Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 08-03-2017
Executado por edson (administrador) em EDSON-PC (10-03-2017 00:09:58)
Executando a partir de C:\Users\edson\Downloads\Programs
Perfis Carregados: edson (Perfis Disponíveis: edson)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\InstallerWrapperService.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Megaify Software Co., Ltd.) C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ASUSTek Computer Inc.) C:\Program Files\ROG Thunderbolt Audio\CPL\ROG ThunderBolt Audio.exe
() C:\Windows\SysWOW64\ExMgr.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(The Chromium Authors) C:\Users\edson\AppData\Local\chromium\Application\chrome.exe
(Antibody Software) C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe
(© 2015 Microsoft Corporation) C:\Users\edson\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe
(The Chromium Authors) C:\Users\edson\AppData\Local\chromium\Application\chrome.exe
(Razer USA Ltd) C:\Program Files (x86)\Razer\Mamba\RazerMambaSysTray.exe
() C:\Program Files (x86)\DFX\DFX.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
() C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
() C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp64.exe
(The Chromium Authors) C:\Users\edson\AppData\Local\chromium\Application\chrome.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(The Chromium Authors) C:\Users\edson\AppData\Local\chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\edson\AppData\Local\chromium\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM\...\Run: [Cm6620Sound] => C:\Program Files\ROG Thunderbolt Audio\CPL\ROG ThunderBolt Audio.exe [314368 2011-09-09] (ASUSTek Computer Inc.)
HKLM\...\Run: [EX_Hook] => C:\Windows\syswow64\ExMgr.exe [204800 2011-02-25] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [Razer Mamba Elite Driver] => C:\Program Files (x86)\Razer\Mamba\RazerMambaSysTray.exe [974864 2012-12-21] (Razer USA Ltd)
HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1596920 2016-10-13] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1928768 2016-11-15] (APN)
Winlogon\Notify\ GbPluginUni: C:\Program Files (x86)\GbPlugin\gbiehUni.dll [2017-01-27] (Banco Itaú Unibanco)
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4019312 2017-02-13] (Tonec Inc.)
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\Run: [Chromium] => c:\users\edson\appdata\local\chromium\application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\Run: [BID Drop Box] => C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe [1210576 2015-06-05] (Antibody Software)
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\Run: [BingSvc] => C:\Users\edson\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27534808 2017-02-14] (Skype Technologies S.A.)
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\MountPoints2: {5c02107d-bc60-11e6-bed0-f46d04240343} - "H:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-11-02] (Microsoft Corporation)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll [1951968 2017-01-27] (Banco Itaú Unibanco)
ShellIconOverlayIdentifiers: [   IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bigfoot Killer Network Manager.lnk [2016-10-25]
ShortcutTarget: Bigfoot Killer Network Manager.lnk -> C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-03-09]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe (McAfee, Inc.)
GroupPolicy: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [174592 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [174592 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [174592 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [174592 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\BfLLR.dll [174592 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 C:\Windows\system32\BfLLR.dll [189952 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 C:\Windows\system32\BfLLR.dll [189952 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 C:\Windows\system32\BfLLR.dll [189952 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 C:\Windows\system32\BfLLR.dll [189952 2012-07-03] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 15 C:\Windows\system32\BfLLR.dll [189952 2012-07-03] (Bigfoot Networks, Inc.)
Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{A9985670-73C1-4ACC-A752-5A76348B9FD4}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CCF963E1-4F13-41C2-836D-1564393FCB11}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=pt-br
HKU\S-1-5-21-707682792-1128049521-3259909178-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-707682792-1128049521-3259909178-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-707682792-1128049521-3259909178-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q={searchTerms}&src=IE-SearchBox
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-03-03] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-03] (Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbiehuni.dll [2017-01-27] (Banco Itaú Unibanco)
Toolbar: HKU\S-1-5-21-707682792-1128049521-3259909178-1001 -> Sem Nome - {41545533-2D54-4D47-00A7-7A786E7484D7} -  Nenhum Arquivo
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)

FireFox:
========
FF HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\edson\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\edson\AppData\Roaming\IDM\idmmzcc5 [2017-03-10] [não assinado]
FF HKU\S-1-5-21-707682792-1128049521-3259909178-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-03] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> teoma.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox","hxxps://br0.forgeofempires.com/page/"
CHR Profile: C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default [2017-03-10]
CHR Extension: (Google Apresentações) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-25]
CHR Extension: (Google Docs) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-25]
CHR Extension: (Google Drive) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-25]
CHR Extension: (internet Download Manager For Chrome) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\blhjobkfabeopalncconblmakfcllmhk [2016-11-09]
CHR Extension: (YouTube) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-25]
CHR Extension: (Adblock Plus) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Teoma Shopping App) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\cglobijmmnefeacmdjkgkimhjcidaedm [2017-03-05]
CHR Extension: (Teoma) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohecngphbppjpaokeilaichhgggcmjb [2017-03-05]
CHR Extension: (Bing) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-01-20]
CHR Extension: (Planilhas do Google) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-25]
CHR Extension: (Documentos Google off-line) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-25]
CHR Extension: (AdBlock) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Autodesk Homestyler) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2016-10-25]
CHR Extension: (Planner 5D Design de Interior) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2016-10-25]
CHR Extension: (IDM Integration Module) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-12-09]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\edson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR HKLM\...\Chrome\Extension: [cglobijmmnefeacmdjkgkimhjcidaedm] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\cglobijmmnefeacmdjkgkimhjcidaedm.crx [2016-11-15]
CHR HKLM\...\Chrome\Extension: [cohecngphbppjpaokeilaichhgggcmjb] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\cohecngphbppjpaokeilaichhgggcmjb.crx [2016-11-15]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-02-13]
CHR HKU\S-1-5-21-707682792-1128049521-3259909178-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cglobijmmnefeacmdjkgkimhjcidaedm] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\cglobijmmnefeacmdjkgkimhjcidaedm.crx [2016-11-15]
CHR HKLM-x32\...\Chrome\Extension: [cohecngphbppjpaokeilaichhgggcmjb] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\cohecngphbppjpaokeilaichhgggcmjb.crx [2016-11-15]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-02-13]

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [202304 2016-11-15] (APN LLC.)
S3 ATLOISAService; C:\Windows\syswow64\ATLOISAService.exe [512000 2011-06-24] (Cmedia Electronics Inc.) [Arquivo não assinado]
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [492032 2012-07-03] () [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [590048 2017-01-27] (GAS Tecnologia)
R2 InstallerWrapperService; C:\Program Files\TrueKey\InstallerWrapperService.exe [47688 2016-07-19] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.500\McCHSvc.exe [329480 2017-01-19] (McAfee, Inc.)
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [859816 2016-11-14] (Enigma Software Group USA, LLC.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 BfEdge7x64; C:\Windows\System32\DRIVERS\Edge7x64.sys [31336 2012-07-03] (Bigfoot Networks, Inc.)
R3 BFN7x64; C:\Windows\System32\DRIVERS\Xeno7x64.sys [157288 2012-07-03] (Bigfoot Networks, Inc.)
S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Windows (R) Win 7 DDK provider)
R3 DFX12; C:\Windows\System32\drivers\dfx12x64.sys [29688 2015-11-12] (Windows (R) Win 7 DDK provider)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2016-11-02] (Enigma Software Group USA, LLC.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-11-02] ()
S1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2017-02-12] (GAS Tecnologia)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg64.sys [29816 2017-03-10] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-12-04] (GAS Tecnologia)
R3 mamba2; C:\Windows\System32\DRIVERS\mamba2.sys [11776 2012-12-10] (Razer USA Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 USBUAA; C:\Windows\System32\DRIVERS\USBUAA.SYS [140544 2011-09-06] (C-Media Inc.)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-12-04] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2017-03-10] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
U0 aswVmm; não ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-03-10 00:09 - 2017-03-10 00:09 - 00000000 ____D C:\FRST
2017-03-09 14:25 - 2017-03-10 00:04 - 00000358 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2017-03-09 14:25 - 2017-03-09 14:25 - 00002714 _____ C:\Windows\System32\Tasks\DriverToolkit Autorun
2017-03-09 11:41 - 2017-03-09 11:41 - 05929896 _____ C:\Users\edson\Downloads\Com o caminhoneiro na boleia - machosaonatural.com.br - XVIDEOS.COM.TS
2017-03-09 11:38 - 2017-03-09 11:38 - 43088284 _____ C:\Users\edson\Downloads\BICHONA ESCONDE CÂMERA, E GRAVA ENCONTRO SEXUAL COM HOMEM CASADO PAI DE FAMÍLIA! - XVIDEOS.COM.TS
2017-03-09 11:37 - 2017-03-09 11:37 - 51388672 _____ C:\Users\edson\Downloads\Coroa turco e seu garoto - machosaonatural.com.br - XVIDEOS.COM.TS
2017-03-09 11:35 - 2017-03-09 11:35 - 04529672 _____ C:\Users\edson\Downloads\Tio Joao e seu bitelao - machosaonatural.com.br - XVIDEOS.COM.TS
2017-03-09 11:32 - 2017-03-09 11:32 - 32281292 _____ C:\Users\edson\Downloads\Urso Pai Deixando Sobrinho Mamar seu Cacete www.daddytube.club - XVIDEOS.COM.TS
2017-03-09 11:22 - 2017-03-09 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2017-03-09 11:22 - 2017-03-09 11:22 - 00000000 ____D C:\Program Files\McAfee Security Scan
2017-03-09 11:14 - 2017-03-09 11:14 - 00000000 ____D C:\Users\edson\AppData\Local\DriverToolkit
2017-03-09 10:52 - 2017-03-09 11:22 - 00001964 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2017-03-09 10:52 - 2017-03-09 10:52 - 00000000 ____D C:\Users\Todos os Usuários\McAfee Security Scan
2017-03-09 10:52 - 2017-03-09 10:52 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2017-03-09 10:52 - 2017-03-09 10:52 - 00000000 ____D C:\Program Files\TrueKey
2017-03-09 10:45 - 2017-03-09 10:45 - 00000000 __SHD C:\Users\TEMP~1.EDS
2017-03-09 10:37 - 2017-03-09 10:37 - 00000000 ____D C:\308b32a86a3a4f6c10
2017-03-07 12:34 - 2017-03-07 12:34 - 00000000 ____D C:\521e103f8af7749468d5f7
2017-03-06 10:47 - 2017-03-06 10:47 - 01034556 _____ C:\Users\edson\Downloads\Windows6.1-KB2999226-x64.msu
2017-03-06 10:47 - 2017-03-06 10:47 - 00000000 ____D C:\7e9316f6bc29f9faf57fc4c605ae9d
2017-03-06 10:44 - 2017-03-09 10:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-06 10:43 - 2017-03-09 10:45 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk
2017-03-06 10:39 - 2017-03-06 10:44 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-05 12:10 - 2017-03-05 12:10 - 00000000 ____D C:\Users\Todos os Usuários\AskPartnerNetwork
2017-03-05 12:10 - 2017-03-05 12:10 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2017-03-05 12:10 - 2017-03-05 12:10 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2017-03-05 12:10 - 2013-05-23 08:52 - 00386560 _____ (Dart Communications) C:\Windows\SysWOW64\DartSecure2.dll
2017-03-05 12:10 - 2013-05-23 08:52 - 00234496 _____ (Dart Communications) C:\Windows\SysWOW64\DartCertificate.dll
2017-03-05 12:10 - 2013-05-06 12:17 - 00425472 _____ (Dart Communications) C:\Windows\SysWOW64\DartSock.dll
2017-03-05 12:10 - 2008-08-18 18:18 - 00077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
2017-03-04 14:34 - 2017-03-04 14:34 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-03-04 14:34 - 2017-03-04 14:34 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-04 11:43 - 2017-03-04 11:43 - 370053151 _____ C:\Users\edson\Downloads\Varios Artistas - As 100 Mais Nacionais de Novelas (1).rar
2017-03-04 10:35 - 2017-03-04 10:35 - 68571657 _____ C:\Users\edson\Downloads\RITCHIE - OUTRA VEZ AO VIVO NO ESTÚDIO(2009).rar
2017-03-04 10:33 - 2017-03-04 10:33 - 35051700 _____ C:\Users\edson\Downloads\Ritchie - Tigres de Bengala.rar
2017-03-04 10:13 - 2017-03-04 11:39 - 00000000 ____D C:\Users\edson\Downloads\MUSICAS ANTIGAS
2017-03-04 01:45 - 2017-03-04 01:45 - 183659957 _____ C:\Users\edson\Downloads\Varios Artistas - As 100 Mais da MPB - Parte 1.rar
2017-03-04 01:43 - 2017-03-04 01:43 - 186708494 _____ C:\Users\edson\Downloads\Varios Artistas - As 100 Mais da MPB - Parte 2.rar
2017-03-04 01:42 - 2017-03-04 01:42 - 262991458 _____ C:\Users\edson\Downloads\Populares - Velhos Tempos - 4CDS.rar
2017-03-04 01:40 - 2017-03-04 01:40 - 55791784 _____ C:\Users\edson\Downloads\Gilliard - Pérolas 2000.rar
2017-03-04 01:39 - 2017-03-04 01:39 - 51731248 _____ C:\Users\edson\Downloads\Sucessos Sertanejos Originais, Vol. 1.rar
2017-03-04 01:37 - 2017-03-04 01:37 - 60253934 _____ C:\Users\edson\Downloads\Cantores Populares, Vol. 2 - Anos 80.rar
2017-03-04 01:37 - 2017-03-04 01:37 - 370053151 _____ C:\Users\edson\Downloads\Varios Artistas - As 100 Mais Nacionais de Novelas.rar
2017-03-04 01:20 - 2017-03-04 01:20 - 00000000 ____D C:\Users\edson\Downloads\Passageiros 2017 Bluray 1080p Dublado - WWW.THEPIRATEFILMES.COM
2017-03-04 01:19 - 2017-03-04 01:19 - 00000000 ____D C:\Users\edson\Downloads\Sing 2017 Bluray 720p Legendado - WWW.THEPIRATEFILMES.COM
2017-03-03 00:20 - 2017-03-03 00:20 - 00001724 _____ C:\Users\Public\Desktop\IRPF2017 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País.lnk
2017-03-03 00:20 - 2017-03-03 00:20 - 00000000 ___HD C:\Program Files (x86)\InstallJammer Registry
2017-03-03 00:20 - 2017-03-03 00:20 - 00000000 ____D C:\Users\edson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas RFB2017
2017-03-03 00:20 - 2017-03-03 00:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programas RFB2017
2017-03-03 00:20 - 2017-03-03 00:20 - 00000000 ____D C:\Arquivos de Programas RFB
2017-03-03 00:16 - 2017-03-03 00:16 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\edson\AppData\Roaming\Sun
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\edson\AppData\LocalLow\Sun
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\ProgramData\Oracle
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Program Files\Java
2017-03-01 11:01 - 2017-03-01 11:01 - 00000328 _____ C:\Users\edson\Downloads\cb_backups_codes_edbrasil.txt
2017-02-25 01:35 - 2017-02-25 01:35 - 00000000 ____D C:\Users\edson\Downloads\Assassins.Creed.2016.1080p.HDRip.x264.DUAL-WWW.TORRENTDOSFILMES.COM
2017-02-24 01:13 - 2017-02-24 01:13 - 00000000 ____D C:\Users\edson\Downloads\Comando Kill 2017 Bluray 1080p Dublado - WWW.THEPIRATESHARE.COM
2017-02-23 11:58 - 2017-02-23 11:58 - 00000000 ____D C:\Users\edson\Downloads\Assassins Creed 2017 WEBRip 720p Legendado - WWW.THEPIRATESHARE.COM
2017-02-19 20:49 - 2017-02-19 20:49 - 00000000 ____D C:\Users\edson\Downloads\Montanha Taoísta 1080p (2017) Dublado BluRay -- By - Lucas Firmo
2017-02-19 20:29 - 2017-02-19 20:29 - 00000000 ____D C:\Users\edson\Downloads\10000 Anos Depois 2017 WEBRip 1080p Dublado - WWW.THEPIRATESHARE.COM
2017-02-19 20:28 - 2017-02-19 20:28 - 00000000 ____D C:\Users\edson\Downloads\Abril e o Mundo Extraordinário 2017 Bluray 1080p Dublado - WWW.THEPIRATESHARE.COM
2017-02-19 20:25 - 2017-02-19 20:25 - 00000000 ____D C:\Users\edson\Downloads\iBoy 2017 1080p WEBRip Dublado - WWW.THEPIRATESHARE.COM
2017-02-19 20:23 - 2017-02-19 20:23 - 00000000 ____D C:\Users\edson\Downloads\Emerald City s01e06 720p Legendado - WWW.THEPIRATESHARE.COM
2017-02-19 20:23 - 2017-02-19 20:23 - 00000000 ____D C:\Users\edson\Downloads\A Lenda do Rei Macaco A Volta do Herói 2017 720p WEB-DL Dublado - WWW.THEPIRATESHARE.COM
2017-02-19 20:21 - 2017-02-19 20:21 - 00000000 ____D C:\Users\edson\Downloads\Emerald City S01E05 720p Legendado - WWW.THEPIRATESHARE.COM
2017-02-19 20:20 - 2017-02-19 20:20 - 00000000 ____D C:\Users\edson\Downloads\Emerald City s01e04 2017 720p Legendado - WWW.THEPIRATESHARE.COM
2017-02-19 20:13 - 2017-02-19 20:13 - 00000000 ____D C:\Users\edson\Downloads\Emerald City s01e03 2017 720p Legendado - WWW.THEPIRATESHARE.COM
2017-02-19 20:13 - 2017-02-19 20:13 - 00000000 ____D C:\Users\edson\Downloads\Emerald City s01e01 720p Legendado - TPF
2017-02-19 20:11 - 2017-02-19 20:11 - 00000000 ____D C:\Users\edson\Downloads\A Volta do Juízo Final 2016 1080p WEB-DL Dublado - WWW.THEPIRATESHARE.COM
2017-02-19 20:10 - 2017-02-19 20:10 - 00000000 ____D C:\Users\edson\Downloads\O Shaolin Do Sertão 2017 1080p HDTV NACIONAL-WWW.THEPIRATESHARE.COM
2017-02-19 20:10 - 2017-02-19 20:10 - 00000000 ____D C:\Users\edson\Downloads\O Despertar da Lenda 1080p (2017) Dublado BluRay -- By - Lucas Firmo
2017-02-19 20:03 - 2017-02-19 20:03 - 00000000 ____D C:\Users\edson\Downloads\Moana - Um Mar de Aventuras (2017) Legendado 1080p By-LuanHarper
2017-02-16 13:22 - 2017-02-16 13:22 - 00002144 _____ C:\Users\Public\Desktop\Google Earth.lnk
2017-02-16 13:22 - 2017-02-16 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-02-16 12:17 - 2017-02-16 12:17 - 00000000 ____D C:\Users\edson\Downloads\Anjos da Noite - Guerras de Sangue 1080p (2017) Dublado BluRay -- By - Lucas Firmo
2017-02-16 12:14 - 2017-02-16 12:14 - 00000000 ____D C:\Users\edson\Downloads\Legion S01E01 720p Dublado - WWW.THEPIRATESHARE.COM
2017-02-16 12:07 - 2017-02-16 12:07 - 00000000 ____D C:\Users\edson\Downloads\Doutor Estranho 2016 Bluray 1080p Legendado - WWWW.THEPIRATESHARE.COM
