cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 05-02-2017
Executado por USUÁRIO (administrador) em COMPUTADOR (10-02-2017 11:22:36)
Executando a partir de C:\Users\USUÁRIO\Desktop
Perfis Carregados: USUÁRIO (Perfis Disponíveis: USUÁRIO)
Platform: Windows 8.1 Pro (Update) (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\avp.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(GlavSoft LLC.) C:\Program Files (x86)\ShowMyPCService\tvnserver.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\avpui.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(CyberGhost S.R.L.) C:\Program Files\CyberGhost 6\CyberGhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(GlavSoft LLC.) C:\Program Files (x86)\ShowMyPCService\tvnserver.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [164112 2015-05-16] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2016-01-29] (NVIDIA Corporation)
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [925744 2016-06-23] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\ShowMyPCService\tvnserver.exe [815704 2013-11-21] (GlavSoft LLC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26220296 2017-02-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2016-10-15] (Caixa Economica Federal)
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation)
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272840 2014-03-31] (Microsoft Corporation)
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4177784 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50377336 2015-12-14] (Skype Technologies S.A.)
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1223728 2017-02-06] (CyberGhost S.R.L.)
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\RunOnce: [Uninstall C:\Users\USUÁRIO\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\USUÁRIO\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\MountPoints2: {660af67a-c37d-11e5-8272-002511b8691b} - "I:\autorun.exe"
HKU\S-1-5-21-227944482-1124180665-88813416-1001\...\MountPoints2: {eea87774-c30f-11e5-8270-002511b8691b} - "J:\autorun.exe"
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehcef.dll [1903328 2016-10-15] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
Startup: C:\Users\USUÁRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar para o OneNote.lnk [2016-01-11]
ShortcutTarget: Enviar para o OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

ProxyServer: [S-1-5-21-227944482-1124180665-88813416-1001] => 187.44.1.167:8080
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\..\Interfaces\{69DCBE13-00A3-4EAD-B0A4-AC5CDE58836C}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-227944482-1124180665-88813416-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com.br/
HKU\S-1-5-21-227944482-1124180665-88813416-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-22] (Google Inc.)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\x64\IEExt\ie_plugin.dll [2016-10-24] (AO Kaspersky Lab)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-05-16] (IvoSoft)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-01] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-22] (Google Inc.)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbiehcef.dll [2016-10-15] (Caixa Economica Federal)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\IEExt\ie_plugin.dll [2016-10-24] (AO Kaspersky Lab)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-01] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\x64\IEExt\ie_plugin.dll [2016-10-24] (AO Kaspersky Lab)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-22] (Google Inc.)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\IEExt\ie_plugin.dll [2016-10-24] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-22] (Google Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\USUÁRIO\AppData\Roaming\Mozilla\Firefox\Profiles\vvtarp2j.default [2017-02-09]
FF user.js: detected! => C:\Users\USUÁRIO\AppData\Roaming\Mozilla\Firefox\Profiles\vvtarp2j.default\user.js [2016-01-25]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\FFExt\light_plugin_firefox
FF Extension: (Proteção Kaspersky) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\FFExt\light_plugin_firefox [2016-10-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll [2016-01-04] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll [2016-01-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2013-08-20] (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-21] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR Profile: C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default [2017-02-10]
