Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 07-12-2016
Executado por Caio Augusto (ATENÇÃO: O usuário não é o administrador) em CAIOSINGER-PC (13-12-2016 18:01:00)
Executando a partir de C:\Users\Caio Augusto\Documents
Perfis Carregados: Rosangela & Caio Augusto (Perfis Disponíveis: Rosangela & Caio Augusto & MARIA CLARA)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
Falha ao acessar processo -> smss.exe
Falha ao acessar processo -> csrss.exe
Falha ao acessar processo -> wininit.exe
Falha ao acessar processo -> csrss.exe
Falha ao acessar processo -> services.exe
Falha ao acessar processo -> lsass.exe
Falha ao acessar processo -> lsm.exe
Falha ao acessar processo -> winlogon.exe
Falha ao acessar processo -> svchost.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> atiesrxx.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> stacsv.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> atieclxx.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> AvastSvc.exe
Falha ao acessar processo -> wlanext.exe
Falha ao acessar processo -> conhost.exe
Falha ao acessar processo -> spoolsv.exe
Falha ao acessar processo -> taskeng.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> Fuel.Service.exe
Falha ao acessar processo -> PresentationFontCache.exe
Falha ao acessar processo -> IMGUpdater.exe
Falha ao acessar processo -> Umbrella285.exe
Falha ao acessar processo -> netservice.exe
Falha ao acessar processo -> privoxy.exe
Falha ao acessar processo -> SkypeUpdateEx.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> TeamViewer_Service.exe
Falha ao acessar processo -> CalendarServ.exe
Falha ao acessar processo -> WinNetSvc.exe
Falha ao acessar processo -> XBLive.exe
Falha ao acessar processo -> WmiPrvSE.exe
Falha ao acessar processo -> DropboxUpdate.exe
() C:\Program Files\CalendarTool\2.0.0.11380\calendar.exe
Falha ao acessar processo -> AvastVBoxSVC.exe
Falha ao acessar processo -> GoogleUpdate.exe
() C:\Program Files\ToolsUpdatePlatform\UpdatePlatform.exe
() C:\Program Files\ToolsUpdatePlatform\UpdatePlatform.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> svchost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Computer, Inc.) C:\Program Files\QuickTime\qttask.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\uTorrent.exe
Falha ao acessar processo -> SearchIndexer.exe
(CyberLink) C:\Program Files\CyberLink\YouCam\YCMMirage.exe
Falha ao acessar processo -> TrustedInstaller.exe
Falha ao acessar processo -> svchost.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(The Phone Support) C:\Program Files\The Phone Support Dock\TPSDock.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
Falha ao acessar processo -> SearchProtocolHost.exe
Falha ao acessar processo -> mscorsvw.exe
Falha ao acessar processo -> WmiPrvSE.exe
Falha ao acessar processo -> sppsvc.exe
Falha ao acessar processo -> wmpnetwk.exe
Falha ao acessar processo -> WUDFHost.exe
Falha ao acessar processo -> SearchFilterHost.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2274600 2011-06-09] (Synaptics Incorporated)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [77824 2013-12-09] (Apple Computer, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6108752 2016-02-06] (AVAST Software)
HKLM\...\Run: [3D BubbleSound] => "C:\Program Files\BubbleSound\3D BubbleSound.exe"
HKLM\...\Run: [rec_br_70] => [X]
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [23889496 2016-08-23] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
Winlogon\Notify\ GbPluginUni: C:\Program Files\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Run: [BitTorrent] => "C:\Users\Caio Augusto\Downloads\bittorrent.exe" /MINIMIZED
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Run: [GoogleChromeAutoLaunch_FC8A13FF17165A6A23CB89E974CF829F] => C:\Program Files\Google\Chrome\Application\chrome.exe [961352 2016-08-02] (Google Inc.)
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Run: [uTorrent] => C:\Users\Caio Augusto\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-07-19] (BitTorrent Inc.)
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\MountPoints2: {d9eb5391-2cad-11e4-9711-d2ce7b4b399a} - E:\Startme.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-07-25] (Microsoft Corporation)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-07-23] (AVAST Software)
GroupPolicy: Restrição - Chrome <======= ATENÇÃO
GroupPolicy\User: Restrição ? <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Winsock: Catalog9 01 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 02 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 03 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 04 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 15 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Tcpip\..\Interfaces\{230830C1-4598-439C-9360-CB017E5F264D}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=6ee12b8fa4c2489c528f9e98dc628573
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.123rede.com?oem=cubev3&uid=110201PD3C08FYFNT46J_HitachiHTS545032B9A300&tm=1439244960
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
HKU\S-1-5-21-582323385-897571192-2639108468-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=6ee12b8fa4c2489c528f9e98dc628573
URLSearchHook: [S-1-5-21-582323385-897571192-2639108468-1002] ATENÇÃO => A URLSearchHook Padrão está ausente
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1Qzu0A0CzztCtCtByDyDtC0A0FyDzz0A0DyEtN0D0Tzu0CyCyCyEtN1L2XzutBtFtBtFyDtFtCtDyBtDtN1L1Czu1L1C1H1B1QtCtDtA&cr=807731868&ir=
SearchScopes: HKLM -> {2F1C6392-7EF2-504A-28D9-5FB6CCF7980B} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=BR&userid=164fade9-b1ee-b43e-63b8-143226d0474f&searchtype=ds&q={searchTerms}&installDate=24/10/2013
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
SearchScopes: HKLM -> {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://search.iminent.com/?appId=C9A9ADDB-3BD1-40C8-ACD9-2DF999F6D173&ref=toolbox&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://search.iminent.com/?appId=C9A9ADDB-3BD1-40C8-ACD9-2DF999F6D173&ref=toolbox&q={searchTerms}
SearchScopes: HKU\S-1-5-21-582323385-897571192-2639108468-1006 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
BHO: Sem Nome -> {10AD2C61-0898-4348-8600-14A342F22AC3} -> Nenhum Arquivo
BHO: Sem Nome -> {11111111-1111-1111-1111-110411411158} -> Nenhum Arquivo
BHO: Sem Nome -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-12-12] (Oracle Corporation)
BHO: Sem Nome -> {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> Nenhum Arquivo
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-23] (AVAST Software)
BHO: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files\Iminent\Minibar.InternetExplorer.BHOx86.dll [2015-06-10] (SIEN)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\Program Files\GbPlugin\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO: SecureWebBHO Class -> {D3C24E2B-C820-4492-9B69-11BF7163F998} -> C:\Program Files\Safesoft Protector\jswie.dll [2015-08-10] (SecureSoft)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-12-12] (Oracle Corporation)
BHO: Sem Nome -> {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} -> Nenhum Arquivo
Toolbar: HKLM - Sem Nome - {ae07101b-46d4-4a98-af68-0333ea26e113} - Nenhum Arquivo
Toolbar: HKLM - Sem Nome - {3004627E-F8E9-4E8B-909D-316753CBA923} - Nenhum Arquivo
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-19] [não assinado]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-12-12] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-12-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-12-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://search.iminent.com/__PARAM__
CHR DefaultSearchURL: Default -> hxxp://search.iminent.com/?ref=toolbox&q={searchTerms}
CHR DefaultSearchKeyword: Default -> search.iminent.com
CHR Profile: C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default [2016-12-13]
CHR Extension: (Filmes HD V2) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aelfalhgfcioeimlihanganmfdbfepkd [2016-02-12]
CHR Extension: (avast! Online Security) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-08]
CHR Extension: (Sem Nome) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdnadicfhkbpdafdildanpbjapjlmkab [2016-02-08]
CHR Extension: (Search The Web) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdkokpcldhneihjdhigfjmoeojkdcbmg [2016-02-08]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-09]
CHR Extension: (Iminent NewTab) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nociobghckdhokecfeajdpimjeapnopn [2016-02-08]
CHR Extension: (Iminent Emoticons) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\olghjjajidfdflkafeekiojnfmiolccp [2016-02-09]
CHR HKLM\...\Chrome\Extension: [adpeheiliennogfclcgmchdfdmafjegc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccncljhbalbbkkfgopogabimepmfkmff] - C:\Program Files\BatBrowse\ccncljhbalbbkkfgopogabimepmfkmff.crx
CHR HKLM\...\Chrome\Extension: [cekcjpgehmohobmdiikfnopibipmgnml] - C:\Users\Rosangela\AppData\Local\Google\Chrome\User Data\Default\Extensions\
CHR HKLM\...\Chrome\Extension: [ehhlaekjfiiojlddgndcnefflngfmhen] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-23]
CHR HKLM\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Rosangela\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM\...\Chrome\Extension: [jdkokpcldhneihjdhigfjmoeojkdcbmg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nociobghckdhokecfeajdpimjeapnopn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ogfjmhfnldnajmfaofeiaepghjenbgjo] - C:\Users\Rosangela\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx
CHR HKLM\...\Chrome\Extension: [olghjjajidfdflkafeekiojnfmiolccp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pbpjplgmaeigbnpadeajipebdlihpcfn] - C:\Program Files\BatBrowse\pbpjplgmaeigbnpadeajipebdlihpcfn.crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2011-11-09] (Advanced Micro Devices, Inc.) [Arquivo não assinado]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-23] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-07-23] (Avast Software)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-07] (Dropbox, Inc.)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [546104 2014-09-29] (GAS Tecnologia)
R2 GlobalUpdater; C:\Program Files\Common Files\IMGUpdater\IMGUpdater.exe [378152 2016-01-25] (SIEN S.A.)
R2 IMService; C:\Program Files\Common Files\Umbrella\Umbrella285.exe [3808408 2016-01-25] (Iminent)
R2 lmhosts; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
S3 PCAppStoreSvc_{PCAppStore_4.0.6.5038}; C:\Program Files\Baidu Security\PC App Store\4.0.6.5038\PCAppStoreSvc.exe [575520 2014-03-05] (Baidu Inc.)
R2 PrivoxyService; C:\Program Files\Safesoft Protector\privoxy.exe [371200 2015-08-10] (The Privoxy team - www.privoxy.org) [Arquivo não assinado] <==== ATENÇÃO
R2 SkypeUpdateEx; C:\Program Files\SkypeUpdateEx\SkypeUpdateEx.exe [172464 2016-06-07] (skype.cog.cc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [282709 2011-05-27] (IDT, Inc.)
R2 TheCalendarService; C:\Program Files\CalendarTool\2.0.0.11380\CalendarServ.exe [153200 2016-05-19] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
R2 XBox; C:\Program Files\XBox\XBLive.exe [4992952 2016-05-25] (Microsoft Corporation) <==== ATENÇÃO
R2 NetTcpHandler; C:\Users\Rosangela\AppData\Roaming\NetService\netservice.exe -start [X]
R2 WinNetSvc; "C:\Users\Rosangela\AppData\Roaming\WinNetSvc\WinNetSvc.exe" [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [39424 2011-06-24] (Advanced Micro Devices) [Arquivo não assinado]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-07-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-07-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-07-23] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-07-23] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2016-02-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2016-02-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-07-23] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-07-23] (AVAST Software)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-04-12] (Baidu, Inc.)
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [47192 2014-07-21] (GAS Tecnologia)
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2014-08-05] (GAS Tecnologia)
R0 ngvss; C:\Windows\system32\Drivers\ngvss.sys [95112 2015-07-23] (AVAST Software)
R1 ppfd_vt_1_10_0_21; C:\Windows\System32\drivers\ppfd_vt_1_10_0_21.sys [56464 2015-07-28] (PhraseProfessor)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-07-23] (Avast Software)
S3 BdApiUtil; \??\C:\Program Files\Baidu Security\Baidu Antivirus\BdApiUtil.sys [X]
S3 BdCameraProtect; \??\C:\Program Files\Baidu Security\Baidu Antivirus\BdCameraProtect.sys [X]
S1 Bfilter; \??\C:\Windows\System32\drivers\Bfilter.sys [X]
S1 Bfmon; \??\C:\Windows\System32\drivers\Bfmon.sys [X]
S1 Bprotect; \??\C:\Windows\System32\drivers\Bprotect.sys [X]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil.sys [X]
S3 RSPCIESTOR; system32\DRIVERS\RtsPStor.sys [X]
S3 wdf_usb; system32\DRIVERS\usb2ser.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-13 18:01 - 2016-12-13 18:01 - 00023133 _____ C:\Users\Caio Augusto\Documents\FRST.txt
2016-12-13 17:59 - 2016-12-13 18:01 - 00000000 ____D C:\FRST
2016-12-13 17:58 - 2016-12-13 16:42 - 01761792 _____ (Farbar) C:\Users\Caio Augusto\Desktop\FRST.exe
2016-12-13 17:13 - 2016-12-13 17:13 - 00004656 _____ C:\Users\Caio Augusto\Desktop\ePSXe - Atalho.lnk
2016-12-13 16:24 - 2016-12-13 16:26 - 02729024 ____N (DLL-Files.com Client ) C:\Users\Caio Augusto\Documents\clientsetup_d-0.exe
2016-12-13 16:13 - 2016-12-13 16:13 - 00000000 ____D C:\Users\Caio Augusto\Documents\dll
2016-12-13 16:12 - 2016-09-30 10:50 - 00023232 ____N (Microsoft Corporation) C:\Users\Caio Augusto\Documents\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-13 15:44 - 2016-12-13 15:44 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\fltk.org
2016-12-13 15:15 - 2001-02-08 19:11 - 00028672 _____ C:\Windows\system32\burutter.dll
2016-12-13 15:12 - 2016-12-13 15:12 - 00000264 _____ C:\AiOLog.txt
2016-12-13 15:03 - 2016-12-13 17:14 - 00000000 ____D C:\Users\Caio Augusto\Documents\ps1
2016-12-12 01:47 - 2016-12-12 01:47 - 00000000 ____D C:\Windows\system32\Adobe
2016-12-12 01:33 - 2016-12-12 01:33 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\Sun
2016-12-12 01:33 - 2016-12-12 01:33 - 00000000 ____D C:\Users\Caio Augusto\AppData\LocalLow\Sun
2016-12-12 01:01 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-12-12 01:01 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-12-12 01:01 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-12-12 01:01 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-12-12 01:01 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_42.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-12-12 01:00 - 2016-12-12 01:01 - 00005251 _____ C:\Windows\unins001.dat
2016-12-12 01:00 - 2016-12-12 01:00 - 01199175 _____ C:\Windows\unins001.exe
2016-12-12 01:00 - 2016-12-12 01:00 - 01198049 _____ C:\Windows\unins000.exe
2016-12-12 01:00 - 2016-12-12 01:00 - 00010836 _____ C:\Windows\unins000.dat
2016-12-12 01:00 - 2016-12-12 01:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-12-12 01:00 - 2016-01-28 18:44 - 01261568 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libeay32.dll
2016-12-12 01:00 - 2016-01-28 18:44 - 00297472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\ssleay32.dll
2016-12-12 01:00 - 2016-01-28 18:44 - 00297472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libssl32.dll
2016-12-12 01:00 - 2015-07-10 10:51 - 00456008 _____ (AutoIt Team) C:\Windows\system32\autoitx3.dll
2016-12-12 01:00 - 2015-07-08 09:29 - 03477818 _____ (Red Hat) C:\Windows\system32\cygwin1.dll
2016-12-12 01:00 - 2014-01-31 02:14 - 01055676 _____ (Free Software Foundation) C:\Windows\system32\libiconv2.dll
2016-12-12 01:00 - 2014-01-25 13:30 - 00131072 _____ (Sereby Corporation) C:\Windows\system32\AiORuntimes.dll
2016-12-12 01:00 - 2013-12-20 00:48 - 00660120 _____ (Microsoft Corporation) C:\Windows\system32\mscomct2.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00617896 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00444328 _____ (Microsoft Corporation) C:\Windows\system32\mshflxgd.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00416408 _____ (Microsoft Corporation ) C:\Windows\system32\comct332.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00279192 _____ (Microsoft Corporation) C:\Windows\system32\msdatgrd.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00259736 _____ (Microsoft Corporation) C:\Windows\system32\msflxgrd.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00253080 _____ (Microsoft Corporation) C:\Windows\system32\msdatlst.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00222360 _____ (Microsoft Corporation) C:\Windows\system32\tabctl32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00219288 _____ (Microsoft Corporation) C:\Windows\system32\richtx32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00218776 _____ (Microsoft Corporation) C:\Windows\system32\dblist32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00212112 _____ (Microsoft Corporation) C:\Windows\system32\mci32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00179352 _____ (Microsoft Corporation) C:\Windows\system32\msmask32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00170920 _____ (Microsoft Corporation) C:\Windows\system32\comct232.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00131728 _____ (Microsoft Corporation) C:\Windows\system32\msinet.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00127640 _____ (Microsoft Corporation) C:\Windows\system32\mswinsck.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00119960 _____ (Microsoft Corporation) C:\Windows\system32\mscomm32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00104088 _____ (Microsoft Corporation) C:\Windows\system32\picclp32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00084624 _____ (Microsoft Corporation) C:\Windows\system32\sysinfo.ocx
2016-12-12 01:00 - 2012-06-14 14:36 - 00107520 _____ C:\Windows\system32\zlib1.dll
2016-12-12 01:00 - 2012-04-03 16:11 - 00138752 _____ C:\Windows\system32\libpng15.dll
2016-12-12 01:00 - 2011-10-12 03:09 - 04033440 _____ (Intel Corporation) C:\Windows\system32\libmmd.dll
2016-12-12 01:00 - 2011-10-01 08:16 - 00445016 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2016-12-12 01:00 - 2011-10-01 08:16 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\openal32.dll
2016-12-12 01:00 - 2011-01-12 13:36 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\mfc71u.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\mfc71DEU.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ITA.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71FRA.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ESP.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ENU.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71KOR.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71JPN.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc71CHT.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc71CHS.dll
2016-12-12 01:00 - 2011-01-12 13:19 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll
2016-12-12 01:00 - 2011-01-12 12:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\atl71.dll
2016-12-12 01:00 - 2010-06-27 17:44 - 00053248 _____ (Adobe Systems, Incorporated) C:\Windows\system\plugin.dll
2016-12-12 01:00 - 2010-03-18 20:21 - 00799568 _____ (Microsoft Corporation) C:\Windows\system32\msdia100.dll
2016-12-12 01:00 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-12-12 01:00 - 2008-08-26 06:40 - 00162304 _____ C:\Windows\system32\libpng13.dll
2016-12-12 01:00 - 2007-02-01 22:13 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2016-12-12 01:00 - 2007-02-01 19:11 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2016-12-12 01:00 - 2007-01-30 22:04 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr70.dll
2016-12-12 01:00 - 2006-08-26 00:28 - 01017344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70u.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ITA.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70FRA.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ESP.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70DEU.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ENU.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70KOR.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70JPN.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc70CHT.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc70CHS.dll
2016-12-12 01:00 - 2006-08-26 00:07 - 01024000 _____ (Microsoft Corporation) C:\Windows\system32\mfc70.dll
2016-12-12 01:00 - 2006-08-25 23:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\atl70.dll
2016-12-12 01:00 - 2005-05-06 13:52 - 00103424 _____ (GNU) C:\Windows\system32\libintl3.dll
2016-12-12 01:00 - 2005-01-20 19:25 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\msvci70.dll
2016-12-12 01:00 - 2002-01-05 05:40 - 00487424 _____ (Microsoft Corporation) C:\Windows\system32\msvcp70.dll
2016-12-12 01:00 - 1996-01-12 03:00 - 00935632 _____ (Microsoft Corporation) C:\Windows\system\vb40016.dll
2016-12-12 01:00 - 1996-01-12 03:00 - 00722192 _____ (Microsoft Corporation) C:\Windows\system32\vb40032.dll
2016-12-12 01:00 - 1994-11-17 13:00 - 00210944 _____ C:\Windows\system\msvcrt10.dll
2016-12-12 01:00 - 1993-05-11 19:00 - 00398416 _____ (Microsoft Corporation) C:\Windows\system\vbrun300.dll
2016-12-12 01:00 - 1992-10-21 00:00 - 00356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll
2016-12-12 01:00 - 1991-05-10 01:00 - 00271264 _____ C:\Windows\system\vbrun100.dll
2016-12-12 00:59 - 2016-12-12 00:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-12-12 00:49 - 2015-08-01 19:50 - 00292184 _____ (Microsoft Corporation) C:\Users\Caio Augusto\Desktop\dxwebsetup.exe
2016-12-12 00:36 - 2016-12-12 00:36 - 00000000 ____D C:\Program Files\Common Files\Java
2016-12-12 00:35 - 2016-12-12 00:35 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-12-12 00:35 - 2016-12-12 00:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-12 00:34 - 2016-12-12 00:34 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-12-12 00:34 - 2016-12-12 00:34 - 00000000 ____D C:\ProgramData\Oracle
2016-12-12 00:34 - 2016-12-12 00:34 - 00000000 ____D C:\Program Files\Java
2016-12-12 00:26 - 2016-12-12 00:10 - 375525355 _____ (Sereby Corporation) C:\Users\Caio Augusto\Desktop\aio-runtimes_v2.3.9.exe
2016-12-11 22:42 - 2016-10-12 09:09 - 00001983 ____N C:\Users\Caio Augusto\Documents\README.txt
2016-12-11 22:42 - 2016-08-10 10:59 - 01998168 ____N (Microsoft Corporation) C:\Users\Caio Augusto\Documents\D3DX9_43.dll
2016-12-11 20:23 - 2016-12-11 20:54 - 00000000 ____D C:\Windows\system32\MRT
2016-12-11 20:22 - 2016-12-11 20:22 - 144884648 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-11 15:59 - 2016-12-13 16:23 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-12-11 15:59 - 2016-12-11 15:59 - 00000000 ____D C:\Windows\system32\directx
2016-12-11 15:57 - 2016-12-13 16:31 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-12-11 15:57 - 2016-12-13 16:31 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-11 15:54 - 2016-12-13 16:49 - 00000000 ____D C:\Program Files\PCSX2 1.4.0
2016-12-10 00:21 - 2016-12-11 16:05 - 00000000 ____D C:\Users\Caio Augusto\Documents\bully android
2016-12-09 15:26 - 2016-12-09 15:52 - 00000000 ____D C:\Users\Caio Augusto\Documents\meus arquivos do celular
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-13 18:00 - 2016-02-06 21:44 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\uTorrent
2016-12-13 18:00 - 2015-08-10 00:23 - 00000606 _____ C:\Windows\Tasks\{D9BAB2C9-5236-48c3-AF02-67E799F09BBD}{19F8DB95-4D78-4ddb-AC71-C610654FE37F}.job
2016-12-13 18:00 - 2013-10-24 00:38 - 00000306 _____ C:\Windows\Tasks\UpdaterEX.job
2016-12-13 17:55 - 2016-02-15 01:26 - 00000000 ____D C:\Users\Caio Augusto\AppData\LocalLow\uTorrent
2016-12-13 17:54 - 2016-02-07 21:14 - 00001010 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-12-13 17:54 - 2015-08-10 00:22 - 00000426 _____ C:\Windows\Tasks\ToolsUpdatePlatform_ScheduledTask.job
2016-12-13 17:54 - 2015-03-15 17:36 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-13 17:54 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-13 17:19 - 2016-02-07 21:14 - 00001014 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-12-13 17:16 - 2009-07-14 02:34 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-13 17:16 - 2009-07-14 02:34 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-13 17:09 - 2015-03-15 17:36 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-13 16:54 - 2013-11-07 10:49 - 00000944 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-582323385-897571192-2639108468-1002UA.job
2016-12-13 16:53 - 2013-10-24 00:53 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-13 16:27 - 2016-01-15 13:18 - 00000000 ____D C:\Users\Caio Augusto\Documents\Jogos Playstation 1
2016-12-13 14:24 - 2013-10-24 18:30 - 00000000 ____D C:\Users\Rosangela
2016-12-13 14:23 - 2009-07-14 02:53 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-12 18:06 - 2015-08-10 00:22 - 00000000 ____D C:\Users\Todos os Usuários\ToolsUpdatePlatform
2016-12-12 18:06 - 2015-08-10 00:22 - 00000000 ____D C:\ProgramData\ToolsUpdatePlatform
2016-12-12 01:47 - 2013-10-24 00:53 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-12 01:46 - 2013-10-24 00:53 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-12-12 01:46 - 2013-10-24 00:53 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-12-12 01:00 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system
2016-12-12 00:51 - 2013-10-23 21:18 - 01643772 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-12 00:51 - 2009-07-17 16:48 - 00705264 _____ C:\Windows\system32\prfh0416.dat
2016-12-12 00:51 - 2009-07-17 16:48 - 00147108 _____ C:\Windows\system32\prfc0416.dat
2016-12-12 00:51 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2016-12-11 19:48 - 2014-08-01 04:32 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\vlc
2016-12-11 18:23 - 2014-01-21 16:36 - 00000000 ____D C:\Users\Caio Augusto
2016-12-11 18:21 - 2015-03-20 16:21 - 00000000 ____D C:\Users\MARIA CLARA
2016-12-11 18:21 - 2013-10-23 21:14 - 00000000 ____D C:\Users\Caio Singer
2016-12-11 18:21 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\registration
2016-11-29 15:14 - 2015-10-26 19:04 - 00000000 ____D C:\Users\Todos os Usuários\Radio
2016-11-29 15:14 - 2015-10-26 19:04 - 00000000 ____D C:\ProgramData\Radio
2016-11-29 15:14 - 2014-03-28 18:26 - 00000000 ____D C:\Program Files\suprasavings
2016-11-29 14:31 - 2015-08-07 21:50 - 00000000 ____D C:\Program Files\Common Files\ClaraUpdater
==================== Arquivos na raiz de alguns diretórios =======
2016-06-07 13:50 - 2016-06-07 13:50 - 0000034 _____ () C:\Program Files\Common Files\9E3EC1B1.zq
2016-02-06 18:33 - 2016-02-22 19:43 - 0001238 _____ () C:\Users\Caio Augusto\AppData\Local\Chrome .lnk
2016-02-06 18:33 - 2016-03-02 00:46 - 0000298 _____ () C:\Users\Caio Augusto\AppData\Local\Firefox .lnk
2016-02-06 18:33 - 2016-03-02 00:46 - 0001078 _____ () C:\Users\Caio Augusto\AppData\Local\Iexplore .lnk
2014-07-04 10:37 - 2014-07-04 10:37 - 0000000 _____ () C:\Users\Caio Augusto\AppData\Local\{A2320308-E599-472F-B0A5-FF88284CCF56}
2013-11-22 09:40 - 2013-11-22 09:40 - 0170344 _____ (Baidu, Inc.) C:\ProgramData\FileSplitUpLoad.dll
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\FileSplitUpLoad.dll
C:\Users\Todos os Usuários\FileSplitUpLoad.dll
Alguns arquivos em TEMP:
====================
C:\Users\Caio Augusto\AppData\Local\Temp\2zc9jkco.dll
C:\Users\Caio Augusto\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Caio Augusto\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Caio Augusto\AppData\Local\Temp\SpOrder.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
ATENÇÃO: ==> Não foi possível acessar BCD. O usuário não é o administrador
==================== Fim de FRST.txt ============================
Executado por Caio Augusto (ATENÇÃO: O usuário não é o administrador) em CAIOSINGER-PC (13-12-2016 18:01:00)
Executando a partir de C:\Users\Caio Augusto\Documents
Perfis Carregados: Rosangela & Caio Augusto (Perfis Disponíveis: Rosangela & Caio Augusto & MARIA CLARA)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
