Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 11-07-2017
Executado por Notebook (administrador) em NOTEBOOK-PC (13-07-2017 01:05:06)
Executando a partir de C:\Users\Notebook\Downloads
Perfis Carregados: Notebook (Perfis Disponíveis: Notebook)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão não detectado!)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Projector\Epson USB Display V1.7\EMP_UDSA.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1002984 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [mbot_br_303] => [X]
HKLM\...\Run: [smrt] => C:\Program Files\SideCubes\Startup.exe
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [EPSON_UD_START] => C:\Program Files\EPSON Projector\Epson USB Display V1.7\EMP_UD.exe [538728 2014-04-23] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3486520 2017-06-26] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [813616 2017-04-19] (GAS Tecnologia LTDA)
Winlogon\Notify\ GbPluginCef: C:\Program Files\GbPlugin\gbiehCef.dll [2016-10-10] (Caixa Economica Federal)
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\...\Run: [GoogleChromeAutoLaunch_D1B0FD63F4D0DCE5FE499D82AB84ED1E] => C:\Program Files\Google\Chrome\Application\chrome.exe [1027928 2017-06-22] (Google Inc.)
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\...\MountPoints2: {1c039670-dd3e-11e5-a48e-dc85de67f405} - E:\EMP_UDSe.exe /autorun
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\...\MountPoints2: {a6d73600-3c52-11e4-a008-fbd975a5eb9e} - E:\DrvInst.exe
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\PROGRAM FILES\GbPlugin\gbiehcef.dll [1903328 2016-10-10] (Caixa Economica Federal)
GroupPolicy: Restrição - Chrome <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 201.82.0.52 201.82.0.57
Tcpip\..\Interfaces\{16DE7BC7-AA2A-4269-A93E-4EAA0055598A}: [DhcpNameServer] 201.82.0.52 201.82.0.57
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://br.msn.com/?ocid=iehp
URLSearchHook: HKU\S-1-5-21-3463895388-2915252153-2815166546-1000 - (Sem Nome) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-01] (Oracle Corporation)
BHO: Sem Nome -> {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> Nenhum Arquivo
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\PROGRAM FILES\GBPLUGIN\gbiehcef.dll [2016-10-10] (Caixa Economica Federal)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-01] (Oracle Corporation)
IE Session Restore: HKU\S-1-5-21-3463895388-2915252153-2815166546-1000 -> está habilitado.
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://isearch.omiga-plus.com/?type=sc&ts=1417294986&from=slbnew&uid=WDCXWD3200BPVT-22JJ5T0_WD-WXX1E13ZPCH8ZPCH8
FireFox:
========
FF DefaultProfile: 5awipehz.default
FF ProfilePath: C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\5awipehz.default [2016-11-26]
FF Extension: (Firefox Hotfix) - C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\5awipehz.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-10-17]
FF Extension: (Search and New Tab by Yahoo) - C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\5awipehz.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2016-11-26]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2014-08-31] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2852 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2007-11-21] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1662 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2007-11-21] (RealNetworks, Inc.)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [Nenhum Arquivo]
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [Nenhum Arquivo]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3463895388-2915252153-2815166546-1000: gastecnologia.com.br/sf/abn -> C:\Users\Notebook\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll [2015-02-19] (GAS Tecnologia)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://start.iminent.com/__PARAM__
CHR StartupUrls: Default -> "hxxp://www.google.com.br/"
CHR Profile: C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default [2017-07-13]
CHR Extension: (Google Apresentações) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-06]
CHR Extension: (Google Docs) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Google Drive) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (YouTube) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (Google Search) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Dropbox para Gmail) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-04]
CHR Extension: (ecldhagehndokdmaiaigoaecbmbnmfkc) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecldhagehndokdmaiaigoaecbmbnmfkc [2014-12-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Planilhas do Google) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-06]
CHR Extension: (Allin1Convert) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl [2015-03-01]
CHR Extension: (Documentos Google off-line) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-14]
CHR Extension: (kidhjpmgjfbkmcfpfakmdddddgfbhahj) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\kidhjpmgjfbkmcfpfakmdddddgfbhahj [2014-12-18]
CHR Extension: (Dicionário Inglês Online: Moderno Dic...) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlagpnophbbkajkekmfjloilmkncmcla [2016-06-26]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2015-06-21]
CHR Extension: (Gmail) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-03]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-25] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42824 2017-06-26] (Dropbox, Inc.)
R2 EMP_UDSA; C:\Program Files\EPSON Projector\Epson USB Display V1.7\EMP_UDSA.exe [166504 2014-04-23] (SEIKO EPSON CORPORATION)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [631520 2016-10-10] (GAS Tecnologia)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [103696 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280864 2016-11-14] (Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [813616 2017-04-19] (GAS Tecnologia LTDA)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /svc [X] <==== ATENÇÃO
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /medsvc [X] <==== ATENÇÃO
S2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe -service [X]
S2 Update DizzyDing; "C:\Program Files\DizzyDing\updateDizzyDing.exe" [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [66688 2011-04-16] (Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [33408 2011-04-16] (Advanced Micro Devices)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-03-11] (Baidu, Inc.)