CHR Extension: (Google Apresentações) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-22]
CHR Extension: (Google Docs) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-22]
CHR Extension: (Google Drive) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-22]
CHR Extension: (YouTube) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-22]
CHR Extension: (Facebook) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2016-03-22]
CHR Extension: (Proteção Kaspersky) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2016-03-22]
CHR Extension: (Kaspersky Protection) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2016-03-28]
CHR Extension: (Planilhas do Google) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-22]
CHR Extension: (Documentos Google off-line) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-22]
CHR Extension: (New Tab Redirect) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2016-03-22]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-20]
CHR Extension: (Outlook.com) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2016-03-22]
CHR Extension: (Gmail) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-22]
CHR Extension: (Chrome Media Router) - C:\Users\USUÁRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

Opera:
=======
OPR Extension: (Fast search) - C:\Users\USUÁRIO\AppData\Roaming\Opera Software\Opera Stable\Extensions\pbdpajcdgknpendpmecafmopknefafha [2017-02-09]

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\avp.exe [194000 2016-03-28] (Kaspersky Lab ZAO)
R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [76848 2017-02-06] (CyberGhost S.R.L)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-30] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-30] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [631520 2016-10-15] (GAS Tecnologia)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2016-01-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2016-01-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2016-01-29] (NVIDIA Corporation)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] () [Arquivo não assinado]
R2 tvnserver; C:\Program Files (x86)\ShowMyPCService\tvnserver.exe [815704 2013-11-21] (GlavSoft LLC.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-10-22] (VIA Technologies, Inc.)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0 (1)\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [925744 2016-06-23] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 Atc002; C:\Windows\system32\DRIVERS\l260x64.sys [34304 2013-06-18] (Atheros Communications, Inc.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-01-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-01-25] (Disc Soft Ltd)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-12-08] (GAS Tecnologia)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [77728 2016-03-28] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2016-03-28] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [238000 2016-05-23] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [933808 2016-05-23] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [49240 2016-05-23] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2016-03-28] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87984 2016-05-23] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2016-01-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2016-01-29] (NVIDIA Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [28400 2016-02-17] () [Arquivo não assinado]
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-12-08] (GAS Tecnologia LTDA)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-11-08] (GAS Tecnologia)
R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [36984 2016-06-16] (GAS Tecnologia)
S1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [97376 2016-06-08] (GAS Tecnologia)
S3 AIDA64Driver; \??\C:\Users\USURIO~2\AppData\Local\Temp\AIDA64Driver.sys [X] <==== ATENÇÃO
S3 dbx; system32\DRIVERS\dbx.sys [X]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-02-10 11:22 - 2017-02-10 11:22 - 00027977 _____ C:\Users\USUÁRIO\Desktop\FRST.txt
2017-02-10 11:21 - 2017-02-10 11:22 - 00000000 ____D C:\FRST
2017-02-10 11:20 - 2017-02-10 11:20 - 02421248 _____ (Farbar) C:\Users\USUÁRIO\Desktop\FRST64.exe
2017-02-09 23:25 - 2017-02-09 23:25 - 00023032 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
2017-02-09 23:25 - 2017-02-09 23:25 - 00000782 _____ C:\Users\USUÁRIO\Desktop\WiperSoft.lnk
2017-02-09 23:25 - 2017-02-09 23:25 - 00000000 ____D C:\Users\USUÁRIO\AppData\Local\CrashRpt
2017-02-09 23:25 - 2017-02-09 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WiperSoft
2017-02-09 23:24 - 2017-02-09 23:25 - 00000000 ____D C:\Users\USUÁRIO\AppData\Roaming\WiperSoft
2017-02-09 23:23 - 2017-02-09 23:24 - 00000000 ____D C:\Program Files\WiperSoft
2017-02-09 23:02 - 2017-02-09 23:02 - 04015056 _____ C:\Users\USUÁRIO\Desktop\adwcleaner_6.043.exe
2017-02-09 22:05 - 2017-02-09 22:05 - 00873704 _____ C:\Users\USUÁRIO\Downloads\pearl_jam_the_kids_are_alright.iso
2017-02-09 13:36 - 2017-02-09 13:36 - 00315552 _____ C:\Windows\Minidump\020917-28750-01.dmp
2017-02-09 13:35 - 2017-02-09 13:35 - 354572612 _____ C:\Windows\MEMORY.DMP
2017-02-09 13:25 - 2017-02-09 22:18 - 00000000 ____D C:\Users\USUÁRIO\AppData\LocalLow\uTorrent
2017-02-09 12:38 - 2017-02-09 13:22 - 00000000 ____D C:\Users\USUÁRIO\Downloads\Pearl Jam Twenty (Deluxe Limited Edition DVD)
2017-02-09 12:28 - 2017-02-09 15:09 - 00000000 ____D C:\Users\USUÁRIO\Downloads\Pearl.Jam.Twenty.2011.BluRay.720p.x264.AC3.MiST
2017-02-09 12:27 - 2012-03-14 16:57 - 00100470 _____ C:\Users\USUÁRIO\Desktop\Pearl.Jam.Twenty.2011.Bluray.720p.x264.AC3-MiST.srt
2017-02-09 12:26 - 2017-02-09 12:26 - 00049882 _____ C:\Users\USUÁRIO\Desktop\PJT-720p.rar
2017-02-09 10:41 - 2017-02-09 10:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-07 02:38 - 2017-02-07 02:38 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-02-07 02:38 - 2017-02-07 02:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-02-07 02:38 - 2017-02-07 02:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-02-07 02:38 - 2017-02-07 02:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-02-06 12:25 - 2017-02-06 12:25 - 00048258 _____ C:\Users\USUÁRIO\Downloads\41170223268217000182550000000085471000502320-nfe.pdf
2017-02-06 10:19 - 2017-02-06 03:06 - 00000091 _____ C:\Users\USUÁRIO\Desktop\hacker.txt
2017-01-29 12:03 - 2017-01-29 12:03 - 01320058 _____ C:\Users\USUÁRIO\Desktop\peixe.mp4
2017-01-22 11:52 - 2017-01-06 14:47 - 05459456 _____ C:\Users\USUÁRIO\AppData\Roaming\Gerador.exe
2017-01-20 13:21 - 2017-01-20 13:21 - 00000036 _____ C:\Users\USUÁRIO\ID BlockChain.txt
2017-01-18 14:43 - 2017-01-18 14:57 - 1059010991 _____ C:\Users\USUÁRIO\Desktop\Aprenda a Ganhar Bitcoin Grátis.wmv
2017-01-18 10:35 - 2017-01-18 10:41 - 344073249 _____ C:\Users\USUÁRIO\Desktop\como ganhar bitcoins mais rápido estrategia fácil sharkoin (2017).wmv
2017-01-13 15:33 - 2017-01-13 15:33 - 00609589 _____ C:\Users\USUÁRIO\Downloads\Jojo.mp4
2017-01-13 13:44 - 2017-01-28 17:09 - 00000000 ___RD C:\Users\USUÁRIO\Desktop\Kaspersky Anti-Vírus - 2016
2017-01-13 13:44 - 2017-01-13 13:44 - 00000000 ____D C:\Users\USUÁRIO\Revo Uninstaller Pro 3.1.2 Crackeado
2017-01-13 13:44 - 2016-07-09 22:14 - 56179061 _____ C:\Users\USUÁRIO\Desktop\Ativador Officie 2013 (Online Wolrd).zip
2017-01-12 22:58 - 2017-01-12 23:51 - 00000000 ____D C:\Users\USUÁRIO\AppData\Local\CyberGhost
2017-01-12 22:58 - 2017-01-12 22:58 - 00002010 _____ C:\Users\USUÁRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberGhost 6.lnk
2017-01-12 22:52 - 2017-01-26 15:15 - 00000000 ____D C:\Program Files\CyberGhost 6
2017-01-12 22:52 - 2017-01-24 17:17 - 00001784 _____ C:\Users\USUÁRIO\Desktop\CyberGhost 6.lnk
2017-01-12 22:52 - 2017-01-12 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 6
2017-01-12 22:50 - 2017-01-12 22:52 - 16088672 _____ (CyberGhost S.R.L. ) C:\Users\USUÁRIO\Downloads\CyberGhost_6.0.4.2205.exe
2016-12-16 15:38 - 2016-12-01 12:13 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2016-12-16 15:38 - 2016-12-01 12:13 - 00678592 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2016-12-16 15:38 - 2016-12-01 12:11 - 00875720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2016-12-16 15:38 - 2016-12-01 12:11 - 00536768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2016-12-16 15:38 - 2016-10-20 11:14 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2016-12-16 15:38 - 2016-10-20 11:10 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2016-12-16 15:34 - 2016-11-19 19:24 - 00567152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-12-16 15:34 - 2016-11-19 19:24 - 00152856 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2016-12-16 15:34 - 2016-11-16 19:49 - 00377176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2016-12-16 15:34 - 2016-11-12 19:06 - 00738104 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-12-16 15:34 - 2016-11-12 17:38 - 00613632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-12-16 15:34 - 2016-11-12 17:08 - 25759744 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-16 15:34 - 2016-11-12 16:53 - 06049280 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-16 15:34 - 2016-11-12 16:17 - 20302848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-12-16 15:34 - 2016-11-12 15:41 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-16 15:34 - 2016-11-12 15:37 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-12-16 15:34 - 2016-11-12 15:35 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-16 15:34 - 2016-11-12 15:21 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-12-16 15:34 - 2016-11-12 15:05 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-12-16 15:34 - 2016-11-11 00:33 - 01541240 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-16 15:34 - 2016-11-05 18:46 - 00422744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-12-16 15:34 - 2016-11-05 16:35 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-16 15:34 - 2016-11-05 15:57 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-16 15:34 - 2016-11-05 15:11 - 03606528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-12-16 15:34 - 2016-11-05 13:56 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-16 15:34 - 2016-11-05 13:46 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-12-16 15:34 - 2016-10-28 00:56 - 01380048 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-16 15:34 - 2016-10-27 12:28 - 01097728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-12-16 15:34 - 2016-10-12 19:49 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-12-16 15:34 - 2016-10-12 19:11 - 00922968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2016-12-16 15:34 - 2016-10-11 14:45 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-12-16 15:34 - 2016-10-10 21:31 - 00990040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-12-16 15:34 - 2016-10-10 16:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cmimcext.sys
2016-12-16 15:34 - 2016-10-09 12:17 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2016-12-16 15:34 - 2016-10-09 12:08 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2016-12-16 15:34 - 2016-10-09 12:08 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2016-12-16 15:34 - 2016-10-08 20:24 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-12-16 15:34 - 2016-10-08 19:31 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-12-16 15:34 - 2016-10-08 19:10 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-12-16 15:34 - 2016-10-05 12:01 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-12-16 15:34 - 2016-10-05 12:00 - 00868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-12-16 15:34 - 2016-10-05 12:00 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-12-16 15:34 - 2016-10-05 11:52 - 00513456 _____ C:\Windows\SysWOW64\locale.nls
2016-12-16 15:34 - 2016-10-05 11:52 - 00513456 _____ C:\Windows\system32\locale.nls
2016-12-16 15:34 - 2016-10-05 02:15 - 01969944 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-12-16 15:34 - 2016-10-05 02:15 - 01613528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-12-16 15:34 - 2016-10-05 02:15 - 00324896 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-12-16 15:34 - 2016-10-05 02:15 - 00245320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-12-16 15:34 - 2016-09-20 20:30 - 02462040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-12-16 15:34 - 2015-10-22 13:58 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2016-12-16 15:33 - 2016-11-12 15:02 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-12-16 15:33 - 2016-10-10 16:18 - 00069976 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-12-16 15:32 - 2016-11-19 17:29 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-16 15:32 - 2016-11-19 16:44 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-12-16 15:32 - 2016-11-19 15:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-12-16 15:32 - 2016-11-19 15:22 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2016-12-16 15:32 - 2016-11-12 17:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-16 15:32 - 2016-11-12 17:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-12-16 15:32 - 2016-11-12 16:29 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-12-16 15:32 - 2016-11-12 16:23 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-12-16 15:32 - 2016-11-12 16:14 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-12-16 15:32 - 2016-11-12 16:10 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-16 15:32 - 2016-11-12 15:45 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-12-16 15:32 - 2016-11-12 15:38 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-12-16 15:32 - 2016-11-12 15:20 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-16 15:32 - 2016-11-12 15:11 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-12-16 15:32 - 2016-11-12 15:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-12-16 15:32 - 2016-11-09 15:25 - 01376768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-12-16 15:32 - 2016-09-27 18:16 - 00445873 _____ C:\Windows\system32\ApnDatabase.xml
2016-12-15 16:43 - 2017-01-20 11:10 - 00003180 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-10 19:03 - 2017-02-09 23:11 - 00004704 _____ C:\Windows\PFRO.log
2016-12-08 16:55 - 2016-06-16 19:43 - 00036984 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddntf.sys
2016-12-08 16:55 - 2016-06-16 19:43 - 00008811 _____ C:\Windows\system32\Drivers\wsddntf.cat
2016-12-08 16:55 - 2016-06-16 15:06 - 00002708 _____ C:\Windows\system32\Drivers\wsddntf.inf
2016-12-08 16:55 - 2016-06-08 19:43 - 00097376 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2016-12-02 09:41 - 2017-02-10 10:46 - 00011743 _____ C:\Windows\setupact.log
2016-12-02 09:41 - 2016-12-02 09:41 - 00000000 _____ C:\Windows\setuperr.log
2016-12-02 09:37 - 2016-12-02 09:37 - 00011833 _____ C:\Users\USUÁRIO\MariaJoana.docx
2016-11-24 15:01 - 2016-11-24 15:01 - 00098137 _____ C:\Users\USUÁRIO\Downloads\Ingresso Black Sabbtah.pdf
2016-11-22 15:07 - 2016-11-02 18:48 - 00372568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-22 15:07 - 2016-11-02 18:48 - 00315224 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-22 15:07 - 2016-10-27 16:51 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-22 15:07 - 2016-10-27 15:46 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-22 15:07 - 2016-10-27 15:44 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-22 15:07 - 2016-10-22 15:27 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-22 15:07 - 2016-10-22 14:43 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-22 15:07 - 2016-10-13 17:06 - 01385280 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-22 15:07 - 2016-10-13 17:06 - 01124376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-22 15:07 - 2016-10-11 18:21 - 00497448 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-11-22 15:07 - 2016-10-11 18:21 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-11-22 15:07 - 2016-10-11 16:34 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-11-22 15:07 - 2016-10-10 19:17 - 00444248 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-22 15:07 - 2016-10-10 19:17 - 00333656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-22 15:07 - 2016-10-09 20:59 - 00551256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2016-11-22 15:07 - 2016-10-08 20:53 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-22 15:07 - 2016-10-08 20:21 - 01445376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-22 15:07 - 2016-10-08 20:07 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-22 15:07 - 2016-10-08 19:49 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-22 15:07 - 2016-10-08 19:21 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-22 15:07 - 2016-10-07 23:34 - 01660040 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-11-22 15:07 - 2016-10-07 23:34 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-11-22 15:07 - 2016-10-04 18:39 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-22 15:07 - 2016-10-04 18:23 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-22 15:07 - 2016-10-04 18:08 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-11-22 15:07 - 2016-10-04 18:08 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-22 15:07 - 2016-09-09 20:14 - 00275800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-11-22 15:07 - 2016-09-09 12:15 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2016-11-22 15:07 - 2016-09-09 12:09 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2016-11-22 15:07 - 2016-09-09 12:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-22 15:07 - 2016-09-09 12:03 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll
2016-11-22 15:07 - 2016-09-09 12:02 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsiwmi.dll
2016-11-22 15:07 - 2016-09-03 16:20 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\iscsidsc.dll
2016-11-22 15:07 - 2016-09-03 16:06 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\iscsiexe.dll
2016-11-22 15:07 - 2016-09-03 15:21 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsidsc.dll
2016-11-22 15:07 - 2016-09-03 15:18 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2016-11-22 15:07 - 2016-09-03 14:12 - 00512512 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2016-11-22 15:07 - 2016-09-03 14:05 - 01094656 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-11-22 15:07 - 2016-09-03 13:58 - 00397824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2016-11-22 15:07 - 2016-09-02 12:05 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2016-11-22 15:07 - 2016-09-02 12:05 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2016-11-22 15:07 - 2016-09-01 12:33 - 00377856 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2016-11-22 15:07 - 2016-09-01 12:33 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2016-11-22 15:07 - 2016-09-01 12:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2016-11-22 15:07 - 2016-08-30 12:11 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2016-11-22 15:07 - 2016-08-30 00:45 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\xolehlp.dll
2016-11-22 15:07 - 2016-08-30 00:18 - 00871936 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2016-11-22 15:07 - 2016-08-30 00:03 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2016-11-22 15:07 - 2016-08-22 11:34 - 01628672 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-11-22 15:06 - 2016-11-02 12:03 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-22 15:06 - 2016-11-02 12:00 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-22 15:06 - 2016-10-27 16:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-22 15:06 - 2016-10-27 16:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-11-22 15:06 - 2016-10-27 16:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-22 15:06 - 2016-10-27 15:49 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-22 15:06 - 2016-10-27 15:47 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-22 15:06 - 2016-10-22 15:34 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-22 15:06 - 2016-10-22 14:58 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-22 15:06 - 2016-10-22 14:57 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-11-22 15:06 - 2016-10-22 14:56 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-22 15:06 - 2016-10-22 14:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-22 15:06 - 2016-10-22 14:45 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-22 15:06 - 2016-10-11 15:47 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-22 15:06 - 2016-10-11 14:55 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-22 15:06 - 2016-10-08 20:18 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-11-22 15:06 - 2016-08-30 00:18 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-02-10 11:21 - 2016-03-01 11:14 - 00003958 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{40937979-EBF1-473A-BCC9-43B419DACC99}
2017-02-10 11:01 - 2016-01-06 00:19 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2017-02-10 11:01 - 2016-01-06 00:19 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-02-10 10:48 - 2016-03-30 20:27 - 00000000 ___RD C:\Users\USUÁRIO\Dropbox
2017-02-10 10:47 - 2016-01-30 00:01 - 00000000 ____D C:\Users\USUÁRIO\AppData\Roaming\Skype
2017-02-10 10:46 - 2016-01-05 19:59 - 00000000 ____D C:\Users\USUÁRIO\Tracing
2017-02-10 10:45 - 2016-05-17 16:53 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-02-10 10:45 - 2016-05-17 16:53 - 00000000 ____D C:\ProgramData\GbPlugin
2017-02-10 10:45 - 2016-03-30 20:18 - 00001040 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-10 00:10 - 2016-01-04 11:10 - 00000000 ____D C:\Users\USUÁRIO\AppData\Local\ClassicShell
2017-02-09 23:42 - 2016-03-30 20:18 - 00001044 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-09 23:41 - 2016-01-04 10:35 - 00003594 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-227944482-1124180665-88813416-1001
2017-02-09 23:12 - 2016-05-17 16:53 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2017-02-09 23:12 - 2013-08-22 12:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-09 23:11 - 2016-01-04 10:58 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-02-09 23:11 - 2016-01-04 10:58 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-09 23:09 - 2016-01-28 14:30 - 00000000 ____D C:\AdwCleaner
2017-02-09 23:07 - 2016-01-13 13:24 - 00000000 ____D C:\Program Files (x86)\ShowMyPCService
2017-02-09 23:06 - 2016-03-10 15:52 - 00000000 ____D C:\Users\USUÁRIO\AppData\LocalLow\Company
2017-02-09 22:24 - 2016-08-29 01:57 - 00000000 ____D C:\Users\Todos os Usuários\TEMP
2017-02-09 22:24 - 2016-08-29 01:57 - 00000000 ____D C:\ProgramData\TEMP
2017-02-09 22:23 - 2016-01-04 10:29 - 00000000 ____D C:\Users\USUÁRIO
2017-02-09 22:18 - 2016-01-04 14:50 - 00000000 ____D C:\Users\USUÁRIO\AppData\Roaming\uTorrent
2017-02-09 22:04 - 2016-01-25 00:23 - 00000000 ____D C:\Users\USUÁRIO\AppData\Roaming\DAEMON Tools Lite
2017-02-09 21:46 - 2016-07-17 15:54 - 00000000 ____D C:\Users\USUÁRIO\AppData\Roaming\Media Player Classic
2017-02-09 13:36 - 2016-01-07 15:59 - 00000000 ____D C:\Windows\Minidump
2017-02-09 13:27 - 2016-01-04 11:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-02-09 13:24 - 2016-01-04 11:37 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-02-09 10:41 - 2016-03-30 20:18 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-07 11:25 - 2016-01-29 10:24 - 00002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-07 11:25 - 2016-01-29 10:24 - 00002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-06 09:10 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\Inf
2017-02-04 17:55 - 2013-08-22 11:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-02-04 17:54 - 2013-08-22 13:20 - 00000000 ____D C:\Windows\CbsTemp
2017-01-24 13:57 - 2016-07-07 10:40 - 00000000 ____D C:\Users\USUÁRIO\AppData\Local\CrashDumps
2017-01-20 11:10 - 2016-04-23 19:25 - 00002346 _____ C:\Users\USUÁRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2017-01-20 11:10 - 2016-01-05 19:53 - 00003188 _____ C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-227944482-1124180665-88813416-1001
2017-01-13 13:44 - 2016-01-04 10:34 - 01797166 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-13 13:44 - 2013-08-22 20:58 - 00774702 _____ C:\Windows\system32\prfh0416.dat
2017-01-13 13:44 - 2013-08-22 20:58 - 00158296 _____ C:\Windows\system32\prfc0416.dat
2017-01-13 13:19 - 2013-08-22 13:36 - 00000000 ____D C:\Windows\rescache
2017-01-12 23:42 - 2016-01-05 18:35 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-12 23:42 - 2016-01-05 18:35 - 00000000 ____D C:\Windows\system32\MRT
2017-01-12 22:58 - 2016-01-04 10:30 - 00000000 ____D C:\Users\USUÁRIO\AppData\Local\VirtualStore

==================== Arquivos na raiz de alguns diretórios =======

2017-01-22 11:52 - 2017-01-06 14:47 - 5459456 _____ () C:\Users\USUÁRIO\AppData\Roaming\Gerador.exe
2016-01-05 22:11 - 2016-01-05 22:11 - 0099384 _____ () C:\Users\USUÁRIO\AppData\Roaming\inst.exe
2016-01-05 22:11 - 2016-01-05 22:11 - 0007859 _____ () C:\Users\USUÁRIO\AppData\Roaming\pcouffin.cat
2016-01-05 22:11 - 2016-01-05 22:11 - 0001167 _____ () C:\Users\USUÁRIO\AppData\Roaming\pcouffin.inf
2016-01-05 22:11 - 2016-01-05 22:11 - 0000055 _____ () C:\Users\USUÁRIO\AppData\Roaming\pcouffin.log
2016-01-05 22:11 - 2016-01-05 22:11 - 0082816 _____ (VSO Software) C:\Users\USUÁRIO\AppData\Roaming\pcouffin.sys
2016-01-25 10:35 - 2016-01-25 10:35 - 0000045 _____ () C:\Users\USUÁRIO\AppData\Roaming\WB.CFG

Arquivos para serem movidos ou deletados:
====================
C:\Users\USUÁRIO\RevoUninProSetup.exe


Alguns arquivos em TEMP:
====================
2017-02-09 22:05 - 2017-02-09 22:12 - 11644558 _____ (Disc Soft Ltd) C:\Users\USUÁRIO\AppData\Local\Temp\DAEMON Tools Lite.exe
2017-02-09 22:04 - 2017-02-09 22:04 - 0694672 _____ (Disc Soft Ltd.) C:\Users\USUÁRIO\AppData\Local\Temp\dt_7C9C.tmp.exe
2017-02-09 22:11 - 2017-02-09 22:11 - 0002672 _____ () C:\Users\USUÁRIO\AppData\Local\Temp\global_installer.exe
2017-02-09 22:09 - 2017-02-09 22:11 - 10289765 _____ ( ) C:\Users\USUÁRIO\AppData\Local\Temp\jg3.6.0.exe
2015-08-14 10:29 - 2015-07-29 18:08 - 0681097 _____ (SQLite Development Team) C:\Users\USUÁRIO\AppData\Local\Temp\sqlite3.dll
2017-02-09 22:11 - 2017-02-09 22:11 - 2162655 _____ () C:\Users\USUÁRIO\AppData\Local\Temp\Zone2.exe

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-02-04 17:13

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité