Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 10.10.2018
Executado por Glauber (administrador) em WIN8 (10-10-2018 17:31:44)
Executando a partir de C:\Users\Glauber Segalla\Desktop
Perfis Carregados: Glauber (Perfis Disponíveis: Glauber)
Platform: Windows 8.1 Single Language (Update) (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
Falha ao acessar processo -> firefox.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9192960 2017-03-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1484288 2017-03-29] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (IvoSoft)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-06-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [SoundVolumeHotkeys.{9547D1C7-4F18-4104-8674-046DCD12BDF9}] => C:\Program Files (x86)\Sound Volume Hotkeys\SoundVolumeHotkeys.exe [126976 2010-09-19] (Softarium.com)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-09-20] (Nero AG)
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3948600 2018-07-09] (Tonec Inc.)
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
Startup: C:\Users\Glauber Segalla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-04-08]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited)
BootExecute: autocheck autochk *
GroupPolicyScripts: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 200.189.80.122 200.189.80.108
Tcpip\..\Interfaces\{886A4B6C-67C0-46E8-8CA2-7C512AAD8465}: [NameServer] 8.8.4.4,8.8.8.8
Tcpip\..\Interfaces\{886A4B6C-67C0-46E8-8CA2-7C512AAD8465}: [DhcpNameServer] 200.189.80.122 200.189.80.108
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2018-06-19] (Internet Download Manager, Tonec Inc.)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-02-01] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-01] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (IvoSoft)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2018-06-19] (Internet Download Manager, Tonec Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-02-01] (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-02] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-02-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-02] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (IvoSoft)
DPF: HKLM-x32 {55A2C0CD-3DE8-4264-9637-A0B40B05714E} hxxps://col430-sec.mail.live.com/mail/MailMigrationCabFileHolder.aspx?n=453342177
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: xrl3m1x7.GlauberModificado
FF ProfilePath: C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default [2018-10-10]
FF Homepage: Mozilla\Firefox\Profiles\i02adfwt.default -> chrome://speeddial/content/speeddial.xul
FF Extension: (QuickFox Notes) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\amin.eft_bmnotes@gmail.com [2018-10-02] [Legacy]
FF Extension: (Classic Theme Restorer) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2018-10-01] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\idmmzcc-webextension.xpi [2018-10-02]
FF Extension: (IDM integration) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\idmmzcc-xul.xpi [2018-10-02] [Legacy]
FF Extension: (YouTube mp3) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\info@youtube-mp3.org.xpi [2018-10-01] [Legacy]
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-02-27] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2018-10-02]
FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\pt-BR@dictionaries.addons.mozilla.org [2018-10-02] [Legacy]
FF Extension: (Google Translator for Firefox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\translator@zoli.bod.xpi [2018-10-01] [Legacy]
FF Extension: (Flagfox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2018-10-01] [Legacy]
FF Extension: (Speed Dial) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2018-10-01] [Legacy]
FF Extension: (Open Profile Folder) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{a756d17a-5a4c-4417-813c-c8cd0151e486}.xpi [2018-10-02] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-10-01] [Legacy]
FF Extension: (Tab Mix Plus) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2018-10-01] [Legacy]
FF ProfilePath: C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado [2018-10-10]
FF Homepage: Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado -> chrome://speeddial/content/speeddial.xul
hxxp://favoritosglauber.blogspot.com/
FF Extension: (Disable youtube html5 player) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\@disableyoutubehtml5player.xpi [2018-10-03] [Legacy]
FF Extension: (QuickFox Notes) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\amin.eft_bmnotes@gmail.com [2018-10-02] [Legacy]
FF Extension: (Classic Theme Restorer) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2018-10-01] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\idmmzcc-webextension.xpi [2018-10-02]
FF Extension: (YouTube mp3) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\info@youtube-mp3.org.xpi [2018-10-01] [Legacy]
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2018-10-02] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2018-10-10]
FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\pt-BR@dictionaries.addons.mozilla.org [2018-10-02] [Legacy]
FF Extension: (Google Translator for Firefox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\translator@zoli.bod.xpi [2018-10-01] [Legacy]
FF Extension: (Flagfox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2018-10-01] [Legacy]
FF Extension: (Speed Dial) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2018-10-01] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-10-01] [Legacy]
FF Extension: (Tab Mix Plus) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2018-10-01] [Legacy]
FF HKLM-x32\...\Mozilla Firefox 43.0.4\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKLM-x32\...\Mozilla Firefox 44.0.2\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKLM-x32\...\Pale Moon 25.8.1\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKLM-x32\...\Thunderbird\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2018-06-25]
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Mozilla Firefox 50.1.0\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\SeaMonkey\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Glauber Segalla\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Glauber Segalla\AppData\Roaming\IDM\idmmzcc5 [2018-10-10] [Legacy] [não assinado]
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_31_0_0_122.dll [2018-10-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-10] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1227197.dll [2017-02-20] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-02-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://drive.google.com/drive/folders/0By4JBoB0i7ViRHVGb1lsRVROUWM
CHR NewTab: Default -> Active:"chrome-extension://ejbjamhkdedinncaeiackcdehpccoejm/pages/newtab.html"
CHR Profile: C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default [2018-10-10]
CHR Extension: (Sudoku) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdhembpgcpfegeigidembjopfhghnpj [2017-01-03]
CHR Extension: (Google Drive) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-03]
CHR Extension: (MEGA) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2018-10-04]
CHR Extension: (Twitter) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmbniebmoflhomonmkjbhjdafagjnlpl [2017-06-20]
CHR Extension: (MyEduzz) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmddbkiooceknjikinhhdggdeagagfjf [2017-06-20]
CHR Extension: (Paciência Online) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahbledjpnekmjeglfnelmnjfnmmemob [2017-01-03]
CHR Extension: (Jornal da Globo) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckflnnmonckdfnodbofgpfnpddgeilph [2017-06-20]
CHR Extension: (Ao vivo na Tv - Tv Online, Futebol ao...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljdajajdpphoiafjijmpppplgmgcoom [2017-06-20]
CHR Extension: (CAMPEONATO BRASILEIRO SÉRIE A) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\egchdgbdbbecfkhciekkndckpbiocjed [2017-06-20]
CHR Extension: (Speed Dial) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbjamhkdedinncaeiackcdehpccoejm [2017-12-17]
CHR Extension: (Globo Esporte SP) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekmghelnfaiebafaagihbhidplcbmiim [2017-06-20]
CHR Extension: (Disable Youtube™ HTML5 Player) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\enmofgaijnbjpblfljopnpdogpldapoc [2017-10-10]
CHR Extension: (Multishow Sexytime - Os vídeos mais p...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gggbaegapffgddniibmpfcbjgnmhboae [2017-06-22]
CHR Extension: (AdBlock) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-09-18]
CHR Extension: (Loterias | Caixa) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkknpcempkjeahkjmenlefjijombebjo [2017-06-20]
CHR Extension: (HP Smart Print) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmpaiomihcebnclahoknbodeiaiohcdi [2017-01-03]
CHR Extension: (Monetizze) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\haglgiplgmilmdbdgcflbiljfmebaegk [2017-06-20]
CHR Extension: (Login Hotmart - Acesse sua conta) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmbgnooaiemokfmlellabfkfcikbgpf [2017-06-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2018-10-09]
CHR Extension: (globoesporte.globo.com/cartola-fc) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\imagdkkmdmgdmhnbalofhbkmdmbgkdfc [2017-06-19]
CHR Extension: (TVBola - O melhor do Futebol ao Vivo ...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjhbllkfcdcgahcjnakmijopjekdllom [2017-06-20]
CHR Extension: (PEQUENAS EMPRESAS GRANDES NEGÓCIOS) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kidkpodcjfhhdiccnmbnfpmnpgnheddh [2017-06-20]
CHR Extension: (Gmail) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhopmchchfpfdcdjodmpfaaphdclmlj [2017-06-20]
CHR Extension: (Hootsuite) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij [2017-12-06]
CHR Extension: (Conversor de vídeo) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcjjnhgakghmggnimjkldjmmpabhnhne [2017-11-01]
CHR Extension: (Homepage New - ClickBank International) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghmofhbfodododjkedodbcngjlpjeng [2017-06-20]
CHR Extension: (All Video Downloader Professional) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhgnbemghokalfakmkhpnbneaoaigpnj [2017-12-06]
CHR Extension: (PEGN - Contatos das Matérias) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mojopkjadhmackoomoklfddjhggohplp [2017-06-20]
CHR Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-10-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02]
CHR Extension: (Entre para globosatplay.globo.com) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\omadhkeccblehikkofmhdcokjekgjpha [2017-06-19]
CHR Extension: (CAMPEONATO BRASILEIRO SÉRIE B) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompdbnpjpcjafnaaaojifhimjbegkhaa [2017-06-20]
CHR Extension: (Secretaria da Fazenda - Governo do Es...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\oomfgfggggofpfcdeajoiibiinelmlii [2017-06-20]
CHR Extension: (SporTV | Globosat Play) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcleollbngnpfaknpbdbehiblhhfomca [2017-06-20]
CHR Extension: (Click&Clean App) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2018-10-05]
CHR Extension: (Gmail) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-20]
CHR Extension: (Futebol Ao Vivo BR - Assistir Futebol...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmmoapkkenfmnjljimffoiafamenmehj [2017-06-20]
CHR Profile: C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-10]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-06-23]
CHR HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-06-23]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2762936 2016-01-07] (Microsoft Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-09-20] (Nero AG)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2017-03-29] (Realtek Semiconductor)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\windows\system32\WirelessKB850NotificationService.exe [176632 2018-05-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 aftap0901; C:\windows\system32\DRIVERS\aftap0901.sys [48624 2017-11-16] (The OpenVPN Project)
S0 amdkmafd; C:\windows\System32\drivers\amdkmafd.sys [21160 2012-09-22] (Advanced Micro Devices, Inc.)
S3 amdkmcsp; C:\windows\System32\drivers\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\windows\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc.)
R1 amdpsp; C:\windows\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices, Inc. )
S3 athr; C:\windows\system32\DRIVERS\athwbx.sys [4318648 2016-08-28] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\windows\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 HWiNFO32; C:\windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-23] (REALiX(tm))
R2 inpoutx64; C:\windows\System32\Drivers\inpoutx64.sys [15008 2016-11-10] (Highresolution Enterprises [www.highrez.co.uk])
S3 ksapi64; C:\windows\system32\drivers\ksapi64.sys [56680 2016-02-10] (Kingsoft Corporation)
R3 RSP2STOR; C:\windows\system32\DRIVERS\RtsP2Stor.sys [329184 2016-08-15] (Realtek Semiconductor Corp.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R3 VBoxNetAdp; C:\windows\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
R1 VBoxNetLwf; C:\windows\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S3 VBoxUSB; C:\windows\System32\Drivers\VBoxUSB.sys [137920 2017-01-16] (Oracle Corporation)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-10-10 17:31 - 2018-10-10 17:33 - 000029878 _____ C:\Users\Glauber Segalla\Desktop\FRST.txt
2018-10-10 17:30 - 2018-10-10 17:31 - 000000000 ____D C:\FRST
2018-10-10 17:29 - 2018-10-10 17:30 - 002414592 _____ (Farbar) C:\Users\Glauber Segalla\Desktop\FRST64.exe
2018-10-10 17:18 - 2018-10-10 17:18 - 127283186 _____ C:\Users\Glauber Segalla\Desktop\Lista Negra - 3ª temporada - Ed 20 - The Artax Network.MP4
2018-10-10 12:35 - 2018-10-10 12:36 - 051536722 _____ C:\Users\Glauber Segalla\Desktop\Ainda vale apena trabalhar com youtube- Assista o vídeo e descubra.MP4
2018-10-10 12:10 - 2018-10-10 13:01 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\DMCache
2018-10-10 12:10 - 2018-10-10 12:36 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\IDM
2018-10-10 12:10 - 2018-10-10 12:30 - 000001107 _____ C:\Users\Glauber Segalla\Desktop\Internet Download Manager.lnk
2018-10-10 12:10 - 2018-10-10 12:10 - 000000000 ____D C:\Users\Todos os Usuários\IDM
2018-10-10 12:10 - 2018-10-10 12:10 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2018-10-10 12:10 - 2018-10-10 12:10 - 000000000 ____D C:\ProgramData\IDM
2018-10-10 12:09 - 2018-10-10 12:10 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2018-10-10 03:08 - 2018-10-10 03:08 - 085231025 _____ C:\Users\Glauber Segalla\Desktop\Roda a Roda Jequiti (09_10_18) - Completo - YouTube.MP4
2018-10-10 02:57 - 2018-10-10 02:57 - 054697232 _____ C:\Users\Glauber Segalla\Desktop\Manychat, WhatsApp ou Email Marketing- Qual é o melhor para vender como afiliado trabalhando em casa - YouTube.MP4
2018-10-10 02:02 - 2018-10-10 02:23 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\WhiteClick
2018-10-10 02:02 - 2018-10-10 02:23 - 000000000 ____D C:\Program Files\OTliZDA4OGE1Nz
2018-10-10 02:01 - 2018-10-10 02:23 - 000000000 ____D C:\Program Files (x86)\publicHotsp
2018-10-10 02:00 - 2018-10-10 02:23 - 000000000 ____D C:\Program Files (x86)\l3rrwagqzw3
2018-10-10 02:00 - 2018-10-10 02:00 - 001413120 _____ C:\Users\Glauber Segalla\AppData\Local\sham.db
2018-10-10 02:00 - 2018-10-10 02:00 - 000140800 _____ C:\Users\Glauber Segalla\AppData\Local\installer.dat
2018-10-10 02:00 - 2018-10-10 02:00 - 000011568 _____ C:\Users\Glauber Segalla\AppData\Local\InstallationConfiguration.xml
2018-10-08 18:45 - 2018-10-08 18:49 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\MANYCHAT OU CHAT BOT PARA FACEBOOK
2018-10-08 18:41 - 2018-10-08 18:41 - 000242560 _____ C:\Users\Glauber Segalla\Desktop\Ebook-os-segredos-para-criaçao-de-videos-que-vendem.pdf
2018-10-08 11:12 - 2018-10-08 11:12 - 082518290 _____ C:\Users\Glauber Segalla\Desktop\Como saber de que meus artigos estão sendo encontrado pelo Google - YouTube.MP4
2018-10-08 02:06 - 2018-10-08 02:06 - 000000000 ____D C:\Users\Glauber Segalla\Justica Eleitoral
2018-10-04 12:30 - 2018-10-04 12:30 - 000001275 _____ C:\Users\Public\Desktop\Divulga.lnk
2018-10-04 12:30 - 2018-10-04 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Justiça Eleitoral
2018-10-04 12:30 - 2018-10-04 12:30 - 000000000 ____D C:\Program Files (x86)\Justiça Eleitoral
2018-10-02 15:20 - 2018-10-02 15:20 - 000001102 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2018-10-02 15:20 - 2018-10-02 15:20 - 000000000 ____D C:\windows\LastGood.Tmp
2018-10-02 15:20 - 2018-10-02 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2018-10-02 15:20 - 2018-08-14 06:58 - 000984376 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxDrv.sys
2018-10-02 15:20 - 2018-08-14 06:58 - 000168904 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxUSBMon.sys
2018-10-01 19:08 - 2018-10-01 23:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-10-01 19:08 - 2018-10-01 19:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-10-01 19:08 - 2018-10-01 19:08 - 000001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-09-22 20:44 - 2018-10-06 17:40 - 000004128 _____ C:\windows\System32\Tasks\CCleaner Update
2018-09-22 10:53 - 2018-09-12 02:56 - 025735680 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-09-22 10:53 - 2018-09-12 02:30 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-09-22 10:53 - 2018-09-12 02:25 - 005778944 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-09-22 10:53 - 2018-09-12 02:20 - 020279808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2018-09-22 10:53 - 2018-09-12 02:18 - 000794624 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-09-22 10:53 - 2018-09-12 02:01 - 000497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2018-09-22 10:53 - 2018-09-12 01:51 - 000662016 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2018-09-22 10:53 - 2018-09-12 01:50 - 001033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2018-09-22 10:53 - 2018-09-12 01:42 - 015283712 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-09-22 10:53 - 2018-09-12 01:41 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-09-22 10:53 - 2018-09-12 01:30 - 000880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2018-09-22 10:53 - 2018-09-12 01:29 - 004494848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2018-09-22 10:53 - 2018-09-12 01:27 - 004510720 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-09-22 10:53 - 2018-09-12 01:25 - 013679616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2018-09-22 10:53 - 2018-09-12 01:25 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2018-09-22 10:53 - 2018-09-12 01:16 - 001555456 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-09-22 10:53 - 2018-09-12 01:05 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-09-22 10:53 - 2018-09-12 01:04 - 004037632 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2018-09-22 10:53 - 2018-09-12 01:02 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2018-09-22 10:53 - 2018-09-12 01:01 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2018-09-22 10:53 - 2018-08-13 19:51 - 007373544 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-09-22 10:53 - 2018-08-13 19:35 - 001737600 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-09-22 10:53 - 2018-08-13 19:35 - 001676064 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2018-09-22 10:53 - 2018-08-13 19:35 - 001536120 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2018-09-22 10:53 - 2018-08-13 19:35 - 001500456 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2018-09-22 10:53 - 2018-08-13 19:35 - 001371352 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2018-09-22 10:53 - 2018-08-13 17:47 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2018-09-22 10:53 - 2018-08-13 17:47 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2018-09-22 10:53 - 2018-08-13 16:47 - 015439872 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2018-09-22 10:53 - 2018-08-13 16:46 - 013322752 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2018-09-22 10:53 - 2018-08-13 14:51 - 004171264 _____ (Gracenote, Inc.) C:\windows\SysWOW64\gnsdk_fp.dll
2018-09-22 10:53 - 2018-08-12 17:25 - 000149632 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-09-22 10:53 - 2018-08-12 14:07 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\itss.dll
2018-09-22 10:53 - 2018-08-12 13:32 - 000151040 _____ (Microsoft Corporation) C:\windows\SysWOW64\itss.dll
2018-09-22 10:53 - 2018-08-12 11:21 - 004876800 _____ (Gracenote, Inc.) C:\windows\system32\gnsdk_fp.dll
2018-09-22 10:53 - 2018-08-12 11:21 - 001633008 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2018-09-18 12:14 - 2018-09-18 12:14 - 000001893 _____ C:\Users\Glauber Segalla\Desktop\YouTube Pro - A Formula Secreta.txt
2018-09-12 13:19 - 2018-09-04 19:06 - 000835144 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2018-09-12 13:19 - 2018-09-04 19:06 - 000179808 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-12 13:06 - 2018-08-28 02:39 - 001491032 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2018-09-12 13:06 - 2018-08-28 00:46 - 001764408 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2018-09-12 13:06 - 2018-08-27 22:36 - 001311744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2018-09-12 13:06 - 2018-08-27 22:36 - 000340480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2018-09-12 13:06 - 2018-08-23 19:54 - 000289280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ks.sys
2018-09-12 13:06 - 2018-08-13 22:22 - 022374608 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2018-09-12 13:06 - 2018-08-13 22:19 - 019790752 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2018-09-12 13:06 - 2018-08-13 17:06 - 002530384 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2018-09-12 13:06 - 2018-08-13 17:03 - 001903744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2018-09-12 13:06 - 2018-08-13 16:32 - 001368680 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2018-09-12 13:06 - 2018-08-13 10:40 - 001754112 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2018-09-12 13:06 - 2018-08-13 10:39 - 001491968 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2018-09-12 13:06 - 2018-08-13 10:33 - 001085440 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2018-09-12 13:06 - 2018-08-12 16:04 - 002451808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2018-09-12 13:06 - 2018-08-12 13:31 - 002347520 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2018-09-12 13:06 - 2018-08-12 13:06 - 001556480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2018-09-12 13:06 - 2018-08-09 13:41 - 000073728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mpsdrv.sys
2018-09-12 13:06 - 2018-08-09 13:39 - 000148992 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2018-09-12 13:06 - 2018-07-29 10:44 - 001265664 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2018-09-12 13:06 - 2018-07-24 10:45 - 000685056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2018-09-12 13:06 - 2018-07-18 10:34 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2018-09-12 13:05 - 2018-08-13 10:30 - 000043520 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2018-09-12 13:05 - 2018-08-13 10:29 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2018-09-12 13:05 - 2018-08-09 14:40 - 000078336 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2018-09-12 13:05 - 2018-08-09 14:39 - 000113664 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2018-09-12 13:05 - 2018-08-09 13:59 - 000543232 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2018-09-12 13:05 - 2018-08-09 13:41 - 000096768 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2018-09-04 10:52 - 2018-07-24 14:50 - 006522344 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2018-09-04 10:52 - 2018-07-24 14:50 - 001488008 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2018-09-04 10:52 - 2018-07-24 14:50 - 000261408 _____ (Microsoft Corporation) C:\windows\system32\sppwinob.dll
2018-09-04 10:52 - 2018-07-06 14:14 - 000346112 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2018-09-04 10:52 - 2018-07-06 13:22 - 000299520 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2018-09-04 10:52 - 2018-07-05 20:17 - 001115648 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2018-09-04 10:52 - 2018-06-26 12:25 - 000425984 _____ (Microsoft Corporation) C:\windows\system32\PCPTpm12.dll
2018-09-04 10:52 - 2018-06-26 12:14 - 000367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\PCPTpm12.dll
2018-09-04 10:52 - 2018-06-21 10:31 - 001200640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2018-09-04 10:52 - 2018-06-21 10:30 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2018-09-04 10:52 - 2018-06-21 10:24 - 000513456 _____ C:\windows\SysWOW64\locale.nls
2018-09-04 10:52 - 2018-06-21 10:24 - 000513456 _____ C:\windows\system32\locale.nls
2018-08-31 00:36 - 2018-08-31 00:36 - 014919843 _____ C:\Users\Glauber Segalla\Desktop\Como ganhar infinitos pontos ou burlar o aplicativo Win PayPal gift card - YouTube.mp4
2018-08-28 01:37 - 2018-08-28 02:25 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\APPS PARA CELULAR
2018-08-28 01:31 - 2018-08-28 01:31 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\MultiPlayerManager
2018-08-28 00:16 - 2018-09-22 20:44 - 000002786 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2018-08-25 16:09 - 2018-08-25 16:09 - 000000066 _____ C:\Users\Glauber Segalla\inittk.ini
2018-08-25 16:07 - 2018-08-28 16:54 - 000000000 ____D C:\Users\Glauber Segalla\.android
2018-08-25 16:06 - 2018-08-28 16:53 - 000000000 ____D C:\Users\Glauber Segalla\vmlogs
2018-08-25 16:06 - 2018-08-28 16:53 - 000000000 ____D C:\Users\Glauber Segalla\.BigNox
2018-08-25 16:06 - 2018-08-25 16:07 - 000000000 ____D C:\Users\Glauber Segalla\Nox_share
2018-08-25 16:06 - 2018-08-25 16:06 - 000000045 _____ C:\Users\Glauber Segalla\nuuid.ini
2018-08-25 16:06 - 2018-08-25 16:06 - 000000041 _____ C:\Users\Glauber Segalla\inst.ini
2018-08-25 16:06 - 2018-08-25 16:06 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2018-08-25 16:03 - 2018-08-28 19:10 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\Nox
2018-08-24 20:00 - 2018-08-24 20:00 - 028750622 _____ C:\Users\Glauber Segalla\Desktop\Como Usar o WhatsApp no PC! (Não Precisa ter um celular para esse método!).mp4
2018-08-17 20:19 - 2018-08-17 20:19 - 032966397 _____ C:\Users\Glauber Segalla\Desktop\Como Instalar Aplicativos de Celular (Android) no PC! (Como Emular Android no Windows!) - YouTube.mp4
2018-08-16 12:49 - 2018-07-19 01:35 - 002902016 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-08-16 12:49 - 2018-07-19 01:33 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-08-16 12:49 - 2018-07-19 01:23 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-08-16 12:49 - 2018-07-19 01:22 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\hlink.dll
2018-08-16 12:49 - 2018-07-19 01:21 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-08-16 12:49 - 2018-07-19 01:03 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-08-16 12:49 - 2018-07-19 01:01 - 002295808 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2018-08-16 12:49 - 2018-07-19 00:55 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\hlink.dll
2018-08-16 12:49 - 2018-07-19 00:54 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2018-08-16 12:49 - 2018-07-19 00:47 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-08-16 12:49 - 2018-07-19 00:45 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-08-16 12:49 - 2018-07-19 00:43 - 002136064 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-08-16 12:49 - 2018-07-19 00:30 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2018-08-16 12:49 - 2018-07-19 00:28 - 002882048 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2018-08-16 12:49 - 2018-07-19 00:28 - 002059776 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2018-08-16 12:49 - 2018-07-19 00:28 - 000333312 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2018-08-16 12:49 - 2018-07-19 00:17 - 001049600 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2018-08-16 12:49 - 2018-07-07 15:33 - 001548632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2018-08-16 12:49 - 2018-07-07 14:05 - 004169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-08-16 12:49 - 2018-06-30 15:00 - 001113952 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2018-08-16 12:49 - 2018-06-24 12:11 - 000748544 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2018-08-16 12:49 - 2018-06-24 12:04 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2018-08-16 12:49 - 2018-06-19 10:38 - 003611136 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2018-08-16 12:49 - 2018-06-19 10:38 - 003321344 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2018-08-16 12:49 - 2018-06-19 10:31 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msiexec.exe
2018-08-16 12:49 - 2018-06-19 10:29 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2018-08-16 12:49 - 2018-06-16 12:03 - 002779136 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2018-08-16 12:49 - 2018-06-16 11:59 - 002464256 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2018-08-14 06:58 - 2018-08-14 06:58 - 000222864 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxNetLwf.sys
2018-08-14 06:58 - 2018-08-14 06:58 - 000213080 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxNetAdp6.sys
2018-08-10 02:27 - 2018-08-10 12:25 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\ESTEIRA DE LANÇAMENTOS F15D
2018-08-09 12:35 - 2018-09-23 15:43 - 000538703 _____ C:\Users\Glauber Segalla\Desktop\Gmail - PROPOSTA CENOFISCO.pdf
2018-08-07 00:01 - 2018-08-07 00:01 - 000000000 ____D C:\Program Files\KeyboardNotification
2018-08-02 03:22 - 2018-08-02 03:20 - 000098680 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2018-07-28 14:16 - 2018-06-15 01:34 - 000923512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\refs.sys
2018-07-28 14:16 - 2018-06-14 23:28 - 000445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2018-07-28 14:16 - 2018-06-14 23:12 - 000477696 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2018-07-28 14:16 - 2018-06-14 23:00 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2018-07-28 14:16 - 2018-06-14 22:55 - 000840192 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2018-07-28 14:16 - 2018-06-14 22:43 - 000186880 _____ (Microsoft Corporation) C:\windows\system32\dpapisrv.dll
2018-07-28 14:16 - 2018-06-14 22:26 - 000514560 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2018-07-28 14:16 - 2018-06-14 22:22 - 000866304 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2018-07-28 14:16 - 2018-06-14 22:19 - 000399360 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2018-07-28 14:16 - 2018-06-08 15:47 - 000083456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-07-20 20:10 - 2018-08-07 20:16 - 000000280 _____ C:\Users\Glauber Segalla\Desktop\COMO PROCURAR ERROS NO WINDOWS E CORRIGI-LOS RAPIDAMENTE.txt
2018-07-14 15:37 - 2018-03-26 20:24 - 000029352 _____ (Microsoft Corporation) C:\windows\SysWOW64\aspnet_counters.dll
2018-07-14 15:37 - 2018-03-26 20:24 - 000019088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr100_clr0400.dll
2018-07-14 15:37 - 2018-03-26 20:17 - 000030888 _____ (Microsoft Corporation) C:\windows\system32\aspnet_counters.dll
2018-07-14 15:37 - 2018-03-26 20:17 - 000019088 _____ (Microsoft Corporation) C:\windows\system32\msvcr100_clr0400.dll
2018-07-12 13:18 - 2018-06-11 13:36 - 003119616 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2018-07-12 13:18 - 2018-06-09 13:26 - 002712064 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2018-07-12 13:18 - 2018-06-08 14:54 - 000656384 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2018-07-12 13:17 - 2018-06-20 15:48 - 000095744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2018-07-12 13:17 - 2018-06-20 15:48 - 000027136 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fxppm.sys
2018-07-12 13:17 - 2018-06-20 13:58 - 000098816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2018-07-12 13:17 - 2018-06-20 13:58 - 000098816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2018-07-12 13:17 - 2018-06-20 13:58 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2018-07-12 13:17 - 2018-06-08 15:26 - 000440832 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2018-07-12 13:17 - 2018-06-08 14:53 - 000252416 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2018-07-12 13:17 - 2018-06-08 14:07 - 000404992 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2018-07-12 13:17 - 2018-06-08 13:44 - 000499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2018-07-12 13:17 - 2018-05-24 18:29 - 000428888 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2018-07-12 13:10 - 2018-06-08 10:15 - 002860032 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2018-07-12 13:10 - 2018-06-08 10:15 - 001602048 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000783872 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000612352 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000470016 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000443392 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2018-07-12 13:09 - 2018-06-08 10:15 - 000301056 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-10-10 17:01 - 2017-02-16 19:34 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\CutePDF Writer
2018-10-10 16:58 - 2017-02-08 23:31 - 000000000 ___RD C:\Users\Glauber Segalla\AppData\Roaming\eM Client
2018-10-10 16:41 - 2016-01-07 19:04 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\ClassicShell
2018-10-10 16:38 - 2013-08-22 11:45 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-10-10 13:02 - 2015-04-22 15:14 - 000065536 _____ C:\windows\system32\spu_storage.bin
2018-10-10 12:24 - 2017-08-02 12:56 - 000003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1751273365-4100181127-1669670999-1001
2018-10-10 02:36 - 2018-03-13 17:27 - 000004530 _____ C:\windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-10-10 02:36 - 2017-01-25 00:38 - 000004360 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2018-10-10 02:36 - 2013-08-22 12:36 - 000000000 ____D C:\windows\system32\Macromed
2018-10-10 02:35 - 2013-08-22 12:36 - 000000000 ____D C:\windows\SysWOW64\Macromed
2018-10-10 02:25 - 2016-01-05 14:06 - 000000000 ____D C:\Users\Glauber Segalla
2018-10-10 02:21 - 2013-08-22 12:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-10-10 02:17 - 2013-08-22 12:36 - 000000000 ____D C:\windows\registration
2018-10-10 01:01 - 2017-01-16 17:18 - 000000000 ___RD C:\Users\Glauber Segalla\Desktop\PROGRAMAS SALVOS NA ÁREA DE TRABALHO
2018-10-09 01:40 - 2017-12-07 17:07 - 000057856 _____ C:\Users\Glauber Segalla\Desktop\CARTOLA.xls
2018-10-08 01:05 - 2016-11-20 13:29 - 000000000 ____D C:\Users\Glauber Segalla\AppData\LocalLow\Mozilla
2018-10-07 03:06 - 2017-09-17 15:04 - 000003168 _____ C:\windows\System32\Tasks\HPCeeScheduleForGlauber
2018-10-07 03:06 - 2017-09-17 15:04 - 000000350 _____ C:\windows\Tasks\HPCeeScheduleForGlauber.job
2018-10-06 16:25 - 2018-06-27 01:34 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\NOVO PASSO A PASSO DA F15D
2018-10-06 11:46 - 2018-01-10 16:39 - 000036200 _____ C:\Users\Glauber Segalla\Desktop\F15D hashtags com emojis.txt
2018-10-06 10:27 - 2016-01-11 21:43 - 000000000 ___RD C:\Users\Glauber Segalla\Desktop\Compartilhada
2018-10-05 13:01 - 2013-08-22 10:25 - 000262144 ___SH C:\windows\system32\config\BBI
2018-10-05 11:01 - 2013-08-22 10:36 - 000000000 ____D C:\windows\Inf
2018-10-02 19:54 - 2017-01-19 17:27 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\CrashDumps
2018-10-02 16:27 - 2016-01-07 19:25 - 000000000 ____D C:\Users\Glauber Segalla\.VirtualBox
2018-10-01 19:08 - 2016-01-14 19:04 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\Mozilla
2018-10-01 19:08 - 2016-01-14 19:04 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\Mozilla
2018-10-01 18:24 - 2016-01-19 18:54 - 000000000 ____D C:\Program Files (x86)\RegSeeker
2018-10-01 18:24 - 2013-08-22 12:36 - 000000000 ____D C:\windows\System
2018-09-28 11:06 - 2016-01-17 18:11 - 000000000 ____D C:\SisAdm
2018-09-24 19:38 - 2013-08-22 12:36 - 000000000 ____D C:\windows\rescache
2018-09-22 20:44 - 2016-10-18 16:51 - 000000844 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-09-22 11:03 - 2013-08-22 12:20 - 000000000 ____D C:\windows\CbsTemp
2018-09-19 17:01 - 2016-07-29 19:55 - 000002210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-19 11:11 - 2016-01-05 14:06 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\Packages
2018-09-12 13:31 - 2013-08-22 12:36 - 000000000 ___RD C:\windows\ToastData
2018-09-12 13:14 - 2016-01-14 18:11 - 000000000 ____D C:\windows\system32\MRT
2018-09-12 13:07 - 2016-01-14 18:11 - 139184408 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-09-10 11:22 - 2016-10-18 16:51 - 000000000 ____D C:\Program Files\CCleaner
==================== Arquivos na raiz de alguns diretórios =======
2018-10-10 02:00 - 2018-10-10 02:00 - 000011568 _____ () C:\Users\Glauber Segalla\AppData\Local\InstallationConfiguration.xml
2018-10-10 02:00 - 2018-10-10 02:00 - 000140800 _____ () C:\Users\Glauber Segalla\AppData\Local\installer.dat
2016-02-13 16:51 - 2016-02-13 16:51 - 000000017 _____ () C:\Users\Glauber Segalla\AppData\Local\resmon.resmoncfg
2018-10-10 02:00 - 2018-10-10 02:00 - 001413120 _____ () C:\Users\Glauber Segalla\AppData\Local\sham.db
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\windows\explorer.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\windows\system32\services.exe => O arquivo é assinado digitalmente
C:\windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2018-10-09 17:40
==================== Fim de FRST.txt ============================
Executado por Glauber (administrador) em WIN8 (10-10-2018 17:31:44)
Executando a partir de C:\Users\Glauber Segalla\Desktop
Perfis Carregados: Glauber (Perfis Disponíveis: Glauber)
Platform: Windows 8.1 Single Language (Update) (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
Falha ao acessar processo -> firefox.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9192960 2017-03-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1484288 2017-03-29] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (IvoSoft)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-06-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [SoundVolumeHotkeys.{9547D1C7-4F18-4104-8674-046DCD12BDF9}] => C:\Program Files (x86)\Sound Volume Hotkeys\SoundVolumeHotkeys.exe [126976 2010-09-19] (Softarium.com)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-09-20] (Nero AG)
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3948600 2018-07-09] (Tonec Inc.)
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
Startup: C:\Users\Glauber Segalla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-04-08]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited)
BootExecute: autocheck autochk *
GroupPolicyScripts: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 200.189.80.122 200.189.80.108
Tcpip\..\Interfaces\{886A4B6C-67C0-46E8-8CA2-7C512AAD8465}: [NameServer] 8.8.4.4,8.8.8.8
Tcpip\..\Interfaces\{886A4B6C-67C0-46E8-8CA2-7C512AAD8465}: [DhcpNameServer] 200.189.80.122 200.189.80.108
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2018-06-19] (Internet Download Manager, Tonec Inc.)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-02-01] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-01] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (IvoSoft)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2018-06-19] (Internet Download Manager, Tonec Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-02-01] (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-02] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-02-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-02] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (IvoSoft)
DPF: HKLM-x32 {55A2C0CD-3DE8-4264-9637-A0B40B05714E} hxxps://col430-sec.mail.live.com/mail/MailMigrationCabFileHolder.aspx?n=453342177
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-01] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: xrl3m1x7.GlauberModificado
FF ProfilePath: C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default [2018-10-10]
FF Homepage: Mozilla\Firefox\Profiles\i02adfwt.default -> chrome://speeddial/content/speeddial.xul
FF Extension: (QuickFox Notes) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\amin.eft_bmnotes@gmail.com [2018-10-02] [Legacy]
FF Extension: (Classic Theme Restorer) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2018-10-01] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\idmmzcc-webextension.xpi [2018-10-02]
FF Extension: (IDM integration) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\idmmzcc-xul.xpi [2018-10-02] [Legacy]
FF Extension: (YouTube mp3) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\info@youtube-mp3.org.xpi [2018-10-01] [Legacy]
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-02-27] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2018-10-02]
FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\pt-BR@dictionaries.addons.mozilla.org [2018-10-02] [Legacy]
FF Extension: (Google Translator for Firefox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\translator@zoli.bod.xpi [2018-10-01] [Legacy]
FF Extension: (Flagfox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2018-10-01] [Legacy]
FF Extension: (Speed Dial) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2018-10-01] [Legacy]
FF Extension: (Open Profile Folder) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{a756d17a-5a4c-4417-813c-c8cd0151e486}.xpi [2018-10-02] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-10-01] [Legacy]
FF Extension: (Tab Mix Plus) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\i02adfwt.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2018-10-01] [Legacy]
FF ProfilePath: C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado [2018-10-10]
FF Homepage: Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado -> chrome://speeddial/content/speeddial.xul
hxxp://favoritosglauber.blogspot.com/
FF Extension: (Disable youtube html5 player) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\@disableyoutubehtml5player.xpi [2018-10-03] [Legacy]
FF Extension: (QuickFox Notes) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\amin.eft_bmnotes@gmail.com [2018-10-02] [Legacy]
FF Extension: (Classic Theme Restorer) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2018-10-01] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\idmmzcc-webextension.xpi [2018-10-02]
FF Extension: (YouTube mp3) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\info@youtube-mp3.org.xpi [2018-10-01] [Legacy]
FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2018-10-02] [Legacy]
FF Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2018-10-10]
FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\pt-BR@dictionaries.addons.mozilla.org [2018-10-02] [Legacy]
FF Extension: (Google Translator for Firefox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\translator@zoli.bod.xpi [2018-10-01] [Legacy]
FF Extension: (Flagfox) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2018-10-01] [Legacy]
FF Extension: (Speed Dial) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi [2018-10-01] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-10-01] [Legacy]
FF Extension: (Tab Mix Plus) - C:\Users\Glauber Segalla\AppData\Roaming\Mozilla\Firefox\Profiles\xrl3m1x7.GlauberModificado\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2018-10-01] [Legacy]
FF HKLM-x32\...\Mozilla Firefox 43.0.4\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKLM-x32\...\Mozilla Firefox 44.0.2\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKLM-x32\...\Pale Moon 25.8.1\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKLM-x32\...\Thunderbird\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2018-06-25]
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\Mozilla Firefox 50.1.0\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\SeaMonkey\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => não encontrado (a)
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Glauber Segalla\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Glauber Segalla\AppData\Roaming\IDM\idmmzcc5 [2018-10-10] [Legacy] [não assinado]
FF HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_31_0_0_122.dll [2018-10-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-10] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1227197.dll [2017-02-20] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-02-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://drive.google.com/drive/folders/0By4JBoB0i7ViRHVGb1lsRVROUWM
CHR NewTab: Default -> Active:"chrome-extension://ejbjamhkdedinncaeiackcdehpccoejm/pages/newtab.html"
CHR Profile: C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default [2018-10-10]
CHR Extension: (Sudoku) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdhembpgcpfegeigidembjopfhghnpj [2017-01-03]
CHR Extension: (Google Drive) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-03]
CHR Extension: (MEGA) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2018-10-04]
CHR Extension: (Twitter) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmbniebmoflhomonmkjbhjdafagjnlpl [2017-06-20]
CHR Extension: (MyEduzz) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmddbkiooceknjikinhhdggdeagagfjf [2017-06-20]
CHR Extension: (Paciência Online) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahbledjpnekmjeglfnelmnjfnmmemob [2017-01-03]
CHR Extension: (Jornal da Globo) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckflnnmonckdfnodbofgpfnpddgeilph [2017-06-20]
CHR Extension: (Ao vivo na Tv - Tv Online, Futebol ao...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljdajajdpphoiafjijmpppplgmgcoom [2017-06-20]
CHR Extension: (CAMPEONATO BRASILEIRO SÉRIE A) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\egchdgbdbbecfkhciekkndckpbiocjed [2017-06-20]
CHR Extension: (Speed Dial) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbjamhkdedinncaeiackcdehpccoejm [2017-12-17]
CHR Extension: (Globo Esporte SP) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekmghelnfaiebafaagihbhidplcbmiim [2017-06-20]
CHR Extension: (Disable Youtube™ HTML5 Player) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\enmofgaijnbjpblfljopnpdogpldapoc [2017-10-10]
CHR Extension: (Multishow Sexytime - Os vídeos mais p...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gggbaegapffgddniibmpfcbjgnmhboae [2017-06-22]
CHR Extension: (AdBlock) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-09-18]
CHR Extension: (Loterias | Caixa) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkknpcempkjeahkjmenlefjijombebjo [2017-06-20]
CHR Extension: (HP Smart Print) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmpaiomihcebnclahoknbodeiaiohcdi [2017-01-03]
CHR Extension: (Monetizze) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\haglgiplgmilmdbdgcflbiljfmebaegk [2017-06-20]
CHR Extension: (Login Hotmart - Acesse sua conta) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdmbgnooaiemokfmlellabfkfcikbgpf [2017-06-20]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2018-10-09]
CHR Extension: (globoesporte.globo.com/cartola-fc) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\imagdkkmdmgdmhnbalofhbkmdmbgkdfc [2017-06-19]
CHR Extension: (TVBola - O melhor do Futebol ao Vivo ...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjhbllkfcdcgahcjnakmijopjekdllom [2017-06-20]
CHR Extension: (PEQUENAS EMPRESAS GRANDES NEGÓCIOS) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kidkpodcjfhhdiccnmbnfpmnpgnheddh [2017-06-20]
CHR Extension: (Gmail) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhopmchchfpfdcdjodmpfaaphdclmlj [2017-06-20]
CHR Extension: (Hootsuite) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kneloppijbcidgidihgdjnooihjcdbij [2017-12-06]
CHR Extension: (Conversor de vídeo) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcjjnhgakghmggnimjkldjmmpabhnhne [2017-11-01]
CHR Extension: (Homepage New - ClickBank International) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghmofhbfodododjkedodbcngjlpjeng [2017-06-20]
CHR Extension: (All Video Downloader Professional) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhgnbemghokalfakmkhpnbneaoaigpnj [2017-12-06]
CHR Extension: (PEGN - Contatos das Matérias) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\mojopkjadhmackoomoklfddjhggohplp [2017-06-20]
CHR Extension: (IDM Integration Module) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-10-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02]
CHR Extension: (Entre para globosatplay.globo.com) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\omadhkeccblehikkofmhdcokjekgjpha [2017-06-19]
CHR Extension: (CAMPEONATO BRASILEIRO SÉRIE B) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompdbnpjpcjafnaaaojifhimjbegkhaa [2017-06-20]
CHR Extension: (Secretaria da Fazenda - Governo do Es...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\oomfgfggggofpfcdeajoiibiinelmlii [2017-06-20]
CHR Extension: (SporTV | Globosat Play) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcleollbngnpfaknpbdbehiblhhfomca [2017-06-20]
CHR Extension: (Click&Clean App) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2018-10-05]
CHR Extension: (Gmail) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-20]
CHR Extension: (Futebol Ao Vivo BR - Assistir Futebol...) - C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmmoapkkenfmnjljimffoiafamenmehj [2017-06-20]
CHR Profile: C:\Users\Glauber Segalla\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-10]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-06-23]
CHR HKU\S-1-5-21-1751273365-4100181127-1669670999-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-06-23]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2762936 2016-01-07] (Microsoft Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-09-20] (Nero AG)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2017-03-29] (Realtek Semiconductor)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\windows\system32\WirelessKB850NotificationService.exe [176632 2018-05-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 aftap0901; C:\windows\system32\DRIVERS\aftap0901.sys [48624 2017-11-16] (The OpenVPN Project)
S0 amdkmafd; C:\windows\System32\drivers\amdkmafd.sys [21160 2012-09-22] (Advanced Micro Devices, Inc.)
S3 amdkmcsp; C:\windows\System32\drivers\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\windows\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc.)
R1 amdpsp; C:\windows\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices, Inc. )
S3 athr; C:\windows\system32\DRIVERS\athwbx.sys [4318648 2016-08-28] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\windows\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
R1 CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 HWiNFO32; C:\windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-23] (REALiX(tm))
R2 inpoutx64; C:\windows\System32\Drivers\inpoutx64.sys [15008 2016-11-10] (Highresolution Enterprises [www.highrez.co.uk])
S3 ksapi64; C:\windows\system32\drivers\ksapi64.sys [56680 2016-02-10] (Kingsoft Corporation)
R3 RSP2STOR; C:\windows\system32\DRIVERS\RtsP2Stor.sys [329184 2016-08-15] (Realtek Semiconductor Corp.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
R3 VBoxNetAdp; C:\windows\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
R1 VBoxNetLwf; C:\windows\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S3 VBoxUSB; C:\windows\System32\Drivers\VBoxUSB.sys [137920 2017-01-16] (Oracle Corporation)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-10-10 17:31 - 2018-10-10 17:33 - 000029878 _____ C:\Users\Glauber Segalla\Desktop\FRST.txt
2018-10-10 17:30 - 2018-10-10 17:31 - 000000000 ____D C:\FRST
2018-10-10 17:29 - 2018-10-10 17:30 - 002414592 _____ (Farbar) C:\Users\Glauber Segalla\Desktop\FRST64.exe
2018-10-10 17:18 - 2018-10-10 17:18 - 127283186 _____ C:\Users\Glauber Segalla\Desktop\Lista Negra - 3ª temporada - Ed 20 - The Artax Network.MP4
2018-10-10 12:35 - 2018-10-10 12:36 - 051536722 _____ C:\Users\Glauber Segalla\Desktop\Ainda vale apena trabalhar com youtube- Assista o vídeo e descubra.MP4
2018-10-10 12:10 - 2018-10-10 13:01 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\DMCache
2018-10-10 12:10 - 2018-10-10 12:36 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\IDM
2018-10-10 12:10 - 2018-10-10 12:30 - 000001107 _____ C:\Users\Glauber Segalla\Desktop\Internet Download Manager.lnk
2018-10-10 12:10 - 2018-10-10 12:10 - 000000000 ____D C:\Users\Todos os Usuários\IDM
2018-10-10 12:10 - 2018-10-10 12:10 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2018-10-10 12:10 - 2018-10-10 12:10 - 000000000 ____D C:\ProgramData\IDM
2018-10-10 12:09 - 2018-10-10 12:10 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2018-10-10 03:08 - 2018-10-10 03:08 - 085231025 _____ C:\Users\Glauber Segalla\Desktop\Roda a Roda Jequiti (09_10_18) - Completo - YouTube.MP4
2018-10-10 02:57 - 2018-10-10 02:57 - 054697232 _____ C:\Users\Glauber Segalla\Desktop\Manychat, WhatsApp ou Email Marketing- Qual é o melhor para vender como afiliado trabalhando em casa - YouTube.MP4
2018-10-10 02:02 - 2018-10-10 02:23 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\WhiteClick
2018-10-10 02:02 - 2018-10-10 02:23 - 000000000 ____D C:\Program Files\OTliZDA4OGE1Nz
2018-10-10 02:01 - 2018-10-10 02:23 - 000000000 ____D C:\Program Files (x86)\publicHotsp
2018-10-10 02:00 - 2018-10-10 02:23 - 000000000 ____D C:\Program Files (x86)\l3rrwagqzw3
2018-10-10 02:00 - 2018-10-10 02:00 - 001413120 _____ C:\Users\Glauber Segalla\AppData\Local\sham.db
2018-10-10 02:00 - 2018-10-10 02:00 - 000140800 _____ C:\Users\Glauber Segalla\AppData\Local\installer.dat
2018-10-10 02:00 - 2018-10-10 02:00 - 000011568 _____ C:\Users\Glauber Segalla\AppData\Local\InstallationConfiguration.xml
2018-10-08 18:45 - 2018-10-08 18:49 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\MANYCHAT OU CHAT BOT PARA FACEBOOK
2018-10-08 18:41 - 2018-10-08 18:41 - 000242560 _____ C:\Users\Glauber Segalla\Desktop\Ebook-os-segredos-para-criaçao-de-videos-que-vendem.pdf
2018-10-08 11:12 - 2018-10-08 11:12 - 082518290 _____ C:\Users\Glauber Segalla\Desktop\Como saber de que meus artigos estão sendo encontrado pelo Google - YouTube.MP4
2018-10-08 02:06 - 2018-10-08 02:06 - 000000000 ____D C:\Users\Glauber Segalla\Justica Eleitoral
2018-10-04 12:30 - 2018-10-04 12:30 - 000001275 _____ C:\Users\Public\Desktop\Divulga.lnk
2018-10-04 12:30 - 2018-10-04 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Justiça Eleitoral
2018-10-04 12:30 - 2018-10-04 12:30 - 000000000 ____D C:\Program Files (x86)\Justiça Eleitoral
2018-10-02 15:20 - 2018-10-02 15:20 - 000001102 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2018-10-02 15:20 - 2018-10-02 15:20 - 000000000 ____D C:\windows\LastGood.Tmp
2018-10-02 15:20 - 2018-10-02 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2018-10-02 15:20 - 2018-08-14 06:58 - 000984376 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxDrv.sys
2018-10-02 15:20 - 2018-08-14 06:58 - 000168904 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxUSBMon.sys
2018-10-01 19:08 - 2018-10-01 23:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-10-01 19:08 - 2018-10-01 19:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-10-01 19:08 - 2018-10-01 19:08 - 000001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-09-22 20:44 - 2018-10-06 17:40 - 000004128 _____ C:\windows\System32\Tasks\CCleaner Update
2018-09-22 10:53 - 2018-09-12 02:56 - 025735680 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-09-22 10:53 - 2018-09-12 02:30 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-09-22 10:53 - 2018-09-12 02:25 - 005778944 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-09-22 10:53 - 2018-09-12 02:20 - 020279808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2018-09-22 10:53 - 2018-09-12 02:18 - 000794624 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-09-22 10:53 - 2018-09-12 02:01 - 000497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2018-09-22 10:53 - 2018-09-12 01:51 - 000662016 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2018-09-22 10:53 - 2018-09-12 01:50 - 001033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2018-09-22 10:53 - 2018-09-12 01:42 - 015283712 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-09-22 10:53 - 2018-09-12 01:41 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-09-22 10:53 - 2018-09-12 01:30 - 000880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2018-09-22 10:53 - 2018-09-12 01:29 - 004494848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2018-09-22 10:53 - 2018-09-12 01:27 - 004510720 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-09-22 10:53 - 2018-09-12 01:25 - 013679616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2018-09-22 10:53 - 2018-09-12 01:25 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2018-09-22 10:53 - 2018-09-12 01:16 - 001555456 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-09-22 10:53 - 2018-09-12 01:05 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-09-22 10:53 - 2018-09-12 01:04 - 004037632 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2018-09-22 10:53 - 2018-09-12 01:02 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2018-09-22 10:53 - 2018-09-12 01:01 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2018-09-22 10:53 - 2018-08-13 19:51 - 007373544 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-09-22 10:53 - 2018-08-13 19:35 - 001737600 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-09-22 10:53 - 2018-08-13 19:35 - 001676064 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2018-09-22 10:53 - 2018-08-13 19:35 - 001536120 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2018-09-22 10:53 - 2018-08-13 19:35 - 001500456 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2018-09-22 10:53 - 2018-08-13 19:35 - 001371352 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2018-09-22 10:53 - 2018-08-13 17:47 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2018-09-22 10:53 - 2018-08-13 17:47 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2018-09-22 10:53 - 2018-08-13 16:47 - 015439872 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2018-09-22 10:53 - 2018-08-13 16:46 - 013322752 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2018-09-22 10:53 - 2018-08-13 14:51 - 004171264 _____ (Gracenote, Inc.) C:\windows\SysWOW64\gnsdk_fp.dll
2018-09-22 10:53 - 2018-08-12 17:25 - 000149632 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-09-22 10:53 - 2018-08-12 14:07 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\itss.dll
2018-09-22 10:53 - 2018-08-12 13:32 - 000151040 _____ (Microsoft Corporation) C:\windows\SysWOW64\itss.dll
2018-09-22 10:53 - 2018-08-12 11:21 - 004876800 _____ (Gracenote, Inc.) C:\windows\system32\gnsdk_fp.dll
2018-09-22 10:53 - 2018-08-12 11:21 - 001633008 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2018-09-18 12:14 - 2018-09-18 12:14 - 000001893 _____ C:\Users\Glauber Segalla\Desktop\YouTube Pro - A Formula Secreta.txt
2018-09-12 13:19 - 2018-09-04 19:06 - 000835144 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2018-09-12 13:19 - 2018-09-04 19:06 - 000179808 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-12 13:06 - 2018-08-28 02:39 - 001491032 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2018-09-12 13:06 - 2018-08-28 00:46 - 001764408 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2018-09-12 13:06 - 2018-08-27 22:36 - 001311744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2018-09-12 13:06 - 2018-08-27 22:36 - 000340480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2018-09-12 13:06 - 2018-08-23 19:54 - 000289280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ks.sys
2018-09-12 13:06 - 2018-08-13 22:22 - 022374608 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2018-09-12 13:06 - 2018-08-13 22:19 - 019790752 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2018-09-12 13:06 - 2018-08-13 17:06 - 002530384 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2018-09-12 13:06 - 2018-08-13 17:03 - 001903744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2018-09-12 13:06 - 2018-08-13 16:32 - 001368680 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2018-09-12 13:06 - 2018-08-13 10:40 - 001754112 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2018-09-12 13:06 - 2018-08-13 10:39 - 001491968 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2018-09-12 13:06 - 2018-08-13 10:33 - 001085440 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2018-09-12 13:06 - 2018-08-12 16:04 - 002451808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2018-09-12 13:06 - 2018-08-12 13:31 - 002347520 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2018-09-12 13:06 - 2018-08-12 13:06 - 001556480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2018-09-12 13:06 - 2018-08-09 13:41 - 000073728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mpsdrv.sys
2018-09-12 13:06 - 2018-08-09 13:39 - 000148992 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2018-09-12 13:06 - 2018-07-29 10:44 - 001265664 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2018-09-12 13:06 - 2018-07-24 10:45 - 000685056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2018-09-12 13:06 - 2018-07-18 10:34 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2018-09-12 13:05 - 2018-08-13 10:30 - 000043520 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2018-09-12 13:05 - 2018-08-13 10:29 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2018-09-12 13:05 - 2018-08-09 14:40 - 000078336 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2018-09-12 13:05 - 2018-08-09 14:39 - 000113664 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2018-09-12 13:05 - 2018-08-09 13:59 - 000543232 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2018-09-12 13:05 - 2018-08-09 13:41 - 000096768 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2018-09-04 10:52 - 2018-07-24 14:50 - 006522344 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2018-09-04 10:52 - 2018-07-24 14:50 - 001488008 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2018-09-04 10:52 - 2018-07-24 14:50 - 000261408 _____ (Microsoft Corporation) C:\windows\system32\sppwinob.dll
2018-09-04 10:52 - 2018-07-06 14:14 - 000346112 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2018-09-04 10:52 - 2018-07-06 13:22 - 000299520 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2018-09-04 10:52 - 2018-07-05 20:17 - 001115648 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2018-09-04 10:52 - 2018-06-26 12:25 - 000425984 _____ (Microsoft Corporation) C:\windows\system32\PCPTpm12.dll
2018-09-04 10:52 - 2018-06-26 12:14 - 000367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\PCPTpm12.dll
2018-09-04 10:52 - 2018-06-21 10:31 - 001200640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2018-09-04 10:52 - 2018-06-21 10:30 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Globalization.dll
2018-09-04 10:52 - 2018-06-21 10:24 - 000513456 _____ C:\windows\SysWOW64\locale.nls
2018-09-04 10:52 - 2018-06-21 10:24 - 000513456 _____ C:\windows\system32\locale.nls
2018-08-31 00:36 - 2018-08-31 00:36 - 014919843 _____ C:\Users\Glauber Segalla\Desktop\Como ganhar infinitos pontos ou burlar o aplicativo Win PayPal gift card - YouTube.mp4
2018-08-28 01:37 - 2018-08-28 02:25 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\APPS PARA CELULAR
2018-08-28 01:31 - 2018-08-28 01:31 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\MultiPlayerManager
2018-08-28 00:16 - 2018-09-22 20:44 - 000002786 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2018-08-25 16:09 - 2018-08-25 16:09 - 000000066 _____ C:\Users\Glauber Segalla\inittk.ini
2018-08-25 16:07 - 2018-08-28 16:54 - 000000000 ____D C:\Users\Glauber Segalla\.android
2018-08-25 16:06 - 2018-08-28 16:53 - 000000000 ____D C:\Users\Glauber Segalla\vmlogs
2018-08-25 16:06 - 2018-08-28 16:53 - 000000000 ____D C:\Users\Glauber Segalla\.BigNox
2018-08-25 16:06 - 2018-08-25 16:07 - 000000000 ____D C:\Users\Glauber Segalla\Nox_share
2018-08-25 16:06 - 2018-08-25 16:06 - 000000045 _____ C:\Users\Glauber Segalla\nuuid.ini
2018-08-25 16:06 - 2018-08-25 16:06 - 000000041 _____ C:\Users\Glauber Segalla\inst.ini
2018-08-25 16:06 - 2018-08-25 16:06 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2018-08-25 16:03 - 2018-08-28 19:10 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\Nox
2018-08-24 20:00 - 2018-08-24 20:00 - 028750622 _____ C:\Users\Glauber Segalla\Desktop\Como Usar o WhatsApp no PC! (Não Precisa ter um celular para esse método!).mp4
2018-08-17 20:19 - 2018-08-17 20:19 - 032966397 _____ C:\Users\Glauber Segalla\Desktop\Como Instalar Aplicativos de Celular (Android) no PC! (Como Emular Android no Windows!) - YouTube.mp4
2018-08-16 12:49 - 2018-07-19 01:35 - 002902016 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-08-16 12:49 - 2018-07-19 01:33 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-08-16 12:49 - 2018-07-19 01:23 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-08-16 12:49 - 2018-07-19 01:22 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\hlink.dll
2018-08-16 12:49 - 2018-07-19 01:21 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-08-16 12:49 - 2018-07-19 01:03 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-08-16 12:49 - 2018-07-19 01:01 - 002295808 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2018-08-16 12:49 - 2018-07-19 00:55 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\hlink.dll
2018-08-16 12:49 - 2018-07-19 00:54 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2018-08-16 12:49 - 2018-07-19 00:47 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-08-16 12:49 - 2018-07-19 00:45 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-08-16 12:49 - 2018-07-19 00:43 - 002136064 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-08-16 12:49 - 2018-07-19 00:30 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2018-08-16 12:49 - 2018-07-19 00:28 - 002882048 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2018-08-16 12:49 - 2018-07-19 00:28 - 002059776 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2018-08-16 12:49 - 2018-07-19 00:28 - 000333312 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2018-08-16 12:49 - 2018-07-19 00:17 - 001049600 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2018-08-16 12:49 - 2018-07-07 15:33 - 001548632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2018-08-16 12:49 - 2018-07-07 14:05 - 004169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-08-16 12:49 - 2018-06-30 15:00 - 001113952 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2018-08-16 12:49 - 2018-06-24 12:11 - 000748544 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2018-08-16 12:49 - 2018-06-24 12:04 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2018-08-16 12:49 - 2018-06-19 10:38 - 003611136 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2018-08-16 12:49 - 2018-06-19 10:38 - 003321344 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2018-08-16 12:49 - 2018-06-19 10:31 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msiexec.exe
2018-08-16 12:49 - 2018-06-19 10:29 - 000065536 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2018-08-16 12:49 - 2018-06-16 12:03 - 002779136 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2018-08-16 12:49 - 2018-06-16 11:59 - 002464256 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2018-08-14 06:58 - 2018-08-14 06:58 - 000222864 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxNetLwf.sys
2018-08-14 06:58 - 2018-08-14 06:58 - 000213080 _____ (Oracle Corporation) C:\windows\system32\Drivers\VBoxNetAdp6.sys
2018-08-10 02:27 - 2018-08-10 12:25 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\ESTEIRA DE LANÇAMENTOS F15D
2018-08-09 12:35 - 2018-09-23 15:43 - 000538703 _____ C:\Users\Glauber Segalla\Desktop\Gmail - PROPOSTA CENOFISCO.pdf
2018-08-07 00:01 - 2018-08-07 00:01 - 000000000 ____D C:\Program Files\KeyboardNotification
2018-08-02 03:22 - 2018-08-02 03:20 - 000098680 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2018-07-28 14:16 - 2018-06-15 01:34 - 000923512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\refs.sys
2018-07-28 14:16 - 2018-06-14 23:28 - 000445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2018-07-28 14:16 - 2018-06-14 23:12 - 000477696 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2018-07-28 14:16 - 2018-06-14 23:00 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2018-07-28 14:16 - 2018-06-14 22:55 - 000840192 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2018-07-28 14:16 - 2018-06-14 22:43 - 000186880 _____ (Microsoft Corporation) C:\windows\system32\dpapisrv.dll
2018-07-28 14:16 - 2018-06-14 22:26 - 000514560 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2018-07-28 14:16 - 2018-06-14 22:22 - 000866304 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2018-07-28 14:16 - 2018-06-14 22:19 - 000399360 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2018-07-28 14:16 - 2018-06-08 15:47 - 000083456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-07-20 20:10 - 2018-08-07 20:16 - 000000280 _____ C:\Users\Glauber Segalla\Desktop\COMO PROCURAR ERROS NO WINDOWS E CORRIGI-LOS RAPIDAMENTE.txt
2018-07-14 15:37 - 2018-03-26 20:24 - 000029352 _____ (Microsoft Corporation) C:\windows\SysWOW64\aspnet_counters.dll
2018-07-14 15:37 - 2018-03-26 20:24 - 000019088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr100_clr0400.dll
2018-07-14 15:37 - 2018-03-26 20:17 - 000030888 _____ (Microsoft Corporation) C:\windows\system32\aspnet_counters.dll
2018-07-14 15:37 - 2018-03-26 20:17 - 000019088 _____ (Microsoft Corporation) C:\windows\system32\msvcr100_clr0400.dll
2018-07-12 13:18 - 2018-06-11 13:36 - 003119616 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2018-07-12 13:18 - 2018-06-09 13:26 - 002712064 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2018-07-12 13:18 - 2018-06-08 14:54 - 000656384 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2018-07-12 13:17 - 2018-06-20 15:48 - 000095744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2018-07-12 13:17 - 2018-06-20 15:48 - 000027136 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fxppm.sys
2018-07-12 13:17 - 2018-06-20 13:58 - 000098816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2018-07-12 13:17 - 2018-06-20 13:58 - 000098816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2018-07-12 13:17 - 2018-06-20 13:58 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2018-07-12 13:17 - 2018-06-08 15:26 - 000440832 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2018-07-12 13:17 - 2018-06-08 14:53 - 000252416 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2018-07-12 13:17 - 2018-06-08 14:07 - 000404992 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2018-07-12 13:17 - 2018-06-08 13:44 - 000499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2018-07-12 13:17 - 2018-05-24 18:29 - 000428888 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2018-07-12 13:10 - 2018-06-08 10:15 - 002860032 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2018-07-12 13:10 - 2018-06-08 10:15 - 001602048 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000783872 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000612352 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000470016 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000443392 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2018-07-12 13:10 - 2018-06-08 10:15 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2018-07-12 13:09 - 2018-06-08 10:15 - 000301056 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2018-10-10 17:01 - 2017-02-16 19:34 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\CutePDF Writer
2018-10-10 16:58 - 2017-02-08 23:31 - 000000000 ___RD C:\Users\Glauber Segalla\AppData\Roaming\eM Client
2018-10-10 16:41 - 2016-01-07 19:04 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\ClassicShell
2018-10-10 16:38 - 2013-08-22 11:45 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-10-10 13:02 - 2015-04-22 15:14 - 000065536 _____ C:\windows\system32\spu_storage.bin
2018-10-10 12:24 - 2017-08-02 12:56 - 000003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1751273365-4100181127-1669670999-1001
2018-10-10 02:36 - 2018-03-13 17:27 - 000004530 _____ C:\windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-10-10 02:36 - 2017-01-25 00:38 - 000004360 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2018-10-10 02:36 - 2013-08-22 12:36 - 000000000 ____D C:\windows\system32\Macromed
2018-10-10 02:35 - 2013-08-22 12:36 - 000000000 ____D C:\windows\SysWOW64\Macromed
2018-10-10 02:25 - 2016-01-05 14:06 - 000000000 ____D C:\Users\Glauber Segalla
2018-10-10 02:21 - 2013-08-22 12:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-10-10 02:17 - 2013-08-22 12:36 - 000000000 ____D C:\windows\registration
2018-10-10 01:01 - 2017-01-16 17:18 - 000000000 ___RD C:\Users\Glauber Segalla\Desktop\PROGRAMAS SALVOS NA ÁREA DE TRABALHO
2018-10-09 01:40 - 2017-12-07 17:07 - 000057856 _____ C:\Users\Glauber Segalla\Desktop\CARTOLA.xls
2018-10-08 01:05 - 2016-11-20 13:29 - 000000000 ____D C:\Users\Glauber Segalla\AppData\LocalLow\Mozilla
2018-10-07 03:06 - 2017-09-17 15:04 - 000003168 _____ C:\windows\System32\Tasks\HPCeeScheduleForGlauber
2018-10-07 03:06 - 2017-09-17 15:04 - 000000350 _____ C:\windows\Tasks\HPCeeScheduleForGlauber.job
2018-10-06 16:25 - 2018-06-27 01:34 - 000000000 ____D C:\Users\Glauber Segalla\Desktop\NOVO PASSO A PASSO DA F15D
2018-10-06 11:46 - 2018-01-10 16:39 - 000036200 _____ C:\Users\Glauber Segalla\Desktop\F15D hashtags com emojis.txt
2018-10-06 10:27 - 2016-01-11 21:43 - 000000000 ___RD C:\Users\Glauber Segalla\Desktop\Compartilhada
2018-10-05 13:01 - 2013-08-22 10:25 - 000262144 ___SH C:\windows\system32\config\BBI
2018-10-05 11:01 - 2013-08-22 10:36 - 000000000 ____D C:\windows\Inf
2018-10-02 19:54 - 2017-01-19 17:27 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\CrashDumps
2018-10-02 16:27 - 2016-01-07 19:25 - 000000000 ____D C:\Users\Glauber Segalla\.VirtualBox
2018-10-01 19:08 - 2016-01-14 19:04 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Roaming\Mozilla
2018-10-01 19:08 - 2016-01-14 19:04 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\Mozilla
2018-10-01 18:24 - 2016-01-19 18:54 - 000000000 ____D C:\Program Files (x86)\RegSeeker
2018-10-01 18:24 - 2013-08-22 12:36 - 000000000 ____D C:\windows\System
2018-09-28 11:06 - 2016-01-17 18:11 - 000000000 ____D C:\SisAdm
2018-09-24 19:38 - 2013-08-22 12:36 - 000000000 ____D C:\windows\rescache
2018-09-22 20:44 - 2016-10-18 16:51 - 000000844 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-09-22 11:03 - 2013-08-22 12:20 - 000000000 ____D C:\windows\CbsTemp
2018-09-19 17:01 - 2016-07-29 19:55 - 000002210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-19 11:11 - 2016-01-05 14:06 - 000000000 ____D C:\Users\Glauber Segalla\AppData\Local\Packages
2018-09-12 13:31 - 2013-08-22 12:36 - 000000000 ___RD C:\windows\ToastData
2018-09-12 13:14 - 2016-01-14 18:11 - 000000000 ____D C:\windows\system32\MRT
2018-09-12 13:07 - 2016-01-14 18:11 - 139184408 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-09-10 11:22 - 2016-10-18 16:51 - 000000000 ____D C:\Program Files\CCleaner
==================== Arquivos na raiz de alguns diretórios =======
2018-10-10 02:00 - 2018-10-10 02:00 - 000011568 _____ () C:\Users\Glauber Segalla\AppData\Local\InstallationConfiguration.xml
2018-10-10 02:00 - 2018-10-10 02:00 - 000140800 _____ () C:\Users\Glauber Segalla\AppData\Local\installer.dat
2016-02-13 16:51 - 2016-02-13 16:51 - 000000017 _____ () C:\Users\Glauber Segalla\AppData\Local\resmon.resmoncfg
2018-10-10 02:00 - 2018-10-10 02:00 - 001413120 _____ () C:\Users\Glauber Segalla\AppData\Local\sham.db
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\windows\explorer.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\windows\system32\services.exe => O arquivo é assinado digitalmente
C:\windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2018-10-09 17:40
==================== Fim de FRST.txt ============================