2017-02-13 14:14 - 2016-10-17 12:35 - 00223464 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2017-02-13 11:35 - 2017-02-13 11:36 - 00000000 ____D C:\Users\TEMP
2017-02-13 11:35 - 2017-02-13 11:35 - 00000000 _____ C:\Users\TEMP\AppData\Local\{8FE4F07A-E5E3-4B5B-8554-0E0A7E4FDCEC}
2017-02-08 23:34 - 2017-02-08 23:34 - 00856047 _____ C:\Users\edson\Downloads\router_table.skp
2017-02-08 10:11 - 2016-08-06 16:13 - 00000000 ___RD C:\Users\edson\Downloads\Jaco e Jacozinho - Viola Divina
2017-02-02 12:43 - 2017-02-02 12:43 - 68314203 _____ C:\Users\edson\Downloads\Jaco e Jacozinho - 24 Sucessos.rar
2017-02-02 00:01 - 2017-02-02 00:01 - 2572295247 _____ C:\Users\edson\Downloads\Amigo.rar
2017-02-01 23:42 - 2017-02-01 23:42 - 2231106674 _____ C:\Users\edson\Downloads\Infinity.rar
2017-02-01 23:40 - 2017-02-01 23:40 - 2501739073 _____ C:\Users\edson\Downloads\IGO8.rar
2017-02-01 23:35 - 2017-02-02 00:02 - 00000000 ____D C:\Users\edson\Downloads\GPS 2017 ATUALIZAÇÃO
2017-02-01 23:35 - 2017-02-01 23:35 - 00000000 ____D C:\Users\edson\Downloads\GFPS BACK UP
2017-02-01 23:19 - 2017-02-01 23:19 - 00933424 _____ C:\Users\edson\Downloads\Menu.rar
2017-01-29 12:29 - 2017-01-29 12:37 - 00000000 ____D C:\Users\edson\Downloads\Trollhunters 2016 1ª WEBRip 720p Temporada Completa Dublado - WWW.THEPIRATESHARE.COM
2017-01-29 12:27 - 2017-01-29 12:28 - 00000000 ____D C:\Users\edson\Downloads\Liga da Justiça Sombria 1080p (2017) Dublado BluRay -- By - Lucas Firmo
2017-01-27 23:06 - 2017-03-08 00:15 - 00000000 ____D C:\Users\edson\AppData\Local\ElevatedDiagnostics
2017-01-13 00:50 - 2017-03-04 01:18 - 00000000 ____D C:\Users\edson\AppData\LocalLow\BitTorrent
2017-01-09 12:00 - 2017-03-10 00:03 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-01-09 12:00 - 2017-01-09 12:00 - 00000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2017-01-09 12:00 - 2017-01-09 12:00 - 00000000 ___HD C:\Program Files (x86)\Diebold
2017-01-09 12:00 - 2015-03-18 09:23 - 00103640 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2017-01-09 11:57 - 2017-01-09 12:00 - 00000000 ____D C:\Program Files\Diebold
2017-01-09 11:56 - 2017-01-09 12:00 - 00000000 ____D C:\Users\Todos os Usuários\Temp
2017-01-09 11:56 - 2017-01-09 12:00 - 00000000 ____D C:\ProgramData\Temp
2016-12-25 18:27 - 2017-01-21 11:56 - 00000000 ____D C:\Users\edson\Documents\Bulk Image Downloader
2016-12-25 18:25 - 2016-12-30 09:09 - 00000000 ____D C:\Users\edson\AppData\Roaming\BID
2016-12-25 18:25 - 2016-12-30 09:01 - 00001133 _____ C:\Users\edson\Desktop\BID Queue Manager.lnk
2016-12-25 18:25 - 2016-12-30 09:01 - 00001067 _____ C:\Users\edson\Desktop\Bulk Image Downloader.lnk
2016-12-25 18:25 - 2016-12-30 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bulk Image Downloader
2016-12-25 18:25 - 2016-12-30 09:01 - 00000000 ____D C:\Program Files (x86)\Bulk Image Downloader
2016-12-19 09:36 - 2016-12-19 09:36 - 00000000 ____D C:\Users\edson\AppData\LocalLow\Google
2016-12-18 13:53 - 2016-12-18 13:53 - 00014820 _____ C:\Windows\system32\neste-quarto-de-245-m-a-arquiteta-mayra-lopes-recorreu-ao-branco-bege-e-o-amadeirado-para-compor-a-cartela-de-cores-na-parede-atras-da-cama-papel-de-parede-arabescado-que-compoe-1379017475970_1024x682.lnk
2016-12-12 23:34 - 2016-12-12 23:34 - 00000011 _____ C:\Users\edson\Desktop\PISPASEP.txt

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-03-10 00:09 - 2009-07-14 14:55 - 00663606 _____ C:\Windows\system32\prfh0416.dat
2017-03-10 00:09 - 2009-07-14 14:55 - 00127896 _____ C:\Windows\system32\prfc0416.dat
2017-03-10 00:09 - 2009-07-14 02:13 - 01517030 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-10 00:09 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2017-03-10 00:04 - 2016-11-18 10:07 - 00029816 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg64.sys
2017-03-10 00:03 - 2016-11-18 10:07 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-03-10 00:03 - 2016-11-18 10:07 - 00000000 ____D C:\ProgramData\GbPlugin
2017-03-10 00:03 - 2016-11-18 10:07 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2017-03-10 00:03 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-09 14:25 - 2016-10-26 01:04 - 00000000 ____D C:\Users\edson\AppData\Roaming\DMCache
2017-03-09 13:53 - 2016-10-29 12:02 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-03-09 13:32 - 2016-10-27 09:32 - 00000978 _____ C:\Windows\Tasks\Yahoo! Powered lisir.job
2017-03-09 12:32 - 2016-10-27 09:32 - 00000000 ____D C:\Users\Todos os Usuários\{4AC58FA6-C087-0560-4641-9B22DC0310EC}
2017-03-09 12:32 - 2016-10-27 09:32 - 00000000 ____D C:\ProgramData\{4AC58FA6-C087-0560-4641-9B22DC0310EC}
2017-03-09 12:15 - 2016-10-26 01:04 - 00000000 ____D C:\Users\edson\Downloads\Video
2017-03-09 11:20 - 2009-07-14 01:45 - 00013232 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-09 11:20 - 2009-07-14 01:45 - 00013232 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-09 11:13 - 2016-10-29 12:02 - 00000964 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-03-09 10:52 - 2016-10-29 12:02 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-09 10:52 - 2016-10-29 12:02 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-09 10:52 - 2016-10-29 12:02 - 00003958 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-03-09 10:52 - 2016-10-29 12:02 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-09 10:52 - 2016-10-29 12:02 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-09 10:52 - 2016-10-29 12:02 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-09 10:52 - 2016-10-29 12:02 - 00000000 ____D C:\Users\edson\AppData\Local\Adobe
2017-03-09 10:46 - 2009-07-14 02:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2017-03-09 10:45 - 2016-10-26 11:45 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-03-09 10:45 - 2016-10-26 11:45 - 00000000 ____D C:\ProgramData\Skype
2017-03-09 10:45 - 2009-07-14 01:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-03-09 10:37 - 2016-12-04 18:28 - 00000000 ____D C:\Users\edson\Downloads\Compressed
2017-03-08 00:18 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2017-03-05 12:10 - 2016-10-25 11:08 - 00001186 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2017-03-05 12:10 - 2016-10-25 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2017-03-04 14:34 - 2016-10-26 11:45 - 00000000 ____D C:\Users\edson\AppData\Roaming\Skype
2017-03-04 01:47 - 2016-10-26 13:09 - 00000000 ____D C:\Users\edson\AppData\Roaming\BitTorrent
2017-02-21 00:02 - 2016-10-26 01:04 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2017-02-20 12:48 - 2016-10-26 01:04 - 00000000 ____D C:\Users\edson\AppData\Roaming\IDM
2017-02-16 13:22 - 2016-10-25 11:09 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-15 07:53 - 2016-11-08 09:53 - 20636760 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2017-02-13 11:35 - 2016-10-25 10:59 - 00000000 ____D C:\Users\Todos os Usuários\Bigfoot Networks
2017-02-13 11:35 - 2016-10-25 10:59 - 00000000 ____D C:\ProgramData\Bigfoot Networks
2017-02-12 20:48 - 2016-09-01 11:45 - 00000676 _____ C:\native log.txt
2017-02-12 20:46 - 2016-11-18 10:07 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2017-02-08 10:11 - 2016-11-04 13:57 - 00000000 ____D C:\Users\edson\Downloads\VIDEOS SR MIGUE
2017-02-08 08:58 - 2016-10-25 10:56 - 00000000 ____D C:\Users\edson

==================== Arquivos na raiz de alguns diretórios =======

2016-10-26 08:49 - 2016-10-26 08:49 - 0000058 _____ () C:\Users\edson\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat

Alguns arquivos em TEMP:
====================
2016-11-08 12:36 - 2016-11-08 12:36 - 3580664 _____ () C:\Users\edson\AppData\Local\Temp\aplicativoitau.exe
2016-10-26 00:30 - 2016-10-26 00:31 - 17618816 _____ (DsNET Corp                                                  ) C:\Users\edson\AppData\Local\Temp\atcMedia1641477445416.exe
2017-03-05 12:09 - 2017-03-05 12:10 - 19844976 _____ (DsNET Corp                                                  ) C:\Users\edson\AppData\Local\Temp\atcMedia2371488715747.exe
2017-01-19 23:42 - 2017-01-19 23:42 - 1118360 _____ (© 2015 Microsoft Corporation) C:\Users\edson\AppData\Local\Temp\BSvcProcessor.exe
2017-01-19 23:42 - 2017-01-19 23:42 - 0170128 _____ (© 2015 Microsoft Corporation) C:\Users\edson\AppData\Local\Temp\BSvcUpdater.exe
2017-03-09 10:38 - 2017-03-09 10:38 - 4036096 _____ () C:\Users\edson\AppData\Local\Temp\EDSON-PC_edson_bggnz.Dll
2017-03-09 10:38 - 2017-03-09 10:38 - 5975552 _____ () C:\Users\edson\AppData\Local\Temp\EDSON-PC_edson_eoftnx.dll
2017-03-09 10:38 - 2017-03-09 10:38 - 5975552 _____ () C:\Users\edson\AppData\Local\Temp\EDSON-PC_edson_xcwvkj.dll
2016-10-27 09:44 - 2016-10-27 09:44 - 0010240 _____ () C:\Users\edson\AppData\Local\Temp\gwpu7wbq.dll
2016-10-27 09:40 - 2016-10-27 09:40 - 1889856 _____ (                                                            ) C:\Users\edson\AppData\Local\Temp\ICReinstall_Baixaki_k-lite-mega-codec-pack.exe
2016-10-20 14:26 - 2016-10-20 14:26 - 2458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\edson\AppData\Local\Temp\libeay32.dll
2016-10-27 09:43 - 2016-10-27 09:43 - 0008192 _____ () C:\Users\edson\AppData\Local\Temp\mnt1hymc.dll
2016-10-20 14:26 - 2016-10-20 14:26 - 0970912 _____ (Microsoft Corporation) C:\Users\edson\AppData\Local\Temp\msvcr120.dll
2016-10-25 11:12 - 2016-10-25 11:12 - 7060456 _____ (Logitech, Inc.) C:\Users\edson\AppData\Local\Temp\qc_e3f0f3ef_27e6_4ca8_8a7c_a3d761aa54bb_64.exe
2016-12-04 19:10 - 2017-01-19 11:13 - 43918808 _____ (Skype Technologies S.A.) C:\Users\edson\AppData\Local\Temp\SkypeSetup.exe
2016-10-20 14:26 - 2016-10-20 14:26 - 0772672 _____ () C:\Users\edson\AppData\Local\Temp\sqlite3.dll
2017-03-06 10:34 - 2017-03-06 10:42 - 14456872 _____ (Microsoft Corporation) C:\Users\edson\AppData\Local\Temp\vc_redist.x86.exe
2016-10-27 09:44 - 2016-10-27 09:44 - 0008704 _____ () C:\Users\edson\AppData\Local\Temp\x5cngg3v.dll

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-03-04 17:20

==================== Fim de FRST.txt ============================