Falha ao acessar processo -> smss.exe
Falha ao acessar processo -> csrss.exe
Falha ao acessar processo -> wininit.exe
Falha ao acessar processo -> csrss.exe
Falha ao acessar processo -> services.exe
Falha ao acessar processo -> lsass.exe
Falha ao acessar processo -> lsm.exe
Falha ao acessar processo -> winlogon.exe
Falha ao acessar processo -> svchost.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> atiesrxx.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> stacsv.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> atieclxx.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> AvastSvc.exe
Falha ao acessar processo -> wlanext.exe
Falha ao acessar processo -> conhost.exe
Falha ao acessar processo -> spoolsv.exe
Falha ao acessar processo -> taskeng.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> Fuel.Service.exe
Falha ao acessar processo -> PresentationFontCache.exe
Falha ao acessar processo -> IMGUpdater.exe
Falha ao acessar processo -> Umbrella285.exe
Falha ao acessar processo -> netservice.exe
Falha ao acessar processo -> privoxy.exe
Falha ao acessar processo -> SkypeUpdateEx.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> TeamViewer_Service.exe
Falha ao acessar processo -> CalendarServ.exe
Falha ao acessar processo -> WinNetSvc.exe
Falha ao acessar processo -> XBLive.exe
Falha ao acessar processo -> WmiPrvSE.exe
Falha ao acessar processo -> DropboxUpdate.exe
() C:\Program Files\CalendarTool\2.0.0.11380\calendar.exe
Falha ao acessar processo -> AvastVBoxSVC.exe
Falha ao acessar processo -> GoogleUpdate.exe
() C:\Program Files\ToolsUpdatePlatform\UpdatePlatform.exe
() C:\Program Files\ToolsUpdatePlatform\UpdatePlatform.exe
Falha ao acessar processo -> svchost.exe
Falha ao acessar processo -> svchost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Computer, Inc.) C:\Program Files\QuickTime\qttask.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\uTorrent.exe
Falha ao acessar processo -> SearchIndexer.exe
(CyberLink) C:\Program Files\CyberLink\YouCam\YCMMirage.exe
Falha ao acessar processo -> TrustedInstaller.exe
Falha ao acessar processo -> svchost.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Caio Augusto\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(The Phone Support) C:\Program Files\The Phone Support Dock\TPSDock.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
Falha ao acessar processo -> SearchProtocolHost.exe
Falha ao acessar processo -> mscorsvw.exe
Falha ao acessar processo -> WmiPrvSE.exe
Falha ao acessar processo -> sppsvc.exe
Falha ao acessar processo -> wmpnetwk.exe
Falha ao acessar processo -> WUDFHost.exe
Falha ao acessar processo -> SearchFilterHost.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2274600 2011-06-09] (Synaptics Incorporated)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [77824 2013-12-09] (Apple Computer, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6108752 2016-02-06] (AVAST Software)
HKLM\...\Run: [3D BubbleSound] => "C:\Program Files\BubbleSound\3D BubbleSound.exe"
HKLM\...\Run: [rec_br_70] => [X]
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [23889496 2016-08-23] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
Winlogon\Notify\ GbPluginUni: C:\Program Files\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Run: [BitTorrent] => "C:\Users\Caio Augusto\Downloads\bittorrent.exe" /MINIMIZED
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Run: [GoogleChromeAutoLaunch_FC8A13FF17165A6A23CB89E974CF829F] => C:\Program Files\Google\Chrome\Application\chrome.exe [961352 2016-08-02] (Google Inc.)
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Run: [uTorrent] => C:\Users\Caio Augusto\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-07-19] (BitTorrent Inc.)
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-582323385-897571192-2639108468-1006\...\MountPoints2: {d9eb5391-2cad-11e4-9711-d2ce7b4b399a} - E:\Startme.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-07-25] (Microsoft Corporation)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.42.dll [2016-08-23] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-07-23] (AVAST Software)
GroupPolicy: Restrição - Chrome <======= ATENÇÃO
GroupPolicy\User: Restrição ? <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Winsock: Catalog9 01 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 02 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 03 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 04 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Winsock: Catalog9 15 C:\Windows\system32\SecureAssist.dll [295080 2014-03-12] (SecureAssist)
Tcpip\..\Interfaces\{230830C1-4598-439C-9360-CB017E5F264D}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=6ee12b8fa4c2489c528f9e98dc628573
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.123rede.com?oem=cubev3&uid=110201PD3C08FYFNT46J_HitachiHTS545032B9A300&tm=1439244960
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
HKU\S-1-5-21-582323385-897571192-2639108468-1006\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=6ee12b8fa4c2489c528f9e98dc628573
URLSearchHook: [S-1-5-21-582323385-897571192-2639108468-1002] ATENÇÃO => A URLSearchHook Padrão está ausente
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1Qzu0A0CzztCtCtByDyDtC0A0FyDzz0A0DyEtN0D0Tzu0CyCyCyEtN1L2XzutBtFtBtFyDtFtCtDyBtDtN1L1Czu1L1C1H1B1QtCtDtA&cr=807731868&ir=
SearchScopes: HKLM -> {2F1C6392-7EF2-504A-28D9-5FB6CCF7980B} URL = hxxp://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=BR&userid=164fade9-b1ee-b43e-63b8-143226d0474f&searchtype=ds&q={searchTerms}&installDate=24/10/2013
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=HitachiXHTS545032B9A300_110201PD3C08FYFNT46JX&ts=1393451421&type=default&q={searchTerms}
SearchScopes: HKLM -> {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://search.iminent.com/?appId=C9A9ADDB-3BD1-40C8-ACD9-2DF999F6D173&ref=toolbox&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://search.iminent.com/?appId=C9A9ADDB-3BD1-40C8-ACD9-2DF999F6D173&ref=toolbox&q={searchTerms}
SearchScopes: HKU\S-1-5-21-582323385-897571192-2639108468-1006 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
BHO: Sem Nome -> {10AD2C61-0898-4348-8600-14A342F22AC3} -> Nenhum Arquivo
BHO: Sem Nome -> {11111111-1111-1111-1111-110411411158} -> Nenhum Arquivo
BHO: Sem Nome -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-12-12] (Oracle Corporation)
BHO: Sem Nome -> {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> Nenhum Arquivo
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-23] (AVAST Software)
BHO: IMinent WebBooster (BHO) -> {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} -> C:\Program Files\Iminent\Minibar.InternetExplorer.BHOx86.dll [2015-06-10] (SIEN)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\Program Files\GbPlugin\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO: SecureWebBHO Class -> {D3C24E2B-C820-4492-9B69-11BF7163F998} -> C:\Program Files\Safesoft Protector\jswie.dll [2015-08-10] (SecureSoft)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-12-12] (Oracle Corporation)
BHO: Sem Nome -> {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} -> Nenhum Arquivo
Toolbar: HKLM - Sem Nome - {ae07101b-46d4-4a98-af68-0333ea26e113} - Nenhum Arquivo
Toolbar: HKLM - Sem Nome - {3004627E-F8E9-4E8B-909D-316753CBA923} - Nenhum Arquivo
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-19] [não assinado]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-12-12] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-12-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-12-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://search.iminent.com/__PARAM__
CHR DefaultSearchURL: Default -> hxxp://search.iminent.com/?ref=toolbox&q={searchTerms}
CHR DefaultSearchKeyword: Default -> search.iminent.com
CHR Profile: C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default [2016-12-13]
CHR Extension: (Filmes HD V2) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aelfalhgfcioeimlihanganmfdbfepkd [2016-02-12]
CHR Extension: (avast! Online Security) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-08]
CHR Extension: (Sem Nome) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdnadicfhkbpdafdildanpbjapjlmkab [2016-02-08]
CHR Extension: (Search The Web) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdkokpcldhneihjdhigfjmoeojkdcbmg [2016-02-08]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-09]
CHR Extension: (Iminent NewTab) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nociobghckdhokecfeajdpimjeapnopn [2016-02-08]
CHR Extension: (Iminent Emoticons) - C:\Users\Caio Augusto\AppData\Local\Google\Chrome\User Data\Default\Extensions\olghjjajidfdflkafeekiojnfmiolccp [2016-02-09]
CHR HKLM\...\Chrome\Extension: [adpeheiliennogfclcgmchdfdmafjegc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccncljhbalbbkkfgopogabimepmfkmff] - C:\Program Files\BatBrowse\ccncljhbalbbkkfgopogabimepmfkmff.crx
CHR HKLM\...\Chrome\Extension: [cekcjpgehmohobmdiikfnopibipmgnml] - C:\Users\Rosangela\AppData\Local\Google\Chrome\User Data\Default\Extensions\
CHR HKLM\...\Chrome\Extension: [ehhlaekjfiiojlddgndcnefflngfmhen] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-23]
CHR HKLM\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Rosangela\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM\...\Chrome\Extension: [jdkokpcldhneihjdhigfjmoeojkdcbmg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nociobghckdhokecfeajdpimjeapnopn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ogfjmhfnldnajmfaofeiaepghjenbgjo] - C:\Users\Rosangela\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx
CHR HKLM\...\Chrome\Extension: [olghjjajidfdflkafeekiojnfmiolccp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pbpjplgmaeigbnpadeajipebdlihpcfn] - C:\Program Files\BatBrowse\pbpjplgmaeigbnpadeajipebdlihpcfn.crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2011-11-09] (Advanced Micro Devices, Inc.) [Arquivo não assinado]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-23] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-07-23] (Avast Software)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-07] (Dropbox, Inc.)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [546104 2014-09-29] (GAS Tecnologia)
R2 GlobalUpdater; C:\Program Files\Common Files\IMGUpdater\IMGUpdater.exe [378152 2016-01-25] (SIEN S.A.)
R2 IMService; C:\Program Files\Common Files\Umbrella\Umbrella285.exe [3808408 2016-01-25] (Iminent)
R2 lmhosts; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
S3 PCAppStoreSvc_{PCAppStore_4.0.6.5038}; C:\Program Files\Baidu Security\PC App Store\4.0.6.5038\PCAppStoreSvc.exe [575520 2014-03-05] (Baidu Inc.)
R2 PrivoxyService; C:\Program Files\Safesoft Protector\privoxy.exe [371200 2015-08-10] (The Privoxy team - www.privoxy.org) [Arquivo não assinado] <==== ATENÇÃO
R2 SkypeUpdateEx; C:\Program Files\SkypeUpdateEx\SkypeUpdateEx.exe [172464 2016-06-07] (skype.cog.cc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [282709 2011-05-27] (IDT, Inc.)
R2 TheCalendarService; C:\Program Files\CalendarTool\2.0.0.11380\CalendarServ.exe [153200 2016-05-19] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
R2 XBox; C:\Program Files\XBox\XBLive.exe [4992952 2016-05-25] (Microsoft Corporation) <==== ATENÇÃO
R2 NetTcpHandler; C:\Users\Rosangela\AppData\Roaming\NetService\netservice.exe -start [X]
R2 WinNetSvc; "C:\Users\Rosangela\AppData\Roaming\WinNetSvc\WinNetSvc.exe" [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [39424 2011-06-24] (Advanced Micro Devices) [Arquivo não assinado]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-07-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-07-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-07-23] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-07-23] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2016-02-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2016-02-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-07-23] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-07-23] (AVAST Software)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-04-12] (Baidu, Inc.)
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [47192 2014-07-21] (GAS Tecnologia)
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2014-08-05] (GAS Tecnologia)
R0 ngvss; C:\Windows\system32\Drivers\ngvss.sys [95112 2015-07-23] (AVAST Software)
R1 ppfd_vt_1_10_0_21; C:\Windows\System32\drivers\ppfd_vt_1_10_0_21.sys [56464 2015-07-28] (PhraseProfessor)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-07-23] (Avast Software)
S3 BdApiUtil; \??\C:\Program Files\Baidu Security\Baidu Antivirus\BdApiUtil.sys [X]
S3 BdCameraProtect; \??\C:\Program Files\Baidu Security\Baidu Antivirus\BdCameraProtect.sys [X]
S1 Bfilter; \??\C:\Windows\System32\drivers\Bfilter.sys [X]
S1 Bfmon; \??\C:\Windows\System32\drivers\Bfmon.sys [X]
S1 Bprotect; \??\C:\Windows\System32\drivers\Bprotect.sys [X]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil.sys [X]
S3 RSPCIESTOR; system32\DRIVERS\RtsPStor.sys [X]
S3 wdf_usb; system32\DRIVERS\usb2ser.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-13 18:01 - 2016-12-13 18:01 - 00023133 _____ C:\Users\Caio Augusto\Documents\FRST.txt
2016-12-13 17:59 - 2016-12-13 18:01 - 00000000 ____D C:\FRST
2016-12-13 17:58 - 2016-12-13 16:42 - 01761792 _____ (Farbar) C:\Users\Caio Augusto\Desktop\FRST.exe
2016-12-13 17:13 - 2016-12-13 17:13 - 00004656 _____ C:\Users\Caio Augusto\Desktop\ePSXe - Atalho.lnk
2016-12-13 16:24 - 2016-12-13 16:26 - 02729024 ____N (DLL-Files.com Client ) C:\Users\Caio Augusto\Documents\clientsetup_d-0.exe
2016-12-13 16:13 - 2016-12-13 16:13 - 00000000 ____D C:\Users\Caio Augusto\Documents\dll
2016-12-13 16:12 - 2016-09-30 10:50 - 00023232 ____N (Microsoft Corporation) C:\Users\Caio Augusto\Documents\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-13 15:44 - 2016-12-13 15:44 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\fltk.org
2016-12-13 15:15 - 2001-02-08 19:11 - 00028672 _____ C:\Windows\system32\burutter.dll
2016-12-13 15:12 - 2016-12-13 15:12 - 00000264 _____ C:\AiOLog.txt
2016-12-13 15:03 - 2016-12-13 17:14 - 00000000 ____D C:\Users\Caio Augusto\Documents\ps1
2016-12-12 01:47 - 2016-12-12 01:47 - 00000000 ____D C:\Windows\system32\Adobe
2016-12-12 01:33 - 2016-12-12 01:33 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\Sun
2016-12-12 01:33 - 2016-12-12 01:33 - 00000000 ____D C:\Users\Caio Augusto\AppData\LocalLow\Sun
2016-12-12 01:01 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-12-12 01:01 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-12-12 01:01 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-12-12 01:01 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-12-12 01:01 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-12-12 01:01 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-12-12 01:01 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_42.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-12-12 01:01 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-12-12 01:00 - 2016-12-12 01:01 - 00005251 _____ C:\Windows\unins001.dat
2016-12-12 01:00 - 2016-12-12 01:00 - 01199175 _____ C:\Windows\unins001.exe
2016-12-12 01:00 - 2016-12-12 01:00 - 01198049 _____ C:\Windows\unins000.exe
2016-12-12 01:00 - 2016-12-12 01:00 - 00010836 _____ C:\Windows\unins000.dat
2016-12-12 01:00 - 2016-12-12 01:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-12-12 01:00 - 2016-01-28 18:44 - 01261568 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libeay32.dll
2016-12-12 01:00 - 2016-01-28 18:44 - 00297472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\ssleay32.dll
2016-12-12 01:00 - 2016-01-28 18:44 - 00297472 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libssl32.dll
2016-12-12 01:00 - 2015-07-10 10:51 - 00456008 _____ (AutoIt Team) C:\Windows\system32\autoitx3.dll
2016-12-12 01:00 - 2015-07-08 09:29 - 03477818 _____ (Red Hat) C:\Windows\system32\cygwin1.dll
2016-12-12 01:00 - 2014-01-31 02:14 - 01055676 _____ (Free Software Foundation) C:\Windows\system32\libiconv2.dll
2016-12-12 01:00 - 2014-01-25 13:30 - 00131072 _____ (Sereby Corporation) C:\Windows\system32\AiORuntimes.dll
2016-12-12 01:00 - 2013-12-20 00:48 - 00660120 _____ (Microsoft Corporation) C:\Windows\system32\mscomct2.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00617896 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00444328 _____ (Microsoft Corporation) C:\Windows\system32\mshflxgd.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00416408 _____ (Microsoft Corporation ) C:\Windows\system32\comct332.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00279192 _____ (Microsoft Corporation) C:\Windows\system32\msdatgrd.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00259736 _____ (Microsoft Corporation) C:\Windows\system32\msflxgrd.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00253080 _____ (Microsoft Corporation) C:\Windows\system32\msdatlst.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00222360 _____ (Microsoft Corporation) C:\Windows\system32\tabctl32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00219288 _____ (Microsoft Corporation) C:\Windows\system32\richtx32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00218776 _____ (Microsoft Corporation) C:\Windows\system32\dblist32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00212112 _____ (Microsoft Corporation) C:\Windows\system32\mci32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00179352 _____ (Microsoft Corporation) C:\Windows\system32\msmask32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00170920 _____ (Microsoft Corporation) C:\Windows\system32\comct232.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00131728 _____ (Microsoft Corporation) C:\Windows\system32\msinet.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00127640 _____ (Microsoft Corporation) C:\Windows\system32\mswinsck.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00119960 _____ (Microsoft Corporation) C:\Windows\system32\mscomm32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00104088 _____ (Microsoft Corporation) C:\Windows\system32\picclp32.ocx
2016-12-12 01:00 - 2013-12-20 00:48 - 00084624 _____ (Microsoft Corporation) C:\Windows\system32\sysinfo.ocx
2016-12-12 01:00 - 2012-06-14 14:36 - 00107520 _____ C:\Windows\system32\zlib1.dll
2016-12-12 01:00 - 2012-04-03 16:11 - 00138752 _____ C:\Windows\system32\libpng15.dll
2016-12-12 01:00 - 2011-10-12 03:09 - 04033440 _____ (Intel Corporation) C:\Windows\system32\libmmd.dll
2016-12-12 01:00 - 2011-10-01 08:16 - 00445016 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2016-12-12 01:00 - 2011-10-01 08:16 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\openal32.dll
2016-12-12 01:00 - 2011-01-12 13:36 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\mfc71u.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\mfc71DEU.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ITA.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71FRA.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ESP.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ENU.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71KOR.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71JPN.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc71CHT.dll
2016-12-12 01:00 - 2011-01-12 13:25 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc71CHS.dll
2016-12-12 01:00 - 2011-01-12 13:19 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll
2016-12-12 01:00 - 2011-01-12 12:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\atl71.dll
2016-12-12 01:00 - 2010-06-27 17:44 - 00053248 _____ (Adobe Systems, Incorporated) C:\Windows\system\plugin.dll
2016-12-12 01:00 - 2010-03-18 20:21 - 00799568 _____ (Microsoft Corporation) C:\Windows\system32\msdia100.dll
2016-12-12 01:00 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-12-12 01:00 - 2008-08-26 06:40 - 00162304 _____ C:\Windows\system32\libpng13.dll
2016-12-12 01:00 - 2007-02-01 22:13 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2016-12-12 01:00 - 2007-02-01 19:11 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2016-12-12 01:00 - 2007-01-30 22:04 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr70.dll
2016-12-12 01:00 - 2006-08-26 00:28 - 01017344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70u.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ITA.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70FRA.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ESP.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70DEU.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ENU.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70KOR.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70JPN.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc70CHT.dll
2016-12-12 01:00 - 2006-08-26 00:15 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc70CHS.dll
2016-12-12 01:00 - 2006-08-26 00:07 - 01024000 _____ (Microsoft Corporation) C:\Windows\system32\mfc70.dll
2016-12-12 01:00 - 2006-08-25 23:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\atl70.dll
2016-12-12 01:00 - 2005-05-06 13:52 - 00103424 _____ (GNU
2016-12-12 01:00 - 2005-01-20 19:25 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\msvci70.dll
2016-12-12 01:00 - 2002-01-05 05:40 - 00487424 _____ (Microsoft Corporation) C:\Windows\system32\msvcp70.dll
2016-12-12 01:00 - 1996-01-12 03:00 - 00935632 _____ (Microsoft Corporation) C:\Windows\system\vb40016.dll
2016-12-12 01:00 - 1996-01-12 03:00 - 00722192 _____ (Microsoft Corporation) C:\Windows\system32\vb40032.dll
2016-12-12 01:00 - 1994-11-17 13:00 - 00210944 _____ C:\Windows\system\msvcrt10.dll
2016-12-12 01:00 - 1993-05-11 19:00 - 00398416 _____ (Microsoft Corporation) C:\Windows\system\vbrun300.dll
2016-12-12 01:00 - 1992-10-21 00:00 - 00356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll
2016-12-12 01:00 - 1991-05-10 01:00 - 00271264 _____ C:\Windows\system\vbrun100.dll
2016-12-12 00:59 - 2016-12-12 00:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-12-12 00:49 - 2015-08-01 19:50 - 00292184 _____ (Microsoft Corporation) C:\Users\Caio Augusto\Desktop\dxwebsetup.exe
2016-12-12 00:36 - 2016-12-12 00:36 - 00000000 ____D C:\Program Files\Common Files\Java
2016-12-12 00:35 - 2016-12-12 00:35 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-12-12 00:35 - 2016-12-12 00:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-12 00:34 - 2016-12-12 00:34 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-12-12 00:34 - 2016-12-12 00:34 - 00000000 ____D C:\ProgramData\Oracle
2016-12-12 00:34 - 2016-12-12 00:34 - 00000000 ____D C:\Program Files\Java
2016-12-12 00:26 - 2016-12-12 00:10 - 375525355 _____ (Sereby Corporation) C:\Users\Caio Augusto\Desktop\aio-runtimes_v2.3.9.exe
2016-12-11 22:42 - 2016-10-12 09:09 - 00001983 ____N C:\Users\Caio Augusto\Documents\README.txt
2016-12-11 22:42 - 2016-08-10 10:59 - 01998168 ____N (Microsoft Corporation) C:\Users\Caio Augusto\Documents\D3DX9_43.dll
2016-12-11 20:23 - 2016-12-11 20:54 - 00000000 ____D C:\Windows\system32\MRT
2016-12-11 20:22 - 2016-12-11 20:22 - 144884648 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-11 15:59 - 2016-12-13 16:23 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-12-11 15:59 - 2016-12-11 15:59 - 00000000 ____D C:\Windows\system32\directx
2016-12-11 15:57 - 2016-12-13 16:31 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-12-11 15:57 - 2016-12-13 16:31 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-11 15:54 - 2016-12-13 16:49 - 00000000 ____D C:\Program Files\PCSX2 1.4.0
2016-12-10 00:21 - 2016-12-11 16:05 - 00000000 ____D C:\Users\Caio Augusto\Documents\bully android
2016-12-09 15:26 - 2016-12-09 15:52 - 00000000 ____D C:\Users\Caio Augusto\Documents\meus arquivos do celular
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-13 18:00 - 2016-02-06 21:44 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\uTorrent
2016-12-13 18:00 - 2015-08-10 00:23 - 00000606 _____ C:\Windows\Tasks\{D9BAB2C9-5236-48c3-AF02-67E799F09BBD}{19F8DB95-4D78-4ddb-AC71-C610654FE37F}.job
2016-12-13 18:00 - 2013-10-24 00:38 - 00000306 _____ C:\Windows\Tasks\UpdaterEX.job
2016-12-13 17:55 - 2016-02-15 01:26 - 00000000 ____D C:\Users\Caio Augusto\AppData\LocalLow\uTorrent
2016-12-13 17:54 - 2016-02-07 21:14 - 00001010 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-12-13 17:54 - 2015-08-10 00:22 - 00000426 _____ C:\Windows\Tasks\ToolsUpdatePlatform_ScheduledTask.job
2016-12-13 17:54 - 2015-03-15 17:36 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-13 17:54 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-13 17:19 - 2016-02-07 21:14 - 00001014 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-12-13 17:16 - 2009-07-14 02:34 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-13 17:16 - 2009-07-14 02:34 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-13 17:09 - 2015-03-15 17:36 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-13 16:54 - 2013-11-07 10:49 - 00000944 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-582323385-897571192-2639108468-1002UA.job
2016-12-13 16:53 - 2013-10-24 00:53 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-13 16:27 - 2016-01-15 13:18 - 00000000 ____D C:\Users\Caio Augusto\Documents\Jogos Playstation 1
2016-12-13 14:24 - 2013-10-24 18:30 - 00000000 ____D C:\Users\Rosangela
2016-12-13 14:23 - 2009-07-14 02:53 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-12 18:06 - 2015-08-10 00:22 - 00000000 ____D C:\Users\Todos os Usuários\ToolsUpdatePlatform
2016-12-12 18:06 - 2015-08-10 00:22 - 00000000 ____D C:\ProgramData\ToolsUpdatePlatform
2016-12-12 01:47 - 2013-10-24 00:53 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-12 01:46 - 2013-10-24 00:53 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-12-12 01:46 - 2013-10-24 00:53 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-12-12 01:00 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system
2016-12-12 00:51 - 2013-10-23 21:18 - 01643772 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-12 00:51 - 2009-07-17 16:48 - 00705264 _____ C:\Windows\system32\prfh0416.dat
2016-12-12 00:51 - 2009-07-17 16:48 - 00147108 _____ C:\Windows\system32\prfc0416.dat
2016-12-12 00:51 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2016-12-11 19:48 - 2014-08-01 04:32 - 00000000 ____D C:\Users\Caio Augusto\AppData\Roaming\vlc
2016-12-11 18:23 - 2014-01-21 16:36 - 00000000 ____D C:\Users\Caio Augusto
2016-12-11 18:21 - 2015-03-20 16:21 - 00000000 ____D C:\Users\MARIA CLARA
2016-12-11 18:21 - 2013-10-23 21:14 - 00000000 ____D C:\Users\Caio Singer
2016-12-11 18:21 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\registration
2016-11-29 15:14 - 2015-10-26 19:04 - 00000000 ____D C:\Users\Todos os Usuários\Radio
2016-11-29 15:14 - 2015-10-26 19:04 - 00000000 ____D C:\ProgramData\Radio
2016-11-29 15:14 - 2014-03-28 18:26 - 00000000 ____D C:\Program Files\suprasavings
2016-11-29 14:31 - 2015-08-07 21:50 - 00000000 ____D C:\Program Files\Common Files\ClaraUpdater
==================== Arquivos na raiz de alguns diretórios =======
2016-06-07 13:50 - 2016-06-07 13:50 - 0000034 _____ () C:\Program Files\Common Files\9E3EC1B1.zq
2016-02-06 18:33 - 2016-02-22 19:43 - 0001238 _____ () C:\Users\Caio Augusto\AppData\Local\Chrome .lnk
2016-02-06 18:33 - 2016-03-02 00:46 - 0000298 _____ () C:\Users\Caio Augusto\AppData\Local\Firefox .lnk
2016-02-06 18:33 - 2016-03-02 00:46 - 0001078 _____ () C:\Users\Caio Augusto\AppData\Local\Iexplore .lnk
2014-07-04 10:37 - 2014-07-04 10:37 - 0000000 _____ () C:\Users\Caio Augusto\AppData\Local\{A2320308-E599-472F-B0A5-FF88284CCF56}
2013-11-22 09:40 - 2013-11-22 09:40 - 0170344 _____ (Baidu, Inc.) C:\ProgramData\FileSplitUpLoad.dll
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\FileSplitUpLoad.dll
C:\Users\Todos os Usuários\FileSplitUpLoad.dll
Alguns arquivos em TEMP:
====================
C:\Users\Caio Augusto\AppData\Local\Temp\2zc9jkco.dll
C:\Users\Caio Augusto\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Caio Augusto\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Caio Augusto\AppData\Local\Temp\SpOrder.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
ATENÇÃO: ==> Não foi possível acessar BCD. O usuário não é o administrador
==================== Fim de FRST.txt ============================