cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17.01.2018
Executado por USUARIO_NOT (administrador) em USUARIO_NOT-PC (17-01-2018 03:14:07)
Executando a partir de C:\Users\USUARIO_NOT\Downloads
Perfis Carregados: USUARIO_NOT (Perfis Disponíveis: USUARIO_NOT)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
() C:\Windows\windefender.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\rss\csrss.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(BitTorrent Inc.) C:\Users\USUARIO_NOT\AppData\Roaming\BitTorrent\BitTorrent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
() C:\Users\USUARIO_NOT\AppData\Roaming\a4FejsMDA5myB6Wondrivedesktopn.exe
(EpicNet Inc.) C:\Users\USUARIO_NOT\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
() C:\Users\USUARIO_NOT\AppData\Local\Temp\00013279\msiql.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(BitTorrent Inc.) C:\Users\USUARIO_NOT\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe
(BitTorrent Inc.) C:\Users\USUARIO_NOT\AppData\Roaming\BitTorrent\updates\7.10.0_43917\bittorrentie.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SERVICE] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31072 2008-10-25] (Microsoft Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\...\RunOnce: [USUARIO_NOT-PC] => C:\Windows\Temp\gACF1.tmp.exe [209408 2018-01-17] () <==== ATENÇÃO
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATENÇÃO
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATENÇÃO
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATENÇÃO
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATENÇÃO
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATENÇÃO
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATENÇÃO
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATENÇÃO
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATENÇÃO
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATENÇÃO
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATENÇÃO
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATENÇÃO
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATENÇÃO
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATENÇÃO
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATENÇÃO
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATENÇÃO
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATENÇÃO
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATENÇÃO
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2016-10-29] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [BitTorrent] => C:\Users\USUARIO_NOT\AppData\Roaming\BitTorrent\BitTorrent.exe [2150088 2017-07-04] (BitTorrent Inc.)
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [Chromium] => c:\users\usuario_not\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [DS4Windows] => "C:\Program Files (x86)\DSDCS\InputMapper\InputMapper.exe"
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-17] (Disc Soft Ltd)
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [HGG47D0L] => C:\Users\USUARIO_NOT\AppData\Roaming\a4FejsMDA5myB6Wondrivedesktopn.exe [4694656 2018-01-02] ()
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [BlueBush] => C:\Windows\rss\csrss.exe [7300127 2018-01-17] () <==== ATENÇÃO
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [CloudNet] => C:\Users\USUARIO_NOT\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [680448 2018-01-17] (EpicNet Inc.)
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\Run: [msiql] => C:\Users\USUARIO_NOT\AppData\Local\Temp\00013279\msiql.exe [2072576 2018-01-17] () <==== ATENÇÃO
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\MountPoints2: {0c94df87-e402-11e7-a800-80ee7385c4ff} - F:\Autorun.exe
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\...\MountPoints2: {89959453-9249-11e6-abc5-80ee7385c4ff} - E:\Lenovo_Suite.exe
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\ProgramData\DreamScreen\DreamCompress.scr [5315072 2018-01-17] ()
ShellExecuteHooks: Sem Nome - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} - C:\Users\USUARIO_NOT\AppData\Roaming\tmp546.dat [2308096 2017-12-06] ()
GroupPolicy: Restrição - Chrome <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1DE14FB6-B9B2-48A6-A563-3FC874A03665}: [DhcpNameServer] 201.82.0.62 201.82.0.67 201.6.4.116
Tcpip\..\Interfaces\{782301CF-4A71-432C-AA99-EA958EF75219}: [DhcpNameServer] 201.82.0.64 201.82.0.63 201.6.4.116
Tcpip\..\Interfaces\{B89781E1-480D-4EE9-995F-931B8000CCA0}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1120625978-1260073925-2618886898-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1120625978-1260073925-2618886898-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fs_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztD0E0EyBtAzzyD0CyE0F0FyBtA0FyDtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0AzyyD0FyBtBtGtA0F0DyEtGtD0DyB0EtGyCyD0AtAtGtBzzyBtByBzz0AtAtCyCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzyyC0A0EtAtB0BtG0B0D0E0CtGyEzz0DyDtG0B0ByDtBtGtCtB0FtC0AyCyCyDyEyDzyyE2QtN0A0LzuyE%26cr%3D1568922241%26a%3Dwbf_fs_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-12-11] (Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll => Nenhum Arquivo
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-12-11] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll => Nenhum Arquivo
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll => Nenhum Arquivo
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll Nenhum Arquivo
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-12-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-12-11] (Oracle Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [1999-12-31] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [1999-12-31] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [Nenhum Arquivo]
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default [2018-01-17]
CHR Extension: (Google Drive) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-11]
CHR Extension: (YouTube) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-11]
CHR Extension: (Google Search) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-11]
CHR Extension: (Screen Addict) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijmpokfkjcejmgmiogncemnjcdbnncll [2018-01-04]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-11]
CHR Extension: (Chrome Media Router) - C:\Users\USUARIO_NOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-18]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1120625978-1260073925-2618886898-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291392 2017-08-17] (Disc Soft Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2015-09-17] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Arquivo não assinado]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 1999-12-31] (Intel Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5560840 2016-05-11] (INCA Internet Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 WinDefender; C:\Windows\windefender.exe [1377280 2018-01-17] () [Arquivo não assinado]
S2 9838ab66cac6b8c63c1917e9c2c5de62; rundll32.exe C:\Windows\9838ab66cac6b8c63c1917e9c2c5de62.dll JtIOOQTsPQ [X]
S2 fdd28d7b0801fce06b00f01cc46d6f3a; "C:\Program Files\fdd28d7b0801fce06b00f01cc46d6f3a\d2f202b5a1c29b6b0936f0a42dfb48d4.exe" [X]

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 cdd32611525d953b0b70533e56eeada1; C:\Windows\system32\drivers\cdd32611525d953b0b70533e56eeada1.sys [97272 2018-01-16] ()
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-10-23] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-10-23] (Disc Soft Ltd)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 1999-12-31] (Intel Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [752856 2015-06-22] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [402136 2015-06-22] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [1476832 2013-01-28] (Realtek Semiconductor Corporation )
S3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2015-12-11] (SlimWare Utilities, Inc.)

========================== MD5 dos Drivers =======================

C:\Windows\system32\DRIVERS\1394ohci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ACPI.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\acpipmi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\afd.sys B9384E03479D2506BC924C16A3DB87BC
C:\Windows\system32\DRIVERS\agp440.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\aliide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdsata.sys 7A4B413614C055935567CF88A9734D38
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\amdxata.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\appid.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\atapi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bxvbda.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Beep.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\bowser.sys 91CE0D3DC57DD377E690A2D324022B08
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\cdd32611525d953b0b70533e56eeada1.sys C7F908AE8B29BE78943229AB18A211EF
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 é legítimo
C:\Windows\System32\CLFS.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\cmdide.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\cng.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\csc.sys 4A6173C2279B498CD8F57CAE504564CB
C:\Windows\System32\Drivers\dfsc.sys 3F1DC527070ACB87E40AFE46EF6DA749
C:\Windows\System32\drivers\discache.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\dtlitescsibus.sys 679FF716052109392D870F6A6C4A3535
C:\Windows\System32\DRIVERS\dtliteusbbus.sys E23FDD696839A4790682CA66C48D3F2F
C:\Windows\System32\drivers\dxgkrnl.sys 7CB7D2B73813CE05C7BC0F5F95D27CEC
C:\Windows\system32\DRIVERS\evbda.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\errdev.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\exfat.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\filetrace.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Fs_Rec.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\fvevol.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\HdAudio.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HpSAMD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\HTTP.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\iaStorV.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\igdkmd64.sys 37FD6F2AA7A3F695D514C4BABE795DD5
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\intelide.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\IPMIDrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ipnat.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\irenum.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\isapnp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\msiscsi.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\ksecdd.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\ksecpkg.sys BBE1BF6D9B661C354D4857D5FADB943B
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\luafv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\TeeDriverx64.sys EB1D78140D6634C32A46AB1006105EDC
C:\Windows\System32\drivers\modem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\mpio.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\mrxdav.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mrxsmb.sys CFDCD8CA87C2A657DEBC150AC35B5E08
C:\Windows\System32\DRIVERS\mrxsmb10.sys 1BEE517B220B7F024F411AEC1571DD5A
C:\Windows\System32\DRIVERS\mrxsmb20.sys 6B2D5FEF385828B6E485C1C90AFB8195
C:\Windows\System32\DRIVERS\msahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\msdsm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\msisadrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\mup.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ndis.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netr7364.sys 81B8D0C1CE44A7FDBD596B693783950C
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Ntfs.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Null.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nvraid.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nvstor.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nv_agp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ohci1394.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\partmgr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pciide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\pcw.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\peauth.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpdr.sys 9706B84DBABFC4B4CA46C5A82B14DFA3
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\RDPWD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\RtsBaStor.sys 6D3832F14F53C886528FB1CA4C2EC2A6
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\Rt64win7.sys 9AAB5A7AE8EDBDFC41390272DD08A054
C:\Windows\System32\DRIVERS\rtwlane.sys 14D2D839308303064D95A2CCCDB27C47
C:\Windows\system32\DRIVERS\vms3cap.sys 88AF6E02AB19DF7FD07ECDF9C91E9AF6
C:\Windows\system32\DRIVERS\sbp2port.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ScpVBus.sys 0447065A6E10774EFCECFDD0EB970A79
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffdisk.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_mmc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_sd.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\spldr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\srv.sys EC8F67289105BF270498095F14963464
C:\Windows\System32\DRIVERS\srv2.sys F773D2ED090B7BAA1C1A034F3CA476C8
C:\Windows\System32\DRIVERS\srvnet.sys 26E84D3649019C3244622E654DFCD75B
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vmstorfl.sys FFD7A6F15B14234B5B0E5D49E7961895
C:\Windows\system32\DRIVERS\storvsc.sys 8FCCBEFC5C440B3C23454656E551B09A
C:\Windows\System32\DRIVERS\SWDUMon.sys 98E8C921F7F17F113AAA128EC7310213
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tcpip.sys 912107716BAB424C7870E8E6AF5E07E1
C:\Windows\System32\DRIVERS\tcpip.sys 912107716BAB424C7870E8E6AF5E07E1
C:\Windows\System32\drivers\tcpipreg.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tdtcp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\tssecsrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uliagpkx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\usbaudio.sys 77B01BC848298223A95D4EC23E1785A1
C:\Windows\System32\DRIVERS\usbccgp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbcir.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbehci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbhub.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbohci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbscan.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\USBSTOR.SYS ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbuhci.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\usbvideo.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vdrvroot.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\vga.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vhdmp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\viaide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vmbus.sys 1501699D7EDA984ABC4155A7DA5738D1
C:\Windows\system32\DRIVERS\VMBusHID.sys AE10C35761889E65A6F7176937C5592C
C:\Windows\System32\DRIVERS\volmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\volsnap.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\wimmount.sys ==> MD5 é legítimo
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\WinUsb.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wmiacpi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\WudfPf.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\WUDFRd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\xusb21.sys 2C6BC21B2D5B58D8B1D638C1704CB494

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-01-17 03:14 - 2018-01-17 03:14 - 000042349 _____ C:\Users\USUARIO_NOT\Downloads\FRST.txt
2018-01-17 03:13 - 2018-01-17 03:14 - 000000000 ____D C:\FRST
2018-01-17 03:13 - 2018-01-17 03:13 - 002393088 _____ (Farbar) C:\Users\USUARIO_NOT\Downloads\FRST64.exe
2018-01-17 03:03 - 2018-01-17 03:03 - 003646968 _____ (AVG Technologies CZ, s.r.o.) C:\Users\USUARIO_NOT\Downloads\Antivirus_Free_2081.exe
2018-01-17 03:02 - 2018-01-17 03:02 - 002376368 _____ (Kaspersky Lab) C:\Users\USUARIO_NOT\Downloads\kfa18.0.0.405aben_12579.exe
2018-01-17 02:44 - 2018-01-17 02:58 - 000279376 _____ C:\Windows\ntbtlog.txt
2018-01-17 02:12 - 2018-01-17 02:12 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\AvgSetupLog
2018-01-17 02:12 - 2018-01-17 02:12 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\Avg
2018-01-17 02:12 - 2018-01-17 02:12 - 000000000 ____D C:\Users\Todos os Usuários\Avg
2018-01-17 02:12 - 2018-01-17 02:12 - 000000000 ____D C:\ProgramData\Avg
2018-01-17 02:11 - 2018-01-17 03:07 - 000000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2018-01-17 02:11 - 2018-01-17 03:07 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2018-01-17 01:51 - 2018-01-17 03:00 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\LocalLow\BitTorrent
2018-01-17 01:48 - 2018-01-17 01:48 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\DreamCompress
2018-01-17 00:25 - 2018-01-17 02:20 - 000000000 ____D C:\Users\Todos os Usuários\DreamCompress
2018-01-17 00:25 - 2018-01-17 02:20 - 000000000 ____D C:\ProgramData\DreamCompress
2018-01-17 00:25 - 2018-01-17 00:25 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\DreamScreen
2018-01-17 00:25 - 2018-01-17 00:25 - 000000000 ____D C:\Users\Todos os Usuários\DreamScreen
2018-01-17 00:25 - 2018-01-17 00:25 - 000000000 ____D C:\Users\Todos os Usuários\CupCheck
2018-01-17 00:25 - 2018-01-17 00:25 - 000000000 ____D C:\ProgramData\DreamScreen
2018-01-17 00:25 - 2018-01-17 00:25 - 000000000 ____D C:\ProgramData\CupCheck
2018-01-17 00:24 - 2018-01-17 00:24 - 000003270 _____ C:\Windows\System32\Tasks\LaCieS
2018-01-17 00:24 - 2017-12-06 13:27 - 002308096 ___SH C:\Users\USUARIO_NOT\AppData\Roaming\tmp546.dat
2018-01-17 00:19 - 2018-01-17 00:19 - 000000000 ____D C:\Users\Todos os Usuários\Microleaves
2018-01-17 00:19 - 2018-01-17 00:19 - 000000000 ____D C:\ProgramData\Microleaves
2018-01-17 00:17 - 2018-01-17 03:10 - 000000344 _____ C:\Windows\Tasks\Online Application V2G6.job
2018-01-17 00:17 - 2018-01-17 03:10 - 000000344 _____ C:\Windows\Tasks\Online Application V2G5.job
2018-01-17 00:17 - 2018-01-17 03:10 - 000000344 _____ C:\Windows\Tasks\Online Application V2G4.job
2018-01-17 00:17 - 2018-01-17 03:09 - 000000344 _____ C:\Windows\Tasks\Online Application V2G3.job
2018-01-17 00:17 - 2018-01-17 03:09 - 000000344 _____ C:\Windows\Tasks\Online Application V2G2.job
2018-01-17 00:17 - 2018-01-17 00:19 - 000000376 _____ C:\Windows\Tasks\Updater_Online_Application.job
2018-01-17 00:17 - 2018-01-17 00:17 - 000003208 _____ C:\Windows\System32\Tasks\Updater_Online_Application
2018-01-17 00:17 - 2018-01-17 00:17 - 000003172 _____ C:\Windows\System32\Tasks\Online Application V2G6
2018-01-17 00:17 - 2018-01-17 00:17 - 000003172 _____ C:\Windows\System32\Tasks\Online Application V2G5
2018-01-17 00:17 - 2018-01-17 00:17 - 000003172 _____ C:\Windows\System32\Tasks\Online Application V2G4
2018-01-17 00:17 - 2018-01-17 00:17 - 000003172 _____ C:\Windows\System32\Tasks\Online Application V2G3
2018-01-17 00:17 - 2018-01-17 00:17 - 000003172 _____ C:\Windows\System32\Tasks\Online Application V2G2
2018-01-17 00:17 - 2018-01-17 00:17 - 000003172 _____ C:\Windows\System32\Tasks\Online Application V2G1
2018-01-17 00:16 - 2018-01-17 03:09 - 000000344 _____ C:\Windows\Tasks\Online Application V2G1.job
2018-01-17 00:15 - 2018-01-17 00:15 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\AdvinstAnalytics
2018-01-17 00:14 - 2018-01-17 00:14 - 000003280 _____ C:\Windows\System32\Tasks\ShadowsocksS
2018-01-17 00:14 - 2018-01-17 00:14 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Microleaves
2018-01-17 00:13 - 2018-01-17 00:13 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\EpicNet Inc
2018-01-17 00:12 - 2018-01-17 02:20 - 000000000 ____D C:\Program Files (x86)\FastDataX
2018-01-17 00:12 - 2018-01-17 00:12 - 000003580 _____ C:\Windows\System32\Tasks\FastDataX Task
2018-01-17 00:12 - 2018-01-17 00:12 - 000000000 ____D C:\Users\Todos os Usuários\cd597054-5be5-1
2018-01-17 00:12 - 2018-01-17 00:12 - 000000000 ____D C:\Users\Todos os Usuários\cd597054-4105-0
2018-01-17 00:12 - 2018-01-17 00:12 - 000000000 ____D C:\ProgramData\cd597054-5be5-1
2018-01-17 00:12 - 2018-01-17 00:12 - 000000000 ____D C:\ProgramData\cd597054-4105-0
2018-01-17 00:11 - 2018-01-17 00:12 - 001377280 ____H C:\Windows\windefender.exe
2018-01-17 00:11 - 2018-01-17 00:11 - 000000000 ___HD C:\Windows\rss
2018-01-17 00:11 - 2018-01-17 00:11 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\FastDataX
2018-01-17 00:10 - 2018-01-17 02:44 - 000016736 _____ C:\Windows\System32\Tasks\ISDNLintoring Time
2018-01-17 00:10 - 2018-01-17 00:10 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\SystemHealer
2018-01-17 00:10 - 2018-01-17 00:10 - 000000000 ____D C:\Users\Todos os Usuários\7340aa90-4b45-1
2018-01-17 00:10 - 2018-01-17 00:10 - 000000000 ____D C:\Users\Todos os Usuários\7340aa90-26f3-0
2018-01-17 00:10 - 2018-01-17 00:10 - 000000000 ____D C:\ProgramData\7340aa90-4b45-1
2018-01-17 00:10 - 2018-01-17 00:10 - 000000000 ____D C:\ProgramData\7340aa90-26f3-0
2018-01-17 00:09 - 2018-01-17 02:38 - 000003162 _____ C:\Windows\System32\Tasks\fdd28d7b0801fce06b00f01cc46d6f3a
2018-01-17 00:09 - 2018-01-17 02:20 - 000000000 ____D C:\Windows\SysWOW64\SSL
2018-01-17 00:08 - 2018-01-17 00:08 - 000567553 _____ C:\Users\USUARIO_NOT\Downloads\Movavi Video Editor 1400 Crack.zip
2018-01-17 00:08 - 2018-01-17 00:08 - 000045109 _____ C:\Users\USUARIO_NOT\Downloads\Movavi_Video_Editor_1400_Crack.xht
2018-01-16 23:41 - 2018-01-16 23:41 - 000001084 _____ C:\Users\Public\Desktop\Movavi Video Editor 14.lnk
2018-01-16 23:41 - 2018-01-16 23:41 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\VideoEditor
2018-01-16 23:41 - 2018-01-16 23:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Editor 14
2018-01-16 23:40 - 2018-01-16 23:41 - 000000000 ____D C:\Program Files (x86)\Movavi Video Editor 14
2018-01-16 23:40 - 2018-01-16 23:40 - 000005100 _____ C:\Users\Todos os Usuários\ubnmeoaw.nlb
2018-01-16 23:40 - 2018-01-16 23:40 - 000005100 _____ C:\ProgramData\ubnmeoaw.nlb
2018-01-16 23:40 - 2018-01-16 23:40 - 000000000 ____D C:\Users\Todos os Usuários\Movavi Video Editor 14
2018-01-16 23:40 - 2018-01-16 23:40 - 000000000 ____D C:\ProgramData\Movavi Video Editor 14
2018-01-16 23:38 - 2018-01-16 23:40 - 058195920 _____ (Movavi) C:\Users\USUARIO_NOT\Downloads\MovaviVideoEditorSetupC.exe
2018-01-16 23:35 - 2018-01-16 23:35 - 001242312 _____ (Microsoft Corporation) C:\Users\USUARIO_NOT\Downloads\Baixaki_windows-movie-maker [1].exe
2018-01-16 23:34 - 2018-01-16 23:34 - 002189240 _____ ( ) C:\Users\USUARIO_NOT\Downloads\Baixaki_windows-movie-maker.exe
2018-01-16 23:32 - 2018-01-16 23:32 - 000002880 _____ C:\Users\USUARIO_NOT\Documents\Register Vegas Pro.htm
2018-01-16 23:26 - 2018-01-16 23:26 - 000000000 ____D C:\Windows\SysWOW64\spool
2018-01-16 23:26 - 2018-01-16 23:26 - 000000000 ____D C:\Users\Todos os Usuários\Sony
2018-01-16 23:26 - 2018-01-16 23:26 - 000000000 ____D C:\ProgramData\Sony
2018-01-16 23:26 - 2018-01-16 23:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2018-01-16 23:26 - 2018-01-16 23:26 - 000000000 ____D C:\Program Files (x86)\Sony
2018-01-16 23:11 - 2018-01-16 23:17 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Sony Vegas Pro 11.0.682 32 bit (patch keygen DI) [ChingLiu]
2018-01-16 23:08 - 2018-01-16 23:08 - 021769196 _____ C:\Users\USUARIO_NOT\Downloads\Photos (1).zip
2018-01-16 22:48 - 2018-01-16 22:48 - 000000000 ____D C:\Users\USUARIO_NOT\Desktop\Nova pasta
2018-01-16 13:16 - 2018-01-16 13:16 - 000133948 _____ C:\Users\USUARIO_NOT\Desktop\Aviso Valor IPVA 2018.pdf
2018-01-16 08:24 - 2018-01-16 08:24 - 000097272 _____ C:\Windows\system32\Drivers\cdd32611525d953b0b70533e56eeada1.sys
2018-01-16 08:24 - 2018-01-16 08:24 - 000051643 _____ C:\Windows\uninstaller.dat
2018-01-15 23:55 - 2018-01-15 23:55 - 000000721 _____ C:\Users\USUARIO_NOT\Desktop\Elsword.lnk
2018-01-15 23:47 - 2018-01-15 23:47 - 000000000 ____D C:\Level Up
2018-01-15 22:21 - 2018-01-15 23:43 - 000000000 ____D C:\Users\USUARIO_NOT\Documents\LevelUp Data
2018-01-15 22:17 - 2018-01-15 22:17 - 000401152 _____ () C:\Users\USUARIO_NOT\Downloads\elsword.exe
2018-01-15 21:56 - 2018-01-15 21:56 - 000000000 ____D C:\Users\USUARIO_NOT\Documents\SkidRow
2018-01-15 21:56 - 2018-01-15 21:56 - 000000000 ____D C:\Users\USUARIO_NOT\Documents\My Games
2018-01-15 21:56 - 2018-01-15 21:56 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\Targem
2018-01-15 21:52 - 2018-01-15 21:52 - 000001235 _____ C:\Users\Public\Desktop\Dance Magic.lnk
2018-01-15 21:52 - 2018-01-15 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Targem Games
2018-01-15 21:51 - 2018-01-15 21:51 - 000000000 ____D C:\Program Files (x86)\Targem Games
2018-01-15 20:44 - 2018-01-15 20:45 - 006299456 _____ C:\Users\USUARIO_NOT\Downloads\Photos.zip
2018-01-13 16:08 - 2018-01-13 17:13 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Dance.Magic-POSTMORTEM
2018-01-13 16:00 - 2018-01-13 16:00 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Zootopia (2016) 5.1 CH Dublado 720p (By-LuanHarper)
2018-01-09 18:37 - 2018-01-09 23:22 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Coração de Dragão
2018-01-09 18:35 - 2018-01-11 01:38 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Twister 720p - The Pirate Filmes
2018-01-09 18:35 - 2018-01-09 19:09 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Daylight 1996 720p BluRay Dublado - WWW.THEPIRATEFILMES.COM
2018-01-08 01:17 - 2018-01-09 00:02 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Transformers O Último Cavaleiro 2017 IMAX [BluRay] (720p) DUBLADO
2018-01-08 01:15 - 2018-01-08 13:06 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Baywatch - S.O.S. Malibu - 2017 Versão sem Censura [BluRay] (720p) DUBLADO
2018-01-06 23:27 - 2018-01-07 15:40 - 000000161 _____ C:\Users\USUARIO_NOT\Desktop\acc.txt
2018-01-04 01:56 - 2018-01-17 02:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced RAR Repair
2018-01-04 01:56 - 2018-01-17 02:20 - 000000000 ____D C:\Program Files (x86)\ARAR
2018-01-03 23:53 - 2018-01-03 23:53 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\Procurando Dory 2016 720p Bluray Dublado - TPF
2018-01-03 14:47 - 2018-01-03 14:47 - 000000007 _____ C:\Users\USUARIO_NOT\AppData\Roaming\oidsudslkdj.txt
2018-01-03 14:47 - 2018-01-03 14:47 - 000000000 _____ C:\Users\USUARIO_NOT\AppData\Local\a4FejsMDA5myB6Wondrivedesktopn.exe.txt
2018-01-02 18:29 - 2018-01-02 18:29 - 004694656 _____ C:\Users\USUARIO_NOT\AppData\Roaming\a4FejsMDA5myB6Wondrivedesktopn.exe
2017-12-21 15:48 - 2017-12-22 15:09 - 000012958 _____ C:\Users\USUARIO_NOT\Documents\Equipamentos.xlsx
2017-12-21 13:52 - 2017-12-21 13:52 - 000000000 ____D C:\Users\USUARIO_NOT\Downloads\snes9x-1.53-win32-x64
2017-12-18 13:05 - 2017-12-18 13:05 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Atari
2017-12-18 12:49 - 2017-12-18 12:49 - 000001773 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2017-12-18 12:49 - 2017-12-18 12:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2017-12-18 12:49 - 2017-12-18 12:49 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2017-12-12 14:19 - 2017-12-17 14:19 - 000000052 _____ C:\Users\USUARIO_NOT\AppData\Local\zlXDjVBhTz
2017-12-11 16:36 - 2017-12-11 16:36 - 000000000 ____D C:\Users\Todos os Usuários\Blizzard Entertainment
2017-12-11 16:36 - 2017-12-11 16:36 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2017-12-11 16:31 - 2017-12-11 16:31 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\Blizzard Entertainment
2017-12-11 16:26 - 2017-12-11 16:26 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\Blizzard
2017-12-11 16:26 - 2017-12-11 16:26 - 000000000 ____D C:\Users\Todos os Usuários\Battle.net
2017-12-11 16:26 - 2017-12-11 16:26 - 000000000 ____D C:\ProgramData\Battle.net
2017-12-11 15:05 - 2017-12-11 15:04 - 000110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2017-12-02 14:33 - 2017-12-02 14:49 - 000000000 ____D C:\Users\USUARIO_NOT\Documents\VirtualDJ
2017-12-02 14:33 - 2017-12-02 14:33 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2017-12-02 14:33 - 2017-12-02 14:33 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\VirtualDJ
2017-12-02 14:33 - 2017-12-02 14:33 - 000000000 ____D C:\Program Files (x86)\VirtualDJ
2017-11-21 22:43 - 2017-11-21 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GS Auto Clicker
2017-11-21 22:43 - 2017-11-21 22:43 - 000000000 ____D C:\Program Files (x86)\GSAutoClicker3
2017-11-19 11:56 - 2017-11-19 11:56 - 000003020 _____ C:\Windows\System32\Tasks\{4BAF22B1-EC37-4C27-8411-C4A41EB981D2}
2017-11-11 21:05 - 2017-11-11 21:05 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\IsolatedStorage
2017-11-11 21:05 - 2017-11-11 21:05 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\FileViewPro
2017-11-11 21:05 - 2017-11-11 21:05 - 000000000 ____D C:\Users\Todos os Usuários\IsolatedStorage
2017-11-11 21:05 - 2017-11-11 21:05 - 000000000 ____D C:\ProgramData\IsolatedStorage
2017-11-09 14:06 - 2017-11-09 14:06 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Delta
2017-11-09 14:06 - 2017-11-09 14:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Delta
2017-11-09 14:06 - 2017-11-09 14:06 - 000000000 ____D C:\Program Files (x86)\Delta
2017-11-07 09:53 - 2017-11-07 09:53 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2017-11-07 09:43 - 2017-11-07 09:43 - 000000000 ____D C:\Users\Todos os Usuários\DSDCS
2017-11-07 09:43 - 2017-11-07 09:43 - 000000000 ____D C:\Users\Todos os Usuários\Caphyon
2017-11-07 09:43 - 2017-11-07 09:43 - 000000000 ____D C:\ProgramData\DSDCS
2017-11-07 09:43 - 2017-11-07 09:43 - 000000000 ____D C:\ProgramData\Caphyon
2017-11-07 09:42 - 2017-11-08 19:13 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\InputMapper
2017-11-07 09:20 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-11-07 09:20 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2017-11-07 09:20 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-11-07 09:20 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2017-11-07 09:20 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2017-11-07 09:20 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2017-11-07 09:20 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2017-11-07 09:20 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-11-07 09:20 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2017-11-07 09:20 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-11-07 09:20 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-11-07 09:20 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2017-11-07 09:20 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2017-11-07 09:20 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-11-07 09:20 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2017-11-07 09:20 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-11-07 09:20 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2017-11-07 09:20 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-11-07 09:19 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2017-11-07 09:19 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-11-07 09:19 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2017-11-07 09:19 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-11-07 09:19 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2017-11-07 09:19 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-11-07 09:19 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2017-11-07 09:19 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-11-07 09:19 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-11-07 09:19 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2017-11-07 09:19 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2017-11-07 09:19 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-11-07 09:19 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2017-11-07 09:19 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-11-07 09:19 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2017-11-07 09:19 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-11-07 09:19 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2017-11-07 09:19 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2017-11-07 09:19 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-11-07 09:19 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2017-11-07 09:19 - 2008-10-10 04:52 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-11-07 09:19 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2017-11-07 09:19 - 2008-10-10 04:52 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-11-07 09:19 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2017-11-07 09:19 - 2008-10-10 04:52 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-11-07 09:19 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-11-07 09:19 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2017-11-07 09:19 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2017-11-07 09:19 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-11-07 09:19 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2017-11-07 09:19 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-11-07 09:19 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-11-07 09:19 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2017-11-07 09:19 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-11-07 09:19 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2017-11-07 09:19 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-11-07 09:19 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2017-11-07 09:19 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2017-11-07 09:19 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-11-07 09:19 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-11-07 09:19 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2017-11-07 09:19 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2017-11-07 09:19 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-11-07 09:19 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-11-07 09:19 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2017-11-07 09:19 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2017-11-07 09:19 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-11-07 09:19 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2017-11-07 09:19 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-11-07 09:19 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2017-11-07 09:19 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-11-07 09:19 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2017-11-07 09:19 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-11-07 09:19 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-11-07 09:19 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2017-11-07 09:19 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2017-11-07 09:19 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-11-07 09:19 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2017-11-07 09:19 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-11-07 09:19 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2017-11-07 09:19 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-11-07 09:19 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2017-11-07 09:19 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-11-07 09:19 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2017-11-07 09:19 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-11-07 09:19 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2017-11-07 09:19 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-11-07 09:19 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2017-11-07 09:19 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-11-07 09:19 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2017-11-07 09:19 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-11-07 09:19 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2017-11-07 09:19 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-11-07 09:19 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2017-11-07 09:19 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-11-07 09:19 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2017-11-07 09:19 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-11-07 09:19 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2017-11-07 09:19 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-11-07 09:19 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2017-11-07 09:19 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-11-07 09:19 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2017-11-07 09:19 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-11-07 09:19 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2017-11-07 09:19 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-11-07 09:19 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2017-11-07 09:19 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-11-07 09:19 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2017-11-07 09:19 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-11-07 09:19 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2017-11-07 09:19 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-11-07 09:19 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2017-11-07 09:19 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2017-11-07 09:19 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2017-11-07 09:19 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-11-07 09:19 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2017-11-07 09:19 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-11-07 09:19 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2017-11-07 09:19 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-11-07 09:19 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2017-11-07 09:19 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-11-07 09:19 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2017-11-07 09:19 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-11-07 09:19 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-11-07 09:19 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2017-11-07 09:19 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2017-11-07 09:19 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-11-07 09:19 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2017-11-07 09:19 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-11-07 09:19 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2017-11-07 09:19 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-11-07 09:19 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-11-07 09:19 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2017-11-07 09:19 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2017-11-07 09:19 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2017-11-07 09:19 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-11-07 09:19 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-11-07 09:19 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-11-07 09:19 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2017-11-07 09:19 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2017-11-07 09:19 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-11-07 09:19 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2017-11-07 09:19 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-11-07 09:19 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2017-11-07 09:19 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-11-07 09:19 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2017-11-07 09:19 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-11-07 09:19 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2017-11-07 09:19 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-11-07 09:19 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2017-11-07 09:19 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-11-07 09:19 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2017-11-07 09:19 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-11-07 09:19 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2017-11-07 09:19 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-11-07 09:19 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2017-11-07 09:19 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-11-07 09:19 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2017-11-07 09:19 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-11-07 09:19 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2017-11-07 09:19 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-11-07 09:15 - 2017-11-07 09:20 - 000000000 ____D C:\Windows\SysWOW64\directx
2017-11-07 09:15 - 2017-11-07 09:18 - 000000000 ___HD C:\Windows\msdownld.tmp
2017-11-07 09:14 - 2017-11-07 09:49 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\DSDCS

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-01-17 03:15 - 2016-11-02 17:44 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\BitTorrent
2018-01-17 03:07 - 2009-07-14 02:45 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-17 03:07 - 2009-07-14 02:45 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-17 02:59 - 2015-12-11 15:07 - 000000000 __SHD C:\Users\USUARIO_NOT\IntelGraphicsProfiles
2018-01-17 02:58 - 2009-07-14 03:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-17 02:38 - 2016-11-25 22:18 - 000000524 __RSH C:\Users\Todos os Usuários\ntuser.pol
2018-01-17 02:38 - 2016-11-25 22:18 - 000000524 __RSH C:\ProgramData\ntuser.pol
2018-01-17 02:33 - 2017-07-04 20:22 - 000002241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-17 02:32 - 2017-07-04 20:22 - 000002223 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-17 02:21 - 2015-12-11 10:22 - 000000000 ____D C:\Users\USUARIO_NOT
2018-01-17 02:21 - 2009-07-14 02:45 - 000414216 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-17 02:20 - 2016-10-23 19:18 - 000000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2018-01-17 02:20 - 2016-10-23 19:18 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2018-01-17 02:20 - 2009-07-14 01:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-01-17 02:20 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\registration
2018-01-17 02:20 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\inf
2018-01-17 01:49 - 2015-12-11 10:35 - 000108840 _____ C:\Users\USUARIO_NOT\AppData\Local\GDIPFONTCACHEV1.DAT
2018-01-17 00:03 - 2015-12-11 10:26 - 000004358 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{498404BC-057A-4319-BF32-9E47FCD52AA2}
2018-01-16 23:41 - 2017-08-21 11:06 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\Movavi
2018-01-16 23:24 - 2016-11-02 17:23 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Sony
2018-01-16 23:18 - 2016-11-25 22:18 - 000000000 ____D C:\Users\Todos os Usuários\{441D817E-CE5F-0BB8-4899-95FAD2DB1E34}
2018-01-16 23:18 - 2016-11-25 22:18 - 000000000 ____D C:\ProgramData\{441D817E-CE5F-0BB8-4899-95FAD2DB1E34}
2018-01-15 23:24 - 2015-12-12 20:11 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\Deployment
2018-01-15 22:18 - 2016-07-08 12:44 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Level Up
2018-01-14 00:11 - 2017-10-03 19:04 - 000000000 ____D C:\Users\USUARIO_NOT\Desktop\Tibia IP Changer
2018-01-13 22:15 - 2017-09-11 20:38 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Tibia
2018-01-06 16:52 - 2017-09-11 20:34 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\sqlitestudio
2018-01-04 02:09 - 2009-07-14 16:11 - 000000000 ___RD C:\Users\Public\Recorded TV
2018-01-04 01:24 - 2015-12-11 10:23 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Local\VirtualStore
2018-01-04 00:32 - 2015-12-11 14:52 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-01-03 14:24 - 2009-07-14 15:55 - 000705818 _____ C:\Windows\system32\prfh0416.dat
2018-01-03 14:24 - 2009-07-14 15:55 - 000147658 _____ C:\Windows\system32\prfc0416.dat
2018-01-03 14:24 - 2009-07-14 03:13 - 001635062 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-01 20:19 - 2016-04-20 15:19 - 000000000 ___SD C:\Users\USUARIO_NOT\AppData\LocalLow\Temp
2017-12-30 21:02 - 2017-09-12 15:57 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-12-26 23:51 - 2009-07-14 03:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-18 13:04 - 2009-07-14 03:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-12-18 12:52 - 2016-10-23 19:18 - 000000000 ____D C:\Users\USUARIO_NOT\AppData\Roaming\DAEMON Tools Lite

==================== Arquivos na raiz de alguns diretórios =======

2018-01-02 18:29 - 2018-01-02 18:29 - 004694656 _____ () C:\Users\USUARIO_NOT\AppData\Roaming\a4FejsMDA5myB6Wondrivedesktopn.exe
2018-01-03 14:47 - 2018-01-03 14:47 - 000000007 _____ () C:\Users\USUARIO_NOT\AppData\Roaming\oidsudslkdj.txt
2018-01-17 00:24 - 2017-12-06 13:27 - 002308096 ___SH () C:\Users\USUARIO_NOT\AppData\Roaming\tmp546.dat
2018-01-03 14:47 - 2018-01-03 14:47 - 000000000 _____ () C:\Users\USUARIO_NOT\AppData\Local\a4FejsMDA5myB6Wondrivedesktopn.exe.txt
2017-01-27 16:19 - 2017-01-27 16:19 - 000001814 _____ () C:\Users\USUARIO_NOT\AppData\Local\recently-used.xbel
2017-12-12 14:19 - 2017-12-17 14:19 - 000000052 _____ () C:\Users\USUARIO_NOT\AppData\Local\zlXDjVBhTz

Arquivos para serem movidos ou deletados:
====================
C:\Windows\Temp\gACF1.tmp.exe
C:\Windows\rss\csrss.exe
C:\Users\USUARIO_NOT\AppData\Local\Temp\00013279\msiql.exe


==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

==================== BCD ================================

Gerenciador de Inicializa��o do Windows
--------------------
identificador {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale pt-BR
inherit {globalsettings}
default {current}
resumeobject {0d834bc7-a001-11e5-bb7b-cfa261e40d9e}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Carregador de Inicializa��o do Windows
-------------------
identificador {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale pt-BR
inherit {bootloadersettings}
recoverysequence {0d834bc9-a001-11e5-bb7b-cfa261e40d9e}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {0d834bc7-a001-11e5-bb7b-cfa261e40d9e}
nx OptIn

Carregador de Inicializa��o do Windows
-------------------
identificador {0d834bc9-a001-11e5-bb7b-cfa261e40d9e}
device ramdisk=[C:]\Recovery\0d834bc9-a001-11e5-bb7b-cfa261e40d9e\Winre.wim,{0d834bca-a001-11e5-bb7b-cfa261e40d9e}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\0d834bc9-a001-11e5-bb7b-cfa261e40d9e\Winre.wim,{0d834bca-a001-11e5-bb7b-cfa261e40d9e}
systemroot \windows
nx OptIn
winpe Yes

Continuar da Hiberna��o
---------------------
identificador {0d834bc7-a001-11e5-bb7b-cfa261e40d9e}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale pt-BR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No

Testador de Mem�ria do Windows
---------------------
identificador {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagn�stico de Mem�ria do Windows
locale pt-BR
inherit {globalsettings}
badmemoryaccess Yes

Configura��es de EMS
------------
identificador {emssettings}
bootems Yes

Configura��es do Depurador
-----------------
identificador {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Defeitos de RAM
-----------
identificador {badmemory}

Configura��es Globais
---------------
identificador {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Configura��es do Carregador de Inicializa��o
--------------------
identificador {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Configura��es do Hypervisor
-------------------
identificador {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Configura��es do Carregador de Retorno
----------------------
identificador {resumeloadersettings}
inherit {globalsettings}

Op��es de dispositivo
--------------
identificador {0d834bca-a001-11e5-bb7b-cfa261e40d9e}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\0d834bc9-a001-11e5-bb7b-cfa261e40d9e\boot.sdi


LastRegBack: 2018-01-08 00:32

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité