Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 11-08-2016 01
Executado por Marcell (administrador) em MARCELL-PC (10-08-2016 21:06:19)
Executando a partir de C:\Users\Marcell\Downloads
Perfis Carregados: Marcell (Perfis Disponíveis: Marcell)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Marcell\Local Settings\Apps\F.lux\flux.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
() C:\ProgramData\Avg_Update_0816tb\AVG-Secure-Search-Update_0816tb.exe
() C:\ProgramData\Avg_Update_0816tb\AVG-Secure-Search-Update_0816tb.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\40.3.2\ScriptHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.24\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.64\deploy\LoLPatcher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.209\deploy\LolClient.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2016-01-29] (NVIDIA Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-07-20] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [6709008 2016-07-28] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2162760 2016-07-30] ()
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-16] (Banco do Brasil)
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\Run: [F.lux] => C:\Users\Marcell\Local Settings\Apps\F.lux\flux.exe [966656 2009-08-29] ()
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\MountPoints2: F - F:\Fairlight\Install.EXE
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\MountPoints2: {fbabcc5f-f402-11e5-a5b7-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-04-03] (Microsoft Corporation)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1947872 2016-06-16] (Banco do Brasil)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 201.17.128.193 201.17.128.197
Tcpip\..\Interfaces\{EBA2C7BB-8C99-4657-84E4-3D151DC16D34}: [DhcpNameServer] 201.17.128.193 201.17.128.197
Internet Explorer:
==================
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={766365ED-C712-47E5-90B0-4A96B8E31645}&mid=54a339d9434047ccab954597c69254fb-1de3ac3ac066e17764727e1c0a62deaff9506f5d&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=0516pii&pr=fr&d=2016-07-30 20:58:05&v=4.3.2.18&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-3941046658-1227107433-195575837-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={766365ED-C712-47E5-90B0-4A96B8E31645}&mid=54a339d9434047ccab954597c69254fb-1de3ac3ac066e17764727e1c0a62deaff9506f5d&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=0516pii&pr=fr&d=2016-07-30 20:58:05&v=4.3.2.18&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.2.18\AVG Web TuneUp.dll [2016-07-30] (AVG)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-16] (Banco do Brasil)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.2\\npsitesafety.dll [Nenhum Arquivo]
FF Plugin-x32: @haihaisoft/HPReader_Plugin -> C:\Program Files (x86)\Haihaisoft PDF Reader\npHPReader.dll [2015-08-25] (Haihaisoft)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3941046658-1227107433-195575837-1000: @haihaisoft/HPReader_Plugin -> C:\Program Files (x86)\Haihaisoft PDF Reader\npHPReader.dll [2015-08-25] (Haihaisoft)
Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com/?rvt=1
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> google.com.br_
CHR Profile: C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-20]
CHR Extension: (Google Docs) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-20]
CHR Extension: (Google Drive) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-20]
CHR Extension: (YouTube) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-20]
CHR Extension: (Adblock Plus) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-29]
CHR Extension: (AVG Secure Search) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2016-07-31]
CHR Extension: (Planilhas do Google) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-20]
CHR Extension: (AdBlock) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-29]
CHR Extension: (Desprotetor de Links) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\imcbnnnoghiihopefblgehihofbfbmei [2016-06-20]
CHR Extension: (CanvasDraw) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\knfimpamngmggpbamfoomdpebdoleghe [2016-06-20]
CHR Extension: (Google Play) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2016-06-20]
CHR Extension: (Webcam Toy) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2016-06-20]
CHR Extension: (Skype) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-06-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-06-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-20]
CHR Extension: (Quebrador de Links) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchaoppopfjnlficjlobfjhfceadbfla [2016-06-20]
CHR Extension: (Gmail) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-20]
CHR Extension: (Chrome Media Router) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-08]
CHR Extension: (Cortador de áudio) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimnkafgoiilijmlbnfoafihjjijbfp [2016-06-20]
CHR HKU\S-1-5-21-3941046658-1227107433-195575837-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3941046658-1227107433-195575837-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-04-29]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) [Arquivo não assinado]
R2 AMD_RAIDXpert; C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [61440 2012-05-31] (AMD) [Arquivo não assinado]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [674552 2016-07-28] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5267456 2016-07-28] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1097488 2016-07-20] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [760024 2016-07-28] (AVG Technologies CZ, s.r.o.)
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-04-29] (Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-04-29] (Microsoft Corporation)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [631520 2016-06-16] (GAS Tecnologia)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2016-01-29] (NVIDIA Corporation)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2016-01-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2016-01-29] (NVIDIA Corporation)
S4 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU Co., LTD.)
R2 vToolbarUpdater40.3.2; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe [1309768 2016-07-30] (AVG Secure Search)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [976456 2016-07-30] ()
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [314112 2016-06-30] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [261376 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [260352 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [261888 2016-07-19] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [298752 2016-07-12] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2016-08-10] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2016-06-16] (GAS Tecnologia)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2016-01-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2016-01-29] (NVIDIA Corporation)
R0 phmcd; C:\Windows\System32\DRIVERS\phmcd.sys [53328 2010-06-14] (Phantombility, Inc)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-06-16] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-08-10] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-08-10 21:04 - 2016-08-10 21:04 - 00085636 _____ C:\Users\Marcell\Downloads\Shortcut.txt
2016-08-10 21:03 - 2016-08-10 21:04 - 00038276 _____ C:\Users\Marcell\Downloads\Addition.txt
2016-08-10 21:02 - 2016-08-10 21:06 - 00020912 _____ C:\Users\Marcell\Downloads\FRST.txt
2016-08-10 21:02 - 2016-08-10 21:06 - 00000000 ____D C:\FRST
2016-08-10 21:02 - 2016-08-10 21:02 - 02393600 _____ (Farbar) C:\Users\Marcell\Downloads\FRST64 (1).exe
2016-08-10 21:01 - 2016-08-10 21:01 - 02393600 _____ (Farbar) C:\Users\Marcell\Downloads\FRST64.exe
2016-08-10 20:01 - 2016-08-10 20:01 - 00002936 _____ C:\Windows\System32\Tasks\AVG-SSU_0816tb_DELETE
2016-08-10 20:01 - 2016-08-10 20:01 - 00002868 _____ C:\Windows\System32\Tasks\AVG-SSU_0816tb
2016-08-10 20:01 - 2016-08-10 20:01 - 00000572 _____ C:\Windows\Tasks\AVG-SSU_0816tb.job
2016-08-10 20:01 - 2016-08-10 20:01 - 00000434 _____ C:\Windows\Tasks\AVG-SSU_0816tb_DELETE.job
2016-08-10 20:01 - 2016-08-10 20:01 - 00000000 ____D C:\Users\Todos os Usuários\Avg_Update_0816tb
2016-08-10 20:01 - 2016-08-10 20:01 - 00000000 ____D C:\ProgramData\Avg_Update_0816tb
2016-08-09 21:18 - 2016-08-09 21:18 - 00008544 _____ C:\Users\Marcell\Downloads\Mineiro-vector-logo-1B7CFA76DF-seeklogo.com.zip
2016-08-09 21:18 - 2016-08-09 21:18 - 00008544 _____ C:\Users\Marcell\Downloads\Mineiro-vector-logo-1B7CFA76DF-seeklogo.com (1).zip
2016-08-09 21:16 - 2016-08-09 21:16 - 00008455 _____ C:\Users\Marcell\Downloads\Clube_Atletico_Mineiro_de_Belo_Horizonte-MG-vector-logo-B1A83EAB3C-seeklogo.com.zip
2016-08-09 21:14 - 2013-08-04 20:14 - 00254374 _____ C:\Users\Marcell\Desktop\Cruzeiro_Esporte_Clube.cdr
2016-08-09 21:10 - 2016-08-09 21:11 - 00171174 _____ C:\Users\Marcell\Downloads\Cruzeiro_Esporte_Clube-vector-logo-63583A6021-seeklogo.com.zip
2016-08-09 20:01 - 2016-08-09 20:01 - 14936255 _____ C:\Users\Marcell\Downloads\DOC-20160809-WA0026
2016-08-09 19:34 - 2016-08-09 19:34 - 00034707 _____ C:\Users\Marcell\Downloads\01digitall.zip
2016-08-09 19:03 - 2016-08-09 19:04 - 04666999 _____ C:\Users\Marcell\Downloads\time do coração (1).cdr
2016-08-09 18:22 - 2016-08-09 18:22 - 15800901 _____ C:\Users\Marcell\Downloads\placa giodani alterado.cdr
2016-08-09 15:31 - 2016-08-09 15:33 - 00698088 _____ C:\Users\Marcell\Desktop\panfleto.pdf
2016-08-09 13:26 - 2016-08-09 13:26 - 04666999 _____ C:\Users\Marcell\Downloads\time do coração.cdr
2016-08-09 13:26 - 2016-08-09 13:26 - 00936248 _____ C:\Users\Marcell\Downloads\panfleto.cdr
2016-08-09 10:32 - 2016-08-09 10:32 - 00059630 _____ C:\Users\Marcell\Downloads\01328373850 (1).pdf
2016-08-09 10:01 - 2015-02-17 20:25 - 00000000 ____D C:\Users\Marcell\Desktop\FOTOS PRODUTOS HINODE
2016-08-09 09:59 - 2016-08-09 10:00 - 12376755 _____ C:\Users\Marcell\Downloads\fotos-produtos-hinode.zip
2016-08-09 08:34 - 2016-05-12 03:23 - 00701974 _____ C:\Users\Marcell\Documents\instagram-new-2016-seeklogo.com.ai
2016-08-09 08:33 - 2016-08-09 08:33 - 00635142 _____ C:\Users\Marcell\Downloads\instagram-new-2016-vector-logo-6B7D2D1031-seeklogo.com.zip
2016-08-07 17:59 - 2016-08-07 17:59 - 00773624 _____ (Ammyy LLC) C:\Users\Marcell\Desktop\AA_v3.exe
2016-08-02 00:13 - 2016-08-02 00:13 - 00928597 _____ C:\Users\Marcell\Desktop\letreiro ismenia.cdr
2016-08-01 18:53 - 2016-08-01 18:53 - 00002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-08-01 18:53 - 2016-08-01 18:53 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-01 18:53 - 2016-08-01 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-01 18:53 - 2016-08-01 18:53 - 00000000 ____D C:\Program Files\CCleaner
2016-08-01 18:52 - 2016-08-01 18:52 - 06781586 _____ C:\Users\Marcell\Downloads\Ccleaner 5.13 Professional - LefyTutors.rar
2016-08-01 18:52 - 2016-01-08 14:00 - 00000000 ____D C:\Users\Marcell\Desktop\Ccleaner 5.13 Professional - LefyTutors
2016-08-01 08:34 - 2016-08-01 08:35 - 00000000 _____ C:\Users\Marcell\AppData\Local\{8F79AB38-37BF-4905-B6C6-685C6DAA9D70}
2016-07-31 17:09 - 2016-07-31 17:13 - 50055401 _____ C:\Users\Marcell\Downloads\realtek_rtl81xxce_wlan_drv_v20121203252014_win.zip
2016-07-31 17:01 - 2016-07-31 17:02 - 06220205 _____ C:\Users\Marcell\Downloads\Realtek_Ethernet_Win7_7092_05202015.zip
2016-07-31 16:52 - 2016-07-31 16:53 - 02457458 _____ C:\Users\Marcell\Downloads\cpu-z_1.75-en.zip
2016-07-31 16:45 - 2016-07-31 17:49 - 3399239680 ____R C:\Users\Marcell\Downloads\DriverPack_17.7.4_Offline.iso
2016-07-31 16:44 - 2016-08-01 18:39 - 00000000 ____D C:\Users\Marcell\AppData\LocalLow\uTorrent
2016-07-31 16:44 - 2016-07-31 16:44 - 00229770 _____ C:\Users\Marcell\Downloads\DriverPack-Offline.torrent
2016-07-31 16:30 - 2016-07-31 16:30 - 07898241 _____ C:\Users\Marcell\Downloads\realtek_81xx_8018_07232013_win8.rar
2016-07-31 16:30 - 2016-07-31 16:30 - 02589825 _____ C:\Users\Marcell\Downloads\Chipset_Intel_WIN7_32_64_z9201015.zip
2016-07-31 14:36 - 2016-07-31 14:45 - 00000000 ____D C:\Users\Marcell\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2016-07-31 14:36 - 2016-07-31 14:36 - 00002490 _____ C:\Users\Marcell\Desktop\Windows 7 USB DVD Download Tool.lnk
2016-07-31 14:36 - 2016-07-31 14:36 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-07-31 14:35 - 2016-07-31 14:35 - 02721168 _____ (Microsoft Corporation) C:\Users\Marcell\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2016-07-31 13:30 - 2016-07-31 13:30 - 00000219 _____ C:\Users\Marcell\Desktop\Counter-Strike Global Offensive.url
2016-07-31 13:30 - 2016-07-31 13:30 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-30 21:06 - 2016-07-30 21:06 - 00000000 ____D C:\Users\Marcell\Documents\Razer
2016-07-30 21:06 - 2016-07-30 21:06 - 00000000 ____D C:\Users\Marcell\AppData\Local\Razer_Inc
2016-07-30 21:04 - 2016-07-30 21:04 - 00000000 ____D C:\Users\Marcell\AppData\Local\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00002125 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\ProgramData\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\Program Files (x86)\Razer
2016-07-30 21:02 - 2016-07-30 21:03 - 41954352 _____ (Razer Inc. ) C:\Users\Marcell\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2016-07-30 21:01 - 2016-07-30 21:01 - 03135696 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Marcell\Downloads\AVG_PCTuneUp_878.exe
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Users\Todos os Usuários\AVG Web TuneUp
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Users\Marcell\AppData\Local\AVG Web TuneUp
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-30 20:57 - 2016-07-30 20:57 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2016-07-30 20:54 - 2016-08-10 20:18 - 00000936 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2016-07-30 20:54 - 2016-08-10 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-07-30 20:54 - 2016-08-09 21:05 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-30 20:49 - 2016-05-13 10:39 - 00000000 ____D C:\Users\Marcell\Desktop\AVG.IS.16.71.7596.x64
2016-07-30 20:15 - 2016-07-30 20:53 - 00000216 _____ C:\Users\Marcell\Desktop\key.txt
2016-07-30 20:14 - 2016-07-30 20:15 - 253282550 _____ C:\Users\Marcell\Desktop\AVG.IS.16.71.7596.x64.rar
2016-07-30 13:08 - 2016-07-30 13:08 - 01166512 _____ C:\Users\Marcell\Downloads\cartão.cdr
2016-07-29 22:00 - 2014-02-24 12:34 - 01060862 _____ C:\Users\Marcell\Desktop\facebook.ai
2016-07-29 21:59 - 2016-07-29 21:59 - 00974497 _____ C:\Users\Marcell\Downloads\facebook-vector-logo-920081566B-seeklogo.com.zip
