Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 23.04.2018
Executado por Teigor (administrador) em HOUSEPC14 (24-04-2018 00:08:48)
Executando a partir de C:\Users\Teigor\Downloads
Perfis Carregados: Teigor (Perfis Disponíveis: Teigor & Administrador)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Comodo) C:\Program Files\COMODO\Chromodo\chromodo_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATIN8E.EXE
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-19] (NVIDIA Corporation)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1359064 2015-04-01] (COMODO)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1183256 2018-02-26] (Adobe Systems Incorporated)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2017-12-06] (CANON INC.)
HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2018-01-11] (CANON INC.)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1087184 2018-01-29] (SEIKO EPSON CORPORATION)
Winlogon\Notify\ GbPluginUni: C:\Program Files\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIN8E.EXE [262208 2014-03-20] (SEIKO EPSON CORPORATION)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
GroupPolicy: Restrição - Chrome <==== ATENÇÃO
GroupPolicy\User: Restrição ? <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51414;https=127.0.0.1:51414;
AutoConfigURL: [.DEFAULT] => http=127.0.0.1:51414;https=127.0.0.1:51414;
ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices.
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\..\Interfaces\{93CD5E9B-34CA-4C8F-8850-B34AFB3A2A70}: [NameServer] 192.168.2.1,192.168.2.12
Tcpip\..\Interfaces\{A6C96CD6-546E-447A-8CB2-4A8C68BC784A}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{CA8EE480-EDAC-4F37-8177-8698C23623B0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{CCB76006-6B09-4610-8B86-CDD4DD2834A0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{FA438C4F-8B5D-4340-8DDE-30D51F7B41F8}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.321oyun.com/?oem=smtov3&uid=9VMRVFZ0_ST3500418AS&tm=1431865482
SearchScopes: HKLM -> DefaultScope {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.searchult.com/?bd=ds&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454&q={searchTerms}
SearchScopes: HKLM -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.searchult.com/?bd=ds&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2827182975-328011247-3503174662-1000 -> {7ED81DB8-BA60-4070-8F07-F72625E6B12A} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES\GBPLUGIN\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-26] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: jwbkuir3.default
FF ProfilePath: C:\Users\Teigor\AppData\Roaming\Mozilla\Firefox\Profiles\jwbkuir3.default [2018-04-23]
FF Extension: (FlashGot) - C:\Users\Teigor\AppData\Roaming\Mozilla\Firefox\Profiles\jwbkuir3.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-03-08] [Legacy]
FF HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5 [2018-04-22] [Legacy] [não assinado]
FF HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_29_0_0_140.dll [2018-04-11] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-26] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-26] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2827182975-328011247-3503174662-1000: gastecnologia.com.br/sf/uni -> C:\Users\Teigor\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxp://www.searchult.com/?bd=hp&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454"
CHR Profile: C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default [2018-04-24]
CHR Extension: (Apresentações) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Documentos) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (Plugins Button) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfkmdpfljdpopbemfaelnflapafbflgn [2017-07-22]
CHR Extension: (YouTube) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-01-11]
CHR Extension: (Planilhas) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-04-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-15]
CHR Extension: (Chrome Media Router) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-21]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iinglghmhcgdgjjlafobajghjamdchik] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-04-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ChromodoUpdater; C:\Program Files\Comodo\Chromodo\chromodo_updater.exe [2306248 2015-05-18] (Comodo)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4351816 2015-04-01] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664728 2015-04-01] (COMODO)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [400656 2017-06-19] (EasyAntiCheat Ltd)
R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [577088 2018-01-29] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [126128 2018-01-29] (Seiko Epson Corporation)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [546104 2014-09-29] (GAS Tecnologia)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2014-12-19] (NVIDIA Corporation)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [204576 2014-08-01] (Microsoft)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-19] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18186896 2014-12-19] (NVIDIA Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2017-06-03] (DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [22016 2014-05-01] (Apache Software Foundation) [Arquivo não assinado]
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [10959360 2014-05-01] () [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [509752 2015-08-18] (GAS Tecnologia LTDA)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 admnfd; C:\Windows\system32\Drivers\admnfd.sys [43840 2014-12-04] (Windows (R) Win 7 DDK provider)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [32768 2018-01-07] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [37376 2018-01-07] (LG Electronics Inc.)
R1 browserMon; C:\Windows\System32\DRIVERS\browserMon.sys [18112 2015-03-03] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17088 2015-04-01] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [621144 2015-04-01] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41248 2015-04-01] (COMODO)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-06-09] (Samsung Electronics Co., Ltd.)
R3 DroidCam; C:\Windows\System32\DRIVERS\droidcam.sys [30008 2017-06-04] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [225720 2017-06-04] (Dev47Apps)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-26] (Disc Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [21496 2017-12-22] () [Arquivo não assinado]
R0 EPMVolFlt; C:\Windows\System32\drivers\EPMVolFlt.sys [17736 2017-12-22] (Windows (R) Codename Longhorn DDK provider)
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10208 2017-12-22] () [Arquivo não assinado]
S3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-13] (VIA Technologies, Inc. )
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [47192 2014-07-21] (GAS Tecnologia)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2016-03-22] (LogMeIn, Inc.)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91200 2015-04-01] (COMODO)
S3 msloop; C:\Windows\System32\DRIVERS\loop.sys [5632 2015-10-28] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2018-02-04] (GAS Tecnologia)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [657408 2009-07-13] (Ralink Technology Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2014-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2014-12-19] (NVIDIA Corporation)
S3 SamsungMonitorFirmware; C:\Windows\System32\drivers\MFWCtwl.sys [14848 2017-05-30] (Samsung Electronics, Inc. ) [Arquivo não assinado]
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-06-09] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [184216 2017-06-03] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2018-01-31] (Microsoft Corporation)
R0 videX32; C:\Windows\System32\DRIVERS\videX32.sys [13976 1999-12-31] (VIA Technologies, Inc.)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert32.sys [31448 2015-04-01] (Basil)
R0 xfilt; C:\Windows\System32\DRIVERS\xfilt.sys [23192 1999-12-31] (VIA Technologies, Inc.)
S3 catchme; \??\C:\Users\ADMINI~1\AppData\Local\Temp\catchme.sys [X]
S2 sbmntr; \??\C:\PROGRA~1\YTDOWN~1\sbmntr.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 wsfd_1_10_0_17; system32\drivers\wsfd_1_10_0_17.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-04-23 23:55 - 2018-04-23 23:56 - 000124711 _____ C:\Users\Teigor\Downloads\Addition.txt
2018-04-23 23:54 - 2018-04-24 00:09 - 000020251 _____ C:\Users\Teigor\Downloads\FRST.txt
2018-04-23 23:54 - 2018-04-24 00:08 - 000000000 ____D C:\FRST
2018-04-23 23:53 - 2018-04-23 23:53 - 001764864 _____ (Farbar) C:\Users\Teigor\Downloads\FRST.exe
2018-04-23 23:39 - 2018-04-23 23:39 - 000016224 _____ (Microsoft Corporation) C:\Users\Teigor\Desktop\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-23 23:32 - 2018-04-23 23:32 - 000001364 _____ C:\Users\Teigor\Downloads\api-ms-win-core-console-l1-1-0.zip
2018-04-23 23:14 - 2018-04-23 23:14 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000064352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-23 23:02 - 2018-04-23 23:02 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-23 23:00 - 2018-04-23 23:00 - 000259492 _____ C:\Users\Teigor\Downloads\PACK-api-ms-win.rar
2018-04-23 22:44 - 2018-04-23 22:44 - 000629006 _____ C:\Users\Teigor\Downloads\Windows6.1-KB2999226-x86.msu
2018-04-23 18:13 - 2018-04-23 18:13 - 000000559 _____ C:\Users\Teigor\Desktop\Drop da bateria.txt
2018-04-23 16:57 - 2018-04-23 16:57 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2018-04-23 16:56 - 2018-04-23 16:56 - 001461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2018-04-23 16:56 - 2018-04-23 16:56 - 000851176 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2018-04-23 16:56 - 2018-04-23 16:56 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\ADBDriverInstaller
2018-04-23 16:45 - 2018-04-23 16:47 - 011715584 _____ (ADBDriver.com) C:\Users\Teigor\Desktop\AdbDriverInstaller.exe
2018-04-22 21:59 - 2018-04-22 22:00 - 013767776 _____ (Microsoft Corporation) C:\Users\Teigor\Downloads\vc_redist.x86 (1).exe
2018-04-22 21:30 - 2018-04-22 21:30 - 013767776 _____ (Microsoft Corporation) C:\Users\Teigor\Downloads\vc_redist.x86.exe
2018-04-22 21:05 - 2018-04-22 21:05 - 486030767 _____ C:\Users\Teigor\Downloads\Custom ROM KitKat Genesis GT 8320.rar
2018-04-22 20:59 - 2018-04-22 20:59 - 000001011 _____ C:\Users\Public\Desktop\Kontakt 5.lnk
2018-04-22 20:59 - 2018-04-22 20:59 - 000000000 __HDC C:\Users\Todos os Usuários\{6C0AC9FD-47AA-4173-94B1-36C8B94B75EF}
2018-04-22 20:59 - 2018-04-22 20:59 - 000000000 __HDC C:\ProgramData\{6C0AC9FD-47AA-4173-94B1-36C8B94B75EF}
2018-04-22 20:51 - 2018-04-22 20:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2018-04-22 20:51 - 2018-04-22 20:52 - 000000000 ____D C:\Program Files\Native Instruments
2018-04-22 20:51 - 2018-04-22 20:51 - 000001056 _____ C:\Users\Public\Desktop\Service Center.lnk
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 __HDC C:\Users\Todos os Usuários\{90D8CE90-3E6B-4034-A281-BC9F19B60A5B}
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 __HDC C:\ProgramData\{90D8CE90-3E6B-4034-A281-BC9F19B60A5B}
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 ____D C:\Users\Todos os Usuários\Native Instruments
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 ____D C:\ProgramData\Native Instruments
2018-04-22 12:55 - 2015-04-21 00:04 - 000000000 ____D C:\Users\Teigor\Desktop\Optional BatteryMODS
2018-04-22 12:54 - 2018-04-22 12:54 - 000003058 _____ C:\Users\Teigor\Desktop\Leia-me.txt
2018-04-22 12:54 - 2015-04-20 22:01 - 000000000 ____D C:\Users\Teigor\Desktop\FirmwareInstall
2018-04-22 12:26 - 2018-04-22 12:54 - 361246142 _____ C:\Users\Teigor\Desktop\Project-X-KK-GT7305_full_v2.1_antop.rar
2018-04-21 12:34 - 2018-04-21 12:36 - 003424256 _____ C:\Users\Teigor\Downloads\twrp-2.8.5.0-twrp.img
2018-04-21 12:31 - 2018-04-21 12:33 - 004802560 _____ C:\Users\Teigor\Downloads\twrp-3.2.1-0-twrp.img
2018-04-20 17:44 - 2018-04-20 17:44 - 000128100 _____ C:\Users\Teigor\Documents\Comunicação de massa.pdf
2018-04-20 17:02 - 2018-04-20 17:43 - 000000000 ____D C:\Users\Teigor\Desktop\Comunicação em massa
2018-04-11 15:58 - 2018-04-11 15:58 - 003396608 _____ C:\Users\Teigor\Downloads\subst org283201183847.ppt
2018-04-10 14:31 - 2018-04-10 14:36 - 000000000 ____D C:\Users\Teigor\Desktop\Nova pasta (3)
2018-04-02 13:53 - 2018-04-02 13:54 - 000000000 ____D C:\Users\Teigor\Desktop\Projeçoes cartograficas
2018-04-01 07:46 - 2018-04-01 07:50 - 000000000 ____D C:\Users\Teigor\Desktop\SOUND FORGE 8.0
2018-04-01 07:40 - 2018-04-01 07:40 - 000000000 ____D C:\Windows\system32\URTTEMP
2018-03-27 15:02 - 2018-04-06 18:02 - 000000000 ____D C:\Users\Teigor\Desktop\hóquei no gelo
2018-03-15 17:26 - 2018-04-09 10:43 - 000000000 ____D C:\Users\Teigor\Desktop\Juan Carlos Ceriani
2018-03-09 04:59 - 2018-03-09 04:59 - 000396864 _____ C:\Windows\Minidump\030918-22218-01.dmp
2018-02-25 13:30 - 2018-02-25 13:30 - 000105505 _____ C:\Users\Teigor\Downloads\EFEITOS.zip
2018-02-16 22:35 - 2018-02-16 22:35 - 000000943 _____ C:\Users\Teigor\Desktop\Bandicam.lnk
2018-02-16 22:35 - 2018-02-16 22:35 - 000000943 _____ C:\Users\Administrador\Desktop\Bandicam.lnk
2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\Program Files\BandiMPEG1
2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\Program Files\Bandicam
2018-02-16 02:04 - 2018-02-16 22:54 - 000000000 ____D C:\Users\Teigor\Documents\VideoOutput
2018-02-16 02:04 - 2018-02-16 02:04 - 000000968 _____ C:\Users\Public\Desktop\Video to Video.lnk
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\Users\Teigor\Documents\Snapshot
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video to Video
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\Program Files\Video to Video
2018-02-16 02:03 - 2018-02-16 02:03 - 023279669 _____ (Media Converters ) C:\Users\Teigor\Downloads\Baixaki_video-to-video-converter [1].exe
2018-02-16 01:55 - 2018-02-16 01:55 - 000000000 ____D C:\Users\Teigor\AppData\Local\fontconfig
2018-02-16 01:51 - 2018-02-16 01:51 - 000001022 _____ C:\Users\Teigor\Desktop\Format Factory.lnk
2018-02-16 01:51 - 2018-02-16 01:51 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2018-02-16 01:50 - 2018-02-16 01:51 - 000000000 ____D C:\Program Files\FormatFactory
2018-02-16 01:40 - 2018-02-16 01:47 - 047406728 _____ (Free Time Co., Ltd) C:\Users\Teigor\Downloads\FFSetup3-9-5-0.exe
2018-02-12 20:45 - 2018-02-12 20:49 - 000000000 ____D C:\Program Files\Stellar Phoenix Video Repair
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 _RSHD C:\Users\Todos os Usuários\Key-Base
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 _RSHD C:\ProgramData\Key-Base
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 ____D C:\Users\Todos os Usuários\{150F1331-4628-F8AE-D54D-EC3B4EF34666}
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 ____D C:\ProgramData\{150F1331-4628-F8AE-D54D-EC3B4EF34666}
2018-02-12 18:31 - 2018-02-12 18:31 - 000000004 _____ C:\Users\Teigor\movdump.lic
2018-02-12 18:29 - 2018-02-12 19:02 - 000000000 ____D C:\Users\Teigor\Desktop\videorepair
2018-02-12 17:57 - 2018-02-12 17:57 - 033129681 _____ C:\Users\Teigor\Downloads\Videorepair + Crack -Uai tutoriais.rar
2018-02-12 16:47 - 2018-02-12 16:47 - 000000000 ____D C:\Users\Teigor\Desktop\Nova pasta (2)
2018-02-12 00:46 - 2018-02-12 00:46 - 000000959 _____ C:\Users\Teigor\Desktop\V Collection 5.lnk
2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia
2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\Program Files\Steinberg
2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\Program Files\Common Files\VST3
2018-02-12 00:05 - 2018-02-12 00:45 - 000000000 ____D C:\Users\Todos os Usuários\Arturia
2018-02-12 00:05 - 2018-02-12 00:45 - 000000000 ____D C:\ProgramData\Arturia
2018-02-12 00:05 - 2018-02-12 00:05 - 000000000 ____D C:\Program Files\Arturia
2018-02-07 22:55 - 2018-02-07 22:57 - 037386440 _____ C:\Users\Teigor\Downloads\WhatsApp.apk
2018-02-01 10:25 - 2018-02-01 10:25 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Epson
2018-01-31 14:37 - 2018-01-31 14:37 - 000114168 _____ C:\Users\Teigor\Downloads\com.cyandroid.pianofull.52.apk
2018-01-31 14:33 - 2018-01-31 14:33 - 000431807 _____ C:\Users\Teigor\Downloads\com.cyandroid.piano-2.0.10@APK4Fun.com.apk
2018-01-29 21:04 - 2018-01-29 21:04 - 000308683 _____ C:\Users\Teigor\Downloads\ESWIN_USB_v0.6j_Install.exe
2018-01-29 21:04 - 2018-01-29 21:04 - 000000918 _____ C:\Users\Teigor\Desktop\ESWin.lnk
2018-01-29 21:04 - 2018-01-29 21:04 - 000000918 _____ C:\Users\Administrador\Desktop\ESWin.lnk
2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESWIN
2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESWin
2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\Program Files\ESWin
2018-01-29 20:45 - 2018-01-29 20:45 - 000000000 ____D C:\Adjustment Program
2018-01-29 20:42 - 2018-01-29 20:42 - 000000042 _____ C:\Windows\L375.ini
2018-01-29 20:42 - 2018-01-29 20:42 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Leadertech
2018-01-29 20:40 - 2018-02-02 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2018-01-29 20:40 - 2018-02-02 18:56 - 000000000 ____D C:\Program Files\EPSON Software
2018-01-29 20:40 - 2018-01-29 20:40 - 000000967 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2018-01-29 20:40 - 2018-01-29 20:40 - 000000000 ____D C:\Program Files\EpsonNet
2018-01-29 20:40 - 2018-01-29 20:39 - 000126128 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc.exe
2018-01-29 20:40 - 2014-06-02 23:00 - 000347136 _____ (Seiko Epson Corporation) C:\Windows\system32\esw2ud.dll
2018-01-29 20:39 - 2018-01-29 20:41 - 000000000 ____D C:\Program Files\epson
2018-01-29 20:39 - 2018-01-29 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2018-01-29 20:39 - 2018-01-29 20:39 - 000000919 _____ C:\Windows\Tasks\EPSON L375 Series Update {33DC29C5-87FB-4A2C-93E2-46809ED19FCC}.job
2018-01-29 20:39 - 2018-01-29 20:39 - 000000000 ____D C:\Program Files\Common Files\EPSON
2018-01-29 20:38 - 2018-02-02 18:56 - 000000000 ____D C:\Users\Todos os Usuários\EPSON
2018-01-29 20:38 - 2018-02-02 18:56 - 000000000 ____D C:\ProgramData\EPSON
2018-01-29 20:38 - 2018-01-29 20:38 - 000142848 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TLMBN8E.DLL
2018-01-29 20:38 - 2018-01-29 20:38 - 000081408 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TD4BN8E.DLL
2018-01-29 20:38 - 2018-01-29 20:38 - 000008192 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_DCINST.DLL
2018-01-29 20:17 - 2018-01-29 20:18 - 013473720 _____ C:\Users\Teigor\Downloads\L375_Win_Lite_1.2APS_FD.exe
2018-01-28 20:47 - 2018-01-28 20:47 - 006489435 _____ C:\Users\Teigor\Desktop\LuckyPatchers.com_Official_V7.0.4.apk
2018-01-28 20:47 - 2018-01-28 20:47 - 000000000 ____D C:\Users\Teigor\Downloads\LuckyPatchers.com_Official_V7.0.4
2018-01-28 20:46 - 2018-01-28 20:47 - 004548995 _____ C:\Users\Teigor\Downloads\LuckyPatchers.com_Official_V7.0.4.zip
2018-01-28 20:41 - 2018-01-28 20:44 - 018980443 _____ C:\Users\Teigor\Downloads\lucky-patcher.apk
2018-01-28 19:57 - 2018-01-28 20:20 - 058549093 _____ C:\Users\Teigor\Downloads\AndRig - Guitar Amp & Effects v2.4.6 [Unlocked].apk
2018-01-28 19:38 - 2018-01-28 19:52 - 047844941 _____ C:\Users\Teigor\Downloads\com.deplike.andrig.apk
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-04-24 00:05 - 2015-05-18 21:10 - 001474832 _____ C:\Windows\system32\Drivers\sfi.dat
2018-04-23 23:23 - 2009-07-14 01:34 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-04-23 23:23 - 2009-07-14 01:34 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-04-23 23:16 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-04-23 23:15 - 2014-08-21 22:56 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2018-04-23 23:15 - 2014-08-21 22:56 - 000000000 ____D C:\ProgramData\NVIDIA
2018-04-23 23:09 - 2015-06-25 23:34 - 000400544 _____ (Microsoft Corporation) C:\Windows\system32\vcamp140.dll
2018-04-23 16:57 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\inf
2018-04-23 02:01 - 2014-08-23 23:19 - 000000000 ____D C:\Users\Teigor\AppData\Local\Adobe
2018-04-22 21:45 - 2015-05-18 20:34 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\DMCache
2018-04-22 21:17 - 2014-08-21 18:55 - 001678450 _____ C:\Windows\system32\PerfStringBackup.INI
2018-04-22 21:17 - 2009-07-14 05:31 - 000718648 _____ C:\Windows\system32\prfh0416.dat
2018-04-22 21:17 - 2009-07-14 05:31 - 000155842 _____ C:\Windows\system32\prfc0416.dat
2018-04-22 20:52 - 2017-07-24 11:24 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2018-04-22 20:50 - 2014-09-01 21:22 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2018-04-22 20:50 - 2014-09-01 21:22 - 000000000 ____D C:\ProgramData\Package Cache
2018-04-22 20:43 - 2017-07-22 00:04 - 000000000 ____D C:\Users\Teigor\Projetos Musicais
2018-04-22 20:37 - 2014-08-21 18:50 - 000000000 ____D C:\Users\Teigor
2018-04-20 17:45 - 2014-10-01 22:14 - 000111616 ___SH C:\Users\Teigor\Documents\Thumbs.db
2018-04-11 19:45 - 2014-11-02 09:34 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2018-04-11 19:45 - 2014-11-02 09:34 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2018-04-11 19:45 - 2014-09-26 10:42 - 000000000 ____D C:\Windows\system32\Macromed
2018-04-10 13:29 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\system32\NDF
2018-04-07 17:23 - 2014-09-06 11:57 - 000000000 ____D C:\Users\Teigor\.aria2
2018-04-07 14:45 - 2014-10-22 11:58 - 000104960 ___SH C:\Users\Teigor\Thumbs.db
2018-04-06 12:54 - 2017-07-22 00:45 - 000000894 __RSH C:\Users\Todos os Usuários\ntuser.pol
2018-04-06 12:54 - 2017-07-22 00:45 - 000000894 __RSH C:\ProgramData\ntuser.pol
2018-04-02 10:42 - 2017-06-04 09:02 - 000000035 _____ C:\Users\Todos os Usuários\droidcam-settings
2018-04-02 10:42 - 2017-06-04 09:02 - 000000035 _____ C:\ProgramData\droidcam-settings
2018-04-01 07:41 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\registration
2018-03-28 19:47 - 2014-09-26 14:41 - 000000000 ____D C:\Users\Teigor\AppData\Local\ElevatedDiagnostics
==================== Arquivos na raiz de alguns diretórios =======
2016-11-28 14:32 - 2018-02-10 07:49 - 000000096 _____ () C:\Users\Teigor\AppData\Roaming\Camdata.ini
2016-11-28 14:32 - 2018-02-10 07:49 - 000000408 _____ () C:\Users\Teigor\AppData\Roaming\CamLayout.ini
2016-11-28 14:32 - 2018-02-10 07:49 - 000000408 _____ () C:\Users\Teigor\AppData\Roaming\CamShapes.ini
2016-11-28 14:32 - 2018-02-10 07:49 - 000004509 _____ () C:\Users\Teigor\AppData\Roaming\CamStudio.cfg
2015-11-13 12:00 - 2015-11-13 15:19 - 000000600 _____ () C:\Users\Teigor\AppData\Roaming\winscp.rnd
2015-01-15 11:55 - 2015-01-15 11:55 - 000000038 ___SH () C:\Users\Teigor\AppData\Local\69ff07055291669bb2b218.72821112
2014-08-26 09:29 - 2017-10-17 20:58 - 000000600 _____ () C:\Users\Teigor\AppData\Local\PUTTY.RND
2014-08-21 18:55 - 2015-05-13 13:27 - 000007605 _____ () C:\Users\Teigor\AppData\Local\resmon.resmoncfg
Alguns arquivos em TEMP:
====================
2013-08-05 03:15 - 2013-08-05 03:15 - 004292136 _____ (www.Bandisoft.com) C:\Users\Teigor\AppData\Local\temp\bdfilters.dll
2017-12-01 20:22 - 2017-12-01 20:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1091371423767370480.dll
2017-12-24 08:07 - 2017-12-24 08:07 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1156335590356693935.dll
2017-12-03 15:00 - 2017-12-03 15:00 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1387513744070915830.dll
2017-12-17 12:11 - 2017-12-17 12:11 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1416710207593670899.dll
2017-11-10 15:51 - 2017-11-10 15:51 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1477127123835203798.dll
2017-12-18 08:20 - 2017-12-18 08:20 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1567719341639438263.dll
2017-12-12 20:24 - 2017-12-12 20:24 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1595404144871301619.dll
2017-11-26 14:54 - 2017-11-26 14:54 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1807912310135813574.dll
2018-01-07 19:26 - 2018-01-07 19:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2062668053664517090.dll
2017-12-28 21:10 - 2017-12-28 21:10 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2086515452821349819.dll
2017-11-14 19:30 - 2017-11-14 19:30 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2156315789689334.dll
2017-12-24 00:55 - 2017-12-24 00:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2413208182066942050.dll
2017-11-11 12:06 - 2017-11-11 12:06 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2425845826561315157.dll
2017-11-09 16:00 - 2017-11-09 16:00 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2505193955064825318.dll
2017-11-13 19:08 - 2017-11-13 19:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2526846373789252422.dll
2017-11-03 13:34 - 2017-11-03 13:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2539654218900271099.dll
2017-12-18 19:44 - 2017-12-18 19:44 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2566645535392264984.dll
2017-12-17 22:12 - 2017-12-17 22:12 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2664832255793627823.dll
2017-11-11 18:09 - 2017-11-11 18:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2716468064958746895.dll
2017-11-26 22:42 - 2017-11-26 22:42 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2732379316322986995.dll
2017-12-06 20:58 - 2017-12-06 20:58 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2854815022031084471.dll
2017-11-19 22:22 - 2017-11-19 22:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2895025751228986576.dll
2017-11-08 12:27 - 2017-11-08 12:27 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2912930658035838343.dll
2017-12-26 20:58 - 2017-12-26 20:58 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3091735438934970033.dll
2017-12-24 08:17 - 2017-12-24 08:17 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3153501252876286859.dll
2017-11-15 20:50 - 2017-11-15 20:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3388305781062489055.dll
2017-11-14 16:47 - 2017-11-14 16:47 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3489443416293279022.dll
2017-11-09 08:38 - 2017-11-09 08:38 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3526521850035438528.dll
2017-12-24 21:22 - 2017-12-24 21:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3650012044910073035.dll
2017-11-19 21:55 - 2017-11-19 21:55 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3738722485089496150.dll
2017-12-13 03:29 - 2017-12-13 03:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3775954583906268269.dll
2017-12-20 00:29 - 2017-12-20 00:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3843590259468493503.dll
2017-11-12 11:48 - 2017-11-12 11:48 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3906366525917647683.dll
2017-12-19 21:42 - 2017-12-19 21:42 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3987758530224947686.dll
2017-12-05 19:33 - 2017-12-05 19:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3990223268855252060.dll
2017-11-05 12:53 - 2017-11-05 12:53 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4063393546085919434.dll
2017-11-06 15:51 - 2017-11-06 15:51 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4150449214236809667.dll
2017-11-18 10:09 - 2017-11-18 10:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4150998588922092675.dll
2017-11-19 21:26 - 2017-11-19 21:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4264892956358154711.dll
2017-11-09 16:54 - 2017-11-09 16:54 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4398530712562065018.dll
2017-11-07 08:27 - 2017-11-07 08:27 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4514621137394281089.dll
2017-11-07 08:33 - 2017-11-07 08:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4550631402071037550.dll
2017-12-18 08:13 - 2017-12-18 08:13 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4563184743047097283.dll
2017-12-09 07:09 - 2017-12-09 07:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4642390963835310315.dll
2017-12-24 19:30 - 2017-12-24 19:30 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4689489484746632727.dll
2017-12-16 02:18 - 2017-12-16 02:18 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4741788527000479788.dll
2017-12-17 08:47 - 2017-12-17 08:47 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4837480339462984022.dll
2017-11-04 13:37 - 2017-11-04 13:37 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4916498597991676016.dll
2017-11-13 01:10 - 2017-11-13 01:10 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5003780218836374692.dll
2017-11-14 13:51 - 2017-11-14 13:51 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5007726753245682932.dll
2017-11-29 19:36 - 2017-11-29 19:36 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5125878059882063926.dll
2017-11-05 21:50 - 2017-11-05 21:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5254371755334644958.dll
2017-11-18 18:59 - 2017-11-18 18:59 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5263914632188435094.dll
2017-11-26 15:01 - 2017-11-26 15:01 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5277983374770517667.dll
2017-11-04 13:26 - 2017-11-04 13:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-541796380414952506.dll
2017-11-20 16:31 - 2017-11-20 16:31 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5619114013043857464.dll
2017-12-29 11:36 - 2017-12-29 11:36 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5916443695039896703.dll
2017-12-16 19:09 - 2017-12-16 19:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6037979153556383403.dll
2017-11-30 19:10 - 2017-11-30 19:10 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6204376989785749582.dll
2017-12-24 07:59 - 2017-12-24 07:59 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6279531150675278146.dll
2017-12-05 21:55 - 2017-12-05 21:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6324577905750310215.dll
2017-12-11 00:47 - 2017-12-11 00:47 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6726017569146285915.dll
2017-11-10 07:56 - 2017-11-10 07:56 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6762594375011440769.dll
2017-12-05 11:43 - 2017-12-05 11:43 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6782055650071171005.dll
2017-11-13 22:08 - 2017-11-13 22:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6913094635268426785.dll
2017-12-20 21:50 - 2017-12-20 21:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-694198932138518342.dll
2017-12-28 20:34 - 2017-12-28 20:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6946637863619716878.dll
2017-12-20 21:26 - 2017-12-20 21:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6960304283981496306.dll
2017-11-27 19:05 - 2017-11-27 19:05 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7055588390321028610.dll
2017-11-28 19:24 - 2017-11-28 19:24 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7343328348145554450.dll
2017-12-24 20:46 - 2017-12-24 20:46 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7363047084553755051.dll
2017-11-17 22:14 - 2017-11-17 22:14 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7458852769060475294.dll
2017-11-28 11:07 - 2017-11-28 11:07 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7543866751837789700.dll
2017-11-27 08:21 - 2017-11-27 08:21 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7571873208172968670.dll
2017-11-27 19:08 - 2017-11-27 19:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7579484657152559724.dll
2017-11-27 19:34 - 2017-11-27 19:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7786435389752508004.dll
2017-12-03 23:44 - 2017-12-03 23:44 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8268673286796483135.dll
2017-11-10 12:21 - 2017-11-10 12:21 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8369077996517167016.dll
2017-11-05 13:35 - 2017-11-05 13:35 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8391561761335848930.dll
2017-12-13 19:29 - 2017-12-13 19:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8601618099310097044.dll
2017-11-25 12:33 - 2017-11-25 12:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8617743122658378940.dll
2017-11-19 21:55 - 2017-11-19 21:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8767598716626346928.dll
2017-12-18 08:19 - 2017-12-18 08:19 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8891075873315740649.dll
2017-12-18 08:20 - 2017-12-18 08:20 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8909456297867713766.dll
2017-11-04 11:20 - 2017-11-04 11:20 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-9027917338178594090.dll
2017-12-06 18:19 - 2017-12-06 18:19 - 001052704 ____N (CANON INC.) C:\Users\Teigor\AppData\Local\temp\MSETUP4.EXE
2017-12-06 18:21 - 2017-12-06 18:19 - 000354392 _____ (CANON INC.) C:\Users\Teigor\AppData\Local\temp\uninstall.exe
2018-02-03 22:27 - 2006-05-23 00:00 - 000455600 _____ (Macrovision Corporation) C:\Users\Teigor\AppData\Local\temp\_is2AE1.exe
2018-02-03 22:27 - 2006-05-23 00:00 - 000455600 _____ (Macrovision Corporation) C:\Users\Teigor\AppData\Local\temp\_isA2A6.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2018-04-18 00:11
==================== Fim de FRST.txt ============================
Executado por Teigor (administrador) em HOUSEPC14 (24-04-2018 00:08:48)
Executando a partir de C:\Users\Teigor\Downloads
Perfis Carregados: Teigor (Perfis Disponíveis: Teigor & Administrador)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Comodo) C:\Program Files\COMODO\Chromodo\chromodo_updater.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATIN8E.EXE
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-19] (NVIDIA Corporation)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1359064 2015-04-01] (COMODO)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1183256 2018-02-26] (Adobe Systems Incorporated)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2017-12-06] (CANON INC.)
HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2018-01-11] (CANON INC.)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1087184 2018-01-29] (SEIKO EPSON CORPORATION)
Winlogon\Notify\ GbPluginUni: C:\Program Files\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIN8E.EXE [262208 2014-03-20] (SEIKO EPSON CORPORATION)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
GroupPolicy: Restrição - Chrome <==== ATENÇÃO
GroupPolicy\User: Restrição ? <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51414;https=127.0.0.1:51414;
AutoConfigURL: [.DEFAULT] => http=127.0.0.1:51414;https=127.0.0.1:51414;
ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices.
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\..\Interfaces\{93CD5E9B-34CA-4C8F-8850-B34AFB3A2A70}: [NameServer] 192.168.2.1,192.168.2.12
Tcpip\..\Interfaces\{A6C96CD6-546E-447A-8CB2-4A8C68BC784A}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{CA8EE480-EDAC-4F37-8177-8698C23623B0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{CCB76006-6B09-4610-8B86-CDD4DD2834A0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{FA438C4F-8B5D-4340-8DDE-30D51F7B41F8}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2827182975-328011247-3503174662-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.321oyun.com/?oem=smtov3&uid=9VMRVFZ0_ST3500418AS&tm=1431865482
SearchScopes: HKLM -> DefaultScope {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.searchult.com/?bd=ds&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454&q={searchTerms}
SearchScopes: HKLM -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.searchult.com/?bd=ds&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2827182975-328011247-3503174662-1000 -> {7ED81DB8-BA60-4070-8F07-F72625E6B12A} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES\GBPLUGIN\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-26] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: jwbkuir3.default
FF ProfilePath: C:\Users\Teigor\AppData\Roaming\Mozilla\Firefox\Profiles\jwbkuir3.default [2018-04-23]
FF Extension: (FlashGot) - C:\Users\Teigor\AppData\Roaming\Mozilla\Firefox\Profiles\jwbkuir3.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-03-08] [Legacy]
FF HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5 [2018-04-22] [Legacy] [não assinado]
FF HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_29_0_0_140.dll [2018-04-11] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-26] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-26] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2827182975-328011247-3503174662-1000: gastecnologia.com.br/sf/uni -> C:\Users\Teigor\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxp://www.searchult.com/?bd=hp&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454"
CHR Profile: C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default [2018-04-24]
CHR Extension: (Apresentações) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Documentos) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (Plugins Button) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfkmdpfljdpopbemfaelnflapafbflgn [2017-07-22]
CHR Extension: (YouTube) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-01-11]
CHR Extension: (Planilhas) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-04-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-15]
CHR Extension: (Chrome Media Router) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-21]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iinglghmhcgdgjjlafobajghjamdchik] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-04-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ChromodoUpdater; C:\Program Files\Comodo\Chromodo\chromodo_updater.exe [2306248 2015-05-18] (Comodo)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4351816 2015-04-01] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664728 2015-04-01] (COMODO)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [400656 2017-06-19] (EasyAntiCheat Ltd)
R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [577088 2018-01-29] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [126128 2018-01-29] (Seiko Epson Corporation)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [546104 2014-09-29] (GAS Tecnologia)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2014-12-19] (NVIDIA Corporation)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [204576 2014-08-01] (Microsoft)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-19] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18186896 2014-12-19] (NVIDIA Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2017-06-03] (DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [22016 2014-05-01] (Apache Software Foundation) [Arquivo não assinado]
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [10959360 2014-05-01] () [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [509752 2015-08-18] (GAS Tecnologia LTDA)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 admnfd; C:\Windows\system32\Drivers\admnfd.sys [43840 2014-12-04] (Windows (R) Win 7 DDK provider)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [32768 2018-01-07] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [37376 2018-01-07] (LG Electronics Inc.)
R1 browserMon; C:\Windows\System32\DRIVERS\browserMon.sys [18112 2015-03-03] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17088 2015-04-01] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [621144 2015-04-01] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41248 2015-04-01] (COMODO)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-06-09] (Samsung Electronics Co., Ltd.)
R3 DroidCam; C:\Windows\System32\DRIVERS\droidcam.sys [30008 2017-06-04] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [225720 2017-06-04] (Dev47Apps)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-26] (Disc Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [21496 2017-12-22] () [Arquivo não assinado]
R0 EPMVolFlt; C:\Windows\System32\drivers\EPMVolFlt.sys [17736 2017-12-22] (Windows (R) Codename Longhorn DDK provider)
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10208 2017-12-22] () [Arquivo não assinado]
S3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-13] (VIA Technologies, Inc. )
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [47192 2014-07-21] (GAS Tecnologia)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2016-03-22] (LogMeIn, Inc.)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91200 2015-04-01] (COMODO)
S3 msloop; C:\Windows\System32\DRIVERS\loop.sys [5632 2015-10-28] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2018-02-04] (GAS Tecnologia)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [657408 2009-07-13] (Ralink Technology Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2014-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2014-12-19] (NVIDIA Corporation)
S3 SamsungMonitorFirmware; C:\Windows\System32\drivers\MFWCtwl.sys [14848 2017-05-30] (Samsung Electronics, Inc. ) [Arquivo não assinado]
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-06-09] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [184216 2017-06-03] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2018-01-31] (Microsoft Corporation)
R0 videX32; C:\Windows\System32\DRIVERS\videX32.sys [13976 1999-12-31] (VIA Technologies, Inc.)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert32.sys [31448 2015-04-01] (Basil)
R0 xfilt; C:\Windows\System32\DRIVERS\xfilt.sys [23192 1999-12-31] (VIA Technologies, Inc.)
S3 catchme; \??\C:\Users\ADMINI~1\AppData\Local\Temp\catchme.sys [X]
S2 sbmntr; \??\C:\PROGRA~1\YTDOWN~1\sbmntr.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 wsfd_1_10_0_17; system32\drivers\wsfd_1_10_0_17.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-04-23 23:55 - 2018-04-23 23:56 - 000124711 _____ C:\Users\Teigor\Downloads\Addition.txt
2018-04-23 23:54 - 2018-04-24 00:09 - 000020251 _____ C:\Users\Teigor\Downloads\FRST.txt
2018-04-23 23:54 - 2018-04-24 00:08 - 000000000 ____D C:\FRST
2018-04-23 23:53 - 2018-04-23 23:53 - 001764864 _____ (Farbar) C:\Users\Teigor\Downloads\FRST.exe
2018-04-23 23:39 - 2018-04-23 23:39 - 000016224 _____ (Microsoft Corporation) C:\Users\Teigor\Desktop\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-23 23:32 - 2018-04-23 23:32 - 000001364 _____ C:\Users\Teigor\Downloads\api-ms-win-core-console-l1-1-0.zip
2018-04-23 23:14 - 2018-04-23 23:14 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000064352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-23 23:02 - 2018-04-23 23:02 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-23 23:00 - 2018-04-23 23:00 - 000259492 _____ C:\Users\Teigor\Downloads\PACK-api-ms-win.rar
2018-04-23 22:44 - 2018-04-23 22:44 - 000629006 _____ C:\Users\Teigor\Downloads\Windows6.1-KB2999226-x86.msu
2018-04-23 18:13 - 2018-04-23 18:13 - 000000559 _____ C:\Users\Teigor\Desktop\Drop da bateria.txt
2018-04-23 16:57 - 2018-04-23 16:57 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2018-04-23 16:56 - 2018-04-23 16:56 - 001461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2018-04-23 16:56 - 2018-04-23 16:56 - 000851176 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2018-04-23 16:56 - 2018-04-23 16:56 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\ADBDriverInstaller
2018-04-23 16:45 - 2018-04-23 16:47 - 011715584 _____ (ADBDriver.com) C:\Users\Teigor\Desktop\AdbDriverInstaller.exe
2018-04-22 21:59 - 2018-04-22 22:00 - 013767776 _____ (Microsoft Corporation) C:\Users\Teigor\Downloads\vc_redist.x86 (1).exe
2018-04-22 21:30 - 2018-04-22 21:30 - 013767776 _____ (Microsoft Corporation) C:\Users\Teigor\Downloads\vc_redist.x86.exe
2018-04-22 21:05 - 2018-04-22 21:05 - 486030767 _____ C:\Users\Teigor\Downloads\Custom ROM KitKat Genesis GT 8320.rar
2018-04-22 20:59 - 2018-04-22 20:59 - 000001011 _____ C:\Users\Public\Desktop\Kontakt 5.lnk
2018-04-22 20:59 - 2018-04-22 20:59 - 000000000 __HDC C:\Users\Todos os Usuários\{6C0AC9FD-47AA-4173-94B1-36C8B94B75EF}
2018-04-22 20:59 - 2018-04-22 20:59 - 000000000 __HDC C:\ProgramData\{6C0AC9FD-47AA-4173-94B1-36C8B94B75EF}
2018-04-22 20:51 - 2018-04-22 20:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2018-04-22 20:51 - 2018-04-22 20:52 - 000000000 ____D C:\Program Files\Native Instruments
2018-04-22 20:51 - 2018-04-22 20:51 - 000001056 _____ C:\Users\Public\Desktop\Service Center.lnk
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 __HDC C:\Users\Todos os Usuários\{90D8CE90-3E6B-4034-A281-BC9F19B60A5B}
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 __HDC C:\ProgramData\{90D8CE90-3E6B-4034-A281-BC9F19B60A5B}
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 ____D C:\Users\Todos os Usuários\Native Instruments
2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 ____D C:\ProgramData\Native Instruments
2018-04-22 12:55 - 2015-04-21 00:04 - 000000000 ____D C:\Users\Teigor\Desktop\Optional BatteryMODS
2018-04-22 12:54 - 2018-04-22 12:54 - 000003058 _____ C:\Users\Teigor\Desktop\Leia-me.txt
2018-04-22 12:54 - 2015-04-20 22:01 - 000000000 ____D C:\Users\Teigor\Desktop\FirmwareInstall
2018-04-22 12:26 - 2018-04-22 12:54 - 361246142 _____ C:\Users\Teigor\Desktop\Project-X-KK-GT7305_full_v2.1_antop.rar
2018-04-21 12:34 - 2018-04-21 12:36 - 003424256 _____ C:\Users\Teigor\Downloads\twrp-2.8.5.0-twrp.img
2018-04-21 12:31 - 2018-04-21 12:33 - 004802560 _____ C:\Users\Teigor\Downloads\twrp-3.2.1-0-twrp.img
2018-04-20 17:44 - 2018-04-20 17:44 - 000128100 _____ C:\Users\Teigor\Documents\Comunicação de massa.pdf
2018-04-20 17:02 - 2018-04-20 17:43 - 000000000 ____D C:\Users\Teigor\Desktop\Comunicação em massa
2018-04-11 15:58 - 2018-04-11 15:58 - 003396608 _____ C:\Users\Teigor\Downloads\subst org283201183847.ppt
2018-04-10 14:31 - 2018-04-10 14:36 - 000000000 ____D C:\Users\Teigor\Desktop\Nova pasta (3)
2018-04-02 13:53 - 2018-04-02 13:54 - 000000000 ____D C:\Users\Teigor\Desktop\Projeçoes cartograficas
2018-04-01 07:46 - 2018-04-01 07:50 - 000000000 ____D C:\Users\Teigor\Desktop\SOUND FORGE 8.0
2018-04-01 07:40 - 2018-04-01 07:40 - 000000000 ____D C:\Windows\system32\URTTEMP
2018-03-27 15:02 - 2018-04-06 18:02 - 000000000 ____D C:\Users\Teigor\Desktop\hóquei no gelo
2018-03-15 17:26 - 2018-04-09 10:43 - 000000000 ____D C:\Users\Teigor\Desktop\Juan Carlos Ceriani
2018-03-09 04:59 - 2018-03-09 04:59 - 000396864 _____ C:\Windows\Minidump\030918-22218-01.dmp
2018-02-25 13:30 - 2018-02-25 13:30 - 000105505 _____ C:\Users\Teigor\Downloads\EFEITOS.zip
2018-02-16 22:35 - 2018-02-16 22:35 - 000000943 _____ C:\Users\Teigor\Desktop\Bandicam.lnk
2018-02-16 22:35 - 2018-02-16 22:35 - 000000943 _____ C:\Users\Administrador\Desktop\Bandicam.lnk
2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\Program Files\BandiMPEG1
2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\Program Files\Bandicam
2018-02-16 02:04 - 2018-02-16 22:54 - 000000000 ____D C:\Users\Teigor\Documents\VideoOutput
2018-02-16 02:04 - 2018-02-16 02:04 - 000000968 _____ C:\Users\Public\Desktop\Video to Video.lnk
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\Users\Teigor\Documents\Snapshot
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video to Video
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\Program Files\Video to Video
2018-02-16 02:03 - 2018-02-16 02:03 - 023279669 _____ (Media Converters ) C:\Users\Teigor\Downloads\Baixaki_video-to-video-converter [1].exe
2018-02-16 01:55 - 2018-02-16 01:55 - 000000000 ____D C:\Users\Teigor\AppData\Local\fontconfig
2018-02-16 01:51 - 2018-02-16 01:51 - 000001022 _____ C:\Users\Teigor\Desktop\Format Factory.lnk
2018-02-16 01:51 - 2018-02-16 01:51 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2018-02-16 01:50 - 2018-02-16 01:51 - 000000000 ____D C:\Program Files\FormatFactory
2018-02-16 01:40 - 2018-02-16 01:47 - 047406728 _____ (Free Time Co., Ltd) C:\Users\Teigor\Downloads\FFSetup3-9-5-0.exe
2018-02-12 20:45 - 2018-02-12 20:49 - 000000000 ____D C:\Program Files\Stellar Phoenix Video Repair
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 _RSHD C:\Users\Todos os Usuários\Key-Base
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 _RSHD C:\ProgramData\Key-Base
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 ____D C:\Users\Todos os Usuários\{150F1331-4628-F8AE-D54D-EC3B4EF34666}
2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 ____D C:\ProgramData\{150F1331-4628-F8AE-D54D-EC3B4EF34666}
2018-02-12 18:31 - 2018-02-12 18:31 - 000000004 _____ C:\Users\Teigor\movdump.lic
2018-02-12 18:29 - 2018-02-12 19:02 - 000000000 ____D C:\Users\Teigor\Desktop\videorepair
2018-02-12 17:57 - 2018-02-12 17:57 - 033129681 _____ C:\Users\Teigor\Downloads\Videorepair + Crack -Uai tutoriais.rar
2018-02-12 16:47 - 2018-02-12 16:47 - 000000000 ____D C:\Users\Teigor\Desktop\Nova pasta (2)
2018-02-12 00:46 - 2018-02-12 00:46 - 000000959 _____ C:\Users\Teigor\Desktop\V Collection 5.lnk
2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia
2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\Program Files\Steinberg
2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\Program Files\Common Files\VST3
2018-02-12 00:05 - 2018-02-12 00:45 - 000000000 ____D C:\Users\Todos os Usuários\Arturia
2018-02-12 00:05 - 2018-02-12 00:45 - 000000000 ____D C:\ProgramData\Arturia
2018-02-12 00:05 - 2018-02-12 00:05 - 000000000 ____D C:\Program Files\Arturia
2018-02-07 22:55 - 2018-02-07 22:57 - 037386440 _____ C:\Users\Teigor\Downloads\WhatsApp.apk
2018-02-01 10:25 - 2018-02-01 10:25 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Epson
2018-01-31 14:37 - 2018-01-31 14:37 - 000114168 _____ C:\Users\Teigor\Downloads\com.cyandroid.pianofull.52.apk
2018-01-31 14:33 - 2018-01-31 14:33 - 000431807 _____ C:\Users\Teigor\Downloads\com.cyandroid.piano-2.0.10@APK4Fun.com.apk
2018-01-29 21:04 - 2018-01-29 21:04 - 000308683 _____ C:\Users\Teigor\Downloads\ESWIN_USB_v0.6j_Install.exe
2018-01-29 21:04 - 2018-01-29 21:04 - 000000918 _____ C:\Users\Teigor\Desktop\ESWin.lnk
2018-01-29 21:04 - 2018-01-29 21:04 - 000000918 _____ C:\Users\Administrador\Desktop\ESWin.lnk
2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESWIN
2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESWin
2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\Program Files\ESWin
2018-01-29 20:45 - 2018-01-29 20:45 - 000000000 ____D C:\Adjustment Program
2018-01-29 20:42 - 2018-01-29 20:42 - 000000042 _____ C:\Windows\L375.ini
2018-01-29 20:42 - 2018-01-29 20:42 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Leadertech
2018-01-29 20:40 - 2018-02-02 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2018-01-29 20:40 - 2018-02-02 18:56 - 000000000 ____D C:\Program Files\EPSON Software
2018-01-29 20:40 - 2018-01-29 20:40 - 000000967 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2018-01-29 20:40 - 2018-01-29 20:40 - 000000000 ____D C:\Program Files\EpsonNet
2018-01-29 20:40 - 2018-01-29 20:39 - 000126128 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc.exe
2018-01-29 20:40 - 2014-06-02 23:00 - 000347136 _____ (Seiko Epson Corporation) C:\Windows\system32\esw2ud.dll
2018-01-29 20:39 - 2018-01-29 20:41 - 000000000 ____D C:\Program Files\epson
2018-01-29 20:39 - 2018-01-29 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2018-01-29 20:39 - 2018-01-29 20:39 - 000000919 _____ C:\Windows\Tasks\EPSON L375 Series Update {33DC29C5-87FB-4A2C-93E2-46809ED19FCC}.job
2018-01-29 20:39 - 2018-01-29 20:39 - 000000000 ____D C:\Program Files\Common Files\EPSON
2018-01-29 20:38 - 2018-02-02 18:56 - 000000000 ____D C:\Users\Todos os Usuários\EPSON
2018-01-29 20:38 - 2018-02-02 18:56 - 000000000 ____D C:\ProgramData\EPSON
2018-01-29 20:38 - 2018-01-29 20:38 - 000142848 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TLMBN8E.DLL
2018-01-29 20:38 - 2018-01-29 20:38 - 000081408 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TD4BN8E.DLL
2018-01-29 20:38 - 2018-01-29 20:38 - 000008192 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_DCINST.DLL
2018-01-29 20:17 - 2018-01-29 20:18 - 013473720 _____ C:\Users\Teigor\Downloads\L375_Win_Lite_1.2APS_FD.exe
2018-01-28 20:47 - 2018-01-28 20:47 - 006489435 _____ C:\Users\Teigor\Desktop\LuckyPatchers.com_Official_V7.0.4.apk
2018-01-28 20:47 - 2018-01-28 20:47 - 000000000 ____D C:\Users\Teigor\Downloads\LuckyPatchers.com_Official_V7.0.4
2018-01-28 20:46 - 2018-01-28 20:47 - 004548995 _____ C:\Users\Teigor\Downloads\LuckyPatchers.com_Official_V7.0.4.zip
2018-01-28 20:41 - 2018-01-28 20:44 - 018980443 _____ C:\Users\Teigor\Downloads\lucky-patcher.apk
2018-01-28 19:57 - 2018-01-28 20:20 - 058549093 _____ C:\Users\Teigor\Downloads\AndRig - Guitar Amp & Effects v2.4.6 [Unlocked].apk
2018-01-28 19:38 - 2018-01-28 19:52 - 047844941 _____ C:\Users\Teigor\Downloads\com.deplike.andrig.apk
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-04-24 00:05 - 2015-05-18 21:10 - 001474832 _____ C:\Windows\system32\Drivers\sfi.dat
2018-04-23 23:23 - 2009-07-14 01:34 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-04-23 23:23 - 2009-07-14 01:34 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-04-23 23:16 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-04-23 23:15 - 2014-08-21 22:56 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2018-04-23 23:15 - 2014-08-21 22:56 - 000000000 ____D C:\ProgramData\NVIDIA
2018-04-23 23:09 - 2015-06-25 23:34 - 000400544 _____ (Microsoft Corporation) C:\Windows\system32\vcamp140.dll
2018-04-23 16:57 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\inf
2018-04-23 02:01 - 2014-08-23 23:19 - 000000000 ____D C:\Users\Teigor\AppData\Local\Adobe
2018-04-22 21:45 - 2015-05-18 20:34 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\DMCache
2018-04-22 21:17 - 2014-08-21 18:55 - 001678450 _____ C:\Windows\system32\PerfStringBackup.INI
2018-04-22 21:17 - 2009-07-14 05:31 - 000718648 _____ C:\Windows\system32\prfh0416.dat
2018-04-22 21:17 - 2009-07-14 05:31 - 000155842 _____ C:\Windows\system32\prfc0416.dat
2018-04-22 20:52 - 2017-07-24 11:24 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2018-04-22 20:50 - 2014-09-01 21:22 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2018-04-22 20:50 - 2014-09-01 21:22 - 000000000 ____D C:\ProgramData\Package Cache
2018-04-22 20:43 - 2017-07-22 00:04 - 000000000 ____D C:\Users\Teigor\Projetos Musicais
2018-04-22 20:37 - 2014-08-21 18:50 - 000000000 ____D C:\Users\Teigor
2018-04-20 17:45 - 2014-10-01 22:14 - 000111616 ___SH C:\Users\Teigor\Documents\Thumbs.db
2018-04-11 19:45 - 2014-11-02 09:34 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2018-04-11 19:45 - 2014-11-02 09:34 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2018-04-11 19:45 - 2014-09-26 10:42 - 000000000 ____D C:\Windows\system32\Macromed
2018-04-10 13:29 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\system32\NDF
2018-04-07 17:23 - 2014-09-06 11:57 - 000000000 ____D C:\Users\Teigor\.aria2
2018-04-07 14:45 - 2014-10-22 11:58 - 000104960 ___SH C:\Users\Teigor\Thumbs.db
2018-04-06 12:54 - 2017-07-22 00:45 - 000000894 __RSH C:\Users\Todos os Usuários\ntuser.pol
2018-04-06 12:54 - 2017-07-22 00:45 - 000000894 __RSH C:\ProgramData\ntuser.pol
2018-04-02 10:42 - 2017-06-04 09:02 - 000000035 _____ C:\Users\Todos os Usuários\droidcam-settings
2018-04-02 10:42 - 2017-06-04 09:02 - 000000035 _____ C:\ProgramData\droidcam-settings
2018-04-01 07:41 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\registration
2018-03-28 19:47 - 2014-09-26 14:41 - 000000000 ____D C:\Users\Teigor\AppData\Local\ElevatedDiagnostics
==================== Arquivos na raiz de alguns diretórios =======
2016-11-28 14:32 - 2018-02-10 07:49 - 000000096 _____ () C:\Users\Teigor\AppData\Roaming\Camdata.ini
2016-11-28 14:32 - 2018-02-10 07:49 - 000000408 _____ () C:\Users\Teigor\AppData\Roaming\CamLayout.ini
2016-11-28 14:32 - 2018-02-10 07:49 - 000000408 _____ () C:\Users\Teigor\AppData\Roaming\CamShapes.ini
2016-11-28 14:32 - 2018-02-10 07:49 - 000004509 _____ () C:\Users\Teigor\AppData\Roaming\CamStudio.cfg
2015-11-13 12:00 - 2015-11-13 15:19 - 000000600 _____ () C:\Users\Teigor\AppData\Roaming\winscp.rnd
2015-01-15 11:55 - 2015-01-15 11:55 - 000000038 ___SH () C:\Users\Teigor\AppData\Local\69ff07055291669bb2b218.72821112
2014-08-26 09:29 - 2017-10-17 20:58 - 000000600 _____ () C:\Users\Teigor\AppData\Local\PUTTY.RND
2014-08-21 18:55 - 2015-05-13 13:27 - 000007605 _____ () C:\Users\Teigor\AppData\Local\resmon.resmoncfg
Alguns arquivos em TEMP:
====================
2013-08-05 03:15 - 2013-08-05 03:15 - 004292136 _____ (www.Bandisoft.com) C:\Users\Teigor\AppData\Local\temp\bdfilters.dll
2017-12-01 20:22 - 2017-12-01 20:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1091371423767370480.dll
2017-12-24 08:07 - 2017-12-24 08:07 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1156335590356693935.dll
2017-12-03 15:00 - 2017-12-03 15:00 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1387513744070915830.dll
2017-12-17 12:11 - 2017-12-17 12:11 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1416710207593670899.dll
2017-11-10 15:51 - 2017-11-10 15:51 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1477127123835203798.dll
2017-12-18 08:20 - 2017-12-18 08:20 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1567719341639438263.dll
2017-12-12 20:24 - 2017-12-12 20:24 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1595404144871301619.dll
2017-11-26 14:54 - 2017-11-26 14:54 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1807912310135813574.dll
2018-01-07 19:26 - 2018-01-07 19:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2062668053664517090.dll
2017-12-28 21:10 - 2017-12-28 21:10 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2086515452821349819.dll
2017-11-14 19:30 - 2017-11-14 19:30 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2156315789689334.dll
2017-12-24 00:55 - 2017-12-24 00:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2413208182066942050.dll
2017-11-11 12:06 - 2017-11-11 12:06 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2425845826561315157.dll
2017-11-09 16:00 - 2017-11-09 16:00 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2505193955064825318.dll
2017-11-13 19:08 - 2017-11-13 19:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2526846373789252422.dll
2017-11-03 13:34 - 2017-11-03 13:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2539654218900271099.dll
2017-12-18 19:44 - 2017-12-18 19:44 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2566645535392264984.dll
2017-12-17 22:12 - 2017-12-17 22:12 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2664832255793627823.dll
2017-11-11 18:09 - 2017-11-11 18:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2716468064958746895.dll
2017-11-26 22:42 - 2017-11-26 22:42 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2732379316322986995.dll
2017-12-06 20:58 - 2017-12-06 20:58 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2854815022031084471.dll
2017-11-19 22:22 - 2017-11-19 22:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2895025751228986576.dll
2017-11-08 12:27 - 2017-11-08 12:27 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2912930658035838343.dll
2017-12-26 20:58 - 2017-12-26 20:58 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3091735438934970033.dll
2017-12-24 08:17 - 2017-12-24 08:17 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3153501252876286859.dll
2017-11-15 20:50 - 2017-11-15 20:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3388305781062489055.dll
2017-11-14 16:47 - 2017-11-14 16:47 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3489443416293279022.dll
2017-11-09 08:38 - 2017-11-09 08:38 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3526521850035438528.dll
2017-12-24 21:22 - 2017-12-24 21:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3650012044910073035.dll
2017-11-19 21:55 - 2017-11-19 21:55 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3738722485089496150.dll
2017-12-13 03:29 - 2017-12-13 03:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3775954583906268269.dll
2017-12-20 00:29 - 2017-12-20 00:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3843590259468493503.dll
2017-11-12 11:48 - 2017-11-12 11:48 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3906366525917647683.dll
2017-12-19 21:42 - 2017-12-19 21:42 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3987758530224947686.dll
2017-12-05 19:33 - 2017-12-05 19:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3990223268855252060.dll
2017-11-05 12:53 - 2017-11-05 12:53 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4063393546085919434.dll
2017-11-06 15:51 - 2017-11-06 15:51 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4150449214236809667.dll
2017-11-18 10:09 - 2017-11-18 10:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4150998588922092675.dll
2017-11-19 21:26 - 2017-11-19 21:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4264892956358154711.dll
2017-11-09 16:54 - 2017-11-09 16:54 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4398530712562065018.dll
2017-11-07 08:27 - 2017-11-07 08:27 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4514621137394281089.dll
2017-11-07 08:33 - 2017-11-07 08:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4550631402071037550.dll
2017-12-18 08:13 - 2017-12-18 08:13 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4563184743047097283.dll
2017-12-09 07:09 - 2017-12-09 07:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4642390963835310315.dll
2017-12-24 19:30 - 2017-12-24 19:30 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4689489484746632727.dll
2017-12-16 02:18 - 2017-12-16 02:18 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4741788527000479788.dll
2017-12-17 08:47 - 2017-12-17 08:47 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4837480339462984022.dll
2017-11-04 13:37 - 2017-11-04 13:37 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4916498597991676016.dll
2017-11-13 01:10 - 2017-11-13 01:10 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5003780218836374692.dll
2017-11-14 13:51 - 2017-11-14 13:51 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5007726753245682932.dll
2017-11-29 19:36 - 2017-11-29 19:36 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5125878059882063926.dll
2017-11-05 21:50 - 2017-11-05 21:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5254371755334644958.dll
2017-11-18 18:59 - 2017-11-18 18:59 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5263914632188435094.dll
2017-11-26 15:01 - 2017-11-26 15:01 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5277983374770517667.dll
2017-11-04 13:26 - 2017-11-04 13:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-541796380414952506.dll
2017-11-20 16:31 - 2017-11-20 16:31 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5619114013043857464.dll
2017-12-29 11:36 - 2017-12-29 11:36 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5916443695039896703.dll
2017-12-16 19:09 - 2017-12-16 19:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6037979153556383403.dll
2017-11-30 19:10 - 2017-11-30 19:10 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6204376989785749582.dll
2017-12-24 07:59 - 2017-12-24 07:59 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6279531150675278146.dll
2017-12-05 21:55 - 2017-12-05 21:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6324577905750310215.dll
2017-12-11 00:47 - 2017-12-11 00:47 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6726017569146285915.dll
2017-11-10 07:56 - 2017-11-10 07:56 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6762594375011440769.dll
2017-12-05 11:43 - 2017-12-05 11:43 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6782055650071171005.dll
2017-11-13 22:08 - 2017-11-13 22:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6913094635268426785.dll
2017-12-20 21:50 - 2017-12-20 21:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-694198932138518342.dll
2017-12-28 20:34 - 2017-12-28 20:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6946637863619716878.dll
2017-12-20 21:26 - 2017-12-20 21:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6960304283981496306.dll
2017-11-27 19:05 - 2017-11-27 19:05 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7055588390321028610.dll
2017-11-28 19:24 - 2017-11-28 19:24 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7343328348145554450.dll
2017-12-24 20:46 - 2017-12-24 20:46 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7363047084553755051.dll
2017-11-17 22:14 - 2017-11-17 22:14 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7458852769060475294.dll
2017-11-28 11:07 - 2017-11-28 11:07 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7543866751837789700.dll
2017-11-27 08:21 - 2017-11-27 08:21 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7571873208172968670.dll
2017-11-27 19:08 - 2017-11-27 19:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7579484657152559724.dll
2017-11-27 19:34 - 2017-11-27 19:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7786435389752508004.dll
2017-12-03 23:44 - 2017-12-03 23:44 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8268673286796483135.dll
2017-11-10 12:21 - 2017-11-10 12:21 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8369077996517167016.dll
2017-11-05 13:35 - 2017-11-05 13:35 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8391561761335848930.dll
2017-12-13 19:29 - 2017-12-13 19:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8601618099310097044.dll
2017-11-25 12:33 - 2017-11-25 12:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8617743122658378940.dll
2017-11-19 21:55 - 2017-11-19 21:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8767598716626346928.dll
2017-12-18 08:19 - 2017-12-18 08:19 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8891075873315740649.dll
2017-12-18 08:20 - 2017-12-18 08:20 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8909456297867713766.dll
2017-11-04 11:20 - 2017-11-04 11:20 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-9027917338178594090.dll
2017-12-06 18:19 - 2017-12-06 18:19 - 001052704 ____N (CANON INC.) C:\Users\Teigor\AppData\Local\temp\MSETUP4.EXE
2017-12-06 18:21 - 2017-12-06 18:19 - 000354392 _____ (CANON INC.) C:\Users\Teigor\AppData\Local\temp\uninstall.exe
2018-02-03 22:27 - 2006-05-23 00:00 - 000455600 _____ (Macrovision Corporation) C:\Users\Teigor\AppData\Local\temp\_is2AE1.exe
2018-02-03 22:27 - 2006-05-23 00:00 - 000455600 _____ (Macrovision Corporation) C:\Users\Teigor\AppData\Local\temp\_isA2A6.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2018-04-18 00:11
==================== Fim de FRST.txt ============================