Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-06-2017
Executado por Antonio Carlos -ACAS (administrador) em ANTONIOCARLOS-A (03-06-2017 23:15:45)
Executando a partir de C:\Users\Antonio Carlos -ACAS\Desktop
Perfis Carregados: Antonio Carlos -ACAS & MSSQL$ADK (Perfis Disponíveis: Antonio Carlos -ACAS & Administrador & MSSQL$ADK)
Platform: Windows 10 Pro Versão 1607 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Dyn, Inc.) C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.05.08\AsusFanControlService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(TopLang Software) C:\Program Files\Internet Lock\ILSvc.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
(Seventh) C:\TecVoz\IntegraPlayerV5\Server\Player.Server.SelfHost.Service.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\pg_ctl.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{956BB13B-9BE6-134D-A41E-3942EBCB6E0E}\YSearchUtilSVC.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Launchy\Launchy.exe
() C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Apple Computer, Inc.) C:\Windows\SysWOW64\qttask.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Unimake Software) C:\DANFEView\mon\danfemon.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
() C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9199104 2017-03-10] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-29] (SlySoft, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-08-19] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128 2015-08-14] (VMware, Inc.)
HKLM-x32\...\Run: [DANFEViewMon] => C:\DANFEView\danfemon.exe [4668928 2015-01-29] (Unimake Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992 2012-08-24] (Power Software Ltd)
HKLM-x32\...\Run: [QuickTime Task] => C:\Windows\SysWOW64\qttask.exe [98304 2016-07-26] (Apple Computer, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [29246632 2017-05-30] (Dropbox, Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [721856 2016-07-01] (Autodesk, Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [170496 2009-02-06] (ArcSoft Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-19] (CyberLink Corp.)
HKLM-x32\...\Run: [NWEReboot] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [AnyDVD] => C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe [4980344 2011-05-06] (SlySoft, Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2016-12-22] (Disc Soft Ltd)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [GoogleChromeAutoLaunch_6E8D70B3AD4096B31BB9745C10219D74] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Google Update] => C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-27] (Google Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-19] (CyberLink Corp.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Policies\Explorer: []
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [MountOverlayIcon] -> {0F49CF41-FD97-4942-9F2A-35E8B489E7FB} => C:\Program Files\WinMount\WinMTExt.dll [2010-10-21] (WinMount International Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
Startup: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2017-05-30]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe ()
Startup: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar630.lnk [2017-06-03]
ShortcutTarget: Sidebar630.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
GroupPolicy: Restrição <======= ATENÇÃO
GroupPolicyScripts: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 17 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 01 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 02 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 03 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 04 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 17 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Tcpip\..\Interfaces\{64931bff-515c-4eb1-a005-4bbbd8838c1d}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{c42bbe63-4270-4169-9e83-0d18197180ca}: [NameServer] 216.146.35.35,216.146.36.36,192.168.25.1,8.8.4.4,192.168.25.1,8.8.4.4,192.168.25.1,8.8.4.4
Tcpip\..\Interfaces\{eddb0ad5-b031-4418-94f4-8a486835db21}: [DhcpNameServer] 192.168.25.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-998340394-1884923500-388074382-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
HKU\S-1-5-21-998340394-1884923500-388074382-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.br/
SearchScopes: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> {88F57D6A-FBA5-46A0-B8CC-304B673D1C6E} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&intl=br&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Sem Nome -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Nenhum Arquivo
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle Corporation)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal)
BHO-x32: CBHO Object -> {CBA74CDA-DF78-4AD9-954E-3B15D0A993DE} -> C:\Program Files (x86)\CoreStreet\SpoofStick\SpoofStickBHO.dll [2004-08-18] (CoreStreet, Ltd.)
BHO-x32: Sem Nome -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Nenhum Arquivo
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-08] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - SpoofStick - {4D46ED77-1429-4CF6-8F63-C84B5D710BAF} - C:\Program Files (x86)\CoreStreet\SpoofStick\SpoofStick.dll [2004-08-18] (CoreStreet, Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {4D46ED77-1429-4CF6-8F63-C84B5D710BAF} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
FireFox:
========
FF DefaultProfile: fk58qeja.default
FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default [2017-06-03]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\83vsaca6.default -> Yahoo!
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\83vsaca6.default -> Yahoo!
FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\fvdmedia@gmail.com [2016-04-14]
FF Extension: (Search and New Tab by Yahoo) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-05-08]
FF Extension: (Just Disable Stuff) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-04-28]
FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-04-21]
FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado]
FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\pavel.sherbakov@gmail.com [2016-05-14]
FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16]
FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25]
FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\searchplugins\yandex.ru-161818.xml [2016-01-30]
FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default [2017-05-28]
FF NewTab: Profiles\fk58qeja.default -> chrome://fvd.speeddial/content/fvd_about_blank.html
FF Homepage: Profiles\fk58qeja.default -> chrome://fvd.speeddial/content/fvd_about_blank.html
FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\fvdmedia@gmail.com [2017-02-20]
FF Extension: (Baixou Agora) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\jid1-dG9taWNhQGdtYWlsLmNvbS4u@jetpack.xpi [2016-09-18]
FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-09-12]
FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado]
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-04-25]
FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\pavel.sherbakov@gmail.com [2017-05-23]
FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\pt-BR@dictionaries.addons.mozilla.org [2016-08-02]
FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16]
FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-10-09]
FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\searchplugins\yandex.ru-161818.xml [2016-01-30]
FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default [2016-09-02]
FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\fvdmedia@gmail.com [2016-04-14]
FF Extension: (GreatSocialTab Extension) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\GreatSocialTab-the-extension1@mozilla.com.xpi [2016-05-24]
FF Extension: (Just Disable Stuff) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-04-28]
FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-04-21]
FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado]
FF Extension: (Português do Brasil Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2016-06-30] [não assinado]
FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\pavel.sherbakov@gmail.com [2016-05-14]
FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16]
FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25]
FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\searchplugins\yandex.ru-161818.xml [2016-01-30]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-03-17]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\cef\xpi
FF Extension: (GBBD Caixa Economica Federal) - C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [2016-12-23] [não assinado]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-11] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Nenhum Arquivo]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2027 -> C:\Program Files (x86)\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll [Nenhum Arquivo]
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1040 -> C:\Program Files (x86)\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Nenhum Arquivo]
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @talk.google.com/O1DPlugin -> C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: gastecnologia.com.br/sf/cef -> C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll [2014-12-09] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: gastecnologia.com.br/sf/cef64 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [2014-12-09] (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR HomePage: Profile 2 -> hxxps://br.search.yahoo.com/?type=994519&fr=yo-yhp-ch
CHR NewTab: Profile 2 -> Not-active:"chrome-extension://fdbpcigaolookbahgdofnimidinicfid/newtab.html", Not-active:"chrome-extension://gpdpldlbafdmhlmcdllcjgoigmpjonfc/newtab.html", Active:"chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html"
CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-25]
CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-06-03]
CHR Extension: (Google Apresentações) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02]
CHR Extension: (Google Docs) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-02]
CHR Extension: (Google Drive) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-02]
CHR Extension: (Dropbox para Gmail) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-23]
CHR Extension: (Yahoo Partner) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fdbpcigaolookbahgdofnimidinicfid [2017-03-11]
CHR Extension: (Planilhas do Google) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02]
CHR Extension: (Kaspersky Protection) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-03-24]
CHR Extension: (Documentos Google off-line) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02]
CHR Extension: (Simple Speed Dial) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gpdpldlbafdmhlmcdllcjgoigmpjonfc [2017-03-08]
CHR Extension: (Yahoo Partner) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2017-05-08]
CHR Extension: (EverSync - Sync bookmarks, backup favorites) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [2017-03-07]
CHR Extension: (Lua de Hoje) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jbeamjhhmeolindjbajlgmpkoncnkdpe [2017-04-05]
CHR Extension: (Night Time In New York City) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2016-09-02]
CHR Extension: (Skype) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-03-09]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2017-05-03]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-11-20]
CHR Extension: (Baixou Agora) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nbfjpmeddmamejnmmppjlfglfhcjbbai [2017-06-02]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-02]
CHR Extension: (Chrome Media Router) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-13]
CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\System Profile [2017-05-25]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ANTONI~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-11-20]
CHR HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fdbpcigaolookbahgdofnimidinicfid] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nbfjpmeddmamejnmmppjlfglfhcjbbai] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ABBYY.Licensing.FineReader.Corporate.11.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [818952 2011-12-22] (ABBYY)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-02-06] (ArcSoft Inc.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-01-28] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.05.08\AsusFanControlService.exe [387896 2014-04-06] (ASUSTeK Computer Inc.)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-28] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-28] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-30] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
R2 Dyn Updater; C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [95608 2011-11-15] (Dyn, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [593120 2015-09-22] (GAS Tecnologia)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [114688 2015-06-23] (Microsoft Corporation) [Arquivo não assinado]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [356352 2017-03-29] (Intel Corporation)
R2 INETLOCKSVC; C:\Program Files\Internet Lock\ILSvc.exe [293648 2013-04-03] (TopLang Software)
R2 IntegraPlayerServer; C:\TecVoz\IntegraPlayerV5\Server\Player.Server.SelfHost.Service.exe [14336 2015-04-30] (Seventh) [Arquivo não assinado]
R2 IntegraServerDB; C:\TecVoz\IntegraServerDB\bin\pg_ctl.exe [79872 2015-04-28] (PostgreSQL Global Development Group) [Arquivo não assinado]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-03] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 MSSQL$ADK; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\sqlservr.exe [206424 2012-02-11] (Microsoft Corporation)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2017-02-22] (Microsoft)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-16] (Microsoft Corporation)
S4 SQLAgent$ADK; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\SQLAGENT.EXE [438360 2012-02-11] (Microsoft Corporation)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Arquivo não assinado]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10888944 2017-04-25] (TeamViewer GmbH)
S2 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12465344 2015-08-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{956BB13B-9BE6-134D-A41E-3942EBCB6E0E}\YSearchUtilSvc.exe [182736 2017-03-21] (Yahoo Inc.)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] ()
S3 ampa; C:\Windows\SysWOW64\ampa.sys [38320 2016-12-25] ()
R3 AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [133752 2011-03-25] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [133752 2011-03-25] (SlySoft, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-06-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-06-20] (Disc Soft Ltd)
R3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-06-23] (Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [544744 2017-05-09] (Intel Corporation)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40648 2007-02-15] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-15] (SlySoft, Inc.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14944 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2014-11-18] ()
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-09-03] (GAS Tecnologia)
R3 ikbevent; C:\WINDOWS\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-04-06] () [Arquivo não assinado]
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-02-03] ()
S3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [143904 2015-11-05] (Zemana Ltd.)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197336 2017-04-11] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520176 2017-04-11] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1018592 2017-04-11] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-17] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [229288 2017-05-23] (AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-06-01] (AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [251656 2017-05-24] (AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [112912 2017-05-24] (AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [173144 2017-05-23] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-17] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-03-24] (AO Kaspersky Lab)
S3 MbswMailbox; C:\Program Files (x86)\ASUS\AI Suite III\690b33e1-0462-4e84-9bea-c7552b45432a.sys [17208 2016-04-18] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R2 NPF; C:\Windows\SysWOW64\drivers\npf64.sys [36600 2016-08-17] (Riverbed Technology, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
R3 Serenum; C:\WINDOWS\system32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\WINDOWS\system32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Nuvoton Technology Corp.)
S3 smsbda; C:\WINDOWS\system32\drivers\smsbda.sys [63648 2009-12-02] (Siano)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R1 VBoxUSBMon; C:\WINDOWS\System32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (BigNox Corporation)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31936 2015-08-14] (VMware, Inc.)
R0 vsock; C:\WINDOWS\System32\drivers\vsock.sys [75512 2015-08-04] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [34520 2015-07-09] (VMware, Inc.)
S3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-09-03] (GAS Tecnologia LTDA)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.0\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40392 2012-07-25] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation)
R1 WMDrive; C:\Windows\SysWOW64\drivers\WMDrive.sys [92536 2015-06-24] (WinMount International Inc)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-03-13] (CyberLink Corp.)
S3 cpuz140; \??\C:\Users\ANTONI~1\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== ATENÇÃO
S3 dbx; system32\DRIVERS\dbx.sys [X]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
U3 idsvc; não ImagePath
U3 wpcsvc; não ImagePath
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-03 23:13 - 2017-06-03 23:13 - 00104250 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Addition.txt
2017-06-03 23:12 - 2017-06-03 23:15 - 00058954 _____ C:\Users\Antonio Carlos -ACAS\Desktop\FRST.txt
2017-06-03 23:04 - 2017-06-03 23:04 - 04110280 _____ C:\Users\Antonio Carlos -ACAS\Desktop\AdwCleaner.exe
2017-06-03 23:04 - 2017-06-03 23:04 - 02433536 _____ (Farbar) C:\Users\Antonio Carlos -ACAS\Desktop\FRST64.exe
2017-06-02 08:29 - 2017-06-02 08:29 - 09551280 _____ (Piriform Ltd) C:\Users\Antonio Carlos -ACAS\Desktop\ccsetup530.exe
2017-06-01 10:00 - 2017-06-01 10:00 - 00087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2017-05-30 22:46 - 2017-05-30 22:47 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Launchy
2017-05-30 22:08 - 2017-05-30 22:08 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00987840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00690008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00485576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-05-30 22:02 - 2017-05-30 22:02 - 00001135 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Launchy.lnk
2017-05-30 22:02 - 2017-05-30 22:02 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Launchy
2017-05-30 22:02 - 2017-05-30 22:02 - 00000000 ____D C:\Program Files (x86)\Launchy
2017-05-30 21:34 - 2017-05-30 21:50 - 00000913 _____ C:\Users\Todos os Usuários\ReclaiMe.config
2017-05-30 21:34 - 2017-05-30 21:50 - 00000913 _____ C:\ProgramData\ReclaiMe.config
2017-05-30 21:34 - 2017-05-30 21:50 - 00000438 _____ C:\Users\Antonio Carlos -ACAS\AppData\Local\ReclaiMe.config
2017-05-30 21:33 - 2017-05-30 21:33 - 01128536 _____ (www.reclaime.com ) C:\Users\Antonio Carlos -ACAS\Desktop\setup-reclaime.exe
2017-05-30 15:19 - 2017-05-30 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-30 14:48 - 2017-05-30 14:48 - 00002089 _____ C:\Users\Antonio Carlos -ACAS\Desktop\WinRAR.lnk
2017-05-30 14:48 - 2017-05-30 14:48 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-05-30 14:48 - 2017-05-30 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-05-30 14:40 - 2017-05-30 14:50 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\WINRAR v. 5.40 - 32&64 BITES
2017-05-30 13:32 - 2017-05-30 13:32 - 00352600 _____ C:\Users\Antonio Carlos -ACAS\Desktop\CRIAÇÃO DE SUB-REDES ABUSAR .pdf
2017-05-30 11:42 - 2017-05-30 11:42 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\ImgBurn
2017-05-30 11:36 - 2017-05-30 11:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\OpenOffice
2017-05-30 11:35 - 2017-05-30 11:35 - 00000000 ____D C:\Users\Todos os Usuários\Canneverbe Limited
2017-05-30 11:35 - 2017-05-30 11:35 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2017-05-30 11:17 - 2017-05-30 11:17 - 00002248 _____ C:\Users\Public\Desktop\Google Earth.lnk
2017-05-30 11:17 - 2017-05-30 11:17 - 00001760 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2017-05-30 11:17 - 2017-05-30 11:17 - 00001068 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk
2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ____D C:\Program Files\CDBurnerXP
2017-05-30 11:16 - 2017-05-30 11:16 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2017-05-30 11:15 - 2017-06-01 09:40 - 00000000 ____D C:\Program Files\WinRAR
2017-05-30 11:15 - 2017-05-30 11:15 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-05-30 11:15 - 2017-05-30 11:15 - 00001973 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2017-05-30 11:15 - 2017-05-30 11:15 - 00001961 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2017-05-30 11:15 - 2017-05-30 11:15 - 00001106 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\Program Files\VS Revo Group
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files\Java
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-05-30 07:22 - 2017-05-30 07:22 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-05-26 10:06 - 2017-05-23 15:14 - 01774792 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Anydesk.exe
2017-05-25 23:42 - 2017-05-25 23:56 - 00001279 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Adobe Audition CC.lnk
2017-05-25 23:41 - 2017-05-25 23:41 - 00003694 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-AntonioCarlos-A-Antonio Carlos -ACAS
2017-05-25 23:37 - 2017-05-25 23:37 - 00001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC.lnk
2017-05-25 23:08 - 2017-05-26 09:22 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE AUDITION CC v .6.0 32 & 64BITES + CRACK KEYGEN
2017-05-24 07:24 - 2017-05-24 07:24 - 00251656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2017-05-24 07:23 - 2017-05-24 07:23 - 00112912 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2017-05-23 21:14 - 2017-05-23 21:14 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-23 21:14 - 2017-05-23 21:14 - 00002151 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-23 16:40 - 2017-05-23 16:40 - 00000600 _____ C:\Users\Antonio Carlos -ACAS\PUTTY.RND
2017-05-23 15:37 - 2017-05-23 15:37 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\TightVNC
2017-05-23 15:36 - 2017-05-23 15:36 - 00000000 ____D C:\Program Files (x86)\ShowMyPCService
2017-05-23 15:17 - 2017-05-23 15:17 - 01774792 _____ C:\Users\Antonio Carlos -ACAS\Downloads\Baixaki_anydesk.exe
2017-05-23 15:14 - 2017-05-26 10:07 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\AnyDesk
2017-05-23 12:23 - 2017-05-23 21:51 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\APLICATIVOS DE ACESSO REMOTO ( TEAM VIEWER, AMMYY, MY SHOW PC ETC
2017-05-23 12:01 - 2017-05-23 12:01 - 00000000 ____D C:\Users\Todos os Usuários\AMMYY
2017-05-23 12:01 - 2017-05-23 12:01 - 00000000 ____D C:\ProgramData\AMMYY
2017-05-23 11:59 - 2017-05-23 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lunascape6
2017-05-23 10:42 - 2017-05-23 10:42 - 00229288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2017-05-23 10:42 - 2017-05-23 10:42 - 00173144 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2017-05-22 18:51 - 2017-05-22 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2017-05-22 18:50 - 2017-05-22 18:50 - 03276704 _____ C:\Users\Antonio Carlos -ACAS\Desktop\mp3tagv282setup.exe
2017-05-22 16:58 - 2017-05-22 16:59 - 00000000 ____D C:\Program Files\Plugins
2017-05-22 16:57 - 2017-05-22 16:57 - 02891316 _____ C:\Users\Antonio Carlos -ACAS\pack de plugins 2016.rar
2017-05-22 13:49 - 2017-05-22 17:00 - 00001880 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Adobe Audition CS6.exe.lnk
2017-05-22 13:44 - 2017-05-22 13:44 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CS6.lnk
2017-05-22 11:45 - 2017-05-25 23:40 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\Adobe
2017-05-22 10:58 - 2017-05-22 10:58 - 00000000 ____D C:\Users\Public\Documents\Adobe
2017-05-22 10:56 - 2017-05-25 23:41 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe
2017-05-22 10:56 - 2017-05-25 23:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-05-22 10:54 - 2017-05-22 10:54 - 00001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Macromedia
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Program Files (x86)\My Company Name
2017-05-22 10:54 - 2011-11-03 03:01 - 00056208 ____N (Rovi Corporation) C:\WINDOWS\system32\Drivers\PxHlpa64.sys
2017-05-22 10:54 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdralw2k.sys
2017-05-22 10:54 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdr4_xp.sys
2017-05-21 22:35 - 2017-05-21 22:35 - 00002051 _____ C:\Users\Public\Desktop\Setup Factory 9.lnk
2017-05-21 22:35 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\Setup Factory 9
2017-05-21 22:35 - 2017-05-21 22:35 - 00000000 ____D C:\Program Files (x86)\Setup Factory 9
2017-05-21 22:31 - 2017-05-21 22:32 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY INDIGO ROSE v.9.5
2017-05-21 10:23 - 2017-05-21 10:23 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Power2Go8
2017-05-20 22:13 - 2017-05-21 22:41 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY MEU PROJETO
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Todos os Usuários\IndigoRose
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\IndigoRose
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Indigo Rose Corporation
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\ProgramData\IndigoRose
2017-05-20 22:02 - 2017-05-20 22:02 - 00002158 _____ C:\Users\Public\Desktop\AutoPlay Media Studio 8.lnk
2017-05-20 22:02 - 2017-05-20 22:02 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\AutoPlay Media Studio 8
2017-05-20 22:02 - 2017-05-20 22:02 - 00000000 ____D C:\Program Files (x86)\AutoPlay Media Studio 8
2017-05-20 21:58 - 2017-05-20 21:59 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY MEDIA STUDIO 8.5.0
2017-05-20 21:29 - 2017-05-20 21:29 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CrystalDiskInfoPortable
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIMPEG2.dll
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIMP3.dll
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIFCD3.dll
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTICDMK7.dll
2017-05-20 21:00 - 2017-05-20 21:00 - 00303104 ____N (Microsoft Corporation) C:\WINDOWS\Setup1.exe
2017-05-20 21:00 - 2017-05-20 21:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE
2017-05-20 20:07 - 2017-05-20 20:07 - 00011886 _____ C:\Users\Antonio Carlos -ACAS\Demis_Roussos_-_Rain_And_Tears_(2005)_-_DVD.torrent
2017-05-20 16:37 - 2017-05-20 16:37 - 00045056 _____ (Northern Codeworks) C:\WINDOWS\NCUNINST.EXE
2017-05-20 15:03 - 2017-05-20 15:03 - 13677800 _____ (Google) C:\Users\Antonio Carlos -ACAS\Desktop\picasa39-setup.exe
2017-05-20 14:57 - 2017-05-20 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2017-05-20 14:31 - 2017-05-20 14:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\CYBERLINK POWER BACK-UP v. 2.50.9729a
2017-05-20 14:22 - 2017-05-22 13:29 - 00000000 ____D C:\Program Files (x86)\ASUS E-Green
2017-05-20 14:22 - 2017-05-20 14:22 - 00002191 _____ C:\Users\Public\Desktop\CyberLink PowerBackup.lnk
2017-05-20 14:22 - 2017-05-20 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerBackup
2017-05-20 14:20 - 2017-05-20 14:20 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2017-05-20 14:20 - 2017-05-20 14:20 - 00000000 ____D C:\Users\Public\CyberLink
2017-05-20 14:16 - 2017-05-20 19:44 - 00000000 ____D C:\Users\Todos os Usuários\CyberLink
2017-05-20 14:16 - 2017-05-20 19:44 - 00000000 ____D C:\ProgramData\CyberLink
2017-05-20 14:16 - 2017-05-20 14:16 - 00001495 _____ C:\Users\Public\Desktop\CyberLink Power2Go 8.lnk
2017-05-20 14:16 - 2017-05-20 14:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2017-05-20 14:16 - 2013-03-05 12:01 - 00091712 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys
2017-05-20 14:15 - 2017-05-20 14:16 - 00000000 ____D C:\Users\Todos os Usuários\install_clap
2017-05-20 14:15 - 2017-05-20 14:16 - 00000000 ____D C:\ProgramData\install_clap
2017-05-19 12:30 - 2017-05-19 12:31 - 1719588864 _____ C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE ILUSTRATOR CC 2014 MAC OS XFORCE.iso
2017-05-19 12:25 - 2017-05-19 12:26 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE ILUSTRATOR CC 2014 MAC OS XFORCE
2017-05-18 23:11 - 2017-05-18 23:11 - 00000022 _____ C:\Users\Antonio Carlos -ACAS\MEGA-RECOVERYKEY.txt
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\WINDOWS\SysWOW64\Drivers\vwifikerneldrv.sys
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\WINDOWS\SysWOW64\d3dx9_11.dll.tmp
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\Users\Todos os Usuários\fontcacheev1.dat
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\ProgramData\fontcacheev1.dat
2017-05-18 22:04 - 2017-03-27 08:01 - 00081000 _____ () C:\WINDOWS\system32\Drivers\adgnetworkwfpdrv.sys
2017-05-18 21:53 - 2017-05-18 21:54 - 00001182 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Your Uninstaller! PRO.lnk
2017-05-18 21:53 - 2017-05-18 21:53 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! PRO
2017-05-18 21:52 - 2017-05-18 21:52 - 00000000 ____D C:\Program Files (x86)\Your Uninstaller! PRO
2017-05-18 21:33 - 2017-05-18 21:39 - 00002547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk
2017-05-18 21:29 - 2017-05-18 21:29 - 00001325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-05-18 15:28 - 2017-05-18 15:28 - 01583630 _____ C:\Users\Antonio Carlos -ACAS\winbox.exe
2017-05-17 12:14 - 2017-05-17 12:15 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\SHOW MY PC v. 6.0.2900.2180
2017-05-17 12:08 - 2017-05-17 12:10 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CCLEAN SETUP v. 5.30.0.6063
2017-05-17 12:06 - 2017-05-17 12:06 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\POPCORN TIME v. 3.10
2017-05-17 11:26 - 2017-05-17 11:35 - 00002253 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Popcorn-Time.lnk
2017-05-17 09:49 - 2017-05-17 09:49 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time
2017-05-17 09:48 - 2017-05-17 09:50 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Popcorn-Time
2017-05-17 09:35 - 2017-05-17 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-05-15 19:38 - 2017-05-15 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
2017-05-15 12:11 - 2017-05-15 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2017-05-15 12:11 - 2017-05-15 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-05-15 12:00 - 2017-05-24 10:08 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-05-13 14:25 - 2017-05-26 08:03 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2017-05-13 14:25 - 2017-05-26 08:03 - 00000000 ____D C:\ProgramData\Adobe
2017-05-11 23:50 - 2017-05-11 23:50 - 00000000 ____D C:\Users\Todos os Usuários\Easy CD-DA Extractor
2017-05-11 23:50 - 2017-05-11 23:50 - 00000000 ____D C:\ProgramData\Easy CD-DA Extractor
2017-05-11 09:20 - 2017-05-11 17:55 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\CORRUPÇÃO GILMAR MENDES
2017-05-10 23:41 - 2017-05-10 23:43 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\INTEL DRIVERs UPDATE UTILITY v. 2.7.2
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\Softland
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\IntelDLM
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\EPSON
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\Softland
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\IntelDLM
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\EPSON
2017-05-10 23:35 - 2017-05-10 23:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Intel Components
2017-05-10 23:34 - 2017-05-13 10:59 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-05-10 23:34 - 2017-05-10 23:34 - 00002524 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK
2017-05-10 23:34 - 2017-05-10 23:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2017-05-10 23:34 - 2017-05-10 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2017-05-10 23:33 - 2017-05-18 23:16 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-05-10 23:33 - 2017-05-18 23:16 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-10 23:33 - 2017-05-10 23:33 - 00000000 ____D C:\Program Files\Intel Driver Update Utility
2017-05-10 22:59 - 2017-05-23 21:11 - 00000000 ____D C:\Users\Todos os Usuários\TEMP
2017-05-10 22:59 - 2017-05-23 21:11 - 00000000 ____D C:\ProgramData\TEMP
2017-05-10 22:56 - 2017-05-10 22:56 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2017-05-10 22:56 - 2017-05-10 22:56 - 00000000 ____D C:\ProgramData\Oracle
2017-05-10 22:55 - 2017-05-10 22:55 - 00001145 _____ C:\Users\Public\Desktop\MP3 ROCKET 7.4.1 PRO.LNK
2017-05-10 22:44 - 2017-05-10 22:44 - 00000000 ____D C:\Users\Todos os Usuários\TopLang
2017-05-10 22:44 - 2017-05-10 22:44 - 00000000 ____D C:\ProgramData\TopLang
2017-05-10 22:07 - 2017-05-10 22:07 - 00000000 ____D C:\Users\Todos os Usuários\IDM
2017-05-10 22:07 - 2017-05-10 22:07 - 00000000 ____D C:\ProgramData\IDM
2017-05-10 22:05 - 2017-05-11 23:50 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2017-05-10 22:05 - 2017-05-11 23:50 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-05-10 22:05 - 2017-05-10 22:05 - 00000000 ____D C:\Users\Todos os Usuários\SlySoft
2017-05-10 22:05 - 2017-05-10 22:05 - 00000000 ____D C:\ProgramData\SlySoft
2017-05-10 22:03 - 2017-05-10 22:03 - 00000000 ____D C:\Users\Todos os Usuários\Intel
2017-05-10 22:03 - 2017-05-10 22:03 - 00000000 ____D C:\ProgramData\Intel
2017-05-10 21:34 - 2017-05-10 21:34 - 00000000 ____D C:\Users\Todos os Usuários\WinMount
2017-05-10 21:34 - 2017-05-10 21:34 - 00000000 ____D C:\ProgramData\WinMount
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\Users\Todos os Usuários\Google
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\ProgramData\Google
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\ProgramData\GbPlugin
2017-05-10 10:21 - 2017-05-10 10:21 - 00000000 ___HD C:\OneDriveTemp
2017-05-10 10:09 - 2017-05-15 14:58 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\DMCache
2017-05-10 10:09 - 2017-05-10 10:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Video
2017-05-10 10:09 - 2017-05-10 10:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Compressed
2017-05-10 10:08 - 2017-05-10 10:08 - 14040102 _____ C:\Users\Antonio Carlos -ACAS\DriverEasy PRO 5.5.0.5335 + IDM 6.25 Build 11.zip
2017-05-09 23:54 - 2017-05-09 23:54 - 00001039 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2017-05-09 23:54 - 2017-05-09 23:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2017-05-09 23:49 - 2017-05-10 00:06 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\Driver Easy
2017-05-09 22:53 - 2017-05-09 23:34 - 01730304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01009.dll
2017-05-08 13:33 - 2017-05-08 13:33 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\YSearchUtil
2017-05-08 12:57 - 2017-05-08 12:57 - 00000796 _____ C:\Users\Public\Desktop\Tecnobyte Suporte.lnk
2017-05-08 12:57 - 2017-05-08 12:57 - 00000781 _____ C:\Users\Public\Desktop\Tecnobyte SAC Free.lnk
2017-05-08 12:57 - 2017-05-08 12:57 - 00000781 _____ C:\Users\Public\Desktop\Backup do SAC Free.lnk
2017-05-08 12:57 - 2017-05-08 12:57 - 00000000 ____D C:\Tecnobyte
2017-05-07 10:17 - 2017-05-07 10:18 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\LINK DE VERSÕES ANTIGAS DO MOZILLA FIREFOX
2017-05-04 20:40 - 2017-05-20 12:52 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CRIANDO LINKs DIRETO NO GOOGLE DRIVE
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-03 23:15 - 2016-01-15 11:04 - 00000000 ____D C:\FRST
2017-06-03 22:58 - 2017-01-06 15:31 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-03 22:19 - 2015-06-22 21:22 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2017-06-03 22:19 - 2015-06-22 21:22 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-06-03 17:16 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-03 17:14 - 2016-12-23 18:00 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\ElevatedDiagnostics
2017-06-03 17:13 - 2017-05-01 20:41 - 00000015 _____ C:\Users\Antonio Carlos -ACAS\advanced_ip_scanner_Aliases.bin
2017-06-03 17:13 - 2015-11-12 12:48 - 00001052 _____ C:\Users\Antonio Carlos -ACAS\advanced_ip_scanner_MAC.bin
2017-06-03 12:11 - 2016-11-20 21:15 - 00000000 ___RD C:\Users\Antonio Carlos -ACAS\Google Drive
2017-06-03 12:10 - 2016-11-27 21:54 - 00000000 ___RD C:\Users\Antonio Carlos -ACAS\OneDrive
2017-06-03 12:05 - 2017-04-16 01:06 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-06-03 12:05 - 2015-06-23 00:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Adobe
2017-06-03 11:59 - 2016-06-21 22:27 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-03 11:59 - 2015-07-03 07:08 - 00000000 __SHD C:\Users\Antonio Carlos -ACAS\IntelGraphicsProfiles
2017-06-03 11:58 - 2017-01-06 15:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-02 23:02 - 2017-01-14 12:10 - 00000731 _____ C:\WINDOWS\system32\InetLock.dat
2017-06-02 23:02 - 2016-07-16 03:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-06-02 21:59 - 2015-07-03 08:41 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-06-02 08:29 - 2017-02-10 08:02 - 00000890 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-30 22:46 - 2015-02-06 22:23 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Incomplete
2017-05-30 22:08 - 2016-07-16 08:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-30 21:37 - 2015-06-23 20:40 - 00000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
2017-05-30 15:20 - 2016-09-28 19:29 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Dropbox
2017-05-30 15:20 - 2016-09-28 19:29 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-30 13:35 - 2017-01-06 15:30 - 05238752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-30 11:17 - 2015-06-23 23:03 - 00001814 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2017-05-30 11:15 - 2017-02-09 20:55 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-05-30 11:15 - 2017-02-09 20:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2017-05-30 11:13 - 2015-06-23 00:07 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-30 11:13 - 2015-06-23 00:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Adobe
2017-05-29 18:59 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-29 17:45 - 2016-01-06 21:49 - 00000000 ____D C:\DANFEView
2017-05-28 18:02 - 2016-11-20 17:25 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\LocalLow\Mozilla
2017-05-26 11:38 - 2015-07-03 08:41 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\TeamViewer
2017-05-26 09:28 - 2017-01-06 15:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS
2017-05-26 09:27 - 2017-04-22 13:52 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\COLEÇÕES E-BOOKs CLASSICOS MUNDIAIS
2017-05-25 23:48 - 2016-07-16 08:45 - 00000000 ____D C:\WINDOWS\INF
2017-05-25 23:37 - 2015-06-23 00:05 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-25 23:26 - 2015-06-28 12:33 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Azureus
2017-05-25 23:24 - 2016-09-28 19:47 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\MPC-HC
2017-05-25 23:16 - 2015-06-23 00:08 - 00000000 ____D C:\Program Files\Adobe
2017-05-25 00:29 - 2017-01-19 17:13 - 00000000 ____D C:\Users\MSSQL$ADK
2017-05-24 22:48 - 2017-01-05 10:32 - 00000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 6.1
2017-05-24 22:48 - 2017-01-05 10:18 - 00001024 ____H C:\AMTAG.BIN
2017-05-24 10:08 - 2015-06-22 23:54 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Microsoft Help
2017-05-23 21:14 - 2017-01-06 15:55 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-05-23 20:54 - 2015-12-07 22:31 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mp3tag
2017-05-22 18:51 - 2016-04-23 11:00 - 00001075 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2017-05-22 18:51 - 2015-07-11 11:05 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2017-05-21 10:23 - 2015-10-07 22:19 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\CyberLink
2017-05-21 10:20 - 2017-03-23 12:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-20 18:26 - 2016-06-28 11:49 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-20 15:04 - 2015-06-23 01:07 - 00001206 _____ C:\Users\Public\Desktop\Picasa 3.lnk
2017-05-20 14:22 - 2015-06-23 00:23 - 00000000 ____D C:\Program Files (x86)\CyberLink
2017-05-20 14:22 - 2015-06-22 20:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-18 22:14 - 2017-01-04 21:52 - 00000000 ____D C:\Program Files (x86)\Wondershare
2017-05-18 21:51 - 2016-10-12 13:27 - 00013183 _____ C:\missing.ini
2017-05-17 09:35 - 2015-06-23 19:32 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\DAEMON Tools Lite
2017-05-15 19:38 - 2015-06-23 00:34 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-13 10:59 - 2016-12-29 11:44 - 00000000 ____D C:\AdwCleaner
2017-05-12 22:52 - 2017-03-21 21:21 - 00004702 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-12 22:52 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-12 22:52 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-11 08:05 - 2015-06-22 20:18 - 00019774 _____ C:\WINDOWS\system32\results.xml
2017-05-10 23:39 - 2017-01-06 16:20 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-05-10 23:38 - 2015-06-22 19:39 - 00000000 ____D C:\Program Files\Intel
2017-05-10 22:03 - 2017-02-18 17:42 - 00000000 ____D C:\Users\Todos os Usuários\ArcSoft
2017-05-10 22:03 - 2017-02-18 17:42 - 00000000 ____D C:\ProgramData\ArcSoft
2017-05-10 22:03 - 2015-09-23 23:08 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2017-05-10 22:03 - 2015-09-23 23:08 - 00000000 ____D C:\ProgramData\VMware
2017-05-10 22:03 - 2015-06-24 17:01 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2017-05-10 22:03 - 2015-06-24 17:01 - 00000000 ____D C:\ProgramData\Autodesk
2017-05-10 19:31 - 2016-01-20 11:19 - 00000000 ____D C:\Users\Todos os Usuários\Sony
2017-05-10 19:31 - 2016-01-20 11:19 - 00000000 ____D C:\ProgramData\Sony
2017-05-10 19:31 - 2015-07-07 22:10 - 00000000 ____D C:\Users\Todos os Usuários\ASUS
2017-05-10 19:31 - 2015-07-07 22:10 - 00000000 ____D C:\ProgramData\ASUS
2017-05-10 19:31 - 2015-06-23 00:25 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 10
2017-05-10 19:31 - 2015-06-22 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X6
2017-05-10 19:31 - 2015-06-22 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit)
2017-05-10 19:31 - 2015-06-22 20:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-05-10 09:59 - 2016-07-16 03:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-10 08:35 - 2017-01-06 15:36 - 02718732 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-10 08:35 - 2016-07-16 20:10 - 00769578 _____ C:\WINDOWS\system32\prfh0416.dat
2017-05-10 08:35 - 2016-07-16 20:10 - 00342352 _____ C:\WINDOWS\system32\prfc0416.dat
2017-05-09 23:50 - 2017-02-09 21:28 - 00000000 ____D C:\Program Files\Easeware
2017-05-09 23:35 - 2016-01-30 15:10 - 01467904 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-05-09 23:34 - 2016-01-30 15:11 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-05-09 23:33 - 2016-02-13 23:41 - 00038680 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ICCWDT.sys
2017-05-09 22:54 - 2017-02-10 02:45 - 00544744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\e1d65x64.sys
2017-05-08 17:52 - 2015-07-03 21:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\MP3Rocket
2017-05-08 13:34 - 2015-07-22 18:57 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-08 13:33 - 2017-03-11 10:53 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2017-05-08 13:30 - 2016-09-02 18:03 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-05-08 09:05 - 2017-04-11 21:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\DOCUMENTOS PLACA MÃE DANIFICADA
2017-05-04 20:20 - 2015-06-24 10:46 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\WinMount
2017-05-04 14:13 - 2017-04-11 21:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\DOCUMENTOS PLACA MÃE DANIFICADA
2017-05-04 08:14 - 2016-07-13 08:14 - 00002387 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Google Chrome.lnk
==================== Arquivos na raiz de alguns diretórios =======
2015-07-28 17:03 - 2016-02-23 15:15 - 0085827 _____ () C:\Program Files (x86)\CMS Setup Log.txt
2007-07-29 11:01 - 2005-08-27 14:26 - 1581056 _____ (Macromedia, Inc.) C:\Program Files (x86)\SAFlashPlayer.exe
2016-12-08 09:12 - 2016-12-08 09:12 - 0179203 _____ () C:\Program Files (x86)\uninstal.log
2015-06-23 20:17 - 2015-06-23 20:17 - 0007859 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.cat
2015-06-23 20:17 - 2015-06-23 20:17 - 0001167 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.inf
2015-06-23 20:17 - 2015-06-23 20:17 - 0082816 _____ (VSO Software) C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.sys
2016-12-23 08:06 - 2016-12-23 08:06 - 0018301 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\unins000.dat
2017-01-03 19:37 - 2017-01-03 19:37 - 0000001 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Local\llftool.4.40.agreement
2017-05-30 21:34 - 2017-05-30 21:50 - 0000438 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Local\ReclaiMe.config
2017-05-18 22:04 - 2017-05-18 22:04 - 0000262 _____ () C:\ProgramData\fontcacheev1.dat
2017-05-30 21:34 - 2017-05-30 21:50 - 0000913 _____ () C:\ProgramData\ReclaiMe.config
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\fontcacheev1.dat
C:\Users\Antonio Carlos -ACAS\JavaSetup8u121.exe
C:\Users\Antonio Carlos -ACAS\mp3rocket-pro.exe
C:\Users\Antonio Carlos -ACAS\pw10-free.exe
C:\Users\Antonio Carlos -ACAS\transmac-11-9.exe
C:\Users\Antonio Carlos -ACAS\winbox.exe
C:\Users\Todos os Usuários\fontcacheev1.dat
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-06-01 09:54
==================== Fim de FRST.txt ============================
Executado por Antonio Carlos -ACAS (administrador) em ANTONIOCARLOS-A (03-06-2017 23:15:45)
Executando a partir de C:\Users\Antonio Carlos -ACAS\Desktop
Perfis Carregados: Antonio Carlos -ACAS & MSSQL$ADK (Perfis Disponíveis: Antonio Carlos -ACAS & Administrador & MSSQL$ADK)
Platform: Windows 10 Pro Versão 1607 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Dyn, Inc.) C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.05.08\AsusFanControlService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(TopLang Software) C:\Program Files\Internet Lock\ILSvc.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
(Seventh) C:\TecVoz\IntegraPlayerV5\Server\Player.Server.SelfHost.Service.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\pg_ctl.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{956BB13B-9BE6-134D-A41E-3942EBCB6E0E}\YSearchUtilSVC.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Launchy\Launchy.exe
() C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Apple Computer, Inc.) C:\Windows\SysWOW64\qttask.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Unimake Software) C:\DANFEView\mon\danfemon.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
() C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9199104 2017-03-10] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-29] (SlySoft, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-08-19] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128 2015-08-14] (VMware, Inc.)
HKLM-x32\...\Run: [DANFEViewMon] => C:\DANFEView\danfemon.exe [4668928 2015-01-29] (Unimake Software)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992 2012-08-24] (Power Software Ltd)
HKLM-x32\...\Run: [QuickTime Task] => C:\Windows\SysWOW64\qttask.exe [98304 2016-07-26] (Apple Computer, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [29246632 2017-05-30] (Dropbox, Inc.)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [721856 2016-07-01] (Autodesk, Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [170496 2009-02-06] (ArcSoft Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-19] (CyberLink Corp.)
HKLM-x32\...\Run: [NWEReboot] => [X]
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [AnyDVD] => C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe [4980344 2011-05-06] (SlySoft, Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2016-12-22] (Disc Soft Ltd)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [GoogleChromeAutoLaunch_6E8D70B3AD4096B31BB9745C10219D74] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Google Update] => C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-27] (Google Inc.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-19] (CyberLink Corp.)
HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Policies\Explorer: []
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [MountOverlayIcon] -> {0F49CF41-FD97-4942-9F2A-35E8B489E7FB} => C:\Program Files\WinMount\WinMTExt.dll [2010-10-21] (WinMount International Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.)
Startup: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2017-05-30]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe ()
Startup: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar630.lnk [2017-06-03]
ShortcutTarget: Sidebar630.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
GroupPolicy: Restrição <======= ATENÇÃO
GroupPolicyScripts: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9 17 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 01 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 02 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 03 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 04 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Winsock: Catalog9-x64 17 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software)
Tcpip\..\Interfaces\{64931bff-515c-4eb1-a005-4bbbd8838c1d}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{c42bbe63-4270-4169-9e83-0d18197180ca}: [NameServer] 216.146.35.35,216.146.36.36,192.168.25.1,8.8.4.4,192.168.25.1,8.8.4.4,192.168.25.1,8.8.4.4
Tcpip\..\Interfaces\{eddb0ad5-b031-4418-94f4-8a486835db21}: [DhcpNameServer] 192.168.25.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-998340394-1884923500-388074382-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
HKU\S-1-5-21-998340394-1884923500-388074382-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.br/
SearchScopes: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> {88F57D6A-FBA5-46A0-B8CC-304B673D1C6E} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&intl=br&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Sem Nome -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Nenhum Arquivo
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle Corporation)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal)
BHO-x32: CBHO Object -> {CBA74CDA-DF78-4AD9-954E-3B15D0A993DE} -> C:\Program Files (x86)\CoreStreet\SpoofStick\SpoofStickBHO.dll [2004-08-18] (CoreStreet, Ltd.)
BHO-x32: Sem Nome -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Nenhum Arquivo
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-08] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - SpoofStick - {4D46ED77-1429-4CF6-8F63-C84B5D710BAF} - C:\Program Files (x86)\CoreStreet\SpoofStick\SpoofStick.dll [2004-08-18] (CoreStreet, Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {4D46ED77-1429-4CF6-8F63-C84B5D710BAF} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.)
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab)
FireFox:
========
FF DefaultProfile: fk58qeja.default
FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default [2017-06-03]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\83vsaca6.default -> Yahoo!
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\83vsaca6.default -> Yahoo!
FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\fvdmedia@gmail.com [2016-04-14]
FF Extension: (Search and New Tab by Yahoo) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-05-08]
FF Extension: (Just Disable Stuff) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-04-28]
FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-04-21]
FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado]
FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\pavel.sherbakov@gmail.com [2016-05-14]
FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16]
FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25]
FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\searchplugins\yandex.ru-161818.xml [2016-01-30]
FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default [2017-05-28]
FF NewTab: Profiles\fk58qeja.default -> chrome://fvd.speeddial/content/fvd_about_blank.html
FF Homepage: Profiles\fk58qeja.default -> chrome://fvd.speeddial/content/fvd_about_blank.html
FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\fvdmedia@gmail.com [2017-02-20]
FF Extension: (Baixou Agora) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\jid1-dG9taWNhQGdtYWlsLmNvbS4u@jetpack.xpi [2016-09-18]
FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-09-12]
FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado]
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-04-25]
FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\pavel.sherbakov@gmail.com [2017-05-23]
FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\pt-BR@dictionaries.addons.mozilla.org [2016-08-02]
FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16]
FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-10-09]
FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\searchplugins\yandex.ru-161818.xml [2016-01-30]
FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default [2016-09-02]
FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\fvdmedia@gmail.com [2016-04-14]
FF Extension: (GreatSocialTab Extension) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\GreatSocialTab-the-extension1@mozilla.com.xpi [2016-05-24]
FF Extension: (Just Disable Stuff) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-04-28]
FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-04-21]
FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado]
FF Extension: (Português do Brasil Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2016-06-30] [não assinado]
FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\pavel.sherbakov@gmail.com [2016-05-14]
FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16]
FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25]
FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\searchplugins\yandex.ru-161818.xml [2016-01-30]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-03-17]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\cef\xpi
FF Extension: (GBBD Caixa Economica Federal) - C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [2016-12-23] [não assinado]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-11] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Nenhum Arquivo]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2027 -> C:\Program Files (x86)\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll [Nenhum Arquivo]
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1040 -> C:\Program Files (x86)\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Nenhum Arquivo]
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @talk.google.com/O1DPlugin -> C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: gastecnologia.com.br/sf/cef -> C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll [2014-12-09] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: gastecnologia.com.br/sf/cef64 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [2014-12-09] (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR HomePage: Profile 2 -> hxxps://br.search.yahoo.com/?type=994519&fr=yo-yhp-ch
CHR NewTab: Profile 2 -> Not-active:"chrome-extension://fdbpcigaolookbahgdofnimidinicfid/newtab.html", Not-active:"chrome-extension://gpdpldlbafdmhlmcdllcjgoigmpjonfc/newtab.html", Active:"chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html"
CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-25]
CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-06-03]
CHR Extension: (Google Apresentações) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02]
CHR Extension: (Google Docs) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-02]
CHR Extension: (Google Drive) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-02]
CHR Extension: (Dropbox para Gmail) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-23]
CHR Extension: (Yahoo Partner) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fdbpcigaolookbahgdofnimidinicfid [2017-03-11]
CHR Extension: (Planilhas do Google) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02]
CHR Extension: (Kaspersky Protection) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-03-24]
CHR Extension: (Documentos Google off-line) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02]
CHR Extension: (Simple Speed Dial) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gpdpldlbafdmhlmcdllcjgoigmpjonfc [2017-03-08]
CHR Extension: (Yahoo Partner) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2017-05-08]
CHR Extension: (EverSync - Sync bookmarks, backup favorites) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [2017-03-07]
CHR Extension: (Lua de Hoje) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jbeamjhhmeolindjbajlgmpkoncnkdpe [2017-04-05]
CHR Extension: (Night Time In New York City) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2016-09-02]
CHR Extension: (Skype) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-03-09]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2017-05-03]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-11-20]
CHR Extension: (Baixou Agora) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nbfjpmeddmamejnmmppjlfglfhcjbbai [2017-06-02]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-02]
CHR Extension: (Chrome Media Router) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-13]
CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\System Profile [2017-05-25]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ANTONI~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-11-20]
CHR HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fdbpcigaolookbahgdofnimidinicfid] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nbfjpmeddmamejnmmppjlfglfhcjbbai] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ABBYY.Licensing.FineReader.Corporate.11.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [818952 2011-12-22] (ABBYY)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-02-06] (ArcSoft Inc.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-01-28] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.05.08\AsusFanControlService.exe [387896 2014-04-06] (ASUSTeK Computer Inc.)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-28] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-28] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-30] (Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
R2 Dyn Updater; C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [95608 2011-11-15] (Dyn, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [593120 2015-09-22] (GAS Tecnologia)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [114688 2015-06-23] (Microsoft Corporation) [Arquivo não assinado]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [356352 2017-03-29] (Intel Corporation)
R2 INETLOCKSVC; C:\Program Files\Internet Lock\ILSvc.exe [293648 2013-04-03] (TopLang Software)
R2 IntegraPlayerServer; C:\TecVoz\IntegraPlayerV5\Server\Player.Server.SelfHost.Service.exe [14336 2015-04-30] (Seventh) [Arquivo não assinado]
R2 IntegraServerDB; C:\TecVoz\IntegraServerDB\bin\pg_ctl.exe [79872 2015-04-28] (PostgreSQL Global Development Group) [Arquivo não assinado]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-03] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 MSSQL$ADK; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\sqlservr.exe [206424 2012-02-11] (Microsoft Corporation)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2017-02-22] (Microsoft)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-16] (Microsoft Corporation)
S4 SQLAgent$ADK; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\SQLAGENT.EXE [438360 2012-02-11] (Microsoft Corporation)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Arquivo não assinado]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10888944 2017-04-25] (TeamViewer GmbH)
S2 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12465344 2015-08-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{956BB13B-9BE6-134D-A41E-3942EBCB6E0E}\YSearchUtilSvc.exe [182736 2017-03-21] (Yahoo Inc.)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] ()
S3 ampa; C:\Windows\SysWOW64\ampa.sys [38320 2016-12-25] ()
R3 AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [133752 2011-03-25] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [133752 2011-03-25] (SlySoft, Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-06-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-06-20] (Disc Soft Ltd)
R3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-06-23] (Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [544744 2017-05-09] (Intel Corporation)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40648 2007-02-15] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-15] (SlySoft, Inc.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14944 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2014-11-18] ()
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-09-03] (GAS Tecnologia)
R3 ikbevent; C:\WINDOWS\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-04-06] () [Arquivo não assinado]
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-02-03] ()
S3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [143904 2015-11-05] (Zemana Ltd.)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197336 2017-04-11] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520176 2017-04-11] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1018592 2017-04-11] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-17] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [229288 2017-05-23] (AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-06-01] (AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [251656 2017-05-24] (AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [112912 2017-05-24] (AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [173144 2017-05-23] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-17] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-03-24] (AO Kaspersky Lab)
S3 MbswMailbox; C:\Program Files (x86)\ASUS\AI Suite III\690b33e1-0462-4e84-9bea-c7552b45432a.sys [17208 2016-04-18] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R2 NPF; C:\Windows\SysWOW64\drivers\npf64.sys [36600 2016-08-17] (Riverbed Technology, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
R3 Serenum; C:\WINDOWS\system32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\WINDOWS\system32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Nuvoton Technology Corp.)
S3 smsbda; C:\WINDOWS\system32\drivers\smsbda.sys [63648 2009-12-02] (Siano)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R1 VBoxUSBMon; C:\WINDOWS\System32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (BigNox Corporation)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31936 2015-08-14] (VMware, Inc.)
R0 vsock; C:\WINDOWS\System32\drivers\vsock.sys [75512 2015-08-04] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [34520 2015-07-09] (VMware, Inc.)
S3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-09-03] (GAS Tecnologia LTDA)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.0\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40392 2012-07-25] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation)
R1 WMDrive; C:\Windows\SysWOW64\drivers\WMDrive.sys [92536 2015-06-24] (WinMount International Inc)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-03-13] (CyberLink Corp.)
S3 cpuz140; \??\C:\Users\ANTONI~1\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== ATENÇÃO
S3 dbx; system32\DRIVERS\dbx.sys [X]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
U3 idsvc; não ImagePath
U3 wpcsvc; não ImagePath
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-03 23:13 - 2017-06-03 23:13 - 00104250 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Addition.txt
2017-06-03 23:12 - 2017-06-03 23:15 - 00058954 _____ C:\Users\Antonio Carlos -ACAS\Desktop\FRST.txt
2017-06-03 23:04 - 2017-06-03 23:04 - 04110280 _____ C:\Users\Antonio Carlos -ACAS\Desktop\AdwCleaner.exe
2017-06-03 23:04 - 2017-06-03 23:04 - 02433536 _____ (Farbar) C:\Users\Antonio Carlos -ACAS\Desktop\FRST64.exe
2017-06-02 08:29 - 2017-06-02 08:29 - 09551280 _____ (Piriform Ltd) C:\Users\Antonio Carlos -ACAS\Desktop\ccsetup530.exe
2017-06-01 10:00 - 2017-06-01 10:00 - 00087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2017-05-30 22:46 - 2017-05-30 22:47 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Launchy
2017-05-30 22:08 - 2017-05-30 22:08 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00987840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00690008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00485576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2017-05-30 22:08 - 2017-05-30 22:08 - 00018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-05-30 22:02 - 2017-05-30 22:02 - 00001135 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Launchy.lnk
2017-05-30 22:02 - 2017-05-30 22:02 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Launchy
2017-05-30 22:02 - 2017-05-30 22:02 - 00000000 ____D C:\Program Files (x86)\Launchy
2017-05-30 21:34 - 2017-05-30 21:50 - 00000913 _____ C:\Users\Todos os Usuários\ReclaiMe.config
2017-05-30 21:34 - 2017-05-30 21:50 - 00000913 _____ C:\ProgramData\ReclaiMe.config
2017-05-30 21:34 - 2017-05-30 21:50 - 00000438 _____ C:\Users\Antonio Carlos -ACAS\AppData\Local\ReclaiMe.config
2017-05-30 21:33 - 2017-05-30 21:33 - 01128536 _____ (www.reclaime.com ) C:\Users\Antonio Carlos -ACAS\Desktop\setup-reclaime.exe
2017-05-30 15:19 - 2017-05-30 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-30 14:48 - 2017-05-30 14:48 - 00002089 _____ C:\Users\Antonio Carlos -ACAS\Desktop\WinRAR.lnk
2017-05-30 14:48 - 2017-05-30 14:48 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-05-30 14:48 - 2017-05-30 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-05-30 14:40 - 2017-05-30 14:50 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\WINRAR v. 5.40 - 32&64 BITES
2017-05-30 13:32 - 2017-05-30 13:32 - 00352600 _____ C:\Users\Antonio Carlos -ACAS\Desktop\CRIAÇÃO DE SUB-REDES ABUSAR .pdf
2017-05-30 11:42 - 2017-05-30 11:42 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\ImgBurn
2017-05-30 11:36 - 2017-05-30 11:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\OpenOffice
2017-05-30 11:35 - 2017-05-30 11:35 - 00000000 ____D C:\Users\Todos os Usuários\Canneverbe Limited
2017-05-30 11:35 - 2017-05-30 11:35 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2017-05-30 11:17 - 2017-05-30 11:17 - 00002248 _____ C:\Users\Public\Desktop\Google Earth.lnk
2017-05-30 11:17 - 2017-05-30 11:17 - 00001760 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2017-05-30 11:17 - 2017-05-30 11:17 - 00001068 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk
2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ____D C:\Program Files\CDBurnerXP
2017-05-30 11:16 - 2017-05-30 11:16 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2017-05-30 11:15 - 2017-06-01 09:40 - 00000000 ____D C:\Program Files\WinRAR
2017-05-30 11:15 - 2017-05-30 11:15 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-05-30 11:15 - 2017-05-30 11:15 - 00001973 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2017-05-30 11:15 - 2017-05-30 11:15 - 00001961 _____ C:\Users\Public\Desktop\ImgBurn.lnk
2017-05-30 11:15 - 2017-05-30 11:15 - 00001106 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\Program Files\VS Revo Group
2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\Program Files (x86)\ImgBurn
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files\Java
2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-05-30 07:22 - 2017-05-30 07:22 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-05-26 10:06 - 2017-05-23 15:14 - 01774792 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Anydesk.exe
2017-05-25 23:42 - 2017-05-25 23:56 - 00001279 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Adobe Audition CC.lnk
2017-05-25 23:41 - 2017-05-25 23:41 - 00003694 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-AntonioCarlos-A-Antonio Carlos -ACAS
2017-05-25 23:37 - 2017-05-25 23:37 - 00001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC.lnk
2017-05-25 23:08 - 2017-05-26 09:22 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE AUDITION CC v .6.0 32 & 64BITES + CRACK KEYGEN
2017-05-24 07:24 - 2017-05-24 07:24 - 00251656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2017-05-24 07:23 - 2017-05-24 07:23 - 00112912 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2017-05-23 21:14 - 2017-05-23 21:14 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-23 21:14 - 2017-05-23 21:14 - 00002151 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-23 16:40 - 2017-05-23 16:40 - 00000600 _____ C:\Users\Antonio Carlos -ACAS\PUTTY.RND
2017-05-23 15:37 - 2017-05-23 15:37 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\TightVNC
2017-05-23 15:36 - 2017-05-23 15:36 - 00000000 ____D C:\Program Files (x86)\ShowMyPCService
2017-05-23 15:17 - 2017-05-23 15:17 - 01774792 _____ C:\Users\Antonio Carlos -ACAS\Downloads\Baixaki_anydesk.exe
2017-05-23 15:14 - 2017-05-26 10:07 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\AnyDesk
2017-05-23 12:23 - 2017-05-23 21:51 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\APLICATIVOS DE ACESSO REMOTO ( TEAM VIEWER, AMMYY, MY SHOW PC ETC
2017-05-23 12:01 - 2017-05-23 12:01 - 00000000 ____D C:\Users\Todos os Usuários\AMMYY
2017-05-23 12:01 - 2017-05-23 12:01 - 00000000 ____D C:\ProgramData\AMMYY
2017-05-23 11:59 - 2017-05-23 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lunascape6
2017-05-23 10:42 - 2017-05-23 10:42 - 00229288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2017-05-23 10:42 - 2017-05-23 10:42 - 00173144 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2017-05-22 18:51 - 2017-05-22 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2017-05-22 18:50 - 2017-05-22 18:50 - 03276704 _____ C:\Users\Antonio Carlos -ACAS\Desktop\mp3tagv282setup.exe
2017-05-22 16:58 - 2017-05-22 16:59 - 00000000 ____D C:\Program Files\Plugins
2017-05-22 16:57 - 2017-05-22 16:57 - 02891316 _____ C:\Users\Antonio Carlos -ACAS\pack de plugins 2016.rar
2017-05-22 13:49 - 2017-05-22 17:00 - 00001880 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Adobe Audition CS6.exe.lnk
2017-05-22 13:44 - 2017-05-22 13:44 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CS6.lnk
2017-05-22 11:45 - 2017-05-25 23:40 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\Adobe
2017-05-22 10:58 - 2017-05-22 10:58 - 00000000 ____D C:\Users\Public\Documents\Adobe
2017-05-22 10:56 - 2017-05-25 23:41 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe
2017-05-22 10:56 - 2017-05-25 23:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-05-22 10:54 - 2017-05-22 10:54 - 00001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Macromedia
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Program Files (x86)\My Company Name
2017-05-22 10:54 - 2011-11-03 03:01 - 00056208 ____N (Rovi Corporation) C:\WINDOWS\system32\Drivers\PxHlpa64.sys
2017-05-22 10:54 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdralw2k.sys
2017-05-22 10:54 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdr4_xp.sys
2017-05-21 22:35 - 2017-05-21 22:35 - 00002051 _____ C:\Users\Public\Desktop\Setup Factory 9.lnk
2017-05-21 22:35 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\Setup Factory 9
2017-05-21 22:35 - 2017-05-21 22:35 - 00000000 ____D C:\Program Files (x86)\Setup Factory 9
2017-05-21 22:31 - 2017-05-21 22:32 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY INDIGO ROSE v.9.5
2017-05-21 10:23 - 2017-05-21 10:23 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Power2Go8
2017-05-20 22:13 - 2017-05-21 22:41 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY MEU PROJETO
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Todos os Usuários\IndigoRose
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\IndigoRose
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Indigo Rose Corporation
2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\ProgramData\IndigoRose
2017-05-20 22:02 - 2017-05-20 22:02 - 00002158 _____ C:\Users\Public\Desktop\AutoPlay Media Studio 8.lnk
2017-05-20 22:02 - 2017-05-20 22:02 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\AutoPlay Media Studio 8
2017-05-20 22:02 - 2017-05-20 22:02 - 00000000 ____D C:\Program Files (x86)\AutoPlay Media Studio 8
2017-05-20 21:58 - 2017-05-20 21:59 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY MEDIA STUDIO 8.5.0
2017-05-20 21:29 - 2017-05-20 21:29 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CrystalDiskInfoPortable
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIMPEG2.dll
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIMP3.dll
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIFCD3.dll
2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTICDMK7.dll
2017-05-20 21:00 - 2017-05-20 21:00 - 00303104 ____N (Microsoft Corporation) C:\WINDOWS\Setup1.exe
2017-05-20 21:00 - 2017-05-20 21:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE
2017-05-20 20:07 - 2017-05-20 20:07 - 00011886 _____ C:\Users\Antonio Carlos -ACAS\Demis_Roussos_-_Rain_And_Tears_(2005)_-_DVD.torrent
2017-05-20 16:37 - 2017-05-20 16:37 - 00045056 _____ (Northern Codeworks) C:\WINDOWS\NCUNINST.EXE
2017-05-20 15:03 - 2017-05-20 15:03 - 13677800 _____ (Google) C:\Users\Antonio Carlos -ACAS\Desktop\picasa39-setup.exe
2017-05-20 14:57 - 2017-05-20 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2017-05-20 14:31 - 2017-05-20 14:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\CYBERLINK POWER BACK-UP v. 2.50.9729a
2017-05-20 14:22 - 2017-05-22 13:29 - 00000000 ____D C:\Program Files (x86)\ASUS E-Green
2017-05-20 14:22 - 2017-05-20 14:22 - 00002191 _____ C:\Users\Public\Desktop\CyberLink PowerBackup.lnk
2017-05-20 14:22 - 2017-05-20 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerBackup
2017-05-20 14:20 - 2017-05-20 14:20 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2017-05-20 14:20 - 2017-05-20 14:20 - 00000000 ____D C:\Users\Public\CyberLink
2017-05-20 14:16 - 2017-05-20 19:44 - 00000000 ____D C:\Users\Todos os Usuários\CyberLink
2017-05-20 14:16 - 2017-05-20 19:44 - 00000000 ____D C:\ProgramData\CyberLink
2017-05-20 14:16 - 2017-05-20 14:16 - 00001495 _____ C:\Users\Public\Desktop\CyberLink Power2Go 8.lnk
2017-05-20 14:16 - 2017-05-20 14:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2017-05-20 14:16 - 2013-03-05 12:01 - 00091712 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys
2017-05-20 14:15 - 2017-05-20 14:16 - 00000000 ____D C:\Users\Todos os Usuários\install_clap
2017-05-20 14:15 - 2017-05-20 14:16 - 00000000 ____D C:\ProgramData\install_clap
2017-05-19 12:30 - 2017-05-19 12:31 - 1719588864 _____ C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE ILUSTRATOR CC 2014 MAC OS XFORCE.iso
2017-05-19 12:25 - 2017-05-19 12:26 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE ILUSTRATOR CC 2014 MAC OS XFORCE
2017-05-18 23:11 - 2017-05-18 23:11 - 00000022 _____ C:\Users\Antonio Carlos -ACAS\MEGA-RECOVERYKEY.txt
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\WINDOWS\SysWOW64\Drivers\vwifikerneldrv.sys
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\WINDOWS\SysWOW64\d3dx9_11.dll.tmp
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\Users\Todos os Usuários\fontcacheev1.dat
2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\ProgramData\fontcacheev1.dat
2017-05-18 22:04 - 2017-03-27 08:01 - 00081000 _____ () C:\WINDOWS\system32\Drivers\adgnetworkwfpdrv.sys
2017-05-18 21:53 - 2017-05-18 21:54 - 00001182 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Your Uninstaller! PRO.lnk
2017-05-18 21:53 - 2017-05-18 21:53 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! PRO
2017-05-18 21:52 - 2017-05-18 21:52 - 00000000 ____D C:\Program Files (x86)\Your Uninstaller! PRO
2017-05-18 21:33 - 2017-05-18 21:39 - 00002547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk
2017-05-18 21:29 - 2017-05-18 21:29 - 00001325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-05-18 15:28 - 2017-05-18 15:28 - 01583630 _____ C:\Users\Antonio Carlos -ACAS\winbox.exe
2017-05-17 12:14 - 2017-05-17 12:15 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\SHOW MY PC v. 6.0.2900.2180
2017-05-17 12:08 - 2017-05-17 12:10 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CCLEAN SETUP v. 5.30.0.6063
2017-05-17 12:06 - 2017-05-17 12:06 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\POPCORN TIME v. 3.10
2017-05-17 11:26 - 2017-05-17 11:35 - 00002253 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Popcorn-Time.lnk
2017-05-17 09:49 - 2017-05-17 09:49 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time
2017-05-17 09:48 - 2017-05-17 09:50 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Popcorn-Time
2017-05-17 09:35 - 2017-05-17 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-05-15 19:38 - 2017-05-15 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro
2017-05-15 12:11 - 2017-05-15 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2017-05-15 12:11 - 2017-05-15 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-05-15 12:00 - 2017-05-24 10:08 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-05-13 14:25 - 2017-05-26 08:03 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2017-05-13 14:25 - 2017-05-26 08:03 - 00000000 ____D C:\ProgramData\Adobe
2017-05-11 23:50 - 2017-05-11 23:50 - 00000000 ____D C:\Users\Todos os Usuários\Easy CD-DA Extractor
2017-05-11 23:50 - 2017-05-11 23:50 - 00000000 ____D C:\ProgramData\Easy CD-DA Extractor
2017-05-11 09:20 - 2017-05-11 17:55 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\CORRUPÇÃO GILMAR MENDES
2017-05-10 23:41 - 2017-05-10 23:43 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\INTEL DRIVERs UPDATE UTILITY v. 2.7.2
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\Softland
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\IntelDLM
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\EPSON
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\Softland
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\IntelDLM
2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\EPSON
2017-05-10 23:35 - 2017-05-10 23:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Intel Components
2017-05-10 23:34 - 2017-05-13 10:59 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-05-10 23:34 - 2017-05-10 23:34 - 00002524 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK
2017-05-10 23:34 - 2017-05-10 23:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2017-05-10 23:34 - 2017-05-10 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2017-05-10 23:33 - 2017-05-18 23:16 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-05-10 23:33 - 2017-05-18 23:16 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-10 23:33 - 2017-05-10 23:33 - 00000000 ____D C:\Program Files\Intel Driver Update Utility
2017-05-10 22:59 - 2017-05-23 21:11 - 00000000 ____D C:\Users\Todos os Usuários\TEMP
2017-05-10 22:59 - 2017-05-23 21:11 - 00000000 ____D C:\ProgramData\TEMP
2017-05-10 22:56 - 2017-05-10 22:56 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2017-05-10 22:56 - 2017-05-10 22:56 - 00000000 ____D C:\ProgramData\Oracle
2017-05-10 22:55 - 2017-05-10 22:55 - 00001145 _____ C:\Users\Public\Desktop\MP3 ROCKET 7.4.1 PRO.LNK
2017-05-10 22:44 - 2017-05-10 22:44 - 00000000 ____D C:\Users\Todos os Usuários\TopLang
2017-05-10 22:44 - 2017-05-10 22:44 - 00000000 ____D C:\ProgramData\TopLang
2017-05-10 22:07 - 2017-05-10 22:07 - 00000000 ____D C:\Users\Todos os Usuários\IDM
2017-05-10 22:07 - 2017-05-10 22:07 - 00000000 ____D C:\ProgramData\IDM
2017-05-10 22:05 - 2017-05-11 23:50 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2017-05-10 22:05 - 2017-05-11 23:50 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2017-05-10 22:05 - 2017-05-10 22:05 - 00000000 ____D C:\Users\Todos os Usuários\SlySoft
2017-05-10 22:05 - 2017-05-10 22:05 - 00000000 ____D C:\ProgramData\SlySoft
2017-05-10 22:03 - 2017-05-10 22:03 - 00000000 ____D C:\Users\Todos os Usuários\Intel
2017-05-10 22:03 - 2017-05-10 22:03 - 00000000 ____D C:\ProgramData\Intel
2017-05-10 21:34 - 2017-05-10 21:34 - 00000000 ____D C:\Users\Todos os Usuários\WinMount
2017-05-10 21:34 - 2017-05-10 21:34 - 00000000 ____D C:\ProgramData\WinMount
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\Users\Todos os Usuários\Google
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\ProgramData\Google
2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\ProgramData\GbPlugin
2017-05-10 10:21 - 2017-05-10 10:21 - 00000000 ___HD C:\OneDriveTemp
2017-05-10 10:09 - 2017-05-15 14:58 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\DMCache
2017-05-10 10:09 - 2017-05-10 10:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Video
2017-05-10 10:09 - 2017-05-10 10:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Compressed
2017-05-10 10:08 - 2017-05-10 10:08 - 14040102 _____ C:\Users\Antonio Carlos -ACAS\DriverEasy PRO 5.5.0.5335 + IDM 6.25 Build 11.zip
2017-05-09 23:54 - 2017-05-09 23:54 - 00001039 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2017-05-09 23:54 - 2017-05-09 23:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2017-05-09 23:49 - 2017-05-10 00:06 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\Driver Easy
2017-05-09 22:53 - 2017-05-09 23:34 - 01730304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01009.dll
2017-05-08 13:33 - 2017-05-08 13:33 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\YSearchUtil
2017-05-08 12:57 - 2017-05-08 12:57 - 00000796 _____ C:\Users\Public\Desktop\Tecnobyte Suporte.lnk
2017-05-08 12:57 - 2017-05-08 12:57 - 00000781 _____ C:\Users\Public\Desktop\Tecnobyte SAC Free.lnk
2017-05-08 12:57 - 2017-05-08 12:57 - 00000781 _____ C:\Users\Public\Desktop\Backup do SAC Free.lnk
2017-05-08 12:57 - 2017-05-08 12:57 - 00000000 ____D C:\Tecnobyte
2017-05-07 10:17 - 2017-05-07 10:18 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\LINK DE VERSÕES ANTIGAS DO MOZILLA FIREFOX
2017-05-04 20:40 - 2017-05-20 12:52 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CRIANDO LINKs DIRETO NO GOOGLE DRIVE
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-03 23:15 - 2016-01-15 11:04 - 00000000 ____D C:\FRST
2017-06-03 22:58 - 2017-01-06 15:31 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-03 22:19 - 2015-06-22 21:22 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2017-06-03 22:19 - 2015-06-22 21:22 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-06-03 17:16 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-03 17:14 - 2016-12-23 18:00 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\ElevatedDiagnostics
2017-06-03 17:13 - 2017-05-01 20:41 - 00000015 _____ C:\Users\Antonio Carlos -ACAS\advanced_ip_scanner_Aliases.bin
2017-06-03 17:13 - 2015-11-12 12:48 - 00001052 _____ C:\Users\Antonio Carlos -ACAS\advanced_ip_scanner_MAC.bin
2017-06-03 12:11 - 2016-11-20 21:15 - 00000000 ___RD C:\Users\Antonio Carlos -ACAS\Google Drive
2017-06-03 12:10 - 2016-11-27 21:54 - 00000000 ___RD C:\Users\Antonio Carlos -ACAS\OneDrive
2017-06-03 12:05 - 2017-04-16 01:06 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-06-03 12:05 - 2015-06-23 00:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Adobe
2017-06-03 11:59 - 2016-06-21 22:27 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-03 11:59 - 2015-07-03 07:08 - 00000000 __SHD C:\Users\Antonio Carlos -ACAS\IntelGraphicsProfiles
2017-06-03 11:58 - 2017-01-06 15:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-02 23:02 - 2017-01-14 12:10 - 00000731 _____ C:\WINDOWS\system32\InetLock.dat
2017-06-02 23:02 - 2016-07-16 03:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-06-02 21:59 - 2015-07-03 08:41 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-06-02 08:29 - 2017-02-10 08:02 - 00000890 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-30 22:46 - 2015-02-06 22:23 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Incomplete
2017-05-30 22:08 - 2016-07-16 08:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-30 21:37 - 2015-06-23 20:40 - 00000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
2017-05-30 15:20 - 2016-09-28 19:29 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Dropbox
2017-05-30 15:20 - 2016-09-28 19:29 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-30 13:35 - 2017-01-06 15:30 - 05238752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-30 11:17 - 2015-06-23 23:03 - 00001814 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2017-05-30 11:15 - 2017-02-09 20:55 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-05-30 11:15 - 2017-02-09 20:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2017-05-30 11:13 - 2015-06-23 00:07 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-30 11:13 - 2015-06-23 00:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Adobe
2017-05-29 18:59 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-29 17:45 - 2016-01-06 21:49 - 00000000 ____D C:\DANFEView
2017-05-28 18:02 - 2016-11-20 17:25 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\LocalLow\Mozilla
2017-05-26 11:38 - 2015-07-03 08:41 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\TeamViewer
2017-05-26 09:28 - 2017-01-06 15:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS
2017-05-26 09:27 - 2017-04-22 13:52 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\COLEÇÕES E-BOOKs CLASSICOS MUNDIAIS
2017-05-25 23:48 - 2016-07-16 08:45 - 00000000 ____D C:\WINDOWS\INF
2017-05-25 23:37 - 2015-06-23 00:05 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-25 23:26 - 2015-06-28 12:33 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Azureus
2017-05-25 23:24 - 2016-09-28 19:47 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\MPC-HC
2017-05-25 23:16 - 2015-06-23 00:08 - 00000000 ____D C:\Program Files\Adobe
2017-05-25 00:29 - 2017-01-19 17:13 - 00000000 ____D C:\Users\MSSQL$ADK
2017-05-24 22:48 - 2017-01-05 10:32 - 00000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 6.1
2017-05-24 22:48 - 2017-01-05 10:18 - 00001024 ____H C:\AMTAG.BIN
2017-05-24 10:08 - 2015-06-22 23:54 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Microsoft Help
2017-05-23 21:14 - 2017-01-06 15:55 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-05-23 20:54 - 2015-12-07 22:31 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mp3tag
2017-05-22 18:51 - 2016-04-23 11:00 - 00001075 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2017-05-22 18:51 - 2015-07-11 11:05 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2017-05-21 10:23 - 2015-10-07 22:19 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\CyberLink
2017-05-21 10:20 - 2017-03-23 12:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-20 18:26 - 2016-06-28 11:49 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-20 15:04 - 2015-06-23 01:07 - 00001206 _____ C:\Users\Public\Desktop\Picasa 3.lnk
2017-05-20 14:22 - 2015-06-23 00:23 - 00000000 ____D C:\Program Files (x86)\CyberLink
2017-05-20 14:22 - 2015-06-22 20:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-18 22:14 - 2017-01-04 21:52 - 00000000 ____D C:\Program Files (x86)\Wondershare
2017-05-18 21:51 - 2016-10-12 13:27 - 00013183 _____ C:\missing.ini
2017-05-17 09:35 - 2015-06-23 19:32 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\DAEMON Tools Lite
2017-05-15 19:38 - 2015-06-23 00:34 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-13 10:59 - 2016-12-29 11:44 - 00000000 ____D C:\AdwCleaner
2017-05-12 22:52 - 2017-03-21 21:21 - 00004702 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-12 22:52 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-12 22:52 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-11 08:05 - 2015-06-22 20:18 - 00019774 _____ C:\WINDOWS\system32\results.xml
2017-05-10 23:39 - 2017-01-06 16:20 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-05-10 23:38 - 2015-06-22 19:39 - 00000000 ____D C:\Program Files\Intel
2017-05-10 22:03 - 2017-02-18 17:42 - 00000000 ____D C:\Users\Todos os Usuários\ArcSoft
2017-05-10 22:03 - 2017-02-18 17:42 - 00000000 ____D C:\ProgramData\ArcSoft
2017-05-10 22:03 - 2015-09-23 23:08 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2017-05-10 22:03 - 2015-09-23 23:08 - 00000000 ____D C:\ProgramData\VMware
2017-05-10 22:03 - 2015-06-24 17:01 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2017-05-10 22:03 - 2015-06-24 17:01 - 00000000 ____D C:\ProgramData\Autodesk
2017-05-10 19:31 - 2016-01-20 11:19 - 00000000 ____D C:\Users\Todos os Usuários\Sony
2017-05-10 19:31 - 2016-01-20 11:19 - 00000000 ____D C:\ProgramData\Sony
2017-05-10 19:31 - 2015-07-07 22:10 - 00000000 ____D C:\Users\Todos os Usuários\ASUS
2017-05-10 19:31 - 2015-07-07 22:10 - 00000000 ____D C:\ProgramData\ASUS
2017-05-10 19:31 - 2015-06-23 00:25 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 10
2017-05-10 19:31 - 2015-06-22 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X6
2017-05-10 19:31 - 2015-06-22 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit)
2017-05-10 19:31 - 2015-06-22 20:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-05-10 09:59 - 2016-07-16 03:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-10 08:35 - 2017-01-06 15:36 - 02718732 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-10 08:35 - 2016-07-16 20:10 - 00769578 _____ C:\WINDOWS\system32\prfh0416.dat
2017-05-10 08:35 - 2016-07-16 20:10 - 00342352 _____ C:\WINDOWS\system32\prfc0416.dat
2017-05-09 23:50 - 2017-02-09 21:28 - 00000000 ____D C:\Program Files\Easeware
2017-05-09 23:35 - 2016-01-30 15:10 - 01467904 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-05-09 23:34 - 2016-01-30 15:11 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-05-09 23:33 - 2016-02-13 23:41 - 00038680 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ICCWDT.sys
2017-05-09 22:54 - 2017-02-10 02:45 - 00544744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\e1d65x64.sys
2017-05-08 17:52 - 2015-07-03 21:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\MP3Rocket
2017-05-08 13:34 - 2015-07-22 18:57 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-08 13:33 - 2017-03-11 10:53 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2017-05-08 13:30 - 2016-09-02 18:03 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-05-08 09:05 - 2017-04-11 21:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\DOCUMENTOS PLACA MÃE DANIFICADA
2017-05-04 20:20 - 2015-06-24 10:46 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\WinMount
2017-05-04 14:13 - 2017-04-11 21:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\DOCUMENTOS PLACA MÃE DANIFICADA
2017-05-04 08:14 - 2016-07-13 08:14 - 00002387 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Google Chrome.lnk
==================== Arquivos na raiz de alguns diretórios =======
2015-07-28 17:03 - 2016-02-23 15:15 - 0085827 _____ () C:\Program Files (x86)\CMS Setup Log.txt
2007-07-29 11:01 - 2005-08-27 14:26 - 1581056 _____ (Macromedia, Inc.) C:\Program Files (x86)\SAFlashPlayer.exe
2016-12-08 09:12 - 2016-12-08 09:12 - 0179203 _____ () C:\Program Files (x86)\uninstal.log
2015-06-23 20:17 - 2015-06-23 20:17 - 0007859 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.cat
2015-06-23 20:17 - 2015-06-23 20:17 - 0001167 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.inf
2015-06-23 20:17 - 2015-06-23 20:17 - 0082816 _____ (VSO Software) C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.sys
2016-12-23 08:06 - 2016-12-23 08:06 - 0018301 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\unins000.dat
2017-01-03 19:37 - 2017-01-03 19:37 - 0000001 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Local\llftool.4.40.agreement
2017-05-30 21:34 - 2017-05-30 21:50 - 0000438 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Local\ReclaiMe.config
2017-05-18 22:04 - 2017-05-18 22:04 - 0000262 _____ () C:\ProgramData\fontcacheev1.dat
2017-05-30 21:34 - 2017-05-30 21:50 - 0000913 _____ () C:\ProgramData\ReclaiMe.config
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\fontcacheev1.dat
C:\Users\Antonio Carlos -ACAS\JavaSetup8u121.exe
C:\Users\Antonio Carlos -ACAS\mp3rocket-pro.exe
C:\Users\Antonio Carlos -ACAS\pw10-free.exe
C:\Users\Antonio Carlos -ACAS\transmac-11-9.exe
C:\Users\Antonio Carlos -ACAS\winbox.exe
C:\Users\Todos os Usuários\fontcacheev1.dat
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-06-01 09:54
==================== Fim de FRST.txt ============================