Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17-10-2016
Executado por Viviane (administrador) em CASA (23-10-2016 01:38:30)
Executando a partir de C:\Users\Viviane\Downloads
Perfis Carregados: Viviane (Perfis Disponíveis: Viviane)
Platform: Windows 8.1 Pro (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Pro Tools\MMERefresh.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Validity Sensors, Inc.) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(BitTorrent Inc.) C:\Users\Viviane\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Viviane\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe
(BitTorrent Inc.) C:\Users\Viviane\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-11-12] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2832168 2011-10-01] (Synaptics Incorporated)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2016-03-25] (Avid Technology, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-12] (Valve Corporation)
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\Run: [QGuan00] => c:\programdata\setup_qg00.exe /autorun
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd)
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\MountPoints2: {e18cd2dd-954c-11e6-825c-ac72898c01e4} - "F:\setup.exe"
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\MountPoints2: {e18cd3af-954c-11e6-825c-ac72898c01e4} - "G:\setup.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Nenhum Arquivo
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.25.1
Tcpip\..\Interfaces\{7209DBB9-7A59-49AF-A020-3C0455553CE3}: [DhcpNameServer] 192.168.25.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&guid=c12ccdfa62acaf115d1d33f42e3f166f
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&guid=c12ccdfa62acaf115d1d33f42e3f166f
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-11] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-11] (Oracle Corporation)
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2016-05-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-11] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaHA8ARicheZerEMc6U_fy-QIpK-Mzae03xSove_STPHXtw1JI0lJnAAasSaTM7MGnG-6Got8SXIcdF4puVmFhu1RCGG9cdMmpouENRrlPIrl5jfu5JIDYmzQ58VTeRm1eW7gQyJj0stAGkL0kobv3GUNI-uJVj9rO2l_MA3M1mw,
CHR StartupUrls: Profile 1 -> "hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&guid=c12ccdfa62acaf115d1d33f42e3f166f","hxxp://www.google.com/","hxxps://www.facebook.com/","hxxp://webmail.madeireiratobias.com.br/","hxxp://mail.google.com/"
CHR Profile: C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-10-23]
CHR Extension: (Google Apresentações) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-23]
CHR Extension: (Google Docs) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-23]
CHR Extension: (Google Drive) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-23]
CHR Extension: (YouTube) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-23]
CHR Extension: (Planilhas do Google) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-23]
CHR Extension: (Documentos Google off-line) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-23]
CHR Extension: (AdBlock) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-22]
CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2016-07-23]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-23]
CHR Extension: (Gmail) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-23]
CHR Extension: (Chrome Media Router) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-21]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2016-03-25] (Avid Technology, Inc.) [Arquivo não assinado]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2016-03-25] (Avid Technology, Inc.) [Arquivo não assinado]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-05-30] (Disc Soft Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Arquivo não assinado]
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2016-05-21] () [Arquivo não assinado]
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [35328 2013-10-30] (Validity Sensors, Inc.)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S2 Thevshhostsrv; "C:\Program Files (x86)\Thevsh\Thevshhostsrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-10-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-10-22] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-05-25] ()
S3 RDID1104; C:\Windows\system32\Drivers\rdwm1104.sys [198144 2012-10-23] (Roland Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 blNetFilter; \??\C:\Windows\system32\drivers\blNetFilter.sys [X]
S0 FKXPYNVPCV; System32\Drivers\askProtect64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 01:38 - 2016-10-23 01:39 - 00013332 _____ C:\Users\Viviane\Downloads\FRST.txt
2016-10-23 01:37 - 2016-10-23 01:38 - 00000000 ____D C:\FRST
2016-10-23 01:36 - 2016-10-23 01:36 - 02407424 _____ (Farbar) C:\Users\Viviane\Downloads\FRST64.exe
2016-10-22 21:13 - 2016-10-22 21:13 - 00016224 _____ (Microsoft Corporation) C:\Users\Viviane\Downloads\api-ms-win-crt-runtime-l1-1-0.dll
2016-10-22 21:00 - 2016-10-22 21:00 - 00001562 _____ C:\Users\Viviane\Desktop\Sid Meiers Civilization VI.lnk
2016-10-22 21:00 - 2016-10-22 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization VI
2016-10-22 20:54 - 2016-10-22 21:00 - 00000000 ____D C:\Program Files (x86)\Sid Meiers Civilization VI
2016-10-22 20:52 - 2016-10-22 20:52 - 01005170 _____ C:\Users\Viviane\Downloads\Windows8.1-KB2999226-x64.msu
2016-10-22 20:29 - 2016-10-22 20:29 - 00000000 ____D C:\Users\Viviane\AppData\Local\Disc_Soft_Ltd
2016-10-22 20:19 - 2016-10-22 21:14 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization VI.lnk
2016-10-22 20:19 - 2016-10-22 21:14 - 00001127 _____ C:\Users\Public\Desktop\Sid Meiers Civilization VI.lnk
2016-10-22 20:19 - 2016-10-22 21:14 - 00000000 ____D C:\Program Files\Sid Meiers Civilization VI
2016-10-22 20:18 - 2016-10-22 20:18 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-10-22 20:17 - 2016-10-22 20:19 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\DAEMON Tools Lite
2016-10-22 20:17 - 2016-10-22 20:18 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-10-22 20:17 - 2016-10-22 20:18 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-10-22 20:17 - 2016-10-22 20:17 - 00001785 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-10-22 20:17 - 2016-10-22 20:17 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-10-22 20:17 - 2016-10-22 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-10-22 20:16 - 2016-10-22 20:16 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-10-22 20:16 - 2016-10-22 20:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-10-22 20:15 - 2016-10-22 20:16 - 23518648 _____ (Disc Soft Ltd) C:\Users\Viviane\Downloads\DTLite1040-0190.exe
2016-10-22 20:14 - 2016-10-22 20:14 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Viviane\Downloads\Baixaki_daemon-tools-lite [1].exe
2016-10-22 20:13 - 2016-10-22 20:13 - 01894760 _____ ( ) C:\Users\Viviane\Downloads\Baixaki_daemon-tools-lite.exe
2016-10-22 16:40 - 2016-10-22 18:34 - 00000000 ____D C:\Users\Viviane\Downloads\Sid.Meiers.Civilization.VI.Proper-RELOADED
2016-10-22 16:39 - 2016-10-22 16:39 - 00025583 _____ C:\Users\Viviane\Downloads\Sid.Meiers.Civilization.VI.Proper-RELOADED.torrent
2016-10-22 15:54 - 2016-10-22 17:17 - 00000000 ____D C:\Users\Viviane\Downloads\Sid.Meiers.Civilization.VI-CODEX
2016-10-21 11:40 - 2016-10-21 11:43 - 100637660 _____ C:\Users\Viviane\Downloads\TPM HISTÓRIAS DA LUD.wav
2016-10-20 11:01 - 2016-10-20 11:03 - 133523134 _____ C:\Users\Viviane\Downloads\EXPECTATIVAS_1.wav
2016-10-14 15:44 - 2016-10-14 15:50 - 00000000 ____D C:\Users\Viviane\Downloads\Mastodon Discography 2000-2014
2016-10-14 11:47 - 2016-10-14 11:47 - 00000000 ____D C:\Users\Viviane\AppData\Local\HirezLauncherUI
2016-10-14 11:46 - 2016-10-18 14:07 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2016-10-14 11:46 - 2016-10-14 11:48 - 00000000 ____D C:\Users\Todos os Usuários\Hi-Rez Studios
2016-10-14 11:46 - 2016-10-14 11:48 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2016-10-14 11:46 - 2016-10-14 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2016-10-14 00:32 - 2016-10-14 00:32 - 00000222 _____ C:\Users\Viviane\Desktop\SMITE.url
2016-10-13 10:04 - 2016-10-13 10:10 - 00000000 ____D C:\Users\Viviane\Downloads\The Very Best Of Marvin Gaye - mp3 320kbps
2016-10-13 10:04 - 2016-10-13 10:09 - 00000000 ____D C:\Users\Viviane\Downloads\Soul! - The Very Best Of Motown
2016-10-13 10:04 - 2016-10-13 10:04 - 00018246 _____ C:\Users\Viviane\Downloads\the very best of marvin gaye - mp3 320kbps.torrent
2016-10-13 10:03 - 2016-10-13 10:12 - 00000000 ____D C:\Users\Viviane\Downloads\[Neo-Soul] D'Angelo - Discography 1995-2014 (Jamal The Moroccan)
2016-10-13 10:03 - 2016-10-13 10:03 - 00022735 _____ C:\Users\Viviane\Downloads\MONOVA.ORG [Neo-Soul] D'Angelo - Discography 1995-2014 (Jamal The Moroccan).torrent
2016-10-13 09:55 - 2016-10-13 10:02 - 00000000 ____D C:\Users\Viviane\Downloads\Marvin Gaye – The Very Best Of Marvin Gaye Album 2016
2016-10-13 09:53 - 2016-10-13 09:53 - 00000000 ____D C:\Users\Viviane\Downloads\Tom Jones - The Very Best Of - (2000)-[MP3-320]-TFM]
2016-10-11 18:25 - 2016-10-11 18:32 - 128344084 _____ C:\Users\Viviane\Downloads\PRATICIDADE HISTÓRIAS DA LUD_1.wav
2016-10-06 11:15 - 2016-10-06 11:21 - 119564678 _____ C:\Users\Viviane\Downloads\CIÚMES HISTÓRIAS DA LUD.wav
2016-10-05 19:08 - 2016-09-29 16:21 - 00000000 ____D C:\Users\Viviane\Desktop\Solange - A Seat at the Table
2016-10-05 13:56 - 2016-10-05 14:41 - 132074104 _____ C:\Users\Viviane\Downloads\Solange - A Seat at the Table.zip
2016-10-03 15:34 - 2016-10-03 15:34 - 04358159 _____ C:\Users\Viviane\Downloads\Livro - Psicodiagnóstico - V.pdf
2016-09-29 15:53 - 2016-09-29 15:53 - 19418426 _____ C:\Users\Viviane\Downloads\EMPATIA HISTÓRIAS DA LUD_01 (1).wav
2016-09-29 12:30 - 2016-09-29 12:31 - 19418426 _____ C:\Users\Viviane\Downloads\EMPATIA HISTÓRIAS DA LUD_01.wav
2016-09-22 10:30 - 2016-09-22 10:32 - 65750092 _____ C:\Users\Viviane\Downloads\SER MULHER HISTÓRIAS DA LUD_1.wav
2016-09-21 21:48 - 2016-09-21 21:48 - 00000506 _____ C:\Users\Viviane\Desktop\papagaio.htm
2016-09-15 11:49 - 2016-09-15 11:51 - 75182850 _____ C:\Users\Viviane\Downloads\SACO CHEIO QUEM NÃO TEM.wav
2016-09-09 15:00 - 2016-09-09 15:00 - 00103707 _____ C:\Users\Viviane\Downloads\30 Seconds To Mars - Kings And Queens (guitar pro).gp5
2016-09-08 11:07 - 2016-09-08 11:08 - 56241278 _____ C:\Users\Viviane\Downloads\ENVELHECER COM SAÚDE.wav
2016-09-07 13:44 - 2016-09-07 13:45 - 40083245 _____ C:\Users\Viviane\Downloads\PEQUENOS MOMENTOS.mp4
2016-09-01 12:31 - 2016-09-01 12:32 - 82851064 _____ C:\Users\Viviane\Downloads\SACRIFICIOS-_01.wav
2016-08-29 19:41 - 2016-08-29 20:10 - 00000000 ____D C:\Users\Viviane\Downloads\Metallica - Death Magnetic [Unmastered 2015]
2016-08-29 19:40 - 2016-10-22 15:52 - 00000000 ____D C:\Users\Viviane\AppData\LocalLow\uTorrent
2016-08-25 10:51 - 2016-08-25 10:53 - 62811410 _____ C:\Users\Viviane\Downloads\FALAR DE MAIS.wav
2016-08-23 12:13 - 2016-08-23 12:13 - 00079496 _____ C:\Users\Viviane\Downloads\metallica-the-shortest-straw-68439643.gp3
2016-08-22 17:33 - 2016-08-22 17:53 - 00000000 ____D C:\Users\Viviane\AppData\Local\Battle.net
2016-08-22 17:33 - 2016-08-22 17:33 - 00001156 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\Users\Viviane\AppData\Local\Blizzard Entertainment
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\Users\Todos os Usuários\Blizzard Entertainment
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-08-22 17:32 - 2016-08-22 17:33 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\Battle.net
2016-08-22 17:32 - 2016-08-22 17:33 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-08-22 17:32 - 2016-08-22 17:32 - 00000000 ____D C:\Users\Todos os Usuários\Battle.net
2016-08-22 17:32 - 2016-08-22 17:32 - 00000000 ____D C:\ProgramData\Battle.net
2016-08-22 17:30 - 2016-08-22 17:32 - 03204592 _____ (Blizzard Entertainment) C:\Users\Viviane\Downloads\Hearthstone-Setup.exe
2016-08-22 13:25 - 2005-08-11 21:02 - 00000000 ____D C:\Users\Viviane\Desktop\- Kings of Leon - 2003__Youth_And_Young_Manhood
2016-08-22 13:19 - 2016-08-22 13:20 - 62708193 _____ C:\Users\Viviane\Downloads\euescuto.com.br - Kings of Leon - 2003__Youth_And_Young_Manhood.zip
2016-08-22 12:40 - 2016-08-22 12:40 - 00002459 _____ C:\Users\Viviane\Downloads\pearl-jam-sirens (1).gp5
2016-08-20 15:25 - 2016-08-20 15:25 - 08333740 _____ C:\Users\Viviane\Downloads\WhatsApp Video 2016-08-20 at 14.18.32.mp4
2016-08-20 10:34 - 2016-08-20 10:53 - 00000000 ____D C:\Users\Viviane\Downloads\Metallica Discography @ 320Kbps
2016-08-20 03:01 - 2016-08-20 03:01 - 00002459 _____ C:\Users\Viviane\Downloads\pearl-jam-sirens.gp5
2016-08-19 12:30 - 2016-08-19 12:39 - 00000000 ____D C:\Users\Viviane\Downloads\Criolo_No_Na_Orelha
2016-08-19 12:30 - 2016-08-19 12:31 - 00000000 ____D C:\Users\Viviane\Downloads\Criolo - Convoque Seu Buda
2016-08-18 12:05 - 2016-08-18 12:07 - 67361450 _____ C:\Users\Viviane\Downloads\YOUTUBE (1).wav
2016-08-11 12:50 - 2016-08-11 12:52 - 64882602 _____ C:\Users\Viviane\Downloads\HISTÓRIAS DA LUD 110816_01.wav
2016-08-08 17:09 - 2016-08-08 09:27 - 00000000 ____D C:\Users\Viviane\Desktop\TINS, BENS E TAIS - TIM MAIA E JORGE BEN JOR
2016-08-08 17:06 - 2016-08-08 17:09 - 93651546 _____ C:\Users\Viviane\Downloads\TINS, BENS E TAIS - TIM MAIA E JORGE BEN JOR.rar
2016-08-04 15:41 - 2016-08-04 15:42 - 72295694 _____ C:\Users\Viviane\Downloads\youtube_01.wav
2016-07-29 16:26 - 2016-07-29 16:36 - 00000000 ____D C:\Users\Viviane\Downloads\YES - Highlites Greatest CDRip [Bubanee]
2016-07-29 16:22 - 2016-07-29 16:26 - 00000000 ____D C:\Users\Viviane\Downloads\Genesis - The Best Songs (2016) [MP3~320Kbps]~[Hunter] [FRG]
2016-07-29 12:26 - 2016-07-29 01:13 - 00000000 ____D C:\Users\Viviane\Desktop\ChimpanZés de Gaveta - Absurdos da Mente
2016-07-29 12:11 - 2016-07-29 12:13 - 71727597 _____ C:\Users\Viviane\Downloads\ChimpanZés de Gaveta - Absurdos da Mente.rar
2016-07-28 17:47 - 2016-07-28 17:47 - 00000000 ____D C:\Users\Viviane\AppData\LocalLow\Unity
2016-07-28 17:46 - 2016-07-28 17:46 - 00000000 ____D C:\Users\Viviane\AppData\LocalLow\Fishing Planet LLC
2016-07-28 16:52 - 2016-07-28 16:52 - 00000222 _____ C:\Users\Viviane\Desktop\Fishing Planet.url
2016-07-28 15:02 - 2016-08-04 16:03 - 00000000 ___RD C:\Users\Viviane\Desktop\LUD 04-08
2016-07-28 14:08 - 2016-07-28 14:10 - 131213348 _____ C:\Users\Viviane\Downloads\YOUTUBE.wav
2016-07-25 17:44 - 2016-10-21 16:50 - 00000000 ___RD C:\Users\Viviane\Desktop\Lud
2016-07-25 13:24 - 2016-07-25 16:05 - 00000000 ____D C:\Users\Viviane\Downloads\Clutch
2016-07-25 13:24 - 2016-07-25 13:24 - 00029130 _____ C:\Users\Viviane\Downloads\clutch discography.torrent
2016-07-25 13:06 - 2016-07-25 13:50 - 00000000 ____D C:\Users\Viviane\Downloads\Eminem The Ultimate Best Of Eminem 2014
2016-07-25 13:05 - 2016-07-25 13:06 - 00016568 _____ C:\Users\Viviane\Downloads\eminem the ultimate best of eminem 2014.torrent
2016-07-25 13:03 - 2016-07-25 13:19 - 00000000 ____D C:\Users\Viviane\Downloads\Keziah.Jones.-.Rhythm.Is.Love.(Best.Of).(2004)
2016-07-25 13:03 - 2016-07-25 13:03 - 00023843 _____ C:\Users\Viviane\Downloads\keziah jones rhythm is love best of 2004.torrent
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 01:37 - 2016-05-25 11:28 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\uTorrent
2016-10-23 01:36 - 2016-05-21 19:16 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-23 01:36 - 2016-05-21 19:16 - 00001082 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-23 01:27 - 2016-05-22 09:53 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7CDCC614-5BAE-4CF5-993A-2535E43BBEDE}
2016-10-23 01:13 - 2016-05-25 15:18 - 00000348 _____ C:\Windows\Tasks\PPTAssistantNotifyTask_Viviane.job
2016-10-23 01:10 - 2016-05-25 15:18 - 00000618 _____ C:\Windows\Tasks\PPTAssistantUpdateTask_Viviane.job
2016-10-23 00:41 - 2016-05-22 09:47 - 01797166 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-23 00:41 - 2013-08-31 14:31 - 00774900 _____ C:\Windows\system32\prfh0416.dat
2016-10-23 00:41 - 2013-08-31 14:31 - 00158494 _____ C:\Windows\system32\prfc0416.dat
2016-10-23 00:41 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\Inf
2016-10-22 21:31 - 2016-05-22 09:50 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-64674770-2072951478-2482154030-1001
2016-10-22 21:23 - 2016-05-21 19:03 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-10-22 21:23 - 2016-05-21 19:03 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-22 20:46 - 2016-05-25 15:39 - 00000000 ____D C:\Users\Viviane\AppData\Local\ClassicShell
2016-10-22 11:05 - 2016-05-22 09:59 - 00003758 _____ C:\Windows\System32\Tasks\AutoKMS
2016-10-21 16:50 - 2016-05-25 16:45 - 00000000 ____D C:\Users\Viviane\Documents\Mixcraft Projects
2016-10-20 11:03 - 2016-05-23 17:18 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-19 02:30 - 2016-05-22 09:44 - 00000000 ____D C:\Users\Viviane
2016-10-18 14:07 - 2016-07-11 12:01 - 00000000 ____D C:\Users\Todos os Usuários\PACE
2016-10-18 14:07 - 2016-07-11 12:01 - 00000000 ____D C:\ProgramData\PACE
2016-10-18 14:07 - 2013-08-22 12:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-14 11:48 - 2016-06-27 14:23 - 00000000 ____D C:\Users\Viviane\Documents\My Games
2016-10-14 11:46 - 2016-07-11 11:57 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-14 00:32 - 2016-05-26 00:18 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-10-13 10:10 - 2016-06-07 15:03 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\vlc
2016-10-13 04:57 - 2016-05-30 17:23 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-10-13 04:56 - 2016-05-30 17:22 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-03 20:37 - 2016-05-21 19:19 - 00002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
==================== Arquivos na raiz de alguns diretórios =======
2016-05-25 15:59 - 2016-05-25 15:59 - 3072609 _____ () C:\Program Files\Common Files\pyom1t4p.exe
2016-05-25 14:55 - 2016-05-25 14:55 - 6859776 _____ () C:\Users\Viviane\AppData\Roaming\agent.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 2279413 _____ () C:\Users\Viviane\AppData\Roaming\Bighome.bin
2016-07-12 16:32 - 2016-07-12 16:33 - 0285616 _____ () C:\Users\Viviane\AppData\Roaming\DXDriver_Install.log
2016-05-25 14:54 - 2016-05-25 14:54 - 0128512 _____ () C:\Users\Viviane\AppData\Roaming\Installer.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 0018432 _____ () C:\Users\Viviane\AppData\Roaming\Main.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 0041472 _____ () C:\Users\Viviane\AppData\Local\Jobtechi.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 0000187 _____ () C:\Users\Viviane\AppData\Local\Jobtechi.exe.config
Alguns arquivos em TEMP:
====================
C:\Users\Viviane\AppData\Local\Temp\23333.exe
C:\Users\Viviane\AppData\Local\Temp\Browser_V5.6.12150.8_f_4730_(Build1604251144).exe
C:\Users\Viviane\AppData\Local\Temp\InstallHelper.exe
C:\Users\Viviane\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Viviane\AppData\Local\Temp\Setup__2140_il21.exe
C:\Users\Viviane\AppData\Local\Temp\uninst.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-10-15 17:47
==================== Fim de FRST.txt ============================
Executado por Viviane (administrador) em CASA (23-10-2016 01:38:30)
Executando a partir de C:\Users\Viviane\Downloads
Perfis Carregados: Viviane (Perfis Disponíveis: Viviane)
Platform: Windows 8.1 Pro (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Pro Tools\MMERefresh.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Validity Sensors, Inc.) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(BitTorrent Inc.) C:\Users\Viviane\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Viviane\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe
(BitTorrent Inc.) C:\Users\Viviane\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-11-12] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2832168 2011-10-01] (Synaptics Incorporated)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2016-03-25] (Avid Technology, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-12] (Valve Corporation)
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\Run: [QGuan00] => c:\programdata\setup_qg00.exe /autorun
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd)
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\MountPoints2: {e18cd2dd-954c-11e6-825c-ac72898c01e4} - "F:\setup.exe"
HKU\S-1-5-21-64674770-2072951478-2482154030-1001\...\MountPoints2: {e18cd3af-954c-11e6-825c-ac72898c01e4} - "G:\setup.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Nenhum Arquivo
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.25.1
Tcpip\..\Interfaces\{7209DBB9-7A59-49AF-A020-3C0455553CE3}: [DhcpNameServer] 192.168.25.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&guid=c12ccdfa62acaf115d1d33f42e3f166f
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&guid=c12ccdfa62acaf115d1d33f42e3f166f
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-11] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-11] (Oracle Corporation)
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2016-05-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-11] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaHA8ARicheZerEMc6U_fy-QIpK-Mzae03xSove_STPHXtw1JI0lJnAAasSaTM7MGnG-6Got8SXIcdF4puVmFhu1RCGG9cdMmpouENRrlPIrl5jfu5JIDYmzQ58VTeRm1eW7gQyJj0stAGkL0kobv3GUNI-uJVj9rO2l_MA3M1mw,
CHR StartupUrls: Profile 1 -> "hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&guid=c12ccdfa62acaf115d1d33f42e3f166f","hxxp://www.google.com/","hxxps://www.facebook.com/","hxxp://webmail.madeireiratobias.com.br/","hxxp://mail.google.com/"
CHR Profile: C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-10-23]
CHR Extension: (Google Apresentações) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-23]
CHR Extension: (Google Docs) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-23]
CHR Extension: (Google Drive) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-23]
CHR Extension: (YouTube) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-23]
CHR Extension: (Planilhas do Google) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-23]
CHR Extension: (Documentos Google off-line) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-23]
CHR Extension: (AdBlock) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-10-22]
CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2016-07-23]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-23]
CHR Extension: (Gmail) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-23]
CHR Extension: (Chrome Media Router) - C:\Users\Viviane\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-21]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2016-03-25] (Avid Technology, Inc.) [Arquivo não assinado]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2016-03-25] (Avid Technology, Inc.) [Arquivo não assinado]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-05-30] (Disc Soft Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Arquivo não assinado]
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2016-05-21] () [Arquivo não assinado]
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [35328 2013-10-30] (Validity Sensors, Inc.)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S2 Thevshhostsrv; "C:\Program Files (x86)\Thevsh\Thevshhostsrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-10-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-10-22] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-05-25] ()
S3 RDID1104; C:\Windows\system32\Drivers\rdwm1104.sys [198144 2012-10-23] (Roland Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 blNetFilter; \??\C:\Windows\system32\drivers\blNetFilter.sys [X]
S0 FKXPYNVPCV; System32\Drivers\askProtect64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 01:38 - 2016-10-23 01:39 - 00013332 _____ C:\Users\Viviane\Downloads\FRST.txt
2016-10-23 01:37 - 2016-10-23 01:38 - 00000000 ____D C:\FRST
2016-10-23 01:36 - 2016-10-23 01:36 - 02407424 _____ (Farbar) C:\Users\Viviane\Downloads\FRST64.exe
2016-10-22 21:13 - 2016-10-22 21:13 - 00016224 _____ (Microsoft Corporation) C:\Users\Viviane\Downloads\api-ms-win-crt-runtime-l1-1-0.dll
2016-10-22 21:00 - 2016-10-22 21:00 - 00001562 _____ C:\Users\Viviane\Desktop\Sid Meiers Civilization VI.lnk
2016-10-22 21:00 - 2016-10-22 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization VI
2016-10-22 20:54 - 2016-10-22 21:00 - 00000000 ____D C:\Program Files (x86)\Sid Meiers Civilization VI
2016-10-22 20:52 - 2016-10-22 20:52 - 01005170 _____ C:\Users\Viviane\Downloads\Windows8.1-KB2999226-x64.msu
2016-10-22 20:29 - 2016-10-22 20:29 - 00000000 ____D C:\Users\Viviane\AppData\Local\Disc_Soft_Ltd
2016-10-22 20:19 - 2016-10-22 21:14 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization VI.lnk
2016-10-22 20:19 - 2016-10-22 21:14 - 00001127 _____ C:\Users\Public\Desktop\Sid Meiers Civilization VI.lnk
2016-10-22 20:19 - 2016-10-22 21:14 - 00000000 ____D C:\Program Files\Sid Meiers Civilization VI
2016-10-22 20:18 - 2016-10-22 20:18 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-10-22 20:17 - 2016-10-22 20:19 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\DAEMON Tools Lite
2016-10-22 20:17 - 2016-10-22 20:18 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-10-22 20:17 - 2016-10-22 20:18 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-10-22 20:17 - 2016-10-22 20:17 - 00001785 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-10-22 20:17 - 2016-10-22 20:17 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-10-22 20:17 - 2016-10-22 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-10-22 20:16 - 2016-10-22 20:16 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-10-22 20:16 - 2016-10-22 20:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-10-22 20:15 - 2016-10-22 20:16 - 23518648 _____ (Disc Soft Ltd) C:\Users\Viviane\Downloads\DTLite1040-0190.exe
2016-10-22 20:14 - 2016-10-22 20:14 - 00692072 _____ (Disc Soft Ltd.) C:\Users\Viviane\Downloads\Baixaki_daemon-tools-lite [1].exe
2016-10-22 20:13 - 2016-10-22 20:13 - 01894760 _____ ( ) C:\Users\Viviane\Downloads\Baixaki_daemon-tools-lite.exe
2016-10-22 16:40 - 2016-10-22 18:34 - 00000000 ____D C:\Users\Viviane\Downloads\Sid.Meiers.Civilization.VI.Proper-RELOADED
2016-10-22 16:39 - 2016-10-22 16:39 - 00025583 _____ C:\Users\Viviane\Downloads\Sid.Meiers.Civilization.VI.Proper-RELOADED.torrent
2016-10-22 15:54 - 2016-10-22 17:17 - 00000000 ____D C:\Users\Viviane\Downloads\Sid.Meiers.Civilization.VI-CODEX
2016-10-21 11:40 - 2016-10-21 11:43 - 100637660 _____ C:\Users\Viviane\Downloads\TPM HISTÓRIAS DA LUD.wav
2016-10-20 11:01 - 2016-10-20 11:03 - 133523134 _____ C:\Users\Viviane\Downloads\EXPECTATIVAS_1.wav
2016-10-14 15:44 - 2016-10-14 15:50 - 00000000 ____D C:\Users\Viviane\Downloads\Mastodon Discography 2000-2014
2016-10-14 11:47 - 2016-10-14 11:47 - 00000000 ____D C:\Users\Viviane\AppData\Local\HirezLauncherUI
2016-10-14 11:46 - 2016-10-18 14:07 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2016-10-14 11:46 - 2016-10-14 11:48 - 00000000 ____D C:\Users\Todos os Usuários\Hi-Rez Studios
2016-10-14 11:46 - 2016-10-14 11:48 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2016-10-14 11:46 - 2016-10-14 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2016-10-14 00:32 - 2016-10-14 00:32 - 00000222 _____ C:\Users\Viviane\Desktop\SMITE.url
2016-10-13 10:04 - 2016-10-13 10:10 - 00000000 ____D C:\Users\Viviane\Downloads\The Very Best Of Marvin Gaye - mp3 320kbps
2016-10-13 10:04 - 2016-10-13 10:09 - 00000000 ____D C:\Users\Viviane\Downloads\Soul! - The Very Best Of Motown
2016-10-13 10:04 - 2016-10-13 10:04 - 00018246 _____ C:\Users\Viviane\Downloads\the very best of marvin gaye - mp3 320kbps.torrent
2016-10-13 10:03 - 2016-10-13 10:12 - 00000000 ____D C:\Users\Viviane\Downloads\[Neo-Soul] D'Angelo - Discography 1995-2014 (Jamal The Moroccan)
2016-10-13 10:03 - 2016-10-13 10:03 - 00022735 _____ C:\Users\Viviane\Downloads\MONOVA.ORG [Neo-Soul] D'Angelo - Discography 1995-2014 (Jamal The Moroccan).torrent
2016-10-13 09:55 - 2016-10-13 10:02 - 00000000 ____D C:\Users\Viviane\Downloads\Marvin Gaye – The Very Best Of Marvin Gaye Album 2016
2016-10-13 09:53 - 2016-10-13 09:53 - 00000000 ____D C:\Users\Viviane\Downloads\Tom Jones - The Very Best Of - (2000)-[MP3-320]-TFM]
2016-10-11 18:25 - 2016-10-11 18:32 - 128344084 _____ C:\Users\Viviane\Downloads\PRATICIDADE HISTÓRIAS DA LUD_1.wav
2016-10-06 11:15 - 2016-10-06 11:21 - 119564678 _____ C:\Users\Viviane\Downloads\CIÚMES HISTÓRIAS DA LUD.wav
2016-10-05 19:08 - 2016-09-29 16:21 - 00000000 ____D C:\Users\Viviane\Desktop\Solange - A Seat at the Table
2016-10-05 13:56 - 2016-10-05 14:41 - 132074104 _____ C:\Users\Viviane\Downloads\Solange - A Seat at the Table.zip
2016-10-03 15:34 - 2016-10-03 15:34 - 04358159 _____ C:\Users\Viviane\Downloads\Livro - Psicodiagnóstico - V.pdf
2016-09-29 15:53 - 2016-09-29 15:53 - 19418426 _____ C:\Users\Viviane\Downloads\EMPATIA HISTÓRIAS DA LUD_01 (1).wav
2016-09-29 12:30 - 2016-09-29 12:31 - 19418426 _____ C:\Users\Viviane\Downloads\EMPATIA HISTÓRIAS DA LUD_01.wav
2016-09-22 10:30 - 2016-09-22 10:32 - 65750092 _____ C:\Users\Viviane\Downloads\SER MULHER HISTÓRIAS DA LUD_1.wav
2016-09-21 21:48 - 2016-09-21 21:48 - 00000506 _____ C:\Users\Viviane\Desktop\papagaio.htm
2016-09-15 11:49 - 2016-09-15 11:51 - 75182850 _____ C:\Users\Viviane\Downloads\SACO CHEIO QUEM NÃO TEM.wav
2016-09-09 15:00 - 2016-09-09 15:00 - 00103707 _____ C:\Users\Viviane\Downloads\30 Seconds To Mars - Kings And Queens (guitar pro).gp5
2016-09-08 11:07 - 2016-09-08 11:08 - 56241278 _____ C:\Users\Viviane\Downloads\ENVELHECER COM SAÚDE.wav
2016-09-07 13:44 - 2016-09-07 13:45 - 40083245 _____ C:\Users\Viviane\Downloads\PEQUENOS MOMENTOS.mp4
2016-09-01 12:31 - 2016-09-01 12:32 - 82851064 _____ C:\Users\Viviane\Downloads\SACRIFICIOS-_01.wav
2016-08-29 19:41 - 2016-08-29 20:10 - 00000000 ____D C:\Users\Viviane\Downloads\Metallica - Death Magnetic [Unmastered 2015]
2016-08-29 19:40 - 2016-10-22 15:52 - 00000000 ____D C:\Users\Viviane\AppData\LocalLow\uTorrent
2016-08-25 10:51 - 2016-08-25 10:53 - 62811410 _____ C:\Users\Viviane\Downloads\FALAR DE MAIS.wav
2016-08-23 12:13 - 2016-08-23 12:13 - 00079496 _____ C:\Users\Viviane\Downloads\metallica-the-shortest-straw-68439643.gp3
2016-08-22 17:33 - 2016-08-22 17:53 - 00000000 ____D C:\Users\Viviane\AppData\Local\Battle.net
2016-08-22 17:33 - 2016-08-22 17:33 - 00001156 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\Users\Viviane\AppData\Local\Blizzard Entertainment
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\Users\Todos os Usuários\Blizzard Entertainment
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-08-22 17:33 - 2016-08-22 17:33 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-08-22 17:32 - 2016-08-22 17:33 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\Battle.net
2016-08-22 17:32 - 2016-08-22 17:33 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-08-22 17:32 - 2016-08-22 17:32 - 00000000 ____D C:\Users\Todos os Usuários\Battle.net
2016-08-22 17:32 - 2016-08-22 17:32 - 00000000 ____D C:\ProgramData\Battle.net
2016-08-22 17:30 - 2016-08-22 17:32 - 03204592 _____ (Blizzard Entertainment) C:\Users\Viviane\Downloads\Hearthstone-Setup.exe
2016-08-22 13:25 - 2005-08-11 21:02 - 00000000 ____D C:\Users\Viviane\Desktop\- Kings of Leon - 2003__Youth_And_Young_Manhood
2016-08-22 13:19 - 2016-08-22 13:20 - 62708193 _____ C:\Users\Viviane\Downloads\euescuto.com.br - Kings of Leon - 2003__Youth_And_Young_Manhood.zip
2016-08-22 12:40 - 2016-08-22 12:40 - 00002459 _____ C:\Users\Viviane\Downloads\pearl-jam-sirens (1).gp5
2016-08-20 15:25 - 2016-08-20 15:25 - 08333740 _____ C:\Users\Viviane\Downloads\WhatsApp Video 2016-08-20 at 14.18.32.mp4
2016-08-20 10:34 - 2016-08-20 10:53 - 00000000 ____D C:\Users\Viviane\Downloads\Metallica Discography @ 320Kbps
2016-08-20 03:01 - 2016-08-20 03:01 - 00002459 _____ C:\Users\Viviane\Downloads\pearl-jam-sirens.gp5
2016-08-19 12:30 - 2016-08-19 12:39 - 00000000 ____D C:\Users\Viviane\Downloads\Criolo_No_Na_Orelha
2016-08-19 12:30 - 2016-08-19 12:31 - 00000000 ____D C:\Users\Viviane\Downloads\Criolo - Convoque Seu Buda
2016-08-18 12:05 - 2016-08-18 12:07 - 67361450 _____ C:\Users\Viviane\Downloads\YOUTUBE (1).wav
2016-08-11 12:50 - 2016-08-11 12:52 - 64882602 _____ C:\Users\Viviane\Downloads\HISTÓRIAS DA LUD 110816_01.wav
2016-08-08 17:09 - 2016-08-08 09:27 - 00000000 ____D C:\Users\Viviane\Desktop\TINS, BENS E TAIS - TIM MAIA E JORGE BEN JOR
2016-08-08 17:06 - 2016-08-08 17:09 - 93651546 _____ C:\Users\Viviane\Downloads\TINS, BENS E TAIS - TIM MAIA E JORGE BEN JOR.rar
2016-08-04 15:41 - 2016-08-04 15:42 - 72295694 _____ C:\Users\Viviane\Downloads\youtube_01.wav
2016-07-29 16:26 - 2016-07-29 16:36 - 00000000 ____D C:\Users\Viviane\Downloads\YES - Highlites Greatest CDRip [Bubanee]
2016-07-29 16:22 - 2016-07-29 16:26 - 00000000 ____D C:\Users\Viviane\Downloads\Genesis - The Best Songs (2016) [MP3~320Kbps]~[Hunter] [FRG]
2016-07-29 12:26 - 2016-07-29 01:13 - 00000000 ____D C:\Users\Viviane\Desktop\ChimpanZés de Gaveta - Absurdos da Mente
2016-07-29 12:11 - 2016-07-29 12:13 - 71727597 _____ C:\Users\Viviane\Downloads\ChimpanZés de Gaveta - Absurdos da Mente.rar
2016-07-28 17:47 - 2016-07-28 17:47 - 00000000 ____D C:\Users\Viviane\AppData\LocalLow\Unity
2016-07-28 17:46 - 2016-07-28 17:46 - 00000000 ____D C:\Users\Viviane\AppData\LocalLow\Fishing Planet LLC
2016-07-28 16:52 - 2016-07-28 16:52 - 00000222 _____ C:\Users\Viviane\Desktop\Fishing Planet.url
2016-07-28 15:02 - 2016-08-04 16:03 - 00000000 ___RD C:\Users\Viviane\Desktop\LUD 04-08
2016-07-28 14:08 - 2016-07-28 14:10 - 131213348 _____ C:\Users\Viviane\Downloads\YOUTUBE.wav
