Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 15-03-2017 Executado por malu__000 (ATENÇÃO: O usuário não é o administrador) em MARIA (29-03-2017 13:34:04) Executando a partir de C:\Users\malu__000\Downloads Perfis Carregados: malu__000 & Administrador (Perfis Disponíveis: malu__000 & Administrador) Platform: Windows 8.1 (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) Falha ao acessar processo -> smss.exe Falha ao acessar processo -> csrss.exe Falha ao acessar processo -> wininit.exe Falha ao acessar processo -> services.exe Falha ao acessar processo -> lsass.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> svchost.exe (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> igfxCUIService.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> ClassicShellService.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> AvastSvc.exe Falha ao acessar processo -> spoolsv.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> armsvc.exe Falha ao acessar processo -> AppleMobileDeviceService.exe Falha ao acessar processo -> mDNSResponder.exe Falha ao acessar processo -> btwdins.exe Falha ao acessar processo -> HeciServer.exe Falha ao acessar processo -> PDFProFiltSrvPP.exe Falha ao acessar processo -> Seagate.Dashboard.DASWindowsService.exe Falha ao acessar processo -> MobileService.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> core.exe Falha ao acessar processo -> WmiPrvSE.exe Falha ao acessar processo -> dasHost.exe Falha ao acessar processo -> OSPPSVC.EXE Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> aswidsagenta.exe Falha ao acessar processo -> PresentationFontCache.exe Falha ao acessar processo -> SearchIndexer.exe Falha ao acessar processo -> IAStorDataMgrSvc.exe Falha ao acessar processo -> GoogleCrashHandler.exe Falha ao acessar processo -> IntelMeFWService.exe Falha ao acessar processo -> jhi_service.exe Falha ao acessar processo -> GoogleCrashHandler64.exe Falha ao acessar processo -> LMS.exe Falha ao acessar processo -> NASvc.exe Falha ao acessar processo -> taskhost.exe Falha ao acessar processo -> iPodService.exe Falha ao acessar processo -> csrss.exe Falha ao acessar processo -> winlogon.exe Falha ao acessar processo -> dwm.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (A.E.T. Europe B.V.) C:\Windows\System32\aetcrss1.exe (GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe (Apple Inc.) C:\Program Files (x86)\iTunesHelper.exe (Spotify Ltd) C:\Users\malu__000\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Spotify Ltd) C:\Users\malu__000\AppData\Roaming\Spotify\Spotify.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (CompSoft) C:\Program Files (x86)\DoroPDFWriter\DoroServer.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Spotify Ltd) C:\Users\malu__000\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) C:\Users\malu__000\AppData\Roaming\Spotify\Spotify.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Spotify Ltd) C:\Users\malu__000\AppData\Roaming\Spotify\Spotify.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe Falha ao acessar processo -> svchost.exe Falha ao acessar processo -> svchost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Falha ao acessar processo -> SearchProtocolHost.exe Falha ao acessar processo -> SearchFilterHost.exe ==================== Registro (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-19] (Realtek Semiconductor) HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [534232 2013-09-04] (Broadcom Corporation.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-04-04] (Synaptics Incorporated) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation) HKLM\...\Run: [CertificateRegistration] => C:\Windows\system32\aetcrss1.exe [25600 2013-03-04] (A.E.T. Europe B.V.) HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [954416 2017-01-18] (GAS Tecnologia LTDA) HKLM\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunesHelper.exe [303928 2017-03-22] (Apple Inc.) HKLM-x32\...\Run: [DoroServer] => C:\Program Files (x86)\DoroPDFWriter\DoroServer.exe [204800 2014-06-23] (CompSoft) HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-08] (Nuance Communications, Inc.) HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-08] (Nuance Communications, Inc.) HKLM-x32\...\Run: [PPort12reminder] => "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini" HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.) HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM-x32\...\Run: [DBAgent] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe [1563424 2016-04-05] (Seagate Technology LLC) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-03-28] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation) Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-27] (Banco do Brasil) HKU\S-1-5-21-1914102242-455246035-2391317491-1004\...\Run: [Spotify Web Helper] => C:\Users\malu__000\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-03-28] (Spotify Ltd) HKU\S-1-5-21-1914102242-455246035-2391317491-1004\...\Run: [Spotify] => C:\Users\malu__000\AppData\Roaming\Spotify\Spotify.exe [7089776 2017-03-28] (Spotify Ltd) ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1947872 2016-06-27] (Banco do Brasil) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-28] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-28] (AVAST Software) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12] (IvoSoft) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12] (IvoSoft) Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk [2015-02-11] ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\..\Interfaces\{08875484-2AD2-445D-A048-8EF3A64381CF}: [DhcpNameServer] 201.82.0.66 201.82.0.61 Tcpip\..\Interfaces\{8D7D59FE-4645-4C34-B539-3645AD4C849D}: [DhcpNameServer] 192.168.208.1 Internet Explorer: ================== HKU\S-1-5-21-1914102242-455246035-2391317491-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp URLSearchHook: [S-1-5-21-1914102242-455246035-2391317491-500] ATENÇÃO => A URLSearchHook Padrão está ausente SearchScopes: HKLM-x32 -> DefaultScope valor está ausente BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12] (IvoSoft) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-03-28] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO: ClassicIE9BHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll [2013-04-12] (IvoSoft) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12] (IvoSoft) BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-16] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-03-28] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2016-06-27] (Banco do Brasil) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-16] (Oracle Corporation) BHO-x32: ClassicIE9BHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll [2013-04-12] (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12] (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12] (IvoSoft) FireFox: ======== FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48 FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-03-28] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-03-28] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48 FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-17] () FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-17] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [1999-12-31] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [1999-12-31] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-16] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-16] (Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-08-10] (Nero AG) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-28] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-01-17] (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default [2017-03-29] CHR Extension: (Central Park) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\adbpjekmpoknbhnoidhbmhgihgmcnnaa [2017-03-28] CHR Extension: (Adobe Acrobat) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-28] CHR Extension: (Avast SafePrice) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-28] CHR Extension: (Avast Online Security) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-03-28] CHR Extension: (Certisign) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjoehgfmpefldljiipnmgnfmcbfjkaad [2017-03-28] CHR Extension: (Skype) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-03-28] CHR Extension: (Bleaner) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2017-03-28] CHR Extension: (EasyDocMerge) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp [2017-03-28] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-28] CHR Extension: (Chrome Media Router) - C:\Users\malu__000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-28] CHR HKU\S-1-5-21-1914102242-455246035-2391317491-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25] ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7147320 2017-03-28] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-03-28] (AVAST Software) S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Arquivo não assinado] R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-04-12] (IvoSoft) [Arquivo não assinado] R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [631520 2016-06-27] (GAS Tecnologia) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Arquivo não assinado] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 1999-12-31] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 1999-12-31] (Intel Corporation) R2 lmhosts; C:\Windows\system32\svchost.exe [37768 2013-08-22] (Microsoft Corporation) R2 lmhosts; C:\Windows\SysWOW64\svchost.exe [31552 2013-08-22] (Microsoft Corporation) R2 NlaSvc; C:\Windows\System32\svchost.exe [37768 2013-08-22] (Microsoft Corporation) R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [31552 2013-08-22] (Microsoft Corporation) R2 nsi; C:\Windows\system32\svchost.exe [37768 2013-08-22] (Microsoft Corporation) R2 nsi; C:\Windows\SysWOW64\svchost.exe [31552 2013-08-22] (Microsoft Corporation) R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.) R2 Seagate Dashboard Services; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [16216 2016-04-05] (Seagate Technology LLC) R2 Seagate MobileBackup Service; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\MobileService.exe [143656 2016-04-05] (Seagate Technology LLC) S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [977088 2014-03-02] () [Arquivo não assinado] R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [954416 2017-01-18] (GAS Tecnologia LTDA) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [309272 2017-03-28] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-03-28] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334600 2017-03-28] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-03-28] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-03-28] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32088 2017-03-28] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [126600 2017-03-28] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [100640 2017-03-28] (AVAST Software) R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-03-28] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [993608 2017-03-28] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [548928 2017-03-28] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162528 2017-03-28] (AVAST Software) R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [337592 2017-03-28] (AVAST Software) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2017-03-29] (GAS Tecnologia) R3 GBPRCM; C:\PROGRAM FILES (X86)\GBPLUGIN\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia) S3 GemCCID; C:\Windows\system32\DRIVERS\GemCCID.sys [130944 2014-11-10] (Gemalto) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 1999-12-31] (Intel Corporation) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-04-04] (Synaptics Incorporated) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) S3 SzCCID; C:\Windows\system32\DRIVERS\SzCCID.sys [40448 2011-01-21] (Generic) R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2014-10-31] (GAS Tecnologia LTDA) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35856 2013-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [236888 2013-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation) S1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [28376 2016-11-11] (GAS Tecnologia) R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [36984 2016-11-11] (GAS Tecnologia) S1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [25184 2016-11-11] (GAS Tecnologia) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [25184 2016-11-11] (GAS Tecnologia) S0 gbpddreg; system32\drivers\gbpddreg64.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um Mês Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-03-29 13:34 - 2017-03-29 13:34 - 00024483 _____ C:\Users\malu__000\Downloads\FRST.txt 2017-03-29 13:33 - 2017-03-29 13:34 - 00000000 ____D C:\FRST 2017-03-29 13:33 - 2017-03-29 13:33 - 02424832 _____ (Farbar) C:\Users\malu__000\Downloads\FRST64.exe 2017-03-29 13:31 - 2017-03-29 13:31 - 00904176 _____ C:\Users\malu__000\Downloads\dllkit-setup.exe 2017-03-29 13:24 - 2017-03-29 13:24 - 00603348 _____ C:\Users\malu__000\Downloads\Windows8.1-KB2999226-x86.msu 2017-03-29 13:19 - 2017-03-29 13:19 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\DLL-files.com 2017-03-29 13:19 - 2017-03-29 13:19 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\DFXCT 2017-03-29 13:19 - 2017-03-29 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client 2017-03-29 13:19 - 2017-03-29 13:19 - 00000000 ____D C:\Program Files (x86)\DLL-Files.com Client 2017-03-29 13:17 - 2017-03-29 13:17 - 02786824 _____ (DLL-Files.com Client ) C:\Users\malu__000\Downloads\clientsetup_d-0.exe 2017-03-29 03:40 - 2017-03-29 03:40 - 00001690 _____ C:\Users\Public\Desktop\iTunes.lnk 2017-03-29 03:40 - 2017-03-29 03:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2017-03-29 03:40 - 2017-03-29 03:40 - 00000000 ____D C:\Program Files (x86)\iTunesMiniPlayer.Resources 2017-03-29 03:40 - 2017-03-29 03:40 - 00000000 ____D C:\Program Files (x86)\iTunesHelper.Resources 2017-03-29 03:40 - 2017-03-29 03:40 - 00000000 ____D C:\Program Files (x86)\iTunes.Resources 2017-03-29 03:39 - 2017-03-29 03:40 - 00000000 ____D C:\Program Files (x86)\WebKit.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files\iPod 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\MediaAccessibility.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\JavaScriptCore.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\Foundation.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\CoreText.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\CoreMedia.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\CoreGraphics.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\CoreFoundation.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\ColorSync.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\CFNetwork.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\CD Configuration 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\AVFoundationCF.resources 2017-03-29 03:39 - 2017-03-29 03:39 - 00000000 ____D C:\Program Files (x86)\AuthKitWin.resources 2017-03-29 03:35 - 2017-03-29 03:36 - 257641800 _____ (Apple Inc.) C:\Users\malu__000\Downloads\iTunes64Setup.exe 2017-03-29 03:34 - 2017-03-29 03:34 - 00000000 ____D C:\Users\Todos os Usuários\SWCUTemp 2017-03-29 03:34 - 2017-03-29 03:34 - 00000000 ____D C:\ProgramData\SWCUTemp 2017-03-29 03:12 - 2017-03-29 03:12 - 00000000 ____D C:\Users\Administrador\AppData\Local\Apple 2017-03-29 03:12 - 2017-03-29 03:12 - 00000000 ____D C:\Program Files (x86)\Apple Software Update 2017-03-29 02:50 - 2017-03-29 02:50 - 00000000 ____D C:\Users\malu__000\AppData\Local\Apple Computer 2017-03-28 18:41 - 2017-03-28 18:41 - 00001018 _____ C:\Users\malu__000\Desktop\popcorn-time-0-3-10.lnk 2017-03-28 18:40 - 2017-03-28 18:40 - 00000000 ____D C:\Users\malu__000\AppData\Local\Chromium 2017-03-28 18:39 - 2017-03-28 18:39 - 00000000 ____D C:\Users\malu__000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time 2017-03-28 18:37 - 2017-03-28 18:40 - 00000000 ____D C:\Users\malu__000\AppData\Local\Popcorn-Time 2017-03-28 17:50 - 2017-03-28 17:57 - 61757061 _____ (Popcorn Time) C:\Users\malu__000\Downloads\popcorn-time-0-3-10.exe 2017-03-28 16:05 - 2017-03-28 16:05 - 00000000 ____D C:\Users\malu__000\AppData\LocalLow\Adobe 2017-03-28 16:05 - 2017-03-28 16:05 - 00000000 ____D C:\Users\malu__000\AppData\Local\Adobe 2017-03-28 15:01 - 2017-03-29 13:15 - 00000000 ____D C:\Users\malu__000\AppData\Local\Spotify 2017-03-28 15:01 - 2017-03-28 15:01 - 00001833 _____ C:\Users\malu__000\Desktop\Spotify.lnk 2017-03-28 15:01 - 2017-03-28 15:01 - 00001819 _____ C:\Users\malu__000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2017-03-28 14:54 - 2017-03-29 13:16 - 00000000 ____D C:\Users\malu__000\AppData\Roaming\Spotify 2017-03-28 14:53 - 2017-03-28 14:53 - 00276176 _____ (Spotify Ltd) C:\Users\malu__000\Downloads\SpotifySetup.exe 2017-03-28 14:49 - 2017-03-28 14:49 - 00000000 ____D C:\Users\Administrador\AppData\Local\ElevatedDiagnostics 2017-03-28 14:47 - 2017-03-28 14:47 - 00007605 _____ C:\Users\Administrador\AppData\Local\Resmon.ResmonCfg 2017-03-28 14:34 - 2017-03-28 16:17 - 00000000 ____D C:\Users\malu__000\Documents\Faculdade 2017-03-28 14:34 - 2017-03-26 23:30 - 00154657 _____ C:\Users\malu__000\Documents\passagem.pdf 2017-03-28 14:34 - 2017-03-22 18:40 - 00146275 _____ C:\Users\malu__000\Documents\CV Maria Luísa .pdf 2017-03-28 14:18 - 2017-03-28 14:18 - 00002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-03-28 14:18 - 2017-03-28 14:18 - 00002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-03-28 14:18 - 2017-03-28 14:18 - 00000000 ____D C:\Users\malu__000\AppData\Roaming\AVAST Software 2017-03-28 14:18 - 2017-03-28 14:18 - 00000000 ____D C:\Users\malu__000\AppData\Local\CEF 2017-03-28 14:15 - 2017-03-28 14:15 - 00000000 ____D C:\Users\malu__000\AppData\Local\Deployment 2017-03-28 14:15 - 2017-03-28 14:15 - 00000000 ____D C:\Users\malu__000\AppData\Local\Apps\2.0 2017-03-28 14:13 - 2017-03-29 13:14 - 00000000 __RDO C:\Users\malu__000\SkyDrive 2017-03-28 14:11 - 2017-03-29 03:04 - 00000000 ____D C:\Users\malu__000\AppData\Roaming\Apple Computer 2017-03-28 14:11 - 2017-03-28 14:11 - 00000000 ____D C:\Users\malu__000\Documents\Pasta de trocas do Bluetooth 2017-03-28 14:11 - 2017-03-28 14:11 - 00000000 ____D C:\Users\malu__000\AppData\Local\Broadcom 2017-03-28 14:10 - 2017-03-29 02:54 - 00000000 ____D C:\Users\malu__000\AppData\Local\PackageStaging 2017-03-28 14:08 - 2017-03-29 02:54 - 00000000 ____D C:\Users\malu__000\AppData\Local\Packages 2017-03-28 14:08 - 2017-03-28 18:42 - 00000000 ____D C:\Users\malu__000 2017-03-28 14:08 - 2017-03-28 16:05 - 00000000 ____D C:\Users\malu__000\AppData\Roaming\Adobe 2017-03-28 14:08 - 2017-03-28 14:47 - 00000000 ____D C:\Users\malu__000\AppData\Local\VirtualStore 2017-03-28 14:08 - 2017-03-28 14:46 - 00000000 ____D C:\Users\malu__000\AppData\Local\Google 2017-03-28 14:08 - 2017-03-28 14:08 - 00001418 _____ C:\Users\malu__000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-03-28 14:08 - 2017-03-28 14:08 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-03-28 14:08 - 2017-03-28 14:08 - 00000020 ___SH C:\Users\malu__000\ntuser.ini 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Modelos 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Meus Documentos 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Menu Iniciar 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Documents\Minhas Músicas 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Documents\Minhas Imagens 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Documents\Meus Vídeos 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Dados de Aplicativos 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Configurações Locais 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\AppData\Local\Histórico 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\AppData\Local\Dados de Aplicativos 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Ambiente de Rede 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 _SHDL C:\Users\malu__000\Ambiente de Impressão 2017-03-28 14:08 - 2017-03-28 14:08 - 00000000 __SHD C:\Users\malu__000\IntelGraphicsProfiles 2017-03-28 14:08 - 2015-09-30 10:15 - 00000000 ____D C:\Users\malu__000\AppData\Roaming\TuneUp Software 2017-03-28 14:02 - 2017-03-28 14:06 - 00000000 ____D C:\Users\Administrador\Desktop\MARIA 2017-03-28 13:26 - 2017-03-28 13:26 - 00000000 ____D C:\Users\User.MARIA\AppData\Roaming\AVAST Software 2017-03-28 13:21 - 2017-03-28 13:21 - 00000456 _____ C:\Users\Administrador\Desktop\Meu computador - Atalho.lnk 2017-03-28 13:20 - 2017-03-28 13:20 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\FLEXnet 2017-03-28 13:06 - 2017-03-28 13:06 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\AVAST Software 2017-03-28 13:06 - 2017-03-28 13:06 - 00000000 ____D C:\Users\Administrador\AppData\Local\CEF 2017-03-28 13:01 - 2017-03-28 13:37 - 00000000 ____D C:\Users\User.MARIA 2017-03-28 12:55 - 2017-03-28 12:56 - 00000000 ____D C:\Users\Administrador\AppData\Local\Packages 2017-03-28 12:55 - 2017-03-28 12:55 - 00001418 _____ C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-03-28 12:55 - 2017-03-28 12:55 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\Apple Computer 2017-03-28 12:55 - 2017-03-28 12:55 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\Adobe 2017-03-28 12:55 - 2017-03-28 12:55 - 00000000 ____D C:\Users\Administrador\AppData\Local\Broadcom 2017-03-28 12:54 - 2017-03-28 15:20 - 00000000 ____D C:\Users\Administrador 2017-03-28 12:54 - 2017-03-28 12:55 - 00000000 __SHD C:\Users\Administrador\IntelGraphicsProfiles 2017-03-28 12:54 - 2017-03-28 12:54 - 00000020 ___SH C:\Users\Administrador\ntuser.ini 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Modelos 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Meus Documentos 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Menu Iniciar 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Documents\Minhas Músicas 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Documents\Minhas Imagens 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Documents\Meus Vídeos 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Dados de Aplicativos 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Configurações Locais 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\AppData\Local\Histórico 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\AppData\Local\Dados de Aplicativos 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Ambiente de Rede 2017-03-28 12:54 - 2017-03-28 12:54 - 00000000 _SHDL C:\Users\Administrador\Ambiente de Impressão 2017-03-28 12:54 - 2015-09-30 10:15 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\TuneUp Software 2017-03-28 12:54 - 2015-05-14 15:41 - 00000000 ____D C:\Users\Administrador\AppData\Local\Google 2017-03-28 12:46 - 2017-03-28 13:00 - 00000000 ____D C:\Users\TEMP.MARIA.000 2017-03-28 00:22 - 2017-03-28 00:22 - 00398408 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-03-28 00:15 - 2017-03-28 00:29 - 00000000 ____D C:\Users\TEMP.MARIA 2017-03-26 23:57 - 2017-03-27 00:09 - 00000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2017-03-22 19:10 - 2017-03-22 19:10 - 40766264 _____ (Apple Inc.) C:\Program Files (x86)\iTunes.exe 2017-03-22 19:10 - 2017-03-22 19:10 - 18175808 _____ (GEAR-Software) C:\Program Files (x86)\gwrks64.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 03547448 _____ (Apple Inc.) C:\Program Files (x86)\iPodUpdaterExt.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 03370128 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_dsp.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 02199696 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_manager.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 00870544 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_musicid.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 00589112 _____ (Apple Inc.) C:\Program Files (x86)\iTunesAdmin.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 00569664 _____ (GEAR-Software) C:\Program Files (x86)\gwlangen.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 00325776 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_submit.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 00303928 _____ (Apple Inc.) C:\Program Files (x86)\iTunesHelper.exe 2017-03-22 19:10 - 2017-03-22 19:10 - 00180536 _____ (Apple Inc.) C:\Program Files (x86)\iTunesMiniPlayer.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 00025400 _____ (Apple Inc.) C:\Program Files (x86)\iTunesSystemInfo.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 26292536 _____ (The ICU Project) C:\Program Files (x86)\icudt55.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 22580024 _____ (Apple Inc.) C:\Program Files (x86)\WebKit.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 09112888 _____ (Apple Inc.) C:\Program Files (x86)\CoreAudioToolbox.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 01987896 _____ (The ICU Project) C:\Program Files (x86)\libicuin.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 01358136 _____ (The ICU Project) C:\Program Files (x86)\libicuuc.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 01354040 _____ C:\Program Files (x86)\libxml2.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 01182520 _____ (Apple Inc.) C:\Program Files (x86)\CoreText.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00418104 _____ (Apple Inc.) C:\Program Files (x86)\APSDaemon_main.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00310072 _____ (Apple Inc.) C:\Program Files (x86)\libtidy.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00096056 _____ C:\Program Files (x86)\libexslt.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00092472 _____ C:\Program Files (x86)\zlib1.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00087352 _____ (Apple Inc.) C:\Program Files (x86)\ASL.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00083768 _____ (Apple Inc.) C:\Program Files (x86)\YSLoader.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 00075576 _____ (Apple Inc.) C:\Program Files (x86)\ApplePushService.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00047928 _____ (Apple Inc.) C:\Program Files (x86)\defaults.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 00041272 _____ (Apple Inc.) C:\Program Files (x86)\libcache.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00039224 _____ (Apple Inc.) C:\Program Files (x86)\YSIconStamper.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 00034104 _____ (Apple Inc.) C:\Program Files (x86)\plutil.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 00025912 _____ (Apple Inc.) C:\Program Files (x86)\AppleVersions.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 00023864 _____ (Apple Inc.) C:\Program Files (x86)\VersionCheckMe.