R3 EMP_MIRRUD; C:\Windows\System32\DRIVERS\EMP_MirrUD.sys [3712 2011-11-17] (Windows (R) Codename Longhorn DDK provider)
R3 eppvad_simple; C:\Windows\System32\drivers\EMP_UDAU.sys [17664 2011-11-17] (SEIKO EPSON CORPORATION)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg32.sys [25848 2017-07-12] (GAS Tecnologia)
R0 GbpKm; C:\Windows\System32\drivers\GbpKm.sys [49496 2015-12-08] (GAS Tecnologia)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [252808 2016-08-25] (Microsoft Corporation)
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2016-08-12] (GAS Tecnologia)
R3 RTL8192Ce; C:\Windows\System32\DRIVERS\rtl8192Ce.sys [1057896 2011-10-06] (Realtek Semiconductor Corporation )
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [22744 2017-07-13] (GAS Tecnologia)
R1 wsddntf; C:\Windows\System32\DRIVERS\wsddntf.sys [31864 2016-06-16] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [22624 2017-04-19] (GAS Tecnologia)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [22624 2017-04-19] (GAS Tecnologia)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-07-13 00:54 - 2017-07-13 01:02 - 00046105 _____ C:\Users\Notebook\Downloads\Addition.txt
2017-07-13 00:48 - 2017-07-13 01:05 - 00015853 _____ C:\Users\Notebook\Downloads\FRST.txt
2017-07-13 00:47 - 2017-07-13 01:05 - 00000000 ____D C:\FRST
2017-07-13 00:46 - 2017-07-13 00:47 - 01780224 _____ (Farbar) C:\Users\Notebook\Downloads\FRST.exe
2017-07-13 00:45 - 2017-07-13 00:47 - 13969576 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86 (2).exe
2017-07-13 00:02 - 2017-07-13 00:09 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-07-13 00:02 - 2017-07-13 00:09 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-12 23:57 - 2017-07-12 23:58 - 13767776 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86 (1).exe
2017-07-12 23:46 - 2017-07-12 23:47 - 00189398 _____ C:\Windows\ntbtlog.txt
2017-07-12 23:23 - 2017-07-12 23:23 - 00000000 ____D C:\Windows\CheckSur
2017-07-12 22:55 - 2017-07-12 23:21 - 239126136 _____ C:\Users\Notebook\Downloads\Windows6.1-KB947821-v34-x86 (1).msu
2017-07-12 22:38 - 2017-07-12 22:38 - 01250816 _____ C:\Users\Notebook\Downloads\MicrosoftEasyFix50202.msi
2017-07-12 22:37 - 2017-07-12 22:37 - 00002636 _____ C:\Users\Notebook\Downloads\legitcheck.hta
2017-07-12 22:37 - 2017-07-12 22:37 - 00002636 _____ C:\Users\Notebook\Downloads\legitcheck (1).hta
2017-07-12 22:23 - 2017-07-12 22:25 - 15254384 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x64.exe
2017-07-12 20:44 - 2017-07-12 20:44 - 00013253 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (5).zip
2017-07-12 20:43 - 2017-07-12 20:43 - 00013243 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (4).zip
2017-07-12 20:41 - 2017-07-12 20:41 - 00003674 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (3).zip
2017-07-12 20:40 - 2017-07-12 20:40 - 00009167 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (2).zip
2017-07-12 20:39 - 2017-07-12 20:39 - 00013250 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (1).zip
2017-07-12 20:38 - 2016-08-10 12:01 - 00023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-07-12 20:32 - 2017-07-12 20:32 - 00003630 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2017-07-12 20:22 - 2017-07-12 20:24 - 00629006 _____ C:\Users\Notebook\Downloads\Windows6.1-KB2999226-x86.msu
2017-07-12 20:06 - 2017-07-12 20:03 - 13969576 _____ (Microsoft Corporation) C:\Users\Notebook\Desktop\vc_redist.x86.exe
2017-07-12 20:02 - 2017-07-12 20:03 - 13969576 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86.exe
2017-07-12 18:53 - 2017-07-12 18:53 - 00002865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00002825 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00002817 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00002791 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2017-07-12 18:51 - 2017-07-12 18:51 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2017-07-12 18:51 - 2017-07-12 18:51 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-07-12 18:50 - 2017-07-12 18:50 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-07-12 18:49 - 2017-07-12 18:50 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2017-07-12 18:49 - 2017-07-12 18:49 - 00000000 ____D C:\Windows\PCHEALTH
2017-07-12 18:43 - 2017-07-12 18:43 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2017-07-12 18:40 - 2017-07-12 18:40 - 00000000 __RHD C:\MSOCache
2017-07-12 16:47 - 2017-07-12 16:47 - 00003608 ____N C:\bootsqm.dat
2017-07-12 11:49 - 2017-07-12 11:53 - 00000000 ____D C:\Users\Notebook\Desktop\Microsoft_Office_ProPlus_2016_PT_BR_2016
2017-07-11 10:02 - 2017-07-11 10:02 - 00052084 _____ C:\Users\Notebook\Downloads\report (6).pdf
2017-07-11 10:00 - 2017-07-11 10:00 - 00051988 _____ C:\Users\Notebook\Downloads\report (5).pdf
2017-07-11 08:16 - 2017-07-11 08:16 - 00359632 _____ C:\Users\Notebook\Downloads\The Effect of Sodium Hypochlorite and Chlorhexidine.pdf
2017-07-03 21:38 - 2017-07-03 21:38 - 00110091 _____ C:\Users\Notebook\Downloads\ACFrOgDCM6_8oi3QZSArjTqFejy2S8v4wYw6OOulIRImAkT8lihbj1VLAp0n-118EpT2J6qmvJhhHJdM7c0Bj3NiEkDjnZLFkYv9CVt4vwLJ1F2BmoniTusSgmWUPRw= (1).pdf
2017-07-03 21:35 - 2017-07-03 21:35 - 00110091 _____ C:\Users\Notebook\Downloads\ACFrOgDCM6_8oi3QZSArjTqFejy2S8v4wYw6OOulIRImAkT8lihbj1VLAp0n-118EpT2J6qmvJhhHJdM7c0Bj3NiEkDjnZLFkYv9CVt4vwLJ1F2BmoniTusSgmWUPRw=.pdf
2017-06-29 19:31 - 2017-06-29 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-06-28 20:36 - 2017-06-28 20:36 - 00431777 _____ C:\Users\Notebook\Desktop\FolhadeRosto.pdf
2017-06-28 14:25 - 2017-06-28 14:25 - 14212310 _____ C:\Users\Notebook\Desktop\folha de rosto assinada.pdf
2017-06-28 14:20 - 2017-06-28 14:22 - 14208962 _____ C:\Users\Notebook\Downloads\braulio 3.pdf
2017-06-28 14:17 - 2017-07-11 15:39 - 00000000 ____D C:\Users\Notebook\Desktop\Seminário Julho
2017-06-26 07:27 - 2017-06-26 07:27 - 00042824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-06-26 07:27 - 2017-06-26 07:27 - 00035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-06-26 07:27 - 2017-06-26 07:27 - 00035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-06-26 07:27 - 2017-06-26 07:27 - 00035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-06-15 14:43 - 2017-06-15 13:58 - 00619216 _____ C:\Users\Notebook\Documents\2017-06-15-06-12-22.fit
2017-06-13 16:27 - 2017-06-13 16:27 - 00126324 _____ C:\Users\Notebook\Downloads\Braulio.pdf.pdf
2017-06-07 20:03 - 2017-06-07 20:03 - 00028171 _____ C:\Users\Notebook\Desktop\folhaDeRosto (2).pdf
2017-06-07 19:59 - 2017-06-07 19:59 - 00022636 _____ C:\Users\Notebook\Downloads\folhaDeRosto (2).pdf
2017-06-07 19:52 - 2017-06-07 19:52 - 00022636 _____ C:\Users\Notebook\Downloads\folhaDeRosto (1).pdf
2017-06-07 19:48 - 2017-06-07 19:48 - 00022640 _____ C:\Users\Notebook\Downloads\folhaDeRosto.pdf
2017-06-06 20:40 - 2017-06-06 20:40 - 00106321 _____ C:\Users\Notebook\Downloads\Boleto_0150647146_10_20170510_20170510.pdf
2017-06-02 17:16 - 2017-07-13 00:37 - 00022744 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-06-02 17:16 - 2017-04-19 17:52 - 00022624 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddprm.sys
2017-06-02 17:16 - 2017-04-19 17:52 - 00022624 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2017-06-02 16:59 - 2017-06-02 17:00 - 01672278 _____ C:\Users\Notebook\Downloads\Dicas--Plataforma-Brasil.pdf
2017-06-02 16:54 - 2017-06-02 16:54 - 00262748 _____ C:\Users\Notebook\Downloads\ORIENTAÇÕES-GERAIS-CADASTRO-E-SUBMISSÃO-DE-PROJETOS-DE-PESQUISA-NA-PLATAFORMA-BRASIL.pdf
2017-05-31 20:58 - 2017-05-31 20:58 - 00222771 _____ C:\Users\Notebook\Downloads\cid.pdf
2017-05-30 21:33 - 2017-05-30 21:33 - 00006164 _____ C:\Users\Notebook\Downloads\2472-16.pdf
2017-05-30 16:54 - 2017-05-30 16:54 - 00145742 _____ C:\Users\Notebook\Desktop\curriculun.pdf
2017-05-30 16:46 - 2017-05-30 16:46 - 00003584 _____ C:\Users\Notebook\Downloads\1225299328837663 (2).zip
2017-05-30 16:35 - 2017-05-30 16:35 - 00574993 _____ C:\Users\Notebook\Downloads\1_Gerando_Lattes.pdf
2017-05-30 16:29 - 2017-05-30 16:29 - 00004435 _____ C:\Users\Notebook\Downloads\1225299328837663 (1).zip
2017-05-30 16:23 - 2017-05-30 16:23 - 00004435 _____ C:\Users\Notebook\Downloads\1225299328837663.zip
2017-05-29 16:45 - 2017-05-29 16:45 - 01148672 _____ C:\Users\Notebook\Downloads\REGIMENTO-INTERNO-CEP-COMITÊ-DE-ÉTICA-EM-PESQUISA-1.pdf
2017-05-23 17:07 - 2017-05-23 17:07 - 00195437 _____ C:\Users\Notebook\Downloads\Bráulio Fonseca.pdf
2017-05-20 08:35 - 2017-05-20 08:35 - 00318229 _____ C:\Users\Notebook\Downloads\2016-The Effect of Foraminal Enlargement of Necrotic Teeth with the Reciproc System on Postoperative Pain- A Prospective and Randomized Clinical Trial (2).pdf
2017-05-16 09:25 - 2017-05-16 09:25 - 00000000 ____D C:\Users\Notebook\AppData\Roaming\Google
2017-05-04 19:54 - 2017-05-04 19:54 - 00109766 _____ C:\Users\Notebook\Downloads\Boleto_0150647146_10_20170410_20170410.pdf
2017-05-02 20:31 - 2017-05-02 20:31 - 00047298 _____ C:\Users\Notebook\Downloads\boleto gps braulio.pdf
2017-04-29 12:06 - 2017-04-29 12:06 - 00022419 _____ C:\Users\Notebook\Downloads\report (4).pdf
2017-04-28 22:23 - 2017-04-28 22:23 - 00027725 _____ C:\Users\Notebook\Desktop\demonstrativo IR.pdf
2017-04-28 22:21 - 2017-04-28 22:21 - 00022267 _____ C:\Users\Notebook\Downloads\BRAULIO.PDF
2017-04-24 22:43 - 2017-04-24 22:43 - 00273701 _____ C:\Users\Notebook\Downloads\zhang2009.pdf
2017-04-24 22:37 - 2017-04-24 22:37 - 04983862 _____ C:\Users\Notebook\Downloads\2015 dentine pressure.pdf
2017-04-24 22:35 - 2017-04-24 22:35 - 01368801 _____ C:\Users\Notebook\Downloads\2015JOE.pdf
2017-04-24 22:29 - 2017-04-24 22:29 - 01402781 _____ C:\Users\Notebook\Downloads\9753210.pdf
2017-04-24 22:22 - 2017-04-24 22:23 - 04837046 _____ C:\Users\Notebook\Downloads\bioceramic_materials_in_endodontics.pdf
2017-04-24 22:17 - 2017-04-24 22:17 - 00699936 _____ C:\Users\Notebook\Downloads\Dentin moisture conditions affect the adhesion of root canal sealers.pdf
2017-04-24 22:14 - 2017-04-24 22:14 - 00544237 _____ C:\Users\Notebook\Downloads\2017 IEJ Volume 50 Issue 1 January (13).pdf
2017-04-24 22:11 - 2017-04-24 22:11 - 00091215 _____ C:\Users\Notebook\Downloads\18316300.pdf
2017-04-24 22:09 - 2017-04-24 22:09 - 00258684 _____ C:\Users\Notebook\Downloads\loushine2011.pdf
2017-04-24 21:54 - 2017-04-24 21:54 - 00464351 _____ C:\Users\Notebook\Downloads\final puplished.pdf
2017-04-24 21:51 - 2017-04-24 21:51 - 02771818 _____ C:\Users\Notebook\Downloads\joe 2016 bio (1).pdf
2017-04-24 21:43 - 2017-04-24 21:44 - 02771818 _____ C:\Users\Notebook\Downloads\joe 2016 bio.pdf
2017-04-24 21:40 - 2017-04-24 21:40 - 01127645 _____ C:\Users\Notebook\Downloads\CANDEIRO et al., 2015 (IEJ).pdf
2017-04-24 21:35 - 2017-04-24 21:35 - 00094212 _____ C:\Users\Notebook\Downloads\2012_art_gtmcandeiro1.pdf
2017-04-24 21:19 - 2017-04-24 21:19 - 00645992 _____ C:\Users\Notebook\Downloads\borges2011.pdf
2017-04-24 15:18 - 2017-04-24 15:18 - 00346510 _____ C:\Users\Notebook\Downloads\Monografia Flávia e Elizana final.pdf.pdf
2017-04-16 18:57 - 2017-04-16 18:57 - 03628966 _____ C:\Users\Notebook\Downloads\v11n1a02.pdf
2017-04-16 18:49 - 2017-04-16 18:49 - 00265689 _____ C:\Users\Notebook\Downloads\a09v70n2 (2).pdf
2017-04-16 18:47 - 2017-04-16 18:48 - 00265689 _____ C:\Users\Notebook\Downloads\a09v70n2 (1).pdf
2017-04-16 18:45 - 2017-04-16 18:45 - 00265689 _____ C:\Users\Notebook\Downloads\a09v70n2.pdf
2017-04-16 18:04 - 2017-04-16 18:04 - 00383520 _____ C:\Users\Notebook\Downloads\2001The Effect of Maintaining Apical Patency on Periapical Extrusion.pdf
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-07-13 00:56 - 2016-04-25 08:11 - 00001012 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-07-13 00:39 - 2016-08-12 22:06 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-07-13 00:39 - 2016-08-12 22:06 - 00000000 ____D C:\ProgramData\GbPlugin
2017-07-13 00:37 - 2016-04-25 08:11 - 00001008 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-07-13 00:36 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-12 21:45 - 2011-04-12 01:47 - 00705268 _____ C:\Windows\system32\prfh0416.dat
2017-07-12 21:45 - 2011-04-12 01:47 - 00147108 _____ C:\Windows\system32\prfc0416.dat
2017-07-12 21:45 - 2010-11-20 18:01 - 01639268 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-12 21:45 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2017-07-12 21:27 - 2016-08-12 22:08 - 00025848 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg32.sys
2017-07-12 21:24 - 2009-07-14 01:34 - 00016656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-12 21:24 - 2009-07-14 01:34 - 00016656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-12 20:08 - 2009-07-14 01:33 - 00432424 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-12 20:00 - 2014-08-31 11:49 - 00112312 _____ C:\Users\Notebook\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-12 19:26 - 2014-08-31 11:34 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-07-12 18:51 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-07-12 18:50 - 2014-08-31 11:34 - 00000000 ____D C:\Program Files\Microsoft Office
2017-07-12 18:44 - 2011-04-12 01:56 - 00000000 ____D C:\Windows\ShellNew
2017-07-12 14:41 - 2009-07-14 01:52 - 00000000 ____D C:\Program Files\MSBuild
2017-07-12 13:55 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\catroot2.bak
2017-07-12 12:15 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\System
2017-07-12 10:44 - 2016-10-26 20:18 - 00000000 ____D C:\Users\Notebook\Desktop\SLM
2017-07-11 08:06 - 2016-02-05 21:20 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-29 19:31 - 2016-04-25 08:11 - 00000000 ____D C:\Program Files\Dropbox
2017-06-28 20:48 - 2014-08-31 17:15 - 00002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-20 20:30 - 2009-07-14 01:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-06-20 20:13 - 2016-04-25 08:11 - 00000000 ____D C:\Users\Notebook\AppData\Local\Dropbox
==================== Arquivos na raiz de alguns diretórios =======
2016-12-16 18:48 - 2016-12-16 18:48 - 7680000 _____ () C:\Program Files\GUTC5FD.tmp
2014-12-14 14:45 - 2014-12-14 14:45 - 1866208 _____ (HQVid-Quality-v17V14.12) C:\Users\Notebook\AppData\Roaming\ETEOBRP.exe
2015-03-02 20:04 - 2015-03-02 20:05 - 0016940 _____ () C:\Users\Notebook\AppData\Roaming\unins000.dat
2015-03-02 20:04 - 2015-03-02 20:04 - 0811218 _____ () C:\Users\Notebook\AppData\Roaming\unins000.exe
2014-09-14 18:55 - 2015-03-01 18:51 - 0011776 _____ () C:\Users\Notebook\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-23 19:50 - 2014-11-23 19:50 - 0301608 _____ (VuuPC Limited) C:\Users\Notebook\AppData\Local\nsiD4A2.tmp
2014-11-23 19:50 - 2014-11-23 19:50 - 0301608 _____ (VuuPC Limited) C:\Users\Notebook\AppData\Local\nsx11EF.tmp
2014-09-05 21:25 - 2016-11-29 19:13 - 0007598 _____ () C:\Users\Notebook\AppData\Local\Resmon.ResmonCfg
Alguns arquivos em TEMP:
====================
2017-02-01 20:12 - 2017-02-01 20:13 - 0739904 _____ (Oracle Corporation) C:\Users\Notebook\AppData\Local\Temp\jre-8u121-windows-au.exe
2010-11-16 20:55 - 2010-11-16 20:55 - 0468232 ____R (Microsoft Corporation) C:\Users\Notebook\AppData\Local\Temp\MSNE5ED.exe
2017-06-28 21:06 - 2017-06-28 21:06 - 2056194 _____ (Dropbox, Inc.) C:\Users\Notebook\AppData\Local\Temp\{0D50E136-EC52-4928-B44B-7ACBC688618E}-DropboxClient_29.4.20.exe
2017-02-01 20:17 - 2017-02-01 20:17 - 35740588 _____ (Dropbox, Inc.) C:\Users\Notebook\AppData\Local\Temp\{D07DBFE3-34B2-4FC1-AE09-6549CFBB9256}-DropboxClient_17.4.33.exe
2017-03-04 18:39 - 2017-03-04 18:39 - 0597200 _____ (Dropbox, Inc.) C:\Users\Notebook\AppData\Local\Temp\{D9EFF1F7-6826-435B-8D99-8147EE8811D9}-DropboxClient_20.4.19.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => MD5 é legítimo
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-06-19 14:50
==================== Fim de FRST.txt ============================
Executado por Notebook (administrador) em NOTEBOOK-PC (13-07-2017 01:05:06)
Executando a partir de C:\Users\Notebook\Downloads
Perfis Carregados: Notebook (Perfis Disponíveis: Notebook)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão não detectado!)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Projector\Epson USB Display V1.7\EMP_UDSA.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1002984 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [mbot_br_303] => [X]
HKLM\...\Run: [smrt] => C:\Program Files\SideCubes\Startup.exe
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [EPSON_UD_START] => C:\Program Files\EPSON Projector\Epson USB Display V1.7\EMP_UD.exe [538728 2014-04-23] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [3486520 2017-06-26] (Dropbox, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [813616 2017-04-19] (GAS Tecnologia LTDA)
Winlogon\Notify\ GbPluginCef: C:\Program Files\GbPlugin\gbiehCef.dll [2016-10-10] (Caixa Economica Federal)
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\...\Run: [GoogleChromeAutoLaunch_D1B0FD63F4D0DCE5FE499D82AB84ED1E] => C:\Program Files\Google\Chrome\Application\chrome.exe [1027928 2017-06-22] (Google Inc.)