2016-07-25 17:44 - 2016-10-21 16:50 - 00000000 ___RD C:\Users\Viviane\Desktop\Lud
2016-07-25 13:24 - 2016-07-25 16:05 - 00000000 ____D C:\Users\Viviane\Downloads\Clutch
2016-07-25 13:24 - 2016-07-25 13:24 - 00029130 _____ C:\Users\Viviane\Downloads\clutch discography.torrent
2016-07-25 13:06 - 2016-07-25 13:50 - 00000000 ____D C:\Users\Viviane\Downloads\Eminem The Ultimate Best Of Eminem 2014
2016-07-25 13:05 - 2016-07-25 13:06 - 00016568 _____ C:\Users\Viviane\Downloads\eminem the ultimate best of eminem 2014.torrent
2016-07-25 13:03 - 2016-07-25 13:19 - 00000000 ____D C:\Users\Viviane\Downloads\Keziah.Jones.-.Rhythm.Is.Love.(Best.Of).(2004)
2016-07-25 13:03 - 2016-07-25 13:03 - 00023843 _____ C:\Users\Viviane\Downloads\keziah jones rhythm is love best of 2004.torrent
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-10-23 01:37 - 2016-05-25 11:28 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\uTorrent
2016-10-23 01:36 - 2016-05-21 19:16 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-23 01:36 - 2016-05-21 19:16 - 00001082 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-23 01:27 - 2016-05-22 09:53 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7CDCC614-5BAE-4CF5-993A-2535E43BBEDE}
2016-10-23 01:13 - 2016-05-25 15:18 - 00000348 _____ C:\Windows\Tasks\PPTAssistantNotifyTask_Viviane.job
2016-10-23 01:10 - 2016-05-25 15:18 - 00000618 _____ C:\Windows\Tasks\PPTAssistantUpdateTask_Viviane.job
2016-10-23 00:41 - 2016-05-22 09:47 - 01797166 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-23 00:41 - 2013-08-31 14:31 - 00774900 _____ C:\Windows\system32\prfh0416.dat
2016-10-23 00:41 - 2013-08-31 14:31 - 00158494 _____ C:\Windows\system32\prfc0416.dat
2016-10-23 00:41 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\Inf
2016-10-22 21:31 - 2016-05-22 09:50 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-64674770-2072951478-2482154030-1001
2016-10-22 21:23 - 2016-05-21 19:03 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-10-22 21:23 - 2016-05-21 19:03 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-22 20:46 - 2016-05-25 15:39 - 00000000 ____D C:\Users\Viviane\AppData\Local\ClassicShell
2016-10-22 11:05 - 2016-05-22 09:59 - 00003758 _____ C:\Windows\System32\Tasks\AutoKMS
2016-10-21 16:50 - 2016-05-25 16:45 - 00000000 ____D C:\Users\Viviane\Documents\Mixcraft Projects
2016-10-20 11:03 - 2016-05-23 17:18 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-19 02:30 - 2016-05-22 09:44 - 00000000 ____D C:\Users\Viviane
2016-10-18 14:07 - 2016-07-11 12:01 - 00000000 ____D C:\Users\Todos os Usuários\PACE
2016-10-18 14:07 - 2016-07-11 12:01 - 00000000 ____D C:\ProgramData\PACE
2016-10-18 14:07 - 2013-08-22 12:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-14 11:48 - 2016-06-27 14:23 - 00000000 ____D C:\Users\Viviane\Documents\My Games
2016-10-14 11:46 - 2016-07-11 11:57 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-14 00:32 - 2016-05-26 00:18 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-10-13 10:10 - 2016-06-07 15:03 - 00000000 ____D C:\Users\Viviane\AppData\Roaming\vlc
2016-10-13 04:57 - 2016-05-30 17:23 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-10-13 04:56 - 2016-05-30 17:22 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-03 20:37 - 2016-05-21 19:19 - 00002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
==================== Arquivos na raiz de alguns diretórios =======
2016-05-25 15:59 - 2016-05-25 15:59 - 3072609 _____ () C:\Program Files\Common Files\pyom1t4p.exe
2016-05-25 14:55 - 2016-05-25 14:55 - 6859776 _____ () C:\Users\Viviane\AppData\Roaming\agent.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 2279413 _____ () C:\Users\Viviane\AppData\Roaming\Bighome.bin
2016-07-12 16:32 - 2016-07-12 16:33 - 0285616 _____ () C:\Users\Viviane\AppData\Roaming\DXDriver_Install.log
2016-05-25 14:54 - 2016-05-25 14:54 - 0128512 _____ () C:\Users\Viviane\AppData\Roaming\Installer.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 0018432 _____ () C:\Users\Viviane\AppData\Roaming\Main.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 0041472 _____ () C:\Users\Viviane\AppData\Local\Jobtechi.dat
2016-05-25 14:55 - 2016-05-25 14:55 - 0000187 _____ () C:\Users\Viviane\AppData\Local\Jobtechi.exe.config
Alguns arquivos em TEMP:
====================
C:\Users\Viviane\AppData\Local\Temp\23333.exe
C:\Users\Viviane\AppData\Local\Temp\Browser_V5.6.12150.8_f_4730_(Build1604251144).exe
C:\Users\Viviane\AppData\Local\Temp\InstallHelper.exe
C:\Users\Viviane\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Viviane\AppData\Local\Temp\Setup__2140_il21.exe
C:\Users\Viviane\AppData\Local\Temp\uninst.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-10-15 17:47
==================== Fim de FRST.txt ============================