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 08454968 _____ (Apple Inc.) C:\Program Files (x86)\JavaScriptCore.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 07683384 _____ (Apple Inc.) C:\Program Files (x86)\CoreMedia.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 07575352 _____ (Apple Inc.) C:\Program Files (x86)\CoreLSKD.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 05343032 _____ (Apple Inc.) C:\Program Files (x86)\CoreGraphics.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 02720056 _____ (Apple Inc.) C:\Program Files (x86)\Foundation.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 02558264 _____ (Apple Inc.) C:\Program Files (x86)\CFNetwork.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 02242360 _____ (Apple Inc.) C:\Program Files (x86)\CoreFoundation.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 01839928 _____ (Apple Inc.) C:\Program Files (x86)\QuartzCore.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 01593144 _____ (Apple, Inc.) C:\Program Files (x86)\secd.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 01473848 _____ (Apple Inc.) C:\Program Files (x86)\CoreADI.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00839992 _____ (Apple Inc.) C:\Program Files (x86)\SQLite3.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00741176 _____ (Apple Inc.) C:\Program Files (x86)\WTF.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00405304 _____ (Apple Inc.) C:\Program Files (x86)\AVFoundationCF.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00236856 _____ C:\Program Files (x86)\libxslt.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00216376 _____ (Apple Inc.) C:\Program Files (x86)\objc.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00190776 _____ (Apple Inc.) C:\Program Files (x86)\CoreVideo.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00132920 _____ (Apple Inc.) C:\Program Files (x86)\WebKitQuartzCoreAdditions.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00097080 _____ (Apple Inc.) C:\Program Files (x86)\libdispatch.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00085304 _____ (Apple Inc.) C:\Program Files (x86)\APSDaemon.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 00082232 _____ (Open Source Software community LGPL) C:\Program Files (x86)\pthreadVC2.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00068408 _____ (Apple Inc.) C:\Program Files (x86)\MediaAccessibility.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00040760 _____ (Apple Inc.) C:\Program Files (x86)\YSCrashDump.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00031032 _____ (Apple Inc.) C:\Program Files (x86)\YSUtilities.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 00000292 _____ C:\Program Files (x86)\InvertColorPS.cso 2017-03-21 00:02 - 2017-03-21 00:02 - 00002081 _____ C:\Users\User\Desktop\Popcorn-Time.lnk 2017-03-21 00:01 - 2017-03-21 00:01 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time 2017-03-21 00:00 - 2017-03-22 03:11 - 00000000 ____D C:\Users\User\AppData\Local\Popcorn-Time 2017-03-02 04:13 - 2017-03-02 04:13 - 31629112 _____ (Apple Inc.) C:\Program Files (x86)\CoreFP.dll 2017-03-01 12:14 - 2017-03-09 16:42 - 00000000 ____D C:\Users\User\AppData\Roaming\Apple Computer 2017-03-01 12:14 - 2017-03-01 12:14 - 00000000 ____D C:\Users\User\AppData\Local\Apple Computer 2017-03-01 12:08 - 2017-03-29 03:12 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2017-03-01 12:08 - 2017-03-01 12:08 - 00000000 ____D C:\Users\User\AppData\Local\Apple 2017-03-01 12:07 - 2017-03-29 03:05 - 00000000 ____D C:\Program Files\Common Files\Apple 2017-03-01 12:07 - 2017-03-01 12:08 - 00000000 ____D C:\Users\Todos os Usuários\Apple 2017-03-01 12:07 - 2017-03-01 12:08 - 00000000 ____D C:\ProgramData\Apple 2017-03-01 12:07 - 2017-03-01 12:08 - 00000000 ____D C:\Program Files\Bonjour 2017-03-01 12:07 - 2017-03-01 12:08 - 00000000 ____D C:\Program Files (x86)\Bonjour ==================== Um Mês Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-03-29 13:34 - 2015-08-23 18:53 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys 2017-03-29 13:33 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps 2017-03-29 13:33 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\AppReadiness 2017-03-29 13:21 - 2014-12-23 20:40 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin 2017-03-29 13:21 - 2014-12-23 20:40 - 00000000 ____D C:\ProgramData\GbPlugin 2017-03-29 13:16 - 2013-08-22 12:20 - 00000000 ____D C:\Windows\CbsTemp 2017-03-29 03:35 - 2016-05-16 11:01 - 00001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-03-29 03:19 - 2014-12-23 20:40 - 00000000 ____D C:\Program Files (x86)\GbPlugin 2017-03-29 03:18 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-03-28 15:35 - 2014-12-23 18:29 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-03-28 14:18 - 2015-03-17 08:35 - 00000000 ____D C:\Program Files (x86)\Google 2017-03-28 00:23 - 2016-01-06 13:08 - 00548928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.149067140620309 2017-03-28 00:23 - 2016-01-06 13:08 - 00548928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2017-03-28 00:23 - 2016-01-06 13:08 - 00337592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys 2017-03-28 00:22 - 2016-05-12 12:04 - 00032088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2017-03-28 00:22 - 2016-01-06 13:08 - 00993608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2017-03-28 00:22 - 2016-01-06 13:08 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.149067140321804 2017-03-28 00:22 - 2016-01-06 13:08 - 00337592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.149067140426506 2017-03-28 00:22 - 2016-01-06 13:08 - 00162528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2017-03-28 00:22 - 2016-01-06 13:08 - 00126600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2017-03-28 00:22 - 2016-01-06 13:08 - 00100640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-03-28 00:22 - 2016-01-06 13:08 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-03-28 00:22 - 2016-01-06 13:08 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-03-28 00:21 - 2017-02-16 20:38 - 00334600 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys 2017-03-28 00:21 - 2017-02-16 20:38 - 00309272 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys 2017-03-28 00:21 - 2017-02-16 20:38 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys 2017-03-28 00:21 - 2017-02-16 20:38 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys 2017-03-28 00:12 - 2016-10-27 16:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-03-28 00:02 - 2017-02-18 12:43 - 00000000 ____D C:\Users\User\AppData\Local\Spotify 2017-03-28 00:02 - 2017-02-18 12:42 - 00000000 ____D C:\Users\User\AppData\Roaming\Spotify 2017-03-28 00:01 - 2017-02-18 12:32 - 00000000 __RDO C:\Users\User\SkyDrive 2017-03-26 23:56 - 2014-12-22 13:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-03-25 23:25 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\system32\NDF 2017-03-25 01:22 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf 2017-03-23 01:07 - 2014-12-22 12:49 - 01800588 _____ C:\Windows\system32\PerfStringBackup.INI 2017-03-23 01:07 - 2013-08-31 13:51 - 00775938 _____ C:\Windows\system32\prfh0416.dat 2017-03-23 01:07 - 2013-08-31 13:51 - 00159030 _____ C:\Windows\system32\prfc0416.dat 2017-03-17 14:41 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-03-17 14:41 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\system32\Macromed 2017-03-01 14:33 - 2016-01-06 08:38 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-03-01 12:13 - 2014-12-22 14:32 - 00000000 ____D C:\Users\Todos os Usuários\Apple Computer 2017-03-01 12:13 - 2014-12-22 14:32 - 00000000 ____D C:\ProgramData\Apple Computer ==================== Arquivos na raiz de alguns diretórios ======= 2016-10-19 10:12 - 2016-10-19 10:12 - 0124133 _____ () C:\Program Files (x86)\Acknowledgements.rtf 2017-03-22 18:14 - 2017-03-22 18:14 - 0075576 _____ (Apple Inc.) C:\Program Files (x86)\ApplePushService.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0025912 _____ (Apple Inc.) C:\Program Files (x86)\AppleVersions.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0085304 _____ (Apple Inc.) C:\Program Files (x86)\APSDaemon.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 0418104 _____ (Apple Inc.) C:\Program Files (x86)\APSDaemon_main.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0087352 _____ (Apple Inc.) C:\Program Files (x86)\ASL.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0405304 _____ (Apple Inc.) C:\Program Files (x86)\AVFoundationCF.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 2558264 _____ (Apple Inc.) C:\Program Files (x86)\CFNetwork.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 1473848 _____ (Apple Inc.) C:\Program Files (x86)\CoreADI.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 9112888 _____ (Apple Inc.) C:\Program Files (x86)\CoreAudioToolbox.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 2242360 _____ (Apple Inc.) C:\Program Files (x86)\CoreFoundation.dll 2017-03-02 04:13 - 2017-03-02 04:13 - 31629112 _____ (Apple Inc.) C:\Program Files (x86)\CoreFP.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 5343032 _____ (Apple Inc.) C:\Program Files (x86)\CoreGraphics.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 7575352 _____ (Apple Inc.) C:\Program Files (x86)\CoreLSKD.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 7683384 _____ (Apple Inc.) C:\Program Files (x86)\CoreMedia.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 1182520 _____ (Apple Inc.) C:\Program Files (x86)\CoreText.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0190776 _____ (Apple Inc.) C:\Program Files (x86)\CoreVideo.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0047928 _____ (Apple Inc.) C:\Program Files (x86)\defaults.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 2720056 _____ (Apple Inc.) C:\Program Files (x86)\Foundation.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 3370128 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_dsp.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 2199696 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_manager.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 0870544 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_musicid.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 0325776 _____ (Gracenote, Inc.) C:\Program Files (x86)\gnsdk_submit.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 0569664 _____ (GEAR-Software) C:\Program Files (x86)\gwlangen.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 18175808 _____ (GEAR-Software) C:\Program Files (x86)\gwrks64.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 26292536 _____ (The ICU Project) C:\Program Files (x86)\icudt55.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0000292 _____ () C:\Program Files (x86)\InvertColorPS.cso 2017-03-22 19:10 - 2017-03-22 19:10 - 3547448 _____ (Apple Inc.) C:\Program Files (x86)\iPodUpdaterExt.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 40766264 _____ (Apple Inc.) C:\Program Files (x86)\iTunes.exe 2017-03-22 19:10 - 2017-03-22 19:10 - 0589112 _____ (Apple Inc.) C:\Program Files (x86)\iTunesAdmin.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 0303928 _____ (Apple Inc.) C:\Program Files (x86)\iTunesHelper.exe 2017-03-22 19:10 - 2017-03-22 19:10 - 0180536 _____ (Apple Inc.) C:\Program Files (x86)\iTunesMiniPlayer.dll 2017-03-22 19:10 - 2017-03-22 19:10 - 0025400 _____ (Apple Inc.) C:\Program Files (x86)\iTunesSystemInfo.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 8454968 _____ (Apple Inc.) C:\Program Files (x86)\JavaScriptCore.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0041272 _____ (Apple Inc.) C:\Program Files (x86)\libcache.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0097080 _____ (Apple Inc.) C:\Program Files (x86)\libdispatch.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0096056 _____ () C:\Program Files (x86)\libexslt.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 1987896 _____ (The ICU Project) C:\Program Files (x86)\libicuin.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 1358136 _____ (The ICU Project) C:\Program Files (x86)\libicuuc.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0310072 _____ (Apple Inc.) C:\Program Files (x86)\libtidy.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 1354040 _____ () C:\Program Files (x86)\libxml2.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0236856 _____ () C:\Program Files (x86)\libxslt.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0068408 _____ (Apple Inc.) C:\Program Files (x86)\MediaAccessibility.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0216376 _____ (Apple Inc.) C:\Program Files (x86)\objc.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0034104 _____ (Apple Inc.) C:\Program Files (x86)\plutil.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 0082232 _____ (Open Source Software community LGPL) C:\Program Files (x86)\pthreadVC2.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 1839928 _____ (Apple Inc.) C:\Program Files (x86)\QuartzCore.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 1593144 _____ (Apple, Inc.) C:\Program Files (x86)\secd.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 0839992 _____ (Apple Inc.) C:\Program Files (x86)\SQLite3.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0023864 _____ (Apple Inc.) C:\Program Files (x86)\VersionCheckMe.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 22580024 _____ (Apple Inc.) C:\Program Files (x86)\WebKit.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0132920 _____ (Apple Inc.) C:\Program Files (x86)\WebKitQuartzCoreAdditions.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0741176 _____ (Apple Inc.) C:\Program Files (x86)\WTF.dll 2017-03-22 18:13 - 2017-03-22 18:13 - 0040760 _____ (Apple Inc.) C:\Program Files (x86)\YSCrashDump.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0039224 _____ (Apple Inc.) C:\Program Files (x86)\YSIconStamper.exe 2017-03-22 18:14 - 2017-03-22 18:14 - 0083768 _____ (Apple Inc.) C:\Program Files (x86)\YSLoader.exe 2017-03-22 18:13 - 2017-03-22 18:13 - 0031032 _____ (Apple Inc.) C:\Program Files (x86)\YSUtilities.dll 2017-03-22 18:14 - 2017-03-22 18:14 - 0092472 _____ () C:\Program Files (x86)\zlib1.dll 2014-12-23 09:47 - 2014-12-23 09:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Alguns arquivos em TEMP: ==================== 2016-05-20 16:43 - 2016-05-20 16:43 - 1118360 _____ (© 2015 Microsoft Corporation) C:\Users\User\AppData\Local\Temp\BSvcProcessor.exe 2016-05-20 16:43 - 2016-05-20 16:43 - 0170128 _____ (© 2015 Microsoft Corporation) C:\Users\User\AppData\Local\Temp\BSvcUpdater.exe 2016-08-12 16:03 - 2016-08-12 16:03 - 0741440 _____ (Oracle Corporation) C:\Users\User\AppData\Local\Temp\jre-8u101-windows-au.exe 2017-02-16 22:16 - 2017-02-16 22:16 - 0739904 _____ (Oracle Corporation) C:\Users\User\AppData\Local\Temp\jre-8u121-windows-au.exe 2016-10-20 14:26 - 2016-10-20 14:26 - 2458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\User\AppData\Local\Temp\libeay32.dll 2016-10-20 14:26 - 2016-10-20 14:26 - 0970912 _____ (Microsoft Corporation) C:\Users\User\AppData\Local\Temp\msvcr120.dll 2016-09-05 10:47 - 2016-09-05 10:47 - 1083904 _____ (Opera Software) C:\Users\User\AppData\Local\Temp\Opera_installer_2016954756536.dll 2016-09-05 10:48 - 2016-09-05 10:48 - 1083904 _____ (Opera Software) C:\Users\User\AppData\Local\Temp\Opera_installer_2016954834566.dll 2016-09-05 11:08 - 2016-09-05 11:08 - 1083904 _____ (Opera Software) C:\Users\User\AppData\Local\Temp\Opera_installer_201695847642.dll 2014-03-02 17:39 - 2014-05-11 16:58 - 0386209 _____ () C:\Users\User\AppData\Local\Temp\Quarantine.exe 2016-06-07 11:38 - 2016-06-07 11:38 - 88194192 _____ (Seagate) C:\Users\User\AppData\Local\Temp\setup.exe 2016-05-20 15:04 - 2016-05-20 16:11 - 45201536 _____ (Skype Technologies S.A.) C:\Users\User\AppData\Local\Temp\SkypeSetup.exe 2016-10-20 14:26 - 2016-10-20 14:26 - 0772672 _____ () C:\Users\User\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente ATENÇÃO: ==> Não foi possível acessar BCD. O usuário não é o administrador ==================== Fim de FRST.txt ============================