2016-07-29 21:58 - 2016-07-29 21:58 - 00540789 _____ C:\Users\Marcell\Downloads\facebook-vector-logo-3473A732B2-seeklogo.com.zip
2016-07-29 21:46 - 2016-08-09 18:22 - 15800901 _____ C:\Users\Marcell\Desktop\placa giodani alterado.cdr
2016-07-29 21:46 - 2016-07-29 21:47 - 40425200 _____ C:\Users\Marcell\Downloads\Cópia_de_segurança_de_placa giodani alterado.cdr
2016-07-26 20:44 - 2016-07-26 23:22 - 00000000 ____D C:\Users\Marcell\Documents\ricardo freitas
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (5).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (4).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (3).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (2).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Desktop\07314106614_Recurso_Seguro_Desemprego_26072016 (6).pdf
2016-07-26 19:30 - 2016-07-26 19:30 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016.pdf
2016-07-26 19:30 - 2016-07-26 19:30 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (1).pdf
2016-07-25 22:38 - 2016-07-25 22:38 - 00764652 _____ C:\Users\Marcell\Downloads\Sketched-fashion-girl-with-grey-dress.zip
2016-07-25 22:36 - 2016-07-25 22:36 - 00575038 _____ C:\Users\Marcell\Downloads\beautiful-women-face-with-curly-hair.zip
2016-07-25 22:35 - 2016-07-25 22:35 - 01693668 _____ C:\Users\Marcell\Downloads\Indian-Dancing-Pose.zip
2016-07-25 22:35 - 2016-07-25 22:35 - 01693668 _____ C:\Users\Marcell\Downloads\Indian-Dancing-Pose (1).zip
2016-07-25 21:56 - 2016-07-25 23:48 - 00000000 ____D C:\Users\Marcell\Documents\laço de fita
2016-07-25 21:46 - 2016-07-25 21:46 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\TuneUp Software
2016-07-25 21:46 - 2016-07-25 21:46 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2016-07-25 21:46 - 2016-07-25 21:46 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2016-07-24 07:57 - 2016-07-24 07:57 - 00000000 ____D C:\Users\Marcell\Documents\My Cheat Tables
2016-07-24 07:36 - 1997-11-02 22:50 - 00299008 _____ C:\Users\Marcell\Desktop\OMATIC.EXE
2016-07-24 07:35 - 2016-07-24 07:35 - 00167987 _____ C:\Users\Marcell\Downloads\cheat_o_matic_099.zip
2016-07-22 19:58 - 2016-07-22 19:58 - 00002760 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2016-07-21 21:56 - 2016-07-21 21:56 - 00001008 _____ C:\Users\Marcell\AppData\Local\recently-used.xbel
2016-07-21 21:41 - 2016-07-21 21:41 - 00116232 _____ C:\Users\Marcell\Downloads\lobster.zip
2016-07-21 21:41 - 2010-07-02 22:09 - 00037632 _____ C:\Users\Marcell\Desktop\Lobster 1.4.otf
2016-07-21 21:39 - 2016-07-21 23:07 - 00521119 _____ C:\Users\Marcell\Downloads\Logo Chocolat.cdr
2016-07-21 21:39 - 2016-07-21 21:39 - 00477040 _____ C:\Users\Marcell\Downloads\Logo Chocolat confeitaria (1).cdr
2016-07-21 21:39 - 2016-07-21 21:39 - 00472572 _____ C:\Users\Marcell\Downloads\Cópia_de_segurança_de_Logo Chocolat.cdr
2016-07-21 21:36 - 2016-07-21 21:36 - 00477040 _____ C:\Users\Marcell\Downloads\Logo Chocolat confeitaria.cdr
2016-07-21 21:33 - 2016-07-21 21:33 - 00000168 _____ C:\Users\Marcell\Downloads\ATT00001.htm
2016-07-21 20:01 - 2016-07-21 20:01 - 00232268 _____ C:\Users\Marcell\Downloads\ADESIVOS-4-0-45X51-EAP480M (1).cdr
2016-07-21 19:59 - 2016-07-21 19:59 - 00232268 _____ C:\Users\Marcell\Downloads\ADESIVOS-4-0-45X51-EAP480M.cdr
2016-07-21 18:53 - 2016-07-21 18:53 - 00170595 _____ C:\Users\Marcell\Downloads\WhatsApp-Image-20160721.jpeg
2016-07-20 20:29 - 2016-07-20 20:29 - 07095514 _____ C:\Users\Marcell\Downloads\Hand-Drawn-Fruit-Set.zip
2016-07-20 20:29 - 2015-12-06 15:23 - 06481922 _____ C:\Users\Marcell\Desktop\33074-NYY03L.eps
2016-07-20 20:20 - 2015-02-18 17:36 - 01009331 _____ C:\Users\Marcell\Desktop\gabatito caneca conica.cdr
2016-07-20 20:19 - 2016-07-20 20:19 - 03098006 _____ C:\Users\Marcell\Downloads\gabarito conica.zip
2016-07-20 07:03 - 2016-07-20 07:03 - 00092582 _____ C:\Users\Marcell\Downloads\WhatsApp-Image-20160719.jpeg
2016-07-19 22:52 - 2016-07-19 22:56 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Tibia
2016-07-19 22:51 - 2016-07-19 22:51 - 00000963 _____ C:\Users\Public\Desktop\Tibia.lnk
2016-07-19 22:51 - 2016-07-19 22:51 - 00000000 ____D C:\Program Files (x86)\Tibia
2016-07-19 22:46 - 2016-07-19 22:47 - 35367939 _____ (CipSoft GmbH ) C:\Users\Marcell\Downloads\tibia1096.exe
2016-07-19 22:24 - 2016-07-19 22:24 - 00001613 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-07-19 22:24 - 2016-07-19 22:24 - 00000000 ____D C:\Riot Games
2016-07-19 22:24 - 2016-07-19 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-07-19 21:49 - 2016-07-19 21:49 - 28120008 _____ (Riot Games) C:\Users\Marcell\Downloads\LeagueofLegends_BR_Installer_2016_05_13.exe
2016-07-19 21:46 - 2016-07-19 21:46 - 03785560 _____ (DLL-Files.com Client ) C:\Users\Marcell\Downloads\clientsetup_d-0.exe
2016-07-19 21:23 - 2016-07-19 21:23 - 00000000 ____D C:\Users\Marcell\AppData\Local\AMD
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\Users\Todos os Usuários\ATI
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\ATI
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\Users\Marcell\AppData\Local\ATI
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\ProgramData\ATI
2016-07-19 21:19 - 2016-07-19 21:19 - 00000000 ____D C:\Users\Todos os Usuários\AMD
2016-07-19 21:19 - 2016-07-19 21:19 - 00000000 ____D C:\ProgramData\AMD
2016-07-19 12:27 - 2016-07-19 12:27 - 00261888 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys
2016-07-18 22:41 - 2016-07-18 22:41 - 00000000 ____D C:\Program Files (x86)\AMD APP
2016-07-18 22:40 - 2016-07-18 22:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2016-07-18 22:40 - 2012-03-30 11:49 - 00056448 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2016-07-18 22:39 - 2010-02-18 09:18 - 00046136 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox64.sys
2016-07-18 22:38 - 2016-07-18 22:38 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files\GIGABYTE
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files\ATI
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files (x86)\Etron Technology
2016-07-18 22:37 - 2012-10-25 09:01 - 00022680 _____ C:\Windows\system32\Drivers\AppleCharger.sys
2016-07-18 22:37 - 2012-08-07 04:09 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys
2016-07-18 22:37 - 2012-08-07 04:09 - 00065152 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronHub3.sys
2016-07-18 22:37 - 2010-04-06 16:30 - 00031272 _____ C:\Windows\system32\AppleChargerSrv.exe
2016-07-18 22:36 - 2016-07-18 22:40 - 00000000 ____D C:\Program Files\ATI Technologies
2016-07-18 22:36 - 2012-04-10 22:40 - 00082560 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_sata.sys
2016-07-18 22:36 - 2012-04-10 22:40 - 00042624 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_xata.sys
2016-07-18 22:33 - 2016-07-18 22:33 - 00000010 _____ C:\Windows\GSetup.ini
2016-07-18 21:43 - 2016-07-18 21:43 - 00179183 _____ C:\Users\Marcell\Downloads\IMG-20160718-WA0041.jpg.jpeg
2016-07-18 20:57 - 2016-07-18 20:57 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\AVG
2016-07-18 20:56 - 2016-07-30 20:53 - 00000000 ___HD C:\$AVG
2016-07-18 20:56 - 2016-07-18 20:56 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\TuneUp Software
2016-07-18 20:54 - 2016-08-10 20:19 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-07-18 20:54 - 2016-08-10 20:19 - 00000000 ____D C:\ProgramData\MFAData
2016-07-18 20:54 - 2016-07-18 20:54 - 00000000 ____D C:\Users\Marcell\AppData\Local\MFAData
2016-07-18 20:53 - 2016-07-30 20:53 - 00000000 ____D C:\Program Files (x86)\AVG
2016-07-18 20:47 - 2016-07-30 20:54 - 00000000 ____D C:\Users\Marcell\AppData\Local\Avg
2016-07-18 20:47 - 2016-07-30 20:52 - 00000000 ____D C:\Users\Todos os Usuários\Avg
2016-07-18 20:47 - 2016-07-30 20:52 - 00000000 ____D C:\Users\Marcell\AppData\Local\AvgSetupLog
2016-07-18 20:47 - 2016-07-30 20:52 - 00000000 ____D C:\ProgramData\Avg
2016-07-18 20:47 - 2016-07-18 20:47 - 05659291 _____ (Swearware) C:\Users\Marcell\Downloads\ComboFix.exe
2016-07-18 20:47 - 2016-07-18 20:47 - 03143504 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Marcell\Downloads\AVG_Protection_Free_1597.exe
2016-07-18 20:33 - 2016-07-18 20:33 - 00174292 _____ C:\Users\Marcell\Downloads\IMG-20160718-WA0038.jpg.jpeg
2016-07-18 20:30 - 2016-07-18 22:05 - 40812260 _____ C:\Users\Marcell\Downloads\marca_mirra.cdr
2016-07-18 20:30 - 2016-07-18 21:58 - 40806612 _____ C:\Users\Marcell\Downloads\Cópia_de_segurança_de_marca_mirra.cdr
2016-07-17 10:33 - 2016-07-17 10:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01011.Wdf
2016-07-17 10:05 - 2016-07-17 10:06 - 08419099 _____ C:\Users\Marcell\Downloads\Engenheiros do hawai-Novos Horizontes .zip
2016-07-17 08:27 - 2016-07-17 08:27 - 02698564 _____ C:\Users\Marcell\Downloads\Sports-car-and-race-flag-logo.zip
2016-07-17 08:27 - 2014-04-25 16:02 - 04442542 _____ C:\Users\Marcell\Desktop\22.eps
2016-07-15 23:35 - 2016-07-15 23:35 - 00636692 _____ C:\Users\Marcell\Desktop\WB_45x51_4x1_NN_NN_S_CO_ARTEONLINEEXPRESS56_2,0_2000_2419600_2976441.pdf
2016-07-13 21:54 - 2016-07-13 22:01 - 00002112 _____ C:\Users\Marcell\Desktop\rock.txt
2016-07-13 21:12 - 2016-07-13 21:12 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2016-07-13 21:04 - 2016-07-13 21:04 - 00559424 _____ C:\Users\Marcell\Downloads\flux-setup.exe
2016-07-12 22:37 - 2016-07-12 22:37 - 00009647 _____ C:\Users\Marcell\Desktop\Pasta1.xlsx
2016-07-12 21:21 - 2016-07-12 21:21 - 00345524 _____ C:\Users\Marcell\Desktop\AA_v3.rar
2016-07-12 16:10 - 2016-07-12 16:10 - 00298752 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdia.sys
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-08-10 20:57 - 2016-03-27 08:18 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Skype
2016-08-10 20:16 - 2016-03-27 07:49 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-10 20:16 - 2016-03-27 07:49 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-10 20:03 - 2016-06-16 20:44 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2016-08-10 20:03 - 2016-06-16 20:44 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-08-10 20:03 - 2016-06-16 20:44 - 00000000 ____D C:\ProgramData\GbPlugin
2016-08-10 20:03 - 2016-06-16 20:44 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-08-10 20:01 - 2016-06-15 22:43 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-08-10 20:00 - 2016-03-27 09:12 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-08-10 20:00 - 2016-03-27 09:12 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-10 20:00 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-10 00:41 - 2009-07-14 01:45 - 00010128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-10 00:41 - 2009-07-14 01:45 - 00010128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-09 21:04 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-08-09 19:45 - 2016-03-27 07:49 - 00719872 _____ C:\Users\Marcell\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-09 19:44 - 2009-07-14 01:45 - 06790232 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-08 20:24 - 2016-06-20 22:03 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-08 20:24 - 2016-06-20 22:03 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-04 18:59 - 2016-02-08 22:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-02 01:41 - 2016-04-21 22:36 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\uTorrent
2016-08-02 01:41 - 2016-03-27 12:01 - 00000000 ____D C:\Windows\Panther
2016-08-01 18:46 - 2009-07-29 12:49 - 00705798 _____ C:\Windows\system32\prfh0416.dat
2016-08-01 18:46 - 2009-07-29 12:49 - 00147638 _____ C:\Windows\system32\prfc0416.dat
2016-08-01 18:46 - 2009-07-14 02:13 - 01635826 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-29 21:48 - 2016-03-27 07:49 - 00000000 ____D C:\Users\Marcell\AppData\Local\Google
2016-07-29 20:11 - 2016-03-27 07:49 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-29 20:11 - 2016-03-27 07:49 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-25 22:27 - 2016-04-27 22:41 - 00000000 ____D C:\Users\Marcell\Documents\academia
2016-07-21 21:56 - 2016-04-03 08:22 - 00000000 ____D C:\Users\Marcell\AppData\Local\gtk-2.0
2016-07-21 21:56 - 2016-04-03 07:43 - 00000000 ____D C:\Users\Marcell\.gimp-2.8
2016-07-21 21:53 - 2016-03-31 20:17 - 00000000 ____D C:\Users\Marcell\Documents\Corel
2016-07-20 19:59 - 2016-03-27 08:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-20 19:59 - 2016-03-27 08:18 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-07-20 19:59 - 2016-03-27 08:18 - 00000000 ____D C:\ProgramData\Skype
2016-07-19 22:17 - 2016-06-07 08:19 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2016-07-19 22:17 - 2016-05-19 19:52 - 00000000 ____D C:\Users\Todos os Usuários\GlarySoft
2016-07-19 22:17 - 2016-05-19 19:52 - 00000000 ____D C:\ProgramData\GlarySoft
2016-07-19 22:17 - 2016-05-19 19:42 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\GlarySoft
2016-07-19 21:49 - 2016-03-27 08:00 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Riot Games
2016-07-18 22:37 - 2016-03-27 07:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-07-18 22:35 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-18 22:24 - 2016-07-02 22:12 - 00000000 ____D C:\Users\Marcell\Desktop\Portifólio
2016-07-18 22:24 - 2016-05-21 12:15 - 00000000 ____D C:\Users\Marcell\Documents\Arquivos
2016-07-18 22:24 - 2016-05-21 08:01 - 00000000 ____D C:\Users\Marcell\Documents\back
2016-07-18 22:24 - 2016-05-21 08:00 - 00000000 ___RD C:\Users\Marcell\Google Drive
2016-07-18 22:24 - 2016-05-21 08:00 - 00000000 ____D C:\Users\Marcell\Documents\z antigas aulas
2016-07-13 21:12 - 2016-03-27 07:34 - 00000000 ____D C:\Users\Marcell
2016-07-12 20:08 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Arquivos na raiz de alguns diretórios =======
2016-05-21 11:08 - 2016-05-21 11:08 - 0003584 _____ () C:\Users\Marcell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-07-21 21:56 - 2016-07-21 21:56 - 0001008 _____ () C:\Users\Marcell\AppData\Local\recently-used.xbel
2016-08-01 08:34 - 2016-08-01 08:35 - 0000000 _____ () C:\Users\Marcell\AppData\Local\{8F79AB38-37BF-4905-B6C6-685C6DAA9D70}
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll
[2016-04-06 07:33] - [2016-05-13 08:08] - 1008640 ____A (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E
C:\Windows\SysWOW64\User32.dll
[2016-05-13 08:11] - [2016-05-13 08:11] - 0833024 ____A (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-08-06 11:13
==================== Fim de FRST.txt ============================
Executado por Marcell (administrador) em MARCELL-PC (10-08-2016 21:06:19)
Executando a partir de C:\Users\Marcell\Downloads
Perfis Carregados: Marcell (Perfis Disponíveis: Marcell)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Marcell\Local Settings\Apps\F.lux\flux.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
() C:\ProgramData\Avg_Update_0816tb\AVG-Secure-Search-Update_0816tb.exe
() C:\ProgramData\Avg_Update_0816tb\AVG-Secure-Search-Update_0816tb.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\40.3.2\ScriptHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(AMD) C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.24\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.64\deploy\LoLPatcher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.209\deploy\LolClient.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2016-01-29] (NVIDIA Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-07-20] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [6709008 2016-07-28] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2162760 2016-07-30] ()
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-16] (Banco do Brasil)
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\Run: [F.lux] => C:\Users\Marcell\Local Settings\Apps\F.lux\flux.exe [966656 2009-08-29] ()
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\MountPoints2: E - E:\setup.exe
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\MountPoints2: F - F:\Fairlight\Install.EXE
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\...\MountPoints2: {fbabcc5f-f402-11e5-a5b7-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-04-03] (Microsoft Corporation)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1947872 2016-06-16] (Banco do Brasil)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 201.17.128.193 201.17.128.197
Tcpip\..\Interfaces\{EBA2C7BB-8C99-4657-84E4-3D151DC16D34}: [DhcpNameServer] 201.17.128.193 201.17.128.197
Internet Explorer:
==================
HKU\S-1-5-21-3941046658-1227107433-195575837-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={766365ED-C712-47E5-90B0-4A96B8E31645}&mid=54a339d9434047ccab954597c69254fb-1de3ac3ac066e17764727e1c0a62deaff9506f5d&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=0516pii&pr=fr&d=2016-07-30 20:58:05&v=4.3.2.18&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-3941046658-1227107433-195575837-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={766365ED-C712-47E5-90B0-4A96B8E31645}&mid=54a339d9434047ccab954597c69254fb-1de3ac3ac066e17764727e1c0a62deaff9506f5d&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=0516pii&pr=fr&d=2016-07-30 20:58:05&v=4.3.2.18&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.2.18\AVG Web TuneUp.dll [2016-07-30] (AVG)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-16] (Banco do Brasil)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.2\\npsitesafety.dll [Nenhum Arquivo]
FF Plugin-x32: @haihaisoft/HPReader_Plugin -> C:\Program Files (x86)\Haihaisoft PDF Reader\npHPReader.dll [2015-08-25] (Haihaisoft)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3941046658-1227107433-195575837-1000: @haihaisoft/HPReader_Plugin -> C:\Program Files (x86)\Haihaisoft PDF Reader\npHPReader.dll [2015-08-25] (Haihaisoft)
Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com/?rvt=1
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> google.com.br_
CHR Profile: C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-20]
CHR Extension: (Google Docs) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-20]
CHR Extension: (Google Drive) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-20]
CHR Extension: (YouTube) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-20]
CHR Extension: (Adblock Plus) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-29]
CHR Extension: (AVG Secure Search) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2016-07-31]
CHR Extension: (Planilhas do Google) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-20]
CHR Extension: (AdBlock) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-29]
CHR Extension: (Desprotetor de Links) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\imcbnnnoghiihopefblgehihofbfbmei [2016-06-20]
CHR Extension: (CanvasDraw) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\knfimpamngmggpbamfoomdpebdoleghe [2016-06-20]
CHR Extension: (Google Play) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2016-06-20]
CHR Extension: (Webcam Toy) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2016-06-20]
CHR Extension: (Skype) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-06-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-06-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-20]
CHR Extension: (Quebrador de Links) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchaoppopfjnlficjlobfjhfceadbfla [2016-06-20]
CHR Extension: (Gmail) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-20]
CHR Extension: (Chrome Media Router) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-08]
CHR Extension: (Cortador de áudio) - C:\Users\Marcell\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimnkafgoiilijmlbnfoafihjjijbfp [2016-06-20]
CHR HKU\S-1-5-21-3941046658-1227107433-195575837-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3941046658-1227107433-195575837-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-04-29]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) [Arquivo não assinado]
R2 AMD_RAIDXpert; C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [61440 2012-05-31] (AMD) [Arquivo não assinado]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [674552 2016-07-28] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5267456 2016-07-28] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1097488 2016-07-20] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [760024 2016-07-28] (AVG Technologies CZ, s.r.o.)
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-04-29] (Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-04-29] (Microsoft Corporation)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [631520 2016-06-16] (GAS Tecnologia)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2016-01-29] (NVIDIA Corporation)
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2016-01-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2016-01-29] (NVIDIA Corporation)
S4 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S4 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU Co., LTD.)
R2 vToolbarUpdater40.3.2; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe [1309768 2016-07-30] (AVG Secure Search)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [976456 2016-07-30] ()
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] ()
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [314112 2016-06-30] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [261376 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [260352 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [261888 2016-07-19] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [298752 2016-07-12] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2016-08-10] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2016-06-16] (GAS Tecnologia)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2016-01-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2016-01-29] (NVIDIA Corporation)
R0 phmcd; C:\Windows\System32\DRIVERS\phmcd.sys [53328 2010-06-14] (Phantombility, Inc)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-06-16] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-08-10] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-08-10 21:04 - 2016-08-10 21:04 - 00085636 _____ C:\Users\Marcell\Downloads\Shortcut.txt
2016-08-10 21:03 - 2016-08-10 21:04 - 00038276 _____ C:\Users\Marcell\Downloads\Addition.txt
2016-08-10 21:02 - 2016-08-10 21:06 - 00020912 _____ C:\Users\Marcell\Downloads\FRST.txt
2016-08-10 21:02 - 2016-08-10 21:06 - 00000000 ____D C:\FRST
2016-08-10 21:02 - 2016-08-10 21:02 - 02393600 _____ (Farbar) C:\Users\Marcell\Downloads\FRST64 (1).exe
2016-08-10 21:01 - 2016-08-10 21:01 - 02393600 _____ (Farbar) C:\Users\Marcell\Downloads\FRST64.exe
2016-08-10 20:01 - 2016-08-10 20:01 - 00002936 _____ C:\Windows\System32\Tasks\AVG-SSU_0816tb_DELETE
2016-08-10 20:01 - 2016-08-10 20:01 - 00002868 _____ C:\Windows\System32\Tasks\AVG-SSU_0816tb
2016-08-10 20:01 - 2016-08-10 20:01 - 00000572 _____ C:\Windows\Tasks\AVG-SSU_0816tb.job
2016-08-10 20:01 - 2016-08-10 20:01 - 00000434 _____ C:\Windows\Tasks\AVG-SSU_0816tb_DELETE.job
2016-08-10 20:01 - 2016-08-10 20:01 - 00000000 ____D C:\Users\Todos os Usuários\Avg_Update_0816tb
2016-08-10 20:01 - 2016-08-10 20:01 - 00000000 ____D C:\ProgramData\Avg_Update_0816tb
2016-08-09 21:18 - 2016-08-09 21:18 - 00008544 _____ C:\Users\Marcell\Downloads\Mineiro-vector-logo-1B7CFA76DF-seeklogo.com.zip
2016-08-09 21:18 - 2016-08-09 21:18 - 00008544 _____ C:\Users\Marcell\Downloads\Mineiro-vector-logo-1B7CFA76DF-seeklogo.com (1).zip
2016-08-09 21:16 - 2016-08-09 21:16 - 00008455 _____ C:\Users\Marcell\Downloads\Clube_Atletico_Mineiro_de_Belo_Horizonte-MG-vector-logo-B1A83EAB3C-seeklogo.com.zip
2016-08-09 21:14 - 2013-08-04 20:14 - 00254374 _____ C:\Users\Marcell\Desktop\Cruzeiro_Esporte_Clube.cdr
2016-08-09 21:10 - 2016-08-09 21:11 - 00171174 _____ C:\Users\Marcell\Downloads\Cruzeiro_Esporte_Clube-vector-logo-63583A6021-seeklogo.com.zip
2016-08-09 20:01 - 2016-08-09 20:01 - 14936255 _____ C:\Users\Marcell\Downloads\DOC-20160809-WA0026
2016-08-09 19:34 - 2016-08-09 19:34 - 00034707 _____ C:\Users\Marcell\Downloads\01digitall.zip
2016-08-09 19:03 - 2016-08-09 19:04 - 04666999 _____ C:\Users\Marcell\Downloads\time do coração (1).cdr
2016-08-09 18:22 - 2016-08-09 18:22 - 15800901 _____ C:\Users\Marcell\Downloads\placa giodani alterado.cdr
2016-08-09 15:31 - 2016-08-09 15:33 - 00698088 _____ C:\Users\Marcell\Desktop\panfleto.pdf
2016-08-09 13:26 - 2016-08-09 13:26 - 04666999 _____ C:\Users\Marcell\Downloads\time do coração.cdr
2016-08-09 13:26 - 2016-08-09 13:26 - 00936248 _____ C:\Users\Marcell\Downloads\panfleto.cdr
2016-08-09 10:32 - 2016-08-09 10:32 - 00059630 _____ C:\Users\Marcell\Downloads\01328373850 (1).pdf
2016-08-09 10:01 - 2015-02-17 20:25 - 00000000 ____D C:\Users\Marcell\Desktop\FOTOS PRODUTOS HINODE
2016-08-09 09:59 - 2016-08-09 10:00 - 12376755 _____ C:\Users\Marcell\Downloads\fotos-produtos-hinode.zip
2016-08-09 08:34 - 2016-05-12 03:23 - 00701974 _____ C:\Users\Marcell\Documents\instagram-new-2016-seeklogo.com.ai
2016-08-09 08:33 - 2016-08-09 08:33 - 00635142 _____ C:\Users\Marcell\Downloads\instagram-new-2016-vector-logo-6B7D2D1031-seeklogo.com.zip
2016-08-07 17:59 - 2016-08-07 17:59 - 00773624 _____ (Ammyy LLC) C:\Users\Marcell\Desktop\AA_v3.exe
2016-08-02 00:13 - 2016-08-02 00:13 - 00928597 _____ C:\Users\Marcell\Desktop\letreiro ismenia.cdr
2016-08-01 18:53 - 2016-08-01 18:53 - 00002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-08-01 18:53 - 2016-08-01 18:53 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-01 18:53 - 2016-08-01 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-01 18:53 - 2016-08-01 18:53 - 00000000 ____D C:\Program Files\CCleaner
2016-08-01 18:52 - 2016-08-01 18:52 - 06781586 _____ C:\Users\Marcell\Downloads\Ccleaner 5.13 Professional - LefyTutors.rar
2016-08-01 18:52 - 2016-01-08 14:00 - 00000000 ____D C:\Users\Marcell\Desktop\Ccleaner 5.13 Professional - LefyTutors
2016-08-01 08:34 - 2016-08-01 08:35 - 00000000 _____ C:\Users\Marcell\AppData\Local\{8F79AB38-37BF-4905-B6C6-685C6DAA9D70}
2016-07-31 17:09 - 2016-07-31 17:13 - 50055401 _____ C:\Users\Marcell\Downloads\realtek_rtl81xxce_wlan_drv_v20121203252014_win.zip
2016-07-31 17:01 - 2016-07-31 17:02 - 06220205 _____ C:\Users\Marcell\Downloads\Realtek_Ethernet_Win7_7092_05202015.zip
2016-07-31 16:52 - 2016-07-31 16:53 - 02457458 _____ C:\Users\Marcell\Downloads\cpu-z_1.75-en.zip
2016-07-31 16:45 - 2016-07-31 17:49 - 3399239680 ____R C:\Users\Marcell\Downloads\DriverPack_17.7.4_Offline.iso
2016-07-31 16:44 - 2016-08-01 18:39 - 00000000 ____D C:\Users\Marcell\AppData\LocalLow\uTorrent
2016-07-31 16:44 - 2016-07-31 16:44 - 00229770 _____ C:\Users\Marcell\Downloads\DriverPack-Offline.torrent
2016-07-31 16:30 - 2016-07-31 16:30 - 07898241 _____ C:\Users\Marcell\Downloads\realtek_81xx_8018_07232013_win8.rar
2016-07-31 16:30 - 2016-07-31 16:30 - 02589825 _____ C:\Users\Marcell\Downloads\Chipset_Intel_WIN7_32_64_z9201015.zip
2016-07-31 14:36 - 2016-07-31 14:45 - 00000000 ____D C:\Users\Marcell\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2016-07-31 14:36 - 2016-07-31 14:36 - 00002490 _____ C:\Users\Marcell\Desktop\Windows 7 USB DVD Download Tool.lnk
2016-07-31 14:36 - 2016-07-31 14:36 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-07-31 14:35 - 2016-07-31 14:35 - 02721168 _____ (Microsoft Corporation) C:\Users\Marcell\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US.exe
2016-07-31 13:30 - 2016-07-31 13:30 - 00000219 _____ C:\Users\Marcell\Desktop\Counter-Strike Global Offensive.url
2016-07-31 13:30 - 2016-07-31 13:30 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-30 21:06 - 2016-07-30 21:06 - 00000000 ____D C:\Users\Marcell\Documents\Razer
2016-07-30 21:06 - 2016-07-30 21:06 - 00000000 ____D C:\Users\Marcell\AppData\Local\Razer_Inc
2016-07-30 21:04 - 2016-07-30 21:04 - 00000000 ____D C:\Users\Marcell\AppData\Local\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00002125 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\ProgramData\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-07-30 21:03 - 2016-07-30 21:03 - 00000000 ____D C:\Program Files (x86)\Razer
2016-07-30 21:02 - 2016-07-30 21:03 - 41954352 _____ (Razer Inc. ) C:\Users\Marcell\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2016-07-30 21:01 - 2016-07-30 21:01 - 03135696 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Marcell\Downloads\AVG_PCTuneUp_878.exe
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Users\Todos os Usuários\AVG Web TuneUp
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Users\Marcell\AppData\Local\AVG Web TuneUp
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2016-07-30 20:58 - 2016-07-30 20:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-30 20:57 - 2016-07-30 20:57 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2016-07-30 20:54 - 2016-08-10 20:18 - 00000936 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2016-07-30 20:54 - 2016-08-10 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-07-30 20:54 - 2016-08-09 21:05 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-30 20:49 - 2016-05-13 10:39 - 00000000 ____D C:\Users\Marcell\Desktop\AVG.IS.16.71.7596.x64
2016-07-30 20:15 - 2016-07-30 20:53 - 00000216 _____ C:\Users\Marcell\Desktop\key.txt
2016-07-30 20:14 - 2016-07-30 20:15 - 253282550 _____ C:\Users\Marcell\Desktop\AVG.IS.16.71.7596.x64.rar
2016-07-30 13:08 - 2016-07-30 13:08 - 01166512 _____ C:\Users\Marcell\Downloads\cartão.cdr
2016-07-29 22:00 - 2014-02-24 12:34 - 01060862 _____ C:\Users\Marcell\Desktop\facebook.ai
2016-07-29 21:59 - 2016-07-29 21:59 - 00974497 _____ C:\Users\Marcell\Downloads\facebook-vector-logo-920081566B-seeklogo.com.zip
2016-07-29 21:58 - 2016-07-29 21:58 - 00540789 _____ C:\Users\Marcell\Downloads\facebook-vector-logo-3473A732B2-seeklogo.com.zip
2016-07-29 21:46 - 2016-08-09 18:22 - 15800901 _____ C:\Users\Marcell\Desktop\placa giodani alterado.cdr
2016-07-29 21:46 - 2016-07-29 21:47 - 40425200 _____ C:\Users\Marcell\Downloads\Cópia_de_segurança_de_placa giodani alterado.cdr
2016-07-26 20:44 - 2016-07-26 23:22 - 00000000 ____D C:\Users\Marcell\Documents\ricardo freitas
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (5).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (4).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (3).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (2).pdf
2016-07-26 19:31 - 2016-07-26 19:31 - 00011842 _____ C:\Users\Marcell\Desktop\07314106614_Recurso_Seguro_Desemprego_26072016 (6).pdf
2016-07-26 19:30 - 2016-07-26 19:30 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016.pdf
2016-07-26 19:30 - 2016-07-26 19:30 - 00011842 _____ C:\Users\Marcell\Downloads\07314106614_Recurso_Seguro_Desemprego_26072016 (1).pdf
2016-07-25 22:38 - 2016-07-25 22:38 - 00764652 _____ C:\Users\Marcell\Downloads\Sketched-fashion-girl-with-grey-dress.zip
2016-07-25 22:36 - 2016-07-25 22:36 - 00575038 _____ C:\Users\Marcell\Downloads\beautiful-women-face-with-curly-hair.zip
2016-07-25 22:35 - 2016-07-25 22:35 - 01693668 _____ C:\Users\Marcell\Downloads\Indian-Dancing-Pose.zip
2016-07-25 22:35 - 2016-07-25 22:35 - 01693668 _____ C:\Users\Marcell\Downloads\Indian-Dancing-Pose (1).zip
2016-07-25 21:56 - 2016-07-25 23:48 - 00000000 ____D C:\Users\Marcell\Documents\laço de fita
2016-07-25 21:46 - 2016-07-25 21:46 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\TuneUp Software
2016-07-25 21:46 - 2016-07-25 21:46 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2016-07-25 21:46 - 2016-07-25 21:46 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2016-07-24 07:57 - 2016-07-24 07:57 - 00000000 ____D C:\Users\Marcell\Documents\My Cheat Tables
2016-07-24 07:36 - 1997-11-02 22:50 - 00299008 _____ C:\Users\Marcell\Desktop\OMATIC.EXE
2016-07-24 07:35 - 2016-07-24 07:35 - 00167987 _____ C:\Users\Marcell\Downloads\cheat_o_matic_099.zip
2016-07-22 19:58 - 2016-07-22 19:58 - 00002760 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2016-07-21 21:56 - 2016-07-21 21:56 - 00001008 _____ C:\Users\Marcell\AppData\Local\recently-used.xbel
2016-07-21 21:41 - 2016-07-21 21:41 - 00116232 _____ C:\Users\Marcell\Downloads\lobster.zip
2016-07-21 21:41 - 2010-07-02 22:09 - 00037632 _____ C:\Users\Marcell\Desktop\Lobster 1.4.otf
2016-07-21 21:39 - 2016-07-21 23:07 - 00521119 _____ C:\Users\Marcell\Downloads\Logo Chocolat.cdr
2016-07-21 21:39 - 2016-07-21 21:39 - 00477040 _____ C:\Users\Marcell\Downloads\Logo Chocolat confeitaria (1).cdr
2016-07-21 21:39 - 2016-07-21 21:39 - 00472572 _____ C:\Users\Marcell\Downloads\Cópia_de_segurança_de_Logo Chocolat.cdr
2016-07-21 21:36 - 2016-07-21 21:36 - 00477040 _____ C:\Users\Marcell\Downloads\Logo Chocolat confeitaria.cdr
2016-07-21 21:33 - 2016-07-21 21:33 - 00000168 _____ C:\Users\Marcell\Downloads\ATT00001.htm
2016-07-21 20:01 - 2016-07-21 20:01 - 00232268 _____ C:\Users\Marcell\Downloads\ADESIVOS-4-0-45X51-EAP480M (1).cdr
2016-07-21 19:59 - 2016-07-21 19:59 - 00232268 _____ C:\Users\Marcell\Downloads\ADESIVOS-4-0-45X51-EAP480M.cdr
2016-07-21 18:53 - 2016-07-21 18:53 - 00170595 _____ C:\Users\Marcell\Downloads\WhatsApp-Image-20160721.jpeg
2016-07-20 20:29 - 2016-07-20 20:29 - 07095514 _____ C:\Users\Marcell\Downloads\Hand-Drawn-Fruit-Set.zip
2016-07-20 20:29 - 2015-12-06 15:23 - 06481922 _____ C:\Users\Marcell\Desktop\33074-NYY03L.eps
2016-07-20 20:20 - 2015-02-18 17:36 - 01009331 _____ C:\Users\Marcell\Desktop\gabatito caneca conica.cdr
2016-07-20 20:19 - 2016-07-20 20:19 - 03098006 _____ C:\Users\Marcell\Downloads\gabarito conica.zip
2016-07-20 07:03 - 2016-07-20 07:03 - 00092582 _____ C:\Users\Marcell\Downloads\WhatsApp-Image-20160719.jpeg
2016-07-19 22:52 - 2016-07-19 22:56 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Tibia
2016-07-19 22:51 - 2016-07-19 22:51 - 00000963 _____ C:\Users\Public\Desktop\Tibia.lnk
2016-07-19 22:51 - 2016-07-19 22:51 - 00000000 ____D C:\Program Files (x86)\Tibia
2016-07-19 22:46 - 2016-07-19 22:47 - 35367939 _____ (CipSoft GmbH ) C:\Users\Marcell\Downloads\tibia1096.exe
2016-07-19 22:24 - 2016-07-19 22:24 - 00001613 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-07-19 22:24 - 2016-07-19 22:24 - 00000000 ____D C:\Riot Games
2016-07-19 22:24 - 2016-07-19 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-07-19 21:49 - 2016-07-19 21:49 - 28120008 _____ (Riot Games) C:\Users\Marcell\Downloads\LeagueofLegends_BR_Installer_2016_05_13.exe
2016-07-19 21:46 - 2016-07-19 21:46 - 03785560 _____ (DLL-Files.com Client ) C:\Users\Marcell\Downloads\clientsetup_d-0.exe
2016-07-19 21:23 - 2016-07-19 21:23 - 00000000 ____D C:\Users\Marcell\AppData\Local\AMD
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\Users\Todos os Usuários\ATI
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\ATI
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\Users\Marcell\AppData\Local\ATI
2016-07-19 21:22 - 2016-07-19 21:22 - 00000000 ____D C:\ProgramData\ATI
2016-07-19 21:19 - 2016-07-19 21:19 - 00000000 ____D C:\Users\Todos os Usuários\AMD
2016-07-19 21:19 - 2016-07-19 21:19 - 00000000 ____D C:\ProgramData\AMD
2016-07-19 12:27 - 2016-07-19 12:27 - 00261888 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys
2016-07-18 22:41 - 2016-07-18 22:41 - 00000000 ____D C:\Program Files (x86)\AMD APP
2016-07-18 22:40 - 2016-07-18 22:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2016-07-18 22:40 - 2012-03-30 11:49 - 00056448 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2016-07-18 22:39 - 2010-02-18 09:18 - 00046136 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox64.sys
2016-07-18 22:38 - 2016-07-18 22:38 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files\GIGABYTE
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files\ATI
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2016-07-18 22:37 - 2016-07-18 22:37 - 00000000 ____D C:\Program Files (x86)\Etron Technology
2016-07-18 22:37 - 2012-10-25 09:01 - 00022680 _____ C:\Windows\system32\Drivers\AppleCharger.sys
2016-07-18 22:37 - 2012-08-07 04:09 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys
2016-07-18 22:37 - 2012-08-07 04:09 - 00065152 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronHub3.sys
2016-07-18 22:37 - 2010-04-06 16:30 - 00031272 _____ C:\Windows\system32\AppleChargerSrv.exe
2016-07-18 22:36 - 2016-07-18 22:40 - 00000000 ____D C:\Program Files\ATI Technologies
2016-07-18 22:36 - 2012-04-10 22:40 - 00082560 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_sata.sys
2016-07-18 22:36 - 2012-04-10 22:40 - 00042624 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_xata.sys
2016-07-18 22:33 - 2016-07-18 22:33 - 00000010 _____ C:\Windows\GSetup.ini
2016-07-18 21:43 - 2016-07-18 21:43 - 00179183 _____ C:\Users\Marcell\Downloads\IMG-20160718-WA0041.jpg.jpeg
2016-07-18 20:57 - 2016-07-18 20:57 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\AVG
2016-07-18 20:56 - 2016-07-30 20:53 - 00000000 ___HD C:\$AVG