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\...\MountPoints2: {1c039670-dd3e-11e5-a48e-dc85de67f405} - E:\EMP_UDSe.exe /autorun
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\...\MountPoints2: {a6d73600-3c52-11e4-a008-fbd975a5eb9e} - E:\DrvInst.exe
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\PROGRAM FILES\GbPlugin\gbiehcef.dll [1903328 2016-10-10] (Caixa Economica Federal)
GroupPolicy: Restrição - Chrome <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 201.82.0.52 201.82.0.57
Tcpip\..\Interfaces\{16DE7BC7-AA2A-4269-A93E-4EAA0055598A}: [DhcpNameServer] 201.82.0.52 201.82.0.57
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3463895388-2915252153-2815166546-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://br.msn.com/?ocid=iehp
URLSearchHook: HKU\S-1-5-21-3463895388-2915252153-2815166546-1000 - (Sem Nome) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-01] (Oracle Corporation)
BHO: Sem Nome -> {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> Nenhum Arquivo
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\PROGRAM FILES\GBPLUGIN\gbiehcef.dll [2016-10-10] (Caixa Economica Federal)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-01] (Oracle Corporation)
IE Session Restore: HKU\S-1-5-21-3463895388-2915252153-2815166546-1000 -> está habilitado.
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://isearch.omiga-plus.com/?type=sc&ts=1417294986&from=slbnew&uid=WDCXWD3200BPVT-22JJ5T0_WD-WXX1E13ZPCH8ZPCH8
FireFox:
========
FF DefaultProfile: 5awipehz.default
FF ProfilePath: C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\5awipehz.default [2016-11-26]
FF Extension: (Firefox Hotfix) - C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\5awipehz.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-10-17]
FF Extension: (Search and New Tab by Yahoo) - C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\5awipehz.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2016-11-26]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2014-08-31] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2852 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2007-11-21] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1662 -> C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2007-11-21] (RealNetworks, Inc.)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [Nenhum Arquivo]
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [Nenhum Arquivo]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3463895388-2915252153-2815166546-1000: gastecnologia.com.br/sf/abn -> C:\Users\Notebook\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll [2015-02-19] (GAS Tecnologia)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://start.iminent.com/__PARAM__
CHR StartupUrls: Default -> "hxxp://www.google.com.br/"
CHR Profile: C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default [2017-07-13]
CHR Extension: (Google Apresentações) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-06]
CHR Extension: (Google Docs) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Google Drive) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (YouTube) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (Google Search) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Dropbox para Gmail) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-04]
CHR Extension: (ecldhagehndokdmaiaigoaecbmbnmfkc) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecldhagehndokdmaiaigoaecbmbnmfkc [2014-12-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Planilhas do Google) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-06]
CHR Extension: (Allin1Convert) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcncagkkhfoombgbihckkccmkjemhohl [2015-03-01]
CHR Extension: (Documentos Google off-line) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-14]
CHR Extension: (kidhjpmgjfbkmcfpfakmdddddgfbhahj) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\kidhjpmgjfbkmcfpfakmdddddgfbhahj [2014-12-18]
CHR Extension: (Dicionário Inglês Online: Moderno Dic...) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlagpnophbbkajkekmfjloilmkncmcla [2016-06-26]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2015-06-21]
CHR Extension: (Gmail) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-03]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-25] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42824 2017-06-26] (Dropbox, Inc.)
R2 EMP_UDSA; C:\Program Files\EPSON Projector\Epson USB Display V1.7\EMP_UDSA.exe [166504 2014-04-23] (SEIKO EPSON CORPORATION)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [631520 2016-10-10] (GAS Tecnologia)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [103696 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280864 2016-11-14] (Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [813616 2017-04-19] (GAS Tecnologia LTDA)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /svc [X] <==== ATENÇÃO
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /medsvc [X] <==== ATENÇÃO
S2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe -service [X]
S2 Update DizzyDing; "C:\Program Files\DizzyDing\updateDizzyDing.exe" [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [66688 2011-04-16] (Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [33408 2011-04-16] (Advanced Micro Devices)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-03-11] (Baidu, Inc.)
R3 EMP_MIRRUD; C:\Windows\System32\DRIVERS\EMP_MirrUD.sys [3712 2011-11-17] (Windows (R) Codename Longhorn DDK provider)
R3 eppvad_simple; C:\Windows\System32\drivers\EMP_UDAU.sys [17664 2011-11-17] (SEIKO EPSON CORPORATION)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg32.sys [25848 2017-07-12] (GAS Tecnologia)
R0 GbpKm; C:\Windows\System32\drivers\GbpKm.sys [49496 2015-12-08] (GAS Tecnologia)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [252808 2016-08-25] (Microsoft Corporation)
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2016-08-12] (GAS Tecnologia)
R3 RTL8192Ce; C:\Windows\System32\DRIVERS\rtl8192Ce.sys [1057896 2011-10-06] (Realtek Semiconductor Corporation )
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [22744 2017-07-13] (GAS Tecnologia)
R1 wsddntf; C:\Windows\System32\DRIVERS\wsddntf.sys [31864 2016-06-16] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [22624 2017-04-19] (GAS Tecnologia)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [22624 2017-04-19] (GAS Tecnologia)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-07-13 00:54 - 2017-07-13 01:02 - 00046105 _____ C:\Users\Notebook\Downloads\Addition.txt
2017-07-13 00:48 - 2017-07-13 01:05 - 00015853 _____ C:\Users\Notebook\Downloads\FRST.txt
2017-07-13 00:47 - 2017-07-13 01:05 - 00000000 ____D C:\FRST
2017-07-13 00:46 - 2017-07-13 00:47 - 01780224 _____ (Farbar) C:\Users\Notebook\Downloads\FRST.exe
2017-07-13 00:45 - 2017-07-13 00:47 - 13969576 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86 (2).exe
2017-07-13 00:02 - 2017-07-13 00:09 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-07-13 00:02 - 2017-07-13 00:09 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-12 23:57 - 2017-07-12 23:58 - 13767776 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86 (1).exe
2017-07-12 23:46 - 2017-07-12 23:47 - 00189398 _____ C:\Windows\ntbtlog.txt
2017-07-12 23:23 - 2017-07-12 23:23 - 00000000 ____D C:\Windows\CheckSur
2017-07-12 22:55 - 2017-07-12 23:21 - 239126136 _____ C:\Users\Notebook\Downloads\Windows6.1-KB947821-v34-x86 (1).msu
2017-07-12 22:38 - 2017-07-12 22:38 - 01250816 _____ C:\Users\Notebook\Downloads\MicrosoftEasyFix50202.msi
2017-07-12 22:37 - 2017-07-12 22:37 - 00002636 _____ C:\Users\Notebook\Downloads\legitcheck.hta
2017-07-12 22:37 - 2017-07-12 22:37 - 00002636 _____ C:\Users\Notebook\Downloads\legitcheck (1).hta
2017-07-12 22:23 - 2017-07-12 22:25 - 15254384 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x64.exe
2017-07-12 20:44 - 2017-07-12 20:44 - 00013253 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (5).zip
2017-07-12 20:43 - 2017-07-12 20:43 - 00013243 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (4).zip
2017-07-12 20:41 - 2017-07-12 20:41 - 00003674 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (3).zip
2017-07-12 20:40 - 2017-07-12 20:40 - 00009167 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (2).zip
2017-07-12 20:39 - 2017-07-12 20:39 - 00013250 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0 (1).zip
2017-07-12 20:38 - 2016-08-10 12:01 - 00023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-07-12 20:32 - 2017-07-12 20:32 - 00003630 _____ C:\Users\Notebook\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2017-07-12 20:22 - 2017-07-12 20:24 - 00629006 _____ C:\Users\Notebook\Downloads\Windows6.1-KB2999226-x86.msu
2017-07-12 20:06 - 2017-07-12 20:03 - 13969576 _____ (Microsoft Corporation) C:\Users\Notebook\Desktop\vc_redist.x86.exe
2017-07-12 20:02 - 2017-07-12 20:03 - 13969576 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86.exe
2017-07-12 18:53 - 2017-07-12 18:53 - 00002865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00002825 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00002817 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00002791 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-07-12 18:53 - 2017-07-12 18:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2017-07-12 18:51 - 2017-07-12 18:51 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2017-07-12 18:51 - 2017-07-12 18:51 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-07-12 18:50 - 2017-07-12 18:50 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-07-12 18:49 - 2017-07-12 18:50 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2017-07-12 18:49 - 2017-07-12 18:49 - 00000000 ____D C:\Windows\PCHEALTH
2017-07-12 18:43 - 2017-07-12 18:43 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2017-07-12 18:40 - 2017-07-12 18:40 - 00000000 __RHD C:\MSOCache
2017-07-12 16:47 - 2017-07-12 16:47 - 00003608 ____N C:\bootsqm.dat
2017-07-12 11:49 - 2017-07-12 11:53 - 00000000 ____D C:\Users\Notebook\Desktop\Microsoft_Office_ProPlus_2016_PT_BR_2016
2017-07-11 10:02 - 2017-07-11 10:02 - 00052084 _____ C:\Users\Notebook\Downloads\report (6).pdf
2017-07-11 10:00 - 2017-07-11 10:00 - 00051988 _____ C:\Users\Notebook\Downloads\report (5).pdf
2017-07-11 08:16 - 2017-07-11 08:16 - 00359632 _____ C:\Users\Notebook\Downloads\The Effect of Sodium Hypochlorite and Chlorhexidine.pdf
2017-07-03 21:38 - 2017-07-03 21:38 - 00110091 _____ C:\Users\Notebook\Downloads\ACFrOgDCM6_8oi3QZSArjTqFejy2S8v4wYw6OOulIRImAkT8lihbj1VLAp0n-118EpT2J6qmvJhhHJdM7c0Bj3NiEkDjnZLFkYv9CVt4vwLJ1F2BmoniTusSgmWUPRw= (1).pdf
2017-07-03 21:35 - 2017-07-03 21:35 - 00110091 _____ C:\Users\Notebook\Downloads\ACFrOgDCM6_8oi3QZSArjTqFejy2S8v4wYw6OOulIRImAkT8lihbj1VLAp0n-118EpT2J6qmvJhhHJdM7c0Bj3NiEkDjnZLFkYv9CVt4vwLJ1F2BmoniTusSgmWUPRw=.pdf
2017-06-29 19:31 - 2017-06-29 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-06-28 20:36 - 2017-06-28 20:36 - 00431777 _____ C:\Users\Notebook\Desktop\FolhadeRosto.pdf
2017-06-28 14:25 - 2017-06-28 14:25 - 14212310 _____ C:\Users\Notebook\Desktop\folha de rosto assinada.pdf
2017-06-28 14:20 - 2017-06-28 14:22 - 14208962 _____ C:\Users\Notebook\Downloads\braulio 3.pdf
2017-06-28 14:17 - 2017-07-11 15:39 - 00000000 ____D C:\Users\Notebook\Desktop\Seminário Julho
2017-06-26 07:27 - 2017-06-26 07:27 - 00042824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-06-26 07:27 - 2017-06-26 07:27 - 00035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-06-26 07:27 - 2017-06-26 07:27 - 00035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-06-26 07:27 - 2017-06-26 07:27 - 00035408 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-06-15 14:43 - 2017-06-15 13:58 - 00619216 _____ C:\Users\Notebook\Documents\2017-06-15-06-12-22.fit
2017-06-13 16:27 - 2017-06-13 16:27 - 00126324 _____ C:\Users\Notebook\Downloads\Braulio.pdf.pdf
2017-06-07 20:03 - 2017-06-07 20:03 - 00028171 _____ C:\Users\Notebook\Desktop\folhaDeRosto (2).pdf
2017-06-07 19:59 - 2017-06-07 19:59 - 00022636 _____ C:\Users\Notebook\Downloads\folhaDeRosto (2).pdf
2017-06-07 19:52 - 2017-06-07 19:52 - 00022636 _____ C:\Users\Notebook\Downloads\folhaDeRosto (1).pdf
2017-06-07 19:48 - 2017-06-07 19:48 - 00022640 _____ C:\Users\Notebook\Downloads\folhaDeRosto.pdf
2017-06-06 20:40 - 2017-06-06 20:40 - 00106321 _____ C:\Users\Notebook\Downloads\Boleto_0150647146_10_20170510_20170510.pdf
2017-06-02 17:16 - 2017-07-13 00:37 - 00022744 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-06-02 17:16 - 2017-04-19 17:52 - 00022624 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddprm.sys
2017-06-02 17:16 - 2017-04-19 17:52 - 00022624 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2017-06-02 16:59 - 2017-06-02 17:00 - 01672278 _____ C:\Users\Notebook\Downloads\Dicas--Plataforma-Brasil.pdf
2017-06-02 16:54 - 2017-06-02 16:54 - 00262748 _____ C:\Users\Notebook\Downloads\ORIENTAÇÕES-GERAIS-CADASTRO-E-SUBMISSÃO-DE-PROJETOS-DE-PESQUISA-NA-PLATAFORMA-BRASIL.pdf
2017-05-31 20:58 - 2017-05-31 20:58 - 00222771 _____ C:\Users\Notebook\Downloads\cid.pdf
2017-05-30 21:33 - 2017-05-30 21:33 - 00006164 _____ C:\Users\Notebook\Downloads\2472-16.pdf
2017-05-30 16:54 - 2017-05-30 16:54 - 00145742 _____ C:\Users\Notebook\Desktop\curriculun.pdf
2017-05-30 16:46 - 2017-05-30 16:46 - 00003584 _____ C:\Users\Notebook\Downloads\1225299328837663 (2).zip
2017-05-30 16:35 - 2017-05-30 16:35 - 00574993 _____ C:\Users\Notebook\Downloads\1_Gerando_Lattes.pdf
2017-05-30 16:29 - 2017-05-30 16:29 - 00004435 _____ C:\Users\Notebook\Downloads\1225299328837663 (1).zip
2017-05-30 16:23 - 2017-05-30 16:23 - 00004435 _____ C:\Users\Notebook\Downloads\1225299328837663.zip
2017-05-29 16:45 - 2017-05-29 16:45 - 01148672 _____ C:\Users\Notebook\Downloads\REGIMENTO-INTERNO-CEP-COMITÊ-DE-ÉTICA-EM-PESQUISA-1.pdf
2017-05-23 17:07 - 2017-05-23 17:07 - 00195437 _____ C:\Users\Notebook\Downloads\Bráulio Fonseca.pdf
2017-05-20 08:35 - 2017-05-20 08:35 - 00318229 _____ C:\Users\Notebook\Downloads\2016-The Effect of Foraminal Enlargement of Necrotic Teeth with the Reciproc System on Postoperative Pain- A Prospective and Randomized Clinical Trial (2).pdf
2017-05-16 09:25 - 2017-05-16 09:25 - 00000000 ____D C:\Users\Notebook\AppData\Roaming\Google
2017-05-04 19:54 - 2017-05-04 19:54 - 00109766 _____ C:\Users\Notebook\Downloads\Boleto_0150647146_10_20170410_20170410.pdf
2017-05-02 20:31 - 2017-05-02 20:31 - 00047298 _____ C:\Users\Notebook\Downloads\boleto gps braulio.pdf
2017-04-29 12:06 - 2017-04-29 12:06 - 00022419 _____ C:\Users\Notebook\Downloads\report (4).pdf
2017-04-28 22:23 - 2017-04-28 22:23 - 00027725 _____ C:\Users\Notebook\Desktop\demonstrativo IR.pdf
2017-04-28 22:21 - 2017-04-28 22:21 - 00022267 _____ C:\Users\Notebook\Downloads\BRAULIO.PDF
2017-04-24 22:43 - 2017-04-24 22:43 - 00273701 _____ C:\Users\Notebook\Downloads\zhang2009.pdf
2017-04-24 22:37 - 2017-04-24 22:37 - 04983862 _____ C:\Users\Notebook\Downloads\2015 dentine pressure.pdf
2017-04-24 22:35 - 2017-04-24 22:35 - 01368801 _____ C:\Users\Notebook\Downloads\2015JOE.pdf
2017-04-24 22:29 - 2017-04-24 22:29 - 01402781 _____ C:\Users\Notebook\Downloads\9753210.pdf
2017-04-24 22:22 - 2017-04-24 22:23 - 04837046 _____ C:\Users\Notebook\Downloads\bioceramic_materials_in_endodontics.pdf
2017-04-24 22:17 - 2017-04-24 22:17 - 00699936 _____ C:\Users\Notebook\Downloads\Dentin moisture conditions affect the adhesion of root canal sealers.pdf
2017-04-24 22:14 - 2017-04-24 22:14 - 00544237 _____ C:\Users\Notebook\Downloads\2017 IEJ Volume 50 Issue 1 January (13).pdf
2017-04-24 22:11 - 2017-04-24 22:11 - 00091215 _____ C:\Users\Notebook\Downloads\18316300.pdf
2017-04-24 22:09 - 2017-04-24 22:09 - 00258684 _____ C:\Users\Notebook\Downloads\loushine2011.pdf
2017-04-24 21:54 - 2017-04-24 21:54 - 00464351 _____ C:\Users\Notebook\Downloads\final puplished.pdf
2017-04-24 21:51 - 2017-04-24 21:51 - 02771818 _____ C:\Users\Notebook\Downloads\joe 2016 bio (1).pdf
2017-04-24 21:43 - 2017-04-24 21:44 - 02771818 _____ C:\Users\Notebook\Downloads\joe 2016 bio.pdf
2017-04-24 21:40 - 2017-04-24 21:40 - 01127645 _____ C:\Users\Notebook\Downloads\CANDEIRO et al., 2015 (IEJ).pdf
2017-04-24 21:35 - 2017-04-24 21:35 - 00094212 _____ C:\Users\Notebook\Downloads\2012_art_gtmcandeiro1.pdf
2017-04-24 21:19 - 2017-04-24 21:19 - 00645992 _____ C:\Users\Notebook\Downloads\borges2011.pdf
2017-04-24 15:18 - 2017-04-24 15:18 - 00346510 _____ C:\Users\Notebook\Downloads\Monografia Flávia e Elizana final.pdf.pdf
2017-04-16 18:57 - 2017-04-16 18:57 - 03628966 _____ C:\Users\Notebook\Downloads\v11n1a02.pdf
2017-04-16 18:49 - 2017-04-16 18:49 - 00265689 _____ C:\Users\Notebook\Downloads\a09v70n2 (2).pdf
2017-04-16 18:47 - 2017-04-16 18:48 - 00265689 _____ C:\Users\Notebook\Downloads\a09v70n2 (1).pdf
2017-04-16 18:45 - 2017-04-16 18:45 - 00265689 _____ C:\Users\Notebook\Downloads\a09v70n2.pdf
2017-04-16 18:04 - 2017-04-16 18:04 - 00383520 _____ C:\Users\Notebook\Downloads\2001The Effect of Maintaining Apical Patency on Periapical Extrusion.pdf
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-07-13 00:56 - 2016-04-25 08:11 - 00001012 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-07-13 00:39 - 2016-08-12 22:06 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-07-13 00:39 - 2016-08-12 22:06 - 00000000 ____D C:\ProgramData\GbPlugin
2017-07-13 00:37 - 2016-04-25 08:11 - 00001008 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-07-13 00:36 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-12 21:45 - 2011-04-12 01:47 - 00705268 _____ C:\Windows\system32\prfh0416.dat
2017-07-12 21:45 - 2011-04-12 01:47 - 00147108 _____ C:\Windows\system32\prfc0416.dat
2017-07-12 21:45 - 2010-11-20 18:01 - 01639268 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-12 21:45 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2017-07-12 21:27 - 2016-08-12 22:08 - 00025848 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg32.sys
2017-07-12 21:24 - 2009-07-14 01:34 - 00016656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-12 21:24 - 2009-07-14 01:34 - 00016656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-12 20:08 - 2009-07-14 01:33 - 00432424 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-12 20:00 - 2014-08-31 11:49 - 00112312 _____ C:\Users\Notebook\AppData\Local\GDIPFONTCACHEV1.DAT
2017-07-12 19:26 - 2014-08-31 11:34 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-07-12 18:51 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-07-12 18:50 - 2014-08-31 11:34 - 00000000 ____D C:\Program Files\Microsoft Office
2017-07-12 18:44 - 2011-04-12 01:56 - 00000000 ____D C:\Windows\ShellNew
2017-07-12 14:41 - 2009-07-14 01:52 - 00000000 ____D C:\Program Files\MSBuild
2017-07-12 13:55 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\catroot2.bak
2017-07-12 12:15 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\System
2017-07-12 10:44 - 2016-10-26 20:18 - 00000000 ____D C:\Users\Notebook\Desktop\SLM
2017-07-11 08:06 - 2016-02-05 21:20 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-06-29 19:31 - 2016-04-25 08:11 - 00000000 ____D C:\Program Files\Dropbox
2017-06-28 20:48 - 2014-08-31 17:15 - 00002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-20 20:30 - 2009-07-14 01:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-06-20 20:13 - 2016-04-25 08:11 - 00000000 ____D C:\Users\Notebook\AppData\Local\Dropbox
==================== Arquivos na raiz de alguns diretórios =======
2016-12-16 18:48 - 2016-12-16 18:48 - 7680000 _____ () C:\Program Files\GUTC5FD.tmp
2014-12-14 14:45 - 2014-12-14 14:45 - 1866208 _____ (HQVid-Quality-v17V14.12) C:\Users\Notebook\AppData\Roaming\ETEOBRP.exe
2015-03-02 20:04 - 2015-03-02 20:05 - 0016940 _____ () C:\Users\Notebook\AppData\Roaming\unins000.dat
2015-03-02 20:04 - 2015-03-02 20:04 - 0811218 _____ () C:\Users\Notebook\AppData\Roaming\unins000.exe
2014-09-14 18:55 - 2015-03-01 18:51 - 0011776 _____ () C:\Users\Notebook\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-23 19:50 - 2014-11-23 19:50 - 0301608 _____ (VuuPC Limited) C:\Users\Notebook\AppData\Local\nsiD4A2.tmp
2014-11-23 19:50 - 2014-11-23 19:50 - 0301608 _____ (VuuPC Limited) C:\Users\Notebook\AppData\Local\nsx11EF.tmp
2014-09-05 21:25 - 2016-11-29 19:13 - 0007598 _____ () C:\Users\Notebook\AppData\Local\Resmon.ResmonCfg
Alguns arquivos em TEMP:
====================
2017-02-01 20:12 - 2017-02-01 20:13 - 0739904 _____ (Oracle Corporation) C:\Users\Notebook\AppData\Local\Temp\jre-8u121-windows-au.exe
2010-11-16 20:55 - 2010-11-16 20:55 - 0468232 ____R (Microsoft Corporation) C:\Users\Notebook\AppData\Local\Temp\MSNE5ED.exe
2017-06-28 21:06 - 2017-06-28 21:06 - 2056194 _____ (Dropbox, Inc.) C:\Users\Notebook\AppData\Local\Temp\{0D50E136-EC52-4928-B44B-7ACBC688618E}-DropboxClient_29.4.20.exe
2017-02-01 20:17 - 2017-02-01 20:17 - 35740588 _____ (Dropbox, Inc.) C:\Users\Notebook\AppData\Local\Temp\{D07DBFE3-34B2-4FC1-AE09-6549CFBB9256}-DropboxClient_17.4.33.exe
2017-03-04 18:39 - 2017-03-04 18:39 - 0597200 _____ (Dropbox, Inc.) C:\Users\Notebook\AppData\Local\Temp\{D9EFF1F7-6826-435B-8D99-8147EE8811D9}-DropboxClient_20.4.19.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => MD5 é legítimo
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-06-19 14:50
==================== Fim de FRST.txt ============================