Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-06-2017 Executado por Antonio Carlos -ACAS (administrador) em ANTONIOCARLOS-A (03-06-2017 23:15:45) Executando a partir de C:\Users\Antonio Carlos -ACAS\Desktop Perfis Carregados: Antonio Carlos -ACAS & MSSQL$ADK (Perfis Disponíveis: Antonio Carlos -ACAS & Administrador & MSSQL$ADK) Platform: Windows 10 Pro Versão 1607 (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe (ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Dyn, Inc.) C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.05.08\AsusFanControlService.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (TopLang Software) C:\Program Files\Internet Lock\ILSvc.exe () C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe (Seventh) C:\TecVoz\IntegraPlayerV5\Server\Player.Server.SelfHost.Service.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\pg_ctl.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe (StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe (Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{956BB13B-9BE6-134D-A41E-3942EBCB6E0E}\YSearchUtilSVC.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\sqlservr.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe (PostgreSQL Global Development Group) C:\TecVoz\IntegraServerDB\bin\postgres.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe (SlySoft, Inc.) C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe (Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe () C:\Program Files\Intel\SUR\QUEENCREEK\esrv.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\Launchy\Launchy.exe () C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp64.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe (VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (Apple Computer, Inc.) C:\Windows\SysWOW64\qttask.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Unimake Software) C:\DANFEView\mon\danfemon.exe (Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe (Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe (Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe () C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9199104 2017-03-10] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-29] (SlySoft, Inc.) HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-08-19] (DivX, LLC) HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] () HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd) HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128 2015-08-14] (VMware, Inc.) HKLM-x32\...\Run: [DANFEViewMon] => C:\DANFEView\danfemon.exe [4668928 2015-01-29] (Unimake Software) HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992 2012-08-24] (Power Software Ltd) HKLM-x32\...\Run: [QuickTime Task] => C:\Windows\SysWOW64\qttask.exe [98304 2016-07-26] (Apple Computer, Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [29246632 2017-05-30] (Dropbox, Inc.) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [721856 2016-07-01] (Autodesk, Inc.) HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [170496 2009-02-06] (ArcSoft Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-19] (CyberLink Corp.) HKLM-x32\...\Run: [NWEReboot] => [X] Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [AnyDVD] => C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe [4980344 2011-05-06] (SlySoft, Inc.) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2016-12-22] (Disc Soft Ltd) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [GoogleChromeAutoLaunch_6E8D70B3AD4096B31BB9745C10219D74] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Google Update] => C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-27] (Google Inc.) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1713416 2013-08-19] (CyberLink Corp.) HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Policies\Explorer: [] ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] () ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.) ShellIconOverlayIdentifiers: [MountOverlayIcon] -> {0F49CF41-FD97-4942-9F2A-35E8B489E7FB} => C:\Program Files\WinMount\WinMTExt.dll [2010-10-21] (WinMount International Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-30] (Dropbox, Inc.) Startup: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2017-05-30] ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe () Startup: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar630.lnk [2017-06-03] ShortcutTarget: Sidebar630.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) GroupPolicy: Restrição <======= ATENÇÃO GroupPolicyScripts: Restrição <======= ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software) Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software) Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software) Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software) Winsock: Catalog9 17 C:\WINDOWS\SysWOW64\InetLock.dll [61712 2013-04-03] (TopLang Software) Winsock: Catalog9-x64 01 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software) Winsock: Catalog9-x64 02 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software) Winsock: Catalog9-x64 03 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software) Winsock: Catalog9-x64 04 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software) Winsock: Catalog9-x64 17 C:\Windows\System32\InetLock.dll [67344 2013-04-03] (TopLang Software) Tcpip\..\Interfaces\{64931bff-515c-4eb1-a005-4bbbd8838c1d}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{c42bbe63-4270-4169-9e83-0d18197180ca}: [NameServer] 216.146.35.35,216.146.36.36,192.168.25.1,8.8.4.4,192.168.25.1,8.8.4.4,192.168.25.1,8.8.4.4 Tcpip\..\Interfaces\{eddb0ad5-b031-4418-94f4-8a486835db21}: [DhcpNameServer] 192.168.25.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-998340394-1884923500-388074382-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie HKU\S-1-5-21-998340394-1884923500-388074382-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.br/ SearchScopes: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> {88F57D6A-FBA5-46A0-B8CC-304B673D1C6E} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&intl=br&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO: Sem Nome -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Nenhum Arquivo BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle Corporation) BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-08] (Oracle Corporation) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal) BHO-x32: CBHO Object -> {CBA74CDA-DF78-4AD9-954E-3B15D0A993DE} -> C:\Program Files (x86)\CoreStreet\SpoofStick\SpoofStickBHO.dll [2004-08-18] (CoreStreet, Ltd.) BHO-x32: Sem Nome -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Nenhum Arquivo BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-08] (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.) Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab) Toolbar: HKLM-x32 - SpoofStick - {4D46ED77-1429-4CF6-8F63-C84B5D710BAF} - C:\Program Files (x86)\CoreStreet\SpoofStick\SpoofStick.dll [2004-08-18] (CoreStreet, Ltd.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01] (Google Inc.) Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab) Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {4D46ED77-1429-4CF6-8F63-C84B5D710BAF} - Nenhum Arquivo Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01] (Google Inc.) Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - Nenhum Arquivo Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Sem Nome - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - Nenhum Arquivo Toolbar: HKU\S-1-5-21-998340394-1884923500-388074382-1000 -> Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-17] (AO Kaspersky Lab) FireFox: ======== FF DefaultProfile: fk58qeja.default FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default [2017-06-03] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\83vsaca6.default -> Yahoo! FF SelectedSearchEngine: Mozilla\Firefox\Profiles\83vsaca6.default -> Yahoo! FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\fvdmedia@gmail.com [2016-04-14] FF Extension: (Search and New Tab by Yahoo) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-05-08] FF Extension: (Just Disable Stuff) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-04-28] FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-04-21] FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado] FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\pavel.sherbakov@gmail.com [2016-05-14] FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16] FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25] FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\Firefox\Profiles\83vsaca6.default\searchplugins\yandex.ru-161818.xml [2016-01-30] FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default [2017-05-28] FF NewTab: Profiles\fk58qeja.default -> chrome://fvd.speeddial/content/fvd_about_blank.html FF Homepage: Profiles\fk58qeja.default -> chrome://fvd.speeddial/content/fvd_about_blank.html FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\fvdmedia@gmail.com [2017-02-20] FF Extension: (Baixou Agora) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\jid1-dG9taWNhQGdtYWlsLmNvbS4u@jetpack.xpi [2016-09-18] FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-09-12] FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado] FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-04-25] FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\pavel.sherbakov@gmail.com [2017-05-23] FF Extension: (Português Brasileiro (Nova Ortografia)) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\pt-BR@dictionaries.addons.mozilla.org [2016-08-02] FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16] FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-10-09] FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Profiles\fk58qeja.default\searchplugins\yandex.ru-161818.xml [2016-01-30] FF ProfilePath: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default [2016-09-02] FF Extension: (EverSync - Sync bookmarks, backup your favorites.) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\fvdmedia@gmail.com [2016-04-14] FF Extension: (GreatSocialTab Extension) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\GreatSocialTab-the-extension1@mozilla.com.xpi [2016-05-24] FF Extension: (Just Disable Stuff) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\jid1-8J7ayxTha4KqKQ@jetpack.xpi [2016-04-28] FF Extension: (JavaScript Deobfuscator) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\jsdeobfuscator@adblockplus.org.xpi [2016-04-21] FF Extension: (JavaScript Debugger Deutsch (DE) Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\langpack-de@venkman.mozilla.org.xpi [2015-07-06] [não assinado] FF Extension: (Português do Brasil Language Pack) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2016-06-30] [não assinado] FF Extension: (Speed Dial [FVD] - New Tab Page, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\pavel.sherbakov@gmail.com [2016-05-14] FF Extension: (Tiny JavaScript Debugger) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-16] FF Extension: (QuickJava) - C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25] FF SearchPlugin: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Firefox\Firefox\Profiles\83vsaca6.default\searchplugins\yandex.ru-161818.xml [2016-01-30] FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-03-17] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi FF HKU\S-1-5-21-998340394-1884923500-388074382-1000\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\cef\xpi FF Extension: (GBBD Caixa Economica Federal) - C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [2016-12-23] [não assinado] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-11] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Nenhum Arquivo] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-11] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo] FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-03] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-03] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-08] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-08] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2027 -> C:\Program Files (x86)\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll [Nenhum Arquivo] FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1040 -> C:\Program Files (x86)\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll [Nenhum Arquivo] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Nenhum Arquivo] FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @talk.google.com/O1DPlugin -> C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: gastecnologia.com.br/sf/cef -> C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll [2014-12-09] (GAS Tecnologia) FF Plugin HKU\S-1-5-21-998340394-1884923500-388074382-1000: gastecnologia.com.br/sf/cef64 -> C:\Users\Antonio Carlos -ACAS\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [2014-12-09] (GAS Tecnologia) FF Plugin ProgramFiles/Appdata: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Antonio Carlos -ACAS\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) Chrome: ======= CHR DefaultProfile: Profile 2 CHR HomePage: Profile 2 -> hxxps://br.search.yahoo.com/?type=994519&fr=yo-yhp-ch CHR NewTab: Profile 2 -> Not-active:"chrome-extension://fdbpcigaolookbahgdofnimidinicfid/newtab.html", Not-active:"chrome-extension://gpdpldlbafdmhlmcdllcjgoigmpjonfc/newtab.html", Active:"chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html" CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-05-25] CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-06-03] CHR Extension: (Google Apresentações) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02] CHR Extension: (Google Docs) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-02] CHR Extension: (Google Drive) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02] CHR Extension: (YouTube) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-02] CHR Extension: (Dropbox para Gmail) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-07] CHR Extension: (Adobe Acrobat) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-23] CHR Extension: (Yahoo Partner) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fdbpcigaolookbahgdofnimidinicfid [2017-03-11] CHR Extension: (Planilhas do Google) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02] CHR Extension: (Kaspersky Protection) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-03-24] CHR Extension: (Documentos Google off-line) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02] CHR Extension: (Simple Speed Dial) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gpdpldlbafdmhlmcdllcjgoigmpjonfc [2017-03-08] CHR Extension: (Yahoo Partner) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2017-05-08] CHR Extension: (EverSync - Sync bookmarks, backup favorites) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [2017-03-07] CHR Extension: (Lua de Hoje) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jbeamjhhmeolindjbajlgmpkoncnkdpe [2017-04-05] CHR Extension: (Night Time In New York City) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2016-09-02] CHR Extension: (Skype) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-03-09] CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2017-05-03] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-11-20] CHR Extension: (Baixou Agora) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nbfjpmeddmamejnmmppjlfglfhcjbbai [2017-06-02] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09] CHR Extension: (Gmail) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-02] CHR Extension: (Chrome Media Router) - C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-13] CHR Profile: C:\Users\Antonio Carlos -ACAS\AppData\Local\Google\Chrome\User Data\System Profile [2017-05-25] CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx CHR HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ANTONI~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-11-20] CHR HKU\S-1-5-21-998340394-1884923500-388074382-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fdbpcigaolookbahgdofnimidinicfid] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [nbfjpmeddmamejnmmppjlfglfhcjbbai] - hxxps://clients2.google.com/service/update2/crx ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 ABBYY.Licensing.FineReader.Corporate.11.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [818952 2011-12-22] (ABBYY) R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-02-06] (ArcSoft Inc.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] () R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-01-28] (ASUSTeK Computer Inc.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.05.08\AsusFanControlService.exe [387896 2014-04-06] (ASUSTeK Computer Inc.) S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.) R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab) S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-28] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-28] (Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-30] (Dropbox, Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd) R2 Dyn Updater; C:\Program Files (x86)\Dyn Updater\DynUpSvc.exe [95608 2011-11-15] (Dyn, Inc.) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation) R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] () R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [593120 2015-09-22] (GAS Tecnologia) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [114688 2015-06-23] (Microsoft Corporation) [Arquivo não assinado] R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [356352 2017-03-29] (Intel Corporation) R2 INETLOCKSVC; C:\Program Files\Internet Lock\ILSvc.exe [293648 2013-04-03] (TopLang Software) R2 IntegraPlayerServer; C:\TecVoz\IntegraPlayerV5\Server\Player.Server.SelfHost.Service.exe [14336 2015-04-30] (Seventh) [Arquivo não assinado] R2 IntegraServerDB; C:\TecVoz\IntegraServerDB\bin\pg_ctl.exe [79872 2015-04-28] (PostgreSQL Global Development Group) [Arquivo não assinado] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-03] (Intel Corporation) S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab) S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab) R2 MSSQL$ADK; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\sqlservr.exe [206424 2012-02-11] (Microsoft Corporation) R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2017-02-22] (Microsoft) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-16] (Microsoft Corporation) S4 SQLAgent$ADK; C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.ADK\MSSQL\Binn\SQLAGENT.EXE [438360 2012-02-11] (Microsoft Corporation) R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Arquivo não assinado] S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado] R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] () R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10888944 2017-04-25] (TeamViewer GmbH) S2 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] () S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12465344 2015-08-14] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{956BB13B-9BE6-134D-A41E-3942EBCB6E0E}\YSearchUtilSvc.exe [182736 2017-03-21] (Yahoo Inc.) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] () S3 ampa; C:\Windows\SysWOW64\ampa.sys [38320 2016-12-25] () R3 AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [133752 2011-03-25] (SlySoft, Inc.) R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [133752 2011-03-25] (SlySoft, Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] () R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] () R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-06-20] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-06-20] (Disc Soft Ltd) R3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-06-23] (Disc Soft Ltd) R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [544744 2017-05-09] (Intel Corporation) R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40648 2007-02-15] (SlySoft, Inc.) R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-15] (SlySoft, Inc.) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] () S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14944 2014-11-18] () S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] () S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2014-11-18] () R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-09-03] (GAS Tecnologia) R3 ikbevent; C:\WINDOWS\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] () R3 imsevent; C:\WINDOWS\System32\DRIVERS\imsevent.sys [22728 2014-05-27] () R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Intel Corporation) S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-04-06] () [Arquivo não assinado] R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-02-03] () S3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [143904 2015-11-05] (Zemana Ltd.) R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab) R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab) R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197336 2017-04-11] (AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520176 2017-04-11] (AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1018592 2017-04-11] (AO Kaspersky Lab) R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-17] (AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [229288 2017-05-23] (AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-06-01] (AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [251656 2017-05-24] (AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [112912 2017-05-24] (AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [173144 2017-05-23] (AO Kaspersky Lab) S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab) R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-17] (AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-03-24] (AO Kaspersky Lab) S3 MbswMailbox; C:\Program Files (x86)\ASUS\AI Suite III\690b33e1-0462-4e84-9bea-c7552b45432a.sys [17208 2016-04-18] () S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R2 NPF; C:\Windows\SysWOW64\drivers\npf64.sys [36600 2016-08-17] (Riverbed Technology, Inc.) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] () S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] () R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] () R3 Serenum; C:\WINDOWS\system32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Windows (R) Win 7 DDK provider) R3 Serial; C:\WINDOWS\system32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Nuvoton Technology Corp.) S3 smsbda; C:\WINDOWS\system32\drivers\smsbda.sys [63648 2009-12-02] (Siano) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () R1 VBoxUSBMon; C:\WINDOWS\System32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (BigNox Corporation) R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31936 2015-08-14] (VMware, Inc.) R0 vsock; C:\WINDOWS\System32\drivers\vsock.sys [75512 2015-08-04] (VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [34520 2015-07-09] (VMware, Inc.) S3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-09-03] (GAS Tecnologia LTDA) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.0\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40392 2012-07-25] (Microsoft Corporation) S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation) R1 WMDrive; C:\Windows\SysWOW64\drivers\WMDrive.sys [92536 2015-06-24] (WinMount International Inc) R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [146928 2010-03-13] (CyberLink Corp.) S3 cpuz140; \??\C:\Users\ANTONI~1\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== ATENÇÃO S3 dbx; system32\DRIVERS\dbx.sys [X] S1 gbpddfac; system32\drivers\gbpddfac64.sys [X] S0 gbpddreg; system32\drivers\gbpddreg64.sys [X] U3 idsvc; não ImagePath U3 wpcsvc; não ImagePath ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um Mês Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-06-03 23:13 - 2017-06-03 23:13 - 00104250 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Addition.txt 2017-06-03 23:12 - 2017-06-03 23:15 - 00058954 _____ C:\Users\Antonio Carlos -ACAS\Desktop\FRST.txt 2017-06-03 23:04 - 2017-06-03 23:04 - 04110280 _____ C:\Users\Antonio Carlos -ACAS\Desktop\AdwCleaner.exe 2017-06-03 23:04 - 2017-06-03 23:04 - 02433536 _____ (Farbar) C:\Users\Antonio Carlos -ACAS\Desktop\FRST64.exe 2017-06-02 08:29 - 2017-06-02 08:29 - 09551280 _____ (Piriform Ltd) C:\Users\Antonio Carlos -ACAS\Desktop\ccsetup530.exe 2017-06-01 10:00 - 2017-06-01 10:00 - 00087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys 2017-05-30 22:46 - 2017-05-30 22:47 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Launchy 2017-05-30 22:08 - 2017-05-30 22:08 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00987840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00690008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00485576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00030912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00029376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00018600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll 2017-05-30 22:08 - 2017-05-30 22:08 - 00018592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll 2017-05-30 22:02 - 2017-05-30 22:02 - 00001135 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Launchy.lnk 2017-05-30 22:02 - 2017-05-30 22:02 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Launchy 2017-05-30 22:02 - 2017-05-30 22:02 - 00000000 ____D C:\Program Files (x86)\Launchy 2017-05-30 21:34 - 2017-05-30 21:50 - 00000913 _____ C:\Users\Todos os Usuários\ReclaiMe.config 2017-05-30 21:34 - 2017-05-30 21:50 - 00000913 _____ C:\ProgramData\ReclaiMe.config 2017-05-30 21:34 - 2017-05-30 21:50 - 00000438 _____ C:\Users\Antonio Carlos -ACAS\AppData\Local\ReclaiMe.config 2017-05-30 21:33 - 2017-05-30 21:33 - 01128536 _____ (www.reclaime.com ) C:\Users\Antonio Carlos -ACAS\Desktop\setup-reclaime.exe 2017-05-30 15:19 - 2017-05-30 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-05-30 14:48 - 2017-05-30 14:48 - 00002089 _____ C:\Users\Antonio Carlos -ACAS\Desktop\WinRAR.lnk 2017-05-30 14:48 - 2017-05-30 14:48 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-05-30 14:48 - 2017-05-30 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-05-30 14:40 - 2017-05-30 14:50 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\WINRAR v. 5.40 - 32&64 BITES 2017-05-30 13:32 - 2017-05-30 13:32 - 00352600 _____ C:\Users\Antonio Carlos -ACAS\Desktop\CRIAÇÃO DE SUB-REDES ABUSAR .pdf 2017-05-30 11:42 - 2017-05-30 11:42 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\ImgBurn 2017-05-30 11:36 - 2017-05-30 11:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\OpenOffice 2017-05-30 11:35 - 2017-05-30 11:35 - 00000000 ____D C:\Users\Todos os Usuários\Canneverbe Limited 2017-05-30 11:35 - 2017-05-30 11:35 - 00000000 ____D C:\ProgramData\Canneverbe Limited 2017-05-30 11:17 - 2017-05-30 11:17 - 00002248 _____ C:\Users\Public\Desktop\Google Earth.lnk 2017-05-30 11:17 - 2017-05-30 11:17 - 00001760 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2017-05-30 11:17 - 2017-05-30 11:17 - 00001068 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk 2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3 2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2017-05-30 11:17 - 2017-05-30 11:17 - 00000000 ____D C:\Program Files\CDBurnerXP 2017-05-30 11:16 - 2017-05-30 11:16 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4 2017-05-30 11:15 - 2017-06-01 09:40 - 00000000 ____D C:\Program Files\WinRAR 2017-05-30 11:15 - 2017-05-30 11:15 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2017-05-30 11:15 - 2017-05-30 11:15 - 00001973 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk 2017-05-30 11:15 - 2017-05-30 11:15 - 00001961 _____ C:\Users\Public\Desktop\ImgBurn.lnk 2017-05-30 11:15 - 2017-05-30 11:15 - 00001106 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn 2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\Program Files\VS Revo Group 2017-05-30 11:15 - 2017-05-30 11:15 - 00000000 ____D C:\Program Files (x86)\ImgBurn 2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files\Java 2017-05-30 11:14 - 2017-05-30 11:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2017-05-30 07:22 - 2017-05-30 07:22 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2017-05-26 10:06 - 2017-05-23 15:14 - 01774792 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Anydesk.exe 2017-05-25 23:42 - 2017-05-25 23:56 - 00001279 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Adobe Audition CC.lnk 2017-05-25 23:41 - 2017-05-25 23:41 - 00003694 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-AntonioCarlos-A-Antonio Carlos -ACAS 2017-05-25 23:37 - 2017-05-25 23:37 - 00001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC.lnk 2017-05-25 23:08 - 2017-05-26 09:22 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE AUDITION CC v .6.0 32 & 64BITES + CRACK KEYGEN 2017-05-24 07:24 - 2017-05-24 07:24 - 00251656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2017-05-24 07:23 - 2017-05-24 07:23 - 00112912 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2017-05-23 21:14 - 2017-05-23 21:14 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-05-23 21:14 - 2017-05-23 21:14 - 00002151 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2017-05-23 16:40 - 2017-05-23 16:40 - 00000600 _____ C:\Users\Antonio Carlos -ACAS\PUTTY.RND 2017-05-23 15:37 - 2017-05-23 15:37 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\TightVNC 2017-05-23 15:36 - 2017-05-23 15:36 - 00000000 ____D C:\Program Files (x86)\ShowMyPCService 2017-05-23 15:17 - 2017-05-23 15:17 - 01774792 _____ C:\Users\Antonio Carlos -ACAS\Downloads\Baixaki_anydesk.exe 2017-05-23 15:14 - 2017-05-26 10:07 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\AnyDesk 2017-05-23 12:23 - 2017-05-23 21:51 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\APLICATIVOS DE ACESSO REMOTO ( TEAM VIEWER, AMMYY, MY SHOW PC ETC 2017-05-23 12:01 - 2017-05-23 12:01 - 00000000 ____D C:\Users\Todos os Usuários\AMMYY 2017-05-23 12:01 - 2017-05-23 12:01 - 00000000 ____D C:\ProgramData\AMMYY 2017-05-23 11:59 - 2017-05-23 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lunascape6 2017-05-23 10:42 - 2017-05-23 10:42 - 00229288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2017-05-23 10:42 - 2017-05-23 10:42 - 00173144 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2017-05-22 18:51 - 2017-05-22 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag 2017-05-22 18:50 - 2017-05-22 18:50 - 03276704 _____ C:\Users\Antonio Carlos -ACAS\Desktop\mp3tagv282setup.exe 2017-05-22 16:58 - 2017-05-22 16:59 - 00000000 ____D C:\Program Files\Plugins 2017-05-22 16:57 - 2017-05-22 16:57 - 02891316 _____ C:\Users\Antonio Carlos -ACAS\pack de plugins 2016.rar 2017-05-22 13:49 - 2017-05-22 17:00 - 00001880 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Adobe Audition CS6.exe.lnk 2017-05-22 13:44 - 2017-05-22 13:44 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CS6.lnk 2017-05-22 11:45 - 2017-05-25 23:40 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\Adobe 2017-05-22 10:58 - 2017-05-22 10:58 - 00000000 ____D C:\Users\Public\Documents\Adobe 2017-05-22 10:56 - 2017-05-25 23:41 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe 2017-05-22 10:56 - 2017-05-25 23:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2017-05-22 10:54 - 2017-05-22 10:54 - 00001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk 2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Macromedia 2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia 2017-05-22 10:54 - 2017-05-22 10:54 - 00000000 ____D C:\Program Files (x86)\My Company Name 2017-05-22 10:54 - 2011-11-03 03:01 - 00056208 ____N (Rovi Corporation) C:\WINDOWS\system32\Drivers\PxHlpa64.sys 2017-05-22 10:54 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdralw2k.sys 2017-05-22 10:54 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\WINDOWS\system32\Drivers\cdr4_xp.sys 2017-05-21 22:35 - 2017-05-21 22:35 - 00002051 _____ C:\Users\Public\Desktop\Setup Factory 9.lnk 2017-05-21 22:35 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\Setup Factory 9 2017-05-21 22:35 - 2017-05-21 22:35 - 00000000 ____D C:\Program Files (x86)\Setup Factory 9 2017-05-21 22:31 - 2017-05-21 22:32 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY INDIGO ROSE v.9.5 2017-05-21 10:23 - 2017-05-21 10:23 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Power2Go8 2017-05-20 22:13 - 2017-05-21 22:41 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY MEU PROJETO 2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Todos os Usuários\IndigoRose 2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\IndigoRose 2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Indigo Rose Corporation 2017-05-20 22:02 - 2017-05-21 22:35 - 00000000 ____D C:\ProgramData\IndigoRose 2017-05-20 22:02 - 2017-05-20 22:02 - 00002158 _____ C:\Users\Public\Desktop\AutoPlay Media Studio 8.lnk 2017-05-20 22:02 - 2017-05-20 22:02 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Documents\AutoPlay Media Studio 8 2017-05-20 22:02 - 2017-05-20 22:02 - 00000000 ____D C:\Program Files (x86)\AutoPlay Media Studio 8 2017-05-20 21:58 - 2017-05-20 21:59 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\AUTOPLAY MEDIA STUDIO 8.5.0 2017-05-20 21:29 - 2017-05-20 21:29 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CrystalDiskInfoPortable 2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIMPEG2.dll 2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIMP3.dll 2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTIFCD3.dll 2017-05-20 21:05 - 2017-05-20 21:05 - 00001024 ___RH C:\WINDOWS\SysWOW64\NTICDMK7.dll 2017-05-20 21:00 - 2017-05-20 21:00 - 00303104 ____N (Microsoft Corporation) C:\WINDOWS\Setup1.exe 2017-05-20 21:00 - 2017-05-20 21:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\ST6UNST.EXE 2017-05-20 20:07 - 2017-05-20 20:07 - 00011886 _____ C:\Users\Antonio Carlos -ACAS\Demis_Roussos_-_Rain_And_Tears_(2005)_-_DVD.torrent 2017-05-20 16:37 - 2017-05-20 16:37 - 00045056 _____ (Northern Codeworks) C:\WINDOWS\NCUNINST.EXE 2017-05-20 15:03 - 2017-05-20 15:03 - 13677800 _____ (Google) C:\Users\Antonio Carlos -ACAS\Desktop\picasa39-setup.exe 2017-05-20 14:57 - 2017-05-20 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2017-05-20 14:31 - 2017-05-20 14:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\CYBERLINK POWER BACK-UP v. 2.50.9729a 2017-05-20 14:22 - 2017-05-22 13:29 - 00000000 ____D C:\Program Files (x86)\ASUS E-Green 2017-05-20 14:22 - 2017-05-20 14:22 - 00002191 _____ C:\Users\Public\Desktop\CyberLink PowerBackup.lnk 2017-05-20 14:22 - 2017-05-20 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerBackup 2017-05-20 14:20 - 2017-05-20 14:20 - 00000000 ____D C:\Users\Public\Documents\CyberLink 2017-05-20 14:20 - 2017-05-20 14:20 - 00000000 ____D C:\Users\Public\CyberLink 2017-05-20 14:16 - 2017-05-20 19:44 - 00000000 ____D C:\Users\Todos os Usuários\CyberLink 2017-05-20 14:16 - 2017-05-20 19:44 - 00000000 ____D C:\ProgramData\CyberLink 2017-05-20 14:16 - 2017-05-20 14:16 - 00001495 _____ C:\Users\Public\Desktop\CyberLink Power2Go 8.lnk 2017-05-20 14:16 - 2017-05-20 14:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8 2017-05-20 14:16 - 2013-03-05 12:01 - 00091712 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys 2017-05-20 14:15 - 2017-05-20 14:16 - 00000000 ____D C:\Users\Todos os Usuários\install_clap 2017-05-20 14:15 - 2017-05-20 14:16 - 00000000 ____D C:\ProgramData\install_clap 2017-05-19 12:30 - 2017-05-19 12:31 - 1719588864 _____ C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE ILUSTRATOR CC 2014 MAC OS XFORCE.iso 2017-05-19 12:25 - 2017-05-19 12:26 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\ADOBE ILUSTRATOR CC 2014 MAC OS XFORCE 2017-05-18 23:11 - 2017-05-18 23:11 - 00000022 _____ C:\Users\Antonio Carlos -ACAS\MEGA-RECOVERYKEY.txt 2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\WINDOWS\SysWOW64\Drivers\vwifikerneldrv.sys 2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\WINDOWS\SysWOW64\d3dx9_11.dll.tmp 2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\Users\Todos os Usuários\fontcacheev1.dat 2017-05-18 22:04 - 2017-05-18 22:04 - 00000262 _____ C:\ProgramData\fontcacheev1.dat 2017-05-18 22:04 - 2017-03-27 08:01 - 00081000 _____ () C:\WINDOWS\system32\Drivers\adgnetworkwfpdrv.sys 2017-05-18 21:53 - 2017-05-18 21:54 - 00001182 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Your Uninstaller! PRO.lnk 2017-05-18 21:53 - 2017-05-18 21:53 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! PRO 2017-05-18 21:52 - 2017-05-18 21:52 - 00000000 ____D C:\Program Files (x86)\Your Uninstaller! PRO 2017-05-18 21:33 - 2017-05-18 21:39 - 00002547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk 2017-05-18 21:29 - 2017-05-18 21:29 - 00001325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2017-05-18 15:28 - 2017-05-18 15:28 - 01583630 _____ C:\Users\Antonio Carlos -ACAS\winbox.exe 2017-05-17 12:14 - 2017-05-17 12:15 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\SHOW MY PC v. 6.0.2900.2180 2017-05-17 12:08 - 2017-05-17 12:10 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CCLEAN SETUP v. 5.30.0.6063 2017-05-17 12:06 - 2017-05-17 12:06 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\POPCORN TIME v. 3.10 2017-05-17 11:26 - 2017-05-17 11:35 - 00002253 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Popcorn-Time.lnk 2017-05-17 09:49 - 2017-05-17 09:49 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time 2017-05-17 09:48 - 2017-05-17 09:50 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Popcorn-Time 2017-05-17 09:35 - 2017-05-17 09:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-05-15 19:38 - 2017-05-15 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro 2017-05-15 12:11 - 2017-05-15 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2017-05-15 12:11 - 2017-05-15 12:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2017-05-15 12:00 - 2017-05-24 10:08 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help 2017-05-13 14:25 - 2017-05-26 08:03 - 00000000 ____D C:\Users\Todos os Usuários\Adobe 2017-05-13 14:25 - 2017-05-26 08:03 - 00000000 ____D C:\ProgramData\Adobe 2017-05-11 23:50 - 2017-05-11 23:50 - 00000000 ____D C:\Users\Todos os Usuários\Easy CD-DA Extractor 2017-05-11 23:50 - 2017-05-11 23:50 - 00000000 ____D C:\ProgramData\Easy CD-DA Extractor 2017-05-11 09:20 - 2017-05-11 17:55 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\CORRUPÇÃO GILMAR MENDES 2017-05-10 23:41 - 2017-05-10 23:43 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\INTEL DRIVERs UPDATE UTILITY v. 2.7.2 2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\Softland 2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\IntelDLM 2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\Users\Todos os Usuários\EPSON 2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\Softland 2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\IntelDLM 2017-05-10 23:37 - 2017-05-10 23:37 - 00000000 ____D C:\ProgramData\EPSON 2017-05-10 23:35 - 2017-05-10 23:35 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Intel Components 2017-05-10 23:34 - 2017-05-13 10:59 - 00000000 ____D C:\Program Files (x86)\Intel Driver Update Utility 2017-05-10 23:34 - 2017-05-10 23:34 - 00002524 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK 2017-05-10 23:34 - 2017-05-10 23:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel 2017-05-10 23:34 - 2017-05-10 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility 2017-05-10 23:33 - 2017-05-18 23:16 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache 2017-05-10 23:33 - 2017-05-18 23:16 - 00000000 ____D C:\ProgramData\Package Cache 2017-05-10 23:33 - 2017-05-10 23:33 - 00000000 ____D C:\Program Files\Intel Driver Update Utility 2017-05-10 22:59 - 2017-05-23 21:11 - 00000000 ____D C:\Users\Todos os Usuários\TEMP 2017-05-10 22:59 - 2017-05-23 21:11 - 00000000 ____D C:\ProgramData\TEMP 2017-05-10 22:56 - 2017-05-10 22:56 - 00000000 ____D C:\Users\Todos os Usuários\Oracle 2017-05-10 22:56 - 2017-05-10 22:56 - 00000000 ____D C:\ProgramData\Oracle 2017-05-10 22:55 - 2017-05-10 22:55 - 00001145 _____ C:\Users\Public\Desktop\MP3 ROCKET 7.4.1 PRO.LNK 2017-05-10 22:44 - 2017-05-10 22:44 - 00000000 ____D C:\Users\Todos os Usuários\TopLang 2017-05-10 22:44 - 2017-05-10 22:44 - 00000000 ____D C:\ProgramData\TopLang 2017-05-10 22:07 - 2017-05-10 22:07 - 00000000 ____D C:\Users\Todos os Usuários\IDM 2017-05-10 22:07 - 2017-05-10 22:07 - 00000000 ____D C:\ProgramData\IDM 2017-05-10 22:05 - 2017-05-11 23:50 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite 2017-05-10 22:05 - 2017-05-11 23:50 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2017-05-10 22:05 - 2017-05-10 22:05 - 00000000 ____D C:\Users\Todos os Usuários\SlySoft 2017-05-10 22:05 - 2017-05-10 22:05 - 00000000 ____D C:\ProgramData\SlySoft 2017-05-10 22:03 - 2017-05-10 22:03 - 00000000 ____D C:\Users\Todos os Usuários\Intel 2017-05-10 22:03 - 2017-05-10 22:03 - 00000000 ____D C:\ProgramData\Intel 2017-05-10 21:34 - 2017-05-10 21:34 - 00000000 ____D C:\Users\Todos os Usuários\WinMount 2017-05-10 21:34 - 2017-05-10 21:34 - 00000000 ____D C:\ProgramData\WinMount 2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\Users\Todos os Usuários\Google 2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin 2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\ProgramData\Google 2017-05-10 21:22 - 2017-05-10 21:22 - 00000000 ____D C:\ProgramData\GbPlugin 2017-05-10 10:21 - 2017-05-10 10:21 - 00000000 ___HD C:\OneDriveTemp 2017-05-10 10:09 - 2017-05-15 14:58 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\DMCache 2017-05-10 10:09 - 2017-05-10 10:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Video 2017-05-10 10:09 - 2017-05-10 10:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Downloads\Compressed 2017-05-10 10:08 - 2017-05-10 10:08 - 14040102 _____ C:\Users\Antonio Carlos -ACAS\DriverEasy PRO 5.5.0.5335 + IDM 6.25 Build 11.zip 2017-05-09 23:54 - 2017-05-09 23:54 - 00001039 _____ C:\Users\Public\Desktop\Driver Easy.lnk 2017-05-09 23:54 - 2017-05-09 23:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy 2017-05-09 23:49 - 2017-05-10 00:06 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\Driver Easy 2017-05-09 22:53 - 2017-05-09 23:34 - 01730304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01009.dll 2017-05-08 13:33 - 2017-05-08 13:33 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\YSearchUtil 2017-05-08 12:57 - 2017-05-08 12:57 - 00000796 _____ C:\Users\Public\Desktop\Tecnobyte Suporte.lnk 2017-05-08 12:57 - 2017-05-08 12:57 - 00000781 _____ C:\Users\Public\Desktop\Tecnobyte SAC Free.lnk 2017-05-08 12:57 - 2017-05-08 12:57 - 00000781 _____ C:\Users\Public\Desktop\Backup do SAC Free.lnk 2017-05-08 12:57 - 2017-05-08 12:57 - 00000000 ____D C:\Tecnobyte 2017-05-07 10:17 - 2017-05-07 10:18 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\LINK DE VERSÕES ANTIGAS DO MOZILLA FIREFOX 2017-05-04 20:40 - 2017-05-20 12:52 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\CRIANDO LINKs DIRETO NO GOOGLE DRIVE ==================== Um Mês Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-06-03 23:15 - 2016-01-15 11:04 - 00000000 ____D C:\FRST 2017-06-03 22:58 - 2017-01-06 15:31 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-06-03 22:19 - 2015-06-22 21:22 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab 2017-06-03 22:19 - 2015-06-22 21:22 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2017-06-03 17:16 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-06-03 17:14 - 2016-12-23 18:00 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\ElevatedDiagnostics 2017-06-03 17:13 - 2017-05-01 20:41 - 00000015 _____ C:\Users\Antonio Carlos -ACAS\advanced_ip_scanner_Aliases.bin 2017-06-03 17:13 - 2015-11-12 12:48 - 00001052 _____ C:\Users\Antonio Carlos -ACAS\advanced_ip_scanner_MAC.bin 2017-06-03 12:11 - 2016-11-20 21:15 - 00000000 ___RD C:\Users\Antonio Carlos -ACAS\Google Drive 2017-06-03 12:10 - 2016-11-27 21:54 - 00000000 ___RD C:\Users\Antonio Carlos -ACAS\OneDrive 2017-06-03 12:05 - 2017-04-16 01:06 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1 2017-06-03 12:05 - 2015-06-23 00:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Adobe 2017-06-03 11:59 - 2016-06-21 22:27 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-06-03 11:59 - 2015-07-03 07:08 - 00000000 __SHD C:\Users\Antonio Carlos -ACAS\IntelGraphicsProfiles 2017-06-03 11:58 - 2017-01-06 15:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-06-02 23:02 - 2017-01-14 12:10 - 00000731 _____ C:\WINDOWS\system32\InetLock.dat 2017-06-02 23:02 - 2016-07-16 03:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2017-06-02 21:59 - 2015-07-03 08:41 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2017-06-02 08:29 - 2017-02-10 08:02 - 00000890 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-05-30 22:46 - 2015-02-06 22:23 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Incomplete 2017-05-30 22:08 - 2016-07-16 08:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-05-30 21:37 - 2015-06-23 20:40 - 00000000 ____D C:\Program Files (x86)\Hard Disk Sentinel 2017-05-30 15:20 - 2016-09-28 19:29 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Dropbox 2017-05-30 15:20 - 2016-09-28 19:29 - 00000000 ____D C:\Program Files (x86)\Dropbox 2017-05-30 13:35 - 2017-01-06 15:30 - 05238752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-05-30 11:17 - 2015-06-23 23:03 - 00001814 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk 2017-05-30 11:15 - 2017-02-09 20:55 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2017-05-30 11:15 - 2017-02-09 20:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2017-05-30 11:13 - 2015-06-23 00:07 - 00000000 ____D C:\Program Files (x86)\Adobe 2017-05-30 11:13 - 2015-06-23 00:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Adobe 2017-05-29 18:59 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-05-29 17:45 - 2016-01-06 21:49 - 00000000 ____D C:\DANFEView 2017-05-28 18:02 - 2016-11-20 17:25 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\LocalLow\Mozilla 2017-05-26 11:38 - 2015-07-03 08:41 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\TeamViewer 2017-05-26 09:28 - 2017-01-06 15:36 - 00000000 ____D C:\Users\Antonio Carlos -ACAS 2017-05-26 09:27 - 2017-04-22 13:52 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\COLEÇÕES E-BOOKs CLASSICOS MUNDIAIS 2017-05-25 23:48 - 2016-07-16 08:45 - 00000000 ____D C:\WINDOWS\INF 2017-05-25 23:37 - 2015-06-23 00:05 - 00000000 ____D C:\Program Files\Common Files\Adobe 2017-05-25 23:26 - 2015-06-28 12:33 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Azureus 2017-05-25 23:24 - 2016-09-28 19:47 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\MPC-HC 2017-05-25 23:16 - 2015-06-23 00:08 - 00000000 ____D C:\Program Files\Adobe 2017-05-25 00:29 - 2017-01-19 17:13 - 00000000 ____D C:\Users\MSSQL$ADK 2017-05-24 22:48 - 2017-01-05 10:32 - 00000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 6.1 2017-05-24 22:48 - 2017-01-05 10:18 - 00001024 ____H C:\AMTAG.BIN 2017-05-24 10:08 - 2015-06-22 23:54 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Local\Microsoft Help 2017-05-23 21:14 - 2017-01-06 15:55 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2017-05-23 20:54 - 2015-12-07 22:31 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\Mp3tag 2017-05-22 18:51 - 2016-04-23 11:00 - 00001075 _____ C:\Users\Public\Desktop\Mp3tag.lnk 2017-05-22 18:51 - 2015-07-11 11:05 - 00000000 ____D C:\Program Files (x86)\Mp3tag 2017-05-21 10:23 - 2015-10-07 22:19 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\CyberLink 2017-05-21 10:20 - 2017-03-23 12:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-05-20 18:26 - 2016-06-28 11:49 - 00000000 ____D C:\Program Files\Mozilla Firefox 2017-05-20 15:04 - 2015-06-23 01:07 - 00001206 _____ C:\Users\Public\Desktop\Picasa 3.lnk 2017-05-20 14:22 - 2015-06-23 00:23 - 00000000 ____D C:\Program Files (x86)\CyberLink 2017-05-20 14:22 - 2015-06-22 20:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-05-18 22:14 - 2017-01-04 21:52 - 00000000 ____D C:\Program Files (x86)\Wondershare 2017-05-18 21:51 - 2016-10-12 13:27 - 00013183 _____ C:\missing.ini 2017-05-17 09:35 - 2015-06-23 19:32 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\DAEMON Tools Lite 2017-05-15 19:38 - 2015-06-23 00:34 - 00000000 ____D C:\Program Files (x86)\Google 2017-05-13 10:59 - 2016-12-29 11:44 - 00000000 ____D C:\AdwCleaner 2017-05-12 22:52 - 2017-03-21 21:21 - 00004702 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2017-05-12 22:52 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-05-12 22:52 - 2016-07-16 08:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-05-11 08:05 - 2015-06-22 20:18 - 00019774 _____ C:\WINDOWS\system32\results.xml 2017-05-10 23:39 - 2017-01-06 16:20 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2017-05-10 23:38 - 2015-06-22 19:39 - 00000000 ____D C:\Program Files\Intel 2017-05-10 22:03 - 2017-02-18 17:42 - 00000000 ____D C:\Users\Todos os Usuários\ArcSoft 2017-05-10 22:03 - 2017-02-18 17:42 - 00000000 ____D C:\ProgramData\ArcSoft 2017-05-10 22:03 - 2015-09-23 23:08 - 00000000 ____D C:\Users\Todos os Usuários\VMware 2017-05-10 22:03 - 2015-09-23 23:08 - 00000000 ____D C:\ProgramData\VMware 2017-05-10 22:03 - 2015-06-24 17:01 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk 2017-05-10 22:03 - 2015-06-24 17:01 - 00000000 ____D C:\ProgramData\Autodesk 2017-05-10 19:31 - 2016-01-20 11:19 - 00000000 ____D C:\Users\Todos os Usuários\Sony 2017-05-10 19:31 - 2016-01-20 11:19 - 00000000 ____D C:\ProgramData\Sony 2017-05-10 19:31 - 2015-07-07 22:10 - 00000000 ____D C:\Users\Todos os Usuários\ASUS 2017-05-10 19:31 - 2015-07-07 22:10 - 00000000 ____D C:\ProgramData\ASUS 2017-05-10 19:31 - 2015-06-23 00:25 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 10 2017-05-10 19:31 - 2015-06-22 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X6 2017-05-10 19:31 - 2015-06-22 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit) 2017-05-10 19:31 - 2015-06-22 20:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2017-05-10 09:59 - 2016-07-16 03:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-05-10 08:35 - 2017-01-06 15:36 - 02718732 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-05-10 08:35 - 2016-07-16 20:10 - 00769578 _____ C:\WINDOWS\system32\prfh0416.dat 2017-05-10 08:35 - 2016-07-16 20:10 - 00342352 _____ C:\WINDOWS\system32\prfc0416.dat 2017-05-09 23:50 - 2017-02-09 21:28 - 00000000 ____D C:\Program Files\Easeware 2017-05-09 23:35 - 2016-01-30 15:10 - 01467904 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys 2017-05-09 23:34 - 2016-01-30 15:11 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys 2017-05-09 23:33 - 2016-02-13 23:41 - 00038680 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ICCWDT.sys 2017-05-09 22:54 - 2017-02-10 02:45 - 00544744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\e1d65x64.sys 2017-05-08 17:52 - 2015-07-03 21:09 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\MP3Rocket 2017-05-08 13:34 - 2015-07-22 18:57 - 00000000 ____D C:\Program Files (x86)\Java 2017-05-08 13:33 - 2017-03-11 10:53 - 00000000 ____D C:\Program Files (x86)\Yahoo! 2017-05-08 13:30 - 2016-09-02 18:03 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2017-05-08 09:05 - 2017-04-11 21:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\DOCUMENTOS PLACA MÃE DANIFICADA 2017-05-04 20:20 - 2015-06-24 10:46 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\AppData\Roaming\WinMount 2017-05-04 14:13 - 2017-04-11 21:03 - 00000000 ____D C:\Users\Antonio Carlos -ACAS\Desktop\DOCUMENTOS PLACA MÃE DANIFICADA 2017-05-04 08:14 - 2016-07-13 08:14 - 00002387 _____ C:\Users\Antonio Carlos -ACAS\Desktop\Google Chrome.lnk ==================== Arquivos na raiz de alguns diretórios ======= 2015-07-28 17:03 - 2016-02-23 15:15 - 0085827 _____ () C:\Program Files (x86)\CMS Setup Log.txt 2007-07-29 11:01 - 2005-08-27 14:26 - 1581056 _____ (Macromedia, Inc.) C:\Program Files (x86)\SAFlashPlayer.exe 2016-12-08 09:12 - 2016-12-08 09:12 - 0179203 _____ () C:\Program Files (x86)\uninstal.log 2015-06-23 20:17 - 2015-06-23 20:17 - 0007859 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.cat 2015-06-23 20:17 - 2015-06-23 20:17 - 0001167 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.inf 2015-06-23 20:17 - 2015-06-23 20:17 - 0082816 _____ (VSO Software) C:\Users\Antonio Carlos -ACAS\AppData\Roaming\pcouffin.sys 2016-12-23 08:06 - 2016-12-23 08:06 - 0018301 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Roaming\unins000.dat 2017-01-03 19:37 - 2017-01-03 19:37 - 0000001 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Local\llftool.4.40.agreement 2017-05-30 21:34 - 2017-05-30 21:50 - 0000438 _____ () C:\Users\Antonio Carlos -ACAS\AppData\Local\ReclaiMe.config 2017-05-18 22:04 - 2017-05-18 22:04 - 0000262 _____ () C:\ProgramData\fontcacheev1.dat 2017-05-30 21:34 - 2017-05-30 21:50 - 0000913 _____ () C:\ProgramData\ReclaiMe.config Arquivos para serem movidos ou deletados: ==================== C:\ProgramData\fontcacheev1.dat C:\Users\Antonio Carlos -ACAS\JavaSetup8u121.exe C:\Users\Antonio Carlos -ACAS\mp3rocket-pro.exe C:\Users\Antonio Carlos -ACAS\pw10-free.exe C:\Users\Antonio Carlos -ACAS\transmac-11-9.exe C:\Users\Antonio Carlos -ACAS\winbox.exe C:\Users\Todos os Usuários\fontcacheev1.dat ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2017-06-01 09:54 ==================== Fim de FRST.txt ============================