2016-07-18 20:56 - 2016-07-18 20:56 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\TuneUp Software
2016-07-18 20:54 - 2016-08-10 20:19 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-07-18 20:54 - 2016-08-10 20:19 - 00000000 ____D C:\ProgramData\MFAData
2016-07-18 20:54 - 2016-07-18 20:54 - 00000000 ____D C:\Users\Marcell\AppData\Local\MFAData
2016-07-18 20:53 - 2016-07-30 20:53 - 00000000 ____D C:\Program Files (x86)\AVG
2016-07-18 20:47 - 2016-07-30 20:54 - 00000000 ____D C:\Users\Marcell\AppData\Local\Avg
2016-07-18 20:47 - 2016-07-30 20:52 - 00000000 ____D C:\Users\Todos os Usuários\Avg
2016-07-18 20:47 - 2016-07-30 20:52 - 00000000 ____D C:\Users\Marcell\AppData\Local\AvgSetupLog
2016-07-18 20:47 - 2016-07-30 20:52 - 00000000 ____D C:\ProgramData\Avg
2016-07-18 20:47 - 2016-07-18 20:47 - 05659291 _____ (Swearware) C:\Users\Marcell\Downloads\ComboFix.exe
2016-07-18 20:47 - 2016-07-18 20:47 - 03143504 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Marcell\Downloads\AVG_Protection_Free_1597.exe
2016-07-18 20:33 - 2016-07-18 20:33 - 00174292 _____ C:\Users\Marcell\Downloads\IMG-20160718-WA0038.jpg.jpeg
2016-07-18 20:30 - 2016-07-18 22:05 - 40812260 _____ C:\Users\Marcell\Downloads\marca_mirra.cdr
2016-07-18 20:30 - 2016-07-18 21:58 - 40806612 _____ C:\Users\Marcell\Downloads\Cópia_de_segurança_de_marca_mirra.cdr
2016-07-17 10:33 - 2016-07-17 10:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01011.Wdf
2016-07-17 10:05 - 2016-07-17 10:06 - 08419099 _____ C:\Users\Marcell\Downloads\Engenheiros do hawai-Novos Horizontes .zip
2016-07-17 08:27 - 2016-07-17 08:27 - 02698564 _____ C:\Users\Marcell\Downloads\Sports-car-and-race-flag-logo.zip
2016-07-17 08:27 - 2014-04-25 16:02 - 04442542 _____ C:\Users\Marcell\Desktop\22.eps
2016-07-15 23:35 - 2016-07-15 23:35 - 00636692 _____ C:\Users\Marcell\Desktop\WB_45x51_4x1_NN_NN_S_CO_ARTEONLINEEXPRESS56_2,0_2000_2419600_2976441.pdf
2016-07-13 21:54 - 2016-07-13 22:01 - 00002112 _____ C:\Users\Marcell\Desktop\rock.txt
2016-07-13 21:12 - 2016-07-13 21:12 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2016-07-13 21:04 - 2016-07-13 21:04 - 00559424 _____ C:\Users\Marcell\Downloads\flux-setup.exe
2016-07-12 22:37 - 2016-07-12 22:37 - 00009647 _____ C:\Users\Marcell\Desktop\Pasta1.xlsx
2016-07-12 21:21 - 2016-07-12 21:21 - 00345524 _____ C:\Users\Marcell\Desktop\AA_v3.rar
2016-07-12 16:10 - 2016-07-12 16:10 - 00298752 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdia.sys
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-08-10 20:57 - 2016-03-27 08:18 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Skype
2016-08-10 20:16 - 2016-03-27 07:49 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-10 20:16 - 2016-03-27 07:49 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-10 20:03 - 2016-06-16 20:44 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2016-08-10 20:03 - 2016-06-16 20:44 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-08-10 20:03 - 2016-06-16 20:44 - 00000000 ____D C:\ProgramData\GbPlugin
2016-08-10 20:03 - 2016-06-16 20:44 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-08-10 20:01 - 2016-06-15 22:43 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-08-10 20:00 - 2016-03-27 09:12 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-08-10 20:00 - 2016-03-27 09:12 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-10 20:00 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-10 00:41 - 2009-07-14 01:45 - 00010128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-10 00:41 - 2009-07-14 01:45 - 00010128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-09 21:04 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-08-09 19:45 - 2016-03-27 07:49 - 00719872 _____ C:\Users\Marcell\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-09 19:44 - 2009-07-14 01:45 - 06790232 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-08 20:24 - 2016-06-20 22:03 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-08 20:24 - 2016-06-20 22:03 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-04 18:59 - 2016-02-08 22:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-02 01:41 - 2016-04-21 22:36 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\uTorrent
2016-08-02 01:41 - 2016-03-27 12:01 - 00000000 ____D C:\Windows\Panther
2016-08-01 18:46 - 2009-07-29 12:49 - 00705798 _____ C:\Windows\system32\prfh0416.dat
2016-08-01 18:46 - 2009-07-29 12:49 - 00147638 _____ C:\Windows\system32\prfc0416.dat
2016-08-01 18:46 - 2009-07-14 02:13 - 01635826 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-29 21:48 - 2016-03-27 07:49 - 00000000 ____D C:\Users\Marcell\AppData\Local\Google
2016-07-29 20:11 - 2016-03-27 07:49 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-29 20:11 - 2016-03-27 07:49 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-25 22:27 - 2016-04-27 22:41 - 00000000 ____D C:\Users\Marcell\Documents\academia
2016-07-21 21:56 - 2016-04-03 08:22 - 00000000 ____D C:\Users\Marcell\AppData\Local\gtk-2.0
2016-07-21 21:56 - 2016-04-03 07:43 - 00000000 ____D C:\Users\Marcell\.gimp-2.8
2016-07-21 21:53 - 2016-03-31 20:17 - 00000000 ____D C:\Users\Marcell\Documents\Corel
2016-07-20 19:59 - 2016-03-27 08:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-20 19:59 - 2016-03-27 08:18 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-07-20 19:59 - 2016-03-27 08:18 - 00000000 ____D C:\ProgramData\Skype
2016-07-19 22:17 - 2016-06-07 08:19 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2016-07-19 22:17 - 2016-05-19 19:52 - 00000000 ____D C:\Users\Todos os Usuários\GlarySoft
2016-07-19 22:17 - 2016-05-19 19:52 - 00000000 ____D C:\ProgramData\GlarySoft
2016-07-19 22:17 - 2016-05-19 19:42 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\GlarySoft
2016-07-19 21:49 - 2016-03-27 08:00 - 00000000 ____D C:\Users\Marcell\AppData\Roaming\Riot Games
2016-07-18 22:37 - 2016-03-27 07:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-07-18 22:35 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-18 22:24 - 2016-07-02 22:12 - 00000000 ____D C:\Users\Marcell\Desktop\Portifólio
2016-07-18 22:24 - 2016-05-21 12:15 - 00000000 ____D C:\Users\Marcell\Documents\Arquivos
2016-07-18 22:24 - 2016-05-21 08:01 - 00000000 ____D C:\Users\Marcell\Documents\back
2016-07-18 22:24 - 2016-05-21 08:00 - 00000000 ___RD C:\Users\Marcell\Google Drive
2016-07-18 22:24 - 2016-05-21 08:00 - 00000000 ____D C:\Users\Marcell\Documents\z antigas aulas
2016-07-13 21:12 - 2016-03-27 07:34 - 00000000 ____D C:\Users\Marcell
2016-07-12 20:08 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Arquivos na raiz de alguns diretórios =======
2016-05-21 11:08 - 2016-05-21 11:08 - 0003584 _____ () C:\Users\Marcell\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-07-21 21:56 - 2016-07-21 21:56 - 0001008 _____ () C:\Users\Marcell\AppData\Local\recently-used.xbel
2016-08-01 08:34 - 2016-08-01 08:35 - 0000000 _____ () C:\Users\Marcell\AppData\Local\{8F79AB38-37BF-4905-B6C6-685C6DAA9D70}
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll
[2016-04-06 07:33] - [2016-05-13 08:08] - 1008640 ____A (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E
C:\Windows\SysWOW64\User32.dll
[2016-05-13 08:11] - [2016-05-13 08:11] - 0833024 ____A (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-08-06 11:13
==================== Fim de FRST.txt ============================