015-08-19 07:58 - 0000000 ___SH () C:\Users\Usuário\AppData\Local\LumaEmu
2015-01-21 11:44 - 2015-01-21 11:44 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Arquivos para serem movidos ou deletados:
====================
C:\Users\Usuário\CINEMA 4D 64 Bit.exe
C:\Users\Usuário\DeSmuME_0.9.10_x64.exe
C:\Users\Usuário\dxwebsetup (1).exe


Alguns arquivos em TEMP:
====================
C:\Users\Usuário\AppData\Local\Temp\atcMedia2571449145975.exe
C:\Users\Usuário\AppData\Local\Temp\bdfilters.dll
C:\Users\Usuário\AppData\Local\Temp\jansi-32-git-Bukkit-jenkins-CraftBukkit-173.dll
C:\Users\Usuário\AppData\Local\Temp\jansi-32-git-MCPC-Plus-jenkins-MCPC-Plus-Legacy-647.dll
C:\Users\Usuário\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Usuário\AppData\Local\Temp\siinst.exe
C:\Users\Usuário\AppData\Local\Temp\strings.dll
C:\Users\Usuário\AppData\Local\Temp\tasklisten.exe
C:\Users\Usuário\AppData\Local\Temp\utt81DD.tmp.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe ESTÁ AUSENTE <==== ATENÇÃO
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-03-09 20:34

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité