Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 23.04.2018 Executado por Teigor (administrador) em HOUSEPC14 (24-04-2018 00:08:48) Executando a partir de C:\Users\Teigor\Downloads Perfis Carregados: Teigor (Perfis Disponíveis: Teigor & Administrador) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Comodo) C:\Program Files\COMODO\Chromodo\chromodo_updater.exe (SEIKO EPSON CORPORATION) C:\Program Files\epson\EpsonCustomerParticipation\EPCP.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe (CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATIN8E.EXE (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-19] (NVIDIA Corporation) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation) HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1359064 2015-04-01] (COMODO) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1183256 2018-02-26] (Adobe Systems Incorporated) HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2017-12-06] (CANON INC.) HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2018-01-11] (CANON INC.) HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1087184 2018-01-29] (SEIKO EPSON CORPORATION) Winlogon\Notify\ GbPluginUni: C:\Program Files\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco) HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIN8E.EXE [262208 2014-03-20] (SEIKO EPSON CORPORATION) ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco) GroupPolicy: Restrição - Chrome <==== ATENÇÃO GroupPolicy\User: Restrição ? <==== ATENÇÃO CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) ProxyEnable: [.DEFAULT] => Proxy está habilitado. ProxyServer: [.DEFAULT] => http=127.0.0.1:51414;https=127.0.0.1:51414; AutoConfigURL: [.DEFAULT] => http=127.0.0.1:51414;https=127.0.0.1:51414; ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices. Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\..\Interfaces\{93CD5E9B-34CA-4C8F-8850-B34AFB3A2A70}: [NameServer] 192.168.2.1,192.168.2.12 Tcpip\..\Interfaces\{A6C96CD6-546E-447A-8CB2-4A8C68BC784A}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{CA8EE480-EDAC-4F37-8177-8698C23623B0}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{CCB76006-6B09-4610-8B86-CDD4DD2834A0}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{FA438C4F-8B5D-4340-8DDE-30D51F7B41F8}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-2827182975-328011247-3503174662-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-2827182975-328011247-3503174662-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-2827182975-328011247-3503174662-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.321oyun.com/?oem=smtov3&uid=9VMRVFZ0_ST3500418AS&tm=1431865482 SearchScopes: HKLM -> DefaultScope {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.searchult.com/?bd=ds&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454&q={searchTerms} SearchScopes: HKLM -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.searchult.com/?bd=ds&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454&q={searchTerms} SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2827182975-328011247-3503174662-1000 -> {7ED81DB8-BA60-4070-8F07-F72625E6B12A} URL = hxxps://www.google.com/search?q={searchTerms} BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-30] (Oracle Corporation) BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES\GBPLUGIN\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-30] (Oracle Corporation) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-26] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: jwbkuir3.default FF ProfilePath: C:\Users\Teigor\AppData\Roaming\Mozilla\Firefox\Profiles\jwbkuir3.default [2018-04-23] FF Extension: (FlashGot) - C:\Users\Teigor\AppData\Roaming\Mozilla\Firefox\Profiles\jwbkuir3.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-03-08] [Legacy] FF HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5 [2018-04-22] [Legacy] [não assinado] FF HKU\S-1-5-21-2827182975-328011247-3503174662-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Teigor\AppData\Roaming\IDM\idmmzcc5 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_29_0_0_140.dll [2018-04-11] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.) FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-30] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-30] (Oracle Corporation) FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation) FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-26] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-26] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2827182975-328011247-3503174662-1000: gastecnologia.com.br/sf/uni -> C:\Users\Teigor\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.google.com.br/ CHR StartupUrls: Default -> "hxxp://www.searchult.com/?bd=hp&oem=instlm&uid=ST3500418AS_9VMRVFZ0XXXX9VMRVFZ0&version=2.3.0.8956&pid=414031160&tid=454" CHR Profile: C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default [2018-04-24] CHR Extension: (Apresentações) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20] CHR Extension: (Documentos) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20] CHR Extension: (Google Drive) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23] CHR Extension: (Plugins Button) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfkmdpfljdpopbemfaelnflapafbflgn [2017-07-22] CHR Extension: (YouTube) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24] CHR Extension: (Google Search) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26] CHR Extension: (Adobe Acrobat) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-01-11] CHR Extension: (Planilhas) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20] CHR Extension: (Documentos Google off-line) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (AdBlock) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-04-20] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Gmail) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-15] CHR Extension: (Chrome Media Router) - C:\Users\Teigor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-21] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [iinglghmhcgdgjjlafobajghjamdchik] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-04-02] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 ChromodoUpdater; C:\Program Files\Comodo\Chromodo\chromodo_updater.exe [2306248 2015-05-18] (Comodo) R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4351816 2015-04-01] (COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664728 2015-04-01] (COMODO) S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [400656 2017-06-19] (EasyAntiCheat Ltd) R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [577088 2018-01-29] (SEIKO EPSON CORPORATION) R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [126128 2018-01-29] (Seiko Epson Corporation) R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [546104 2014-09-29] (GAS Tecnologia) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2014-12-19] (NVIDIA Corporation) R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [204576 2014-08-01] (Microsoft) R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-19] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18186896 2014-12-19] (NVIDIA Corporation) R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2017-06-03] (DEVGURU Co., LTD.) S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado] S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [22016 2014-05-01] (Apache Software Foundation) [Arquivo não assinado] S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [10959360 2014-05-01] () [Arquivo não assinado] R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [509752 2015-08-18] (GAS Tecnologia LTDA) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 admnfd; C:\Windows\system32\Drivers\admnfd.sys [43840 2014-12-04] (Windows (R) Win 7 DDK provider) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [32768 2018-01-07] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [37376 2018-01-07] (LG Electronics Inc.) R1 browserMon; C:\Windows\System32\DRIVERS\browserMon.sys [18112 2015-03-03] (Windows (R) Win 7 DDK provider) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17088 2015-04-01] (COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [621144 2015-04-01] (COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41248 2015-04-01] (COMODO) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-06-09] (Samsung Electronics Co., Ltd.) R3 DroidCam; C:\Windows\System32\DRIVERS\droidcam.sys [30008 2017-06-04] (Dev47Apps) R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [225720 2017-06-04] (Dev47Apps) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-26] (Disc Soft Ltd) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [21496 2017-12-22] () [Arquivo não assinado] R0 EPMVolFlt; C:\Windows\System32\drivers\EPMVolFlt.sys [17736 2017-12-22] (Windows (R) Codename Longhorn DDK provider) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10208 2017-12-22] () [Arquivo não assinado] S3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-13] (VIA Technologies, Inc. ) R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [47192 2014-07-21] (GAS Tecnologia) S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2016-03-22] (LogMeIn, Inc.) R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91200 2015-04-01] (COMODO) S3 msloop; C:\Windows\System32\DRIVERS\loop.sys [5632 2015-10-28] (Microsoft Corporation) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] () R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2018-02-04] (GAS Tecnologia) S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [657408 2009-07-13] (Ralink Technology Corp.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2014-12-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2014-12-19] (NVIDIA Corporation) S3 SamsungMonitorFirmware; C:\Windows\System32\drivers\MFWCtwl.sys [14848 2017-05-30] (Samsung Electronics, Inc. ) [Arquivo não assinado] S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-06-09] (Samsung Electronics Co., Ltd.) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [184216 2017-06-03] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2018-01-31] (Microsoft Corporation) R0 videX32; C:\Windows\System32\DRIVERS\videX32.sys [13976 1999-12-31] (VIA Technologies, Inc.) R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert32.sys [31448 2015-04-01] (Basil) R0 xfilt; C:\Windows\System32\DRIVERS\xfilt.sys [23192 1999-12-31] (VIA Technologies, Inc.) S3 catchme; \??\C:\Users\ADMINI~1\AppData\Local\Temp\catchme.sys [X] S2 sbmntr; \??\C:\PROGRA~1\YTDOWN~1\sbmntr.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] S1 wsfd_1_10_0_17; system32\drivers\wsfd_1_10_0_17.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três Meses Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2018-04-23 23:55 - 2018-04-23 23:56 - 000124711 _____ C:\Users\Teigor\Downloads\Addition.txt 2018-04-23 23:54 - 2018-04-24 00:09 - 000020251 _____ C:\Users\Teigor\Downloads\FRST.txt 2018-04-23 23:54 - 2018-04-24 00:08 - 000000000 ____D C:\FRST 2018-04-23 23:53 - 2018-04-23 23:53 - 001764864 _____ (Farbar) C:\Users\Teigor\Downloads\FRST.exe 2018-04-23 23:39 - 2018-04-23 23:39 - 000016224 _____ (Microsoft Corporation) C:\Users\Teigor\Desktop\api-ms-win-crt-runtime-l1-1-0.dll 2018-04-23 23:32 - 2018-04-23 23:32 - 000001364 _____ C:\Users\Teigor\Downloads\api-ms-win-core-console-l1-1-0.zip 2018-04-23 23:14 - 2018-04-23 23:14 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000064352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2018-04-23 23:13 - 2018-04-23 23:13 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2018-04-23 23:02 - 2018-04-23 23:02 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2018-04-23 23:00 - 2018-04-23 23:00 - 000259492 _____ C:\Users\Teigor\Downloads\PACK-api-ms-win.rar 2018-04-23 22:44 - 2018-04-23 22:44 - 000629006 _____ C:\Users\Teigor\Downloads\Windows6.1-KB2999226-x86.msu 2018-04-23 18:13 - 2018-04-23 18:13 - 000000559 _____ C:\Users\Teigor\Desktop\Drop da bateria.txt 2018-04-23 16:57 - 2018-04-23 16:57 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf 2018-04-23 16:56 - 2018-04-23 16:56 - 001461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2018-04-23 16:56 - 2018-04-23 16:56 - 000851176 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll 2018-04-23 16:56 - 2018-04-23 16:56 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\ADBDriverInstaller 2018-04-23 16:45 - 2018-04-23 16:47 - 011715584 _____ (ADBDriver.com) C:\Users\Teigor\Desktop\AdbDriverInstaller.exe 2018-04-22 21:59 - 2018-04-22 22:00 - 013767776 _____ (Microsoft Corporation) C:\Users\Teigor\Downloads\vc_redist.x86 (1).exe 2018-04-22 21:30 - 2018-04-22 21:30 - 013767776 _____ (Microsoft Corporation) C:\Users\Teigor\Downloads\vc_redist.x86.exe 2018-04-22 21:05 - 2018-04-22 21:05 - 486030767 _____ C:\Users\Teigor\Downloads\Custom ROM KitKat Genesis GT 8320.rar 2018-04-22 20:59 - 2018-04-22 20:59 - 000001011 _____ C:\Users\Public\Desktop\Kontakt 5.lnk 2018-04-22 20:59 - 2018-04-22 20:59 - 000000000 __HDC C:\Users\Todos os Usuários\{6C0AC9FD-47AA-4173-94B1-36C8B94B75EF} 2018-04-22 20:59 - 2018-04-22 20:59 - 000000000 __HDC C:\ProgramData\{6C0AC9FD-47AA-4173-94B1-36C8B94B75EF} 2018-04-22 20:51 - 2018-04-22 20:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments 2018-04-22 20:51 - 2018-04-22 20:52 - 000000000 ____D C:\Program Files\Native Instruments 2018-04-22 20:51 - 2018-04-22 20:51 - 000001056 _____ C:\Users\Public\Desktop\Service Center.lnk 2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 __HDC C:\Users\Todos os Usuários\{90D8CE90-3E6B-4034-A281-BC9F19B60A5B} 2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 __HDC C:\ProgramData\{90D8CE90-3E6B-4034-A281-BC9F19B60A5B} 2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 ____D C:\Users\Todos os Usuários\Native Instruments 2018-04-22 20:51 - 2018-04-22 20:51 - 000000000 ____D C:\ProgramData\Native Instruments 2018-04-22 12:55 - 2015-04-21 00:04 - 000000000 ____D C:\Users\Teigor\Desktop\Optional BatteryMODS 2018-04-22 12:54 - 2018-04-22 12:54 - 000003058 _____ C:\Users\Teigor\Desktop\Leia-me.txt 2018-04-22 12:54 - 2015-04-20 22:01 - 000000000 ____D C:\Users\Teigor\Desktop\FirmwareInstall 2018-04-22 12:26 - 2018-04-22 12:54 - 361246142 _____ C:\Users\Teigor\Desktop\Project-X-KK-GT7305_full_v2.1_antop.rar 2018-04-21 12:34 - 2018-04-21 12:36 - 003424256 _____ C:\Users\Teigor\Downloads\twrp-2.8.5.0-twrp.img 2018-04-21 12:31 - 2018-04-21 12:33 - 004802560 _____ C:\Users\Teigor\Downloads\twrp-3.2.1-0-twrp.img 2018-04-20 17:44 - 2018-04-20 17:44 - 000128100 _____ C:\Users\Teigor\Documents\Comunicação de massa.pdf 2018-04-20 17:02 - 2018-04-20 17:43 - 000000000 ____D C:\Users\Teigor\Desktop\Comunicação em massa 2018-04-11 15:58 - 2018-04-11 15:58 - 003396608 _____ C:\Users\Teigor\Downloads\subst org283201183847.ppt 2018-04-10 14:31 - 2018-04-10 14:36 - 000000000 ____D C:\Users\Teigor\Desktop\Nova pasta (3) 2018-04-02 13:53 - 2018-04-02 13:54 - 000000000 ____D C:\Users\Teigor\Desktop\Projeçoes cartograficas 2018-04-01 07:46 - 2018-04-01 07:50 - 000000000 ____D C:\Users\Teigor\Desktop\SOUND FORGE 8.0 2018-04-01 07:40 - 2018-04-01 07:40 - 000000000 ____D C:\Windows\system32\URTTEMP 2018-03-27 15:02 - 2018-04-06 18:02 - 000000000 ____D C:\Users\Teigor\Desktop\hóquei no gelo 2018-03-15 17:26 - 2018-04-09 10:43 - 000000000 ____D C:\Users\Teigor\Desktop\Juan Carlos Ceriani 2018-03-09 04:59 - 2018-03-09 04:59 - 000396864 _____ C:\Windows\Minidump\030918-22218-01.dmp 2018-02-25 13:30 - 2018-02-25 13:30 - 000105505 _____ C:\Users\Teigor\Downloads\EFEITOS.zip 2018-02-16 22:35 - 2018-02-16 22:35 - 000000943 _____ C:\Users\Teigor\Desktop\Bandicam.lnk 2018-02-16 22:35 - 2018-02-16 22:35 - 000000943 _____ C:\Users\Administrador\Desktop\Bandicam.lnk 2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam 2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\Program Files\BandiMPEG1 2018-02-16 22:35 - 2018-02-16 22:35 - 000000000 ____D C:\Program Files\Bandicam 2018-02-16 02:04 - 2018-02-16 22:54 - 000000000 ____D C:\Users\Teigor\Documents\VideoOutput 2018-02-16 02:04 - 2018-02-16 02:04 - 000000968 _____ C:\Users\Public\Desktop\Video to Video.lnk 2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\Users\Teigor\Documents\Snapshot 2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video to Video 2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters 2018-02-16 02:04 - 2018-02-16 02:04 - 000000000 ____D C:\Program Files\Video to Video 2018-02-16 02:03 - 2018-02-16 02:03 - 023279669 _____ (Media Converters ) C:\Users\Teigor\Downloads\Baixaki_video-to-video-converter [1].exe 2018-02-16 01:55 - 2018-02-16 01:55 - 000000000 ____D C:\Users\Teigor\AppData\Local\fontconfig 2018-02-16 01:51 - 2018-02-16 01:51 - 000001022 _____ C:\Users\Teigor\Desktop\Format Factory.lnk 2018-02-16 01:51 - 2018-02-16 01:51 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory 2018-02-16 01:50 - 2018-02-16 01:51 - 000000000 ____D C:\Program Files\FormatFactory 2018-02-16 01:40 - 2018-02-16 01:47 - 047406728 _____ (Free Time Co., Ltd) C:\Users\Teigor\Downloads\FFSetup3-9-5-0.exe 2018-02-12 20:45 - 2018-02-12 20:49 - 000000000 ____D C:\Program Files\Stellar Phoenix Video Repair 2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 _RSHD C:\Users\Todos os Usuários\Key-Base 2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 _RSHD C:\ProgramData\Key-Base 2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 ____D C:\Users\Todos os Usuários\{150F1331-4628-F8AE-D54D-EC3B4EF34666} 2018-02-12 20:45 - 2018-02-12 20:45 - 000000000 ____D C:\ProgramData\{150F1331-4628-F8AE-D54D-EC3B4EF34666} 2018-02-12 18:31 - 2018-02-12 18:31 - 000000004 _____ C:\Users\Teigor\movdump.lic 2018-02-12 18:29 - 2018-02-12 19:02 - 000000000 ____D C:\Users\Teigor\Desktop\videorepair 2018-02-12 17:57 - 2018-02-12 17:57 - 033129681 _____ C:\Users\Teigor\Downloads\Videorepair + Crack -Uai tutoriais.rar 2018-02-12 16:47 - 2018-02-12 16:47 - 000000000 ____D C:\Users\Teigor\Desktop\Nova pasta (2) 2018-02-12 00:46 - 2018-02-12 00:46 - 000000959 _____ C:\Users\Teigor\Desktop\V Collection 5.lnk 2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia 2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\Program Files\Steinberg 2018-02-12 00:46 - 2018-02-12 00:46 - 000000000 ____D C:\Program Files\Common Files\VST3 2018-02-12 00:05 - 2018-02-12 00:45 - 000000000 ____D C:\Users\Todos os Usuários\Arturia 2018-02-12 00:05 - 2018-02-12 00:45 - 000000000 ____D C:\ProgramData\Arturia 2018-02-12 00:05 - 2018-02-12 00:05 - 000000000 ____D C:\Program Files\Arturia 2018-02-07 22:55 - 2018-02-07 22:57 - 037386440 _____ C:\Users\Teigor\Downloads\WhatsApp.apk 2018-02-01 10:25 - 2018-02-01 10:25 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Epson 2018-01-31 14:37 - 2018-01-31 14:37 - 000114168 _____ C:\Users\Teigor\Downloads\com.cyandroid.pianofull.52.apk 2018-01-31 14:33 - 2018-01-31 14:33 - 000431807 _____ C:\Users\Teigor\Downloads\com.cyandroid.piano-2.0.10@APK4Fun.com.apk 2018-01-29 21:04 - 2018-01-29 21:04 - 000308683 _____ C:\Users\Teigor\Downloads\ESWIN_USB_v0.6j_Install.exe 2018-01-29 21:04 - 2018-01-29 21:04 - 000000918 _____ C:\Users\Teigor\Desktop\ESWin.lnk 2018-01-29 21:04 - 2018-01-29 21:04 - 000000918 _____ C:\Users\Administrador\Desktop\ESWin.lnk 2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESWIN 2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESWin 2018-01-29 21:04 - 2018-01-29 21:04 - 000000000 ____D C:\Program Files\ESWin 2018-01-29 20:45 - 2018-01-29 20:45 - 000000000 ____D C:\Adjustment Program 2018-01-29 20:42 - 2018-01-29 20:42 - 000000042 _____ C:\Windows\L375.ini 2018-01-29 20:42 - 2018-01-29 20:42 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\Leadertech 2018-01-29 20:40 - 2018-02-02 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2018-01-29 20:40 - 2018-02-02 18:56 - 000000000 ____D C:\Program Files\EPSON Software 2018-01-29 20:40 - 2018-01-29 20:40 - 000000967 _____ C:\Users\Public\Desktop\EPSON Scan.lnk 2018-01-29 20:40 - 2018-01-29 20:40 - 000000000 ____D C:\Program Files\EpsonNet 2018-01-29 20:40 - 2018-01-29 20:39 - 000126128 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc.exe 2018-01-29 20:40 - 2014-06-02 23:00 - 000347136 _____ (Seiko Epson Corporation) C:\Windows\system32\esw2ud.dll 2018-01-29 20:39 - 2018-01-29 20:41 - 000000000 ____D C:\Program Files\epson 2018-01-29 20:39 - 2018-01-29 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2018-01-29 20:39 - 2018-01-29 20:39 - 000000919 _____ C:\Windows\Tasks\EPSON L375 Series Update {33DC29C5-87FB-4A2C-93E2-46809ED19FCC}.job 2018-01-29 20:39 - 2018-01-29 20:39 - 000000000 ____D C:\Program Files\Common Files\EPSON 2018-01-29 20:38 - 2018-02-02 18:56 - 000000000 ____D C:\Users\Todos os Usuários\EPSON 2018-01-29 20:38 - 2018-02-02 18:56 - 000000000 ____D C:\ProgramData\EPSON 2018-01-29 20:38 - 2018-01-29 20:38 - 000142848 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TLMBN8E.DLL 2018-01-29 20:38 - 2018-01-29 20:38 - 000081408 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TD4BN8E.DLL 2018-01-29 20:38 - 2018-01-29 20:38 - 000008192 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_DCINST.DLL 2018-01-29 20:17 - 2018-01-29 20:18 - 013473720 _____ C:\Users\Teigor\Downloads\L375_Win_Lite_1.2APS_FD.exe 2018-01-28 20:47 - 2018-01-28 20:47 - 006489435 _____ C:\Users\Teigor\Desktop\LuckyPatchers.com_Official_V7.0.4.apk 2018-01-28 20:47 - 2018-01-28 20:47 - 000000000 ____D C:\Users\Teigor\Downloads\LuckyPatchers.com_Official_V7.0.4 2018-01-28 20:46 - 2018-01-28 20:47 - 004548995 _____ C:\Users\Teigor\Downloads\LuckyPatchers.com_Official_V7.0.4.zip 2018-01-28 20:41 - 2018-01-28 20:44 - 018980443 _____ C:\Users\Teigor\Downloads\lucky-patcher.apk 2018-01-28 19:57 - 2018-01-28 20:20 - 058549093 _____ C:\Users\Teigor\Downloads\AndRig - Guitar Amp & Effects v2.4.6 [Unlocked].apk 2018-01-28 19:38 - 2018-01-28 19:52 - 047844941 _____ C:\Users\Teigor\Downloads\com.deplike.andrig.apk ==================== Três Meses Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2018-04-24 00:05 - 2015-05-18 21:10 - 001474832 _____ C:\Windows\system32\Drivers\sfi.dat 2018-04-23 23:23 - 2009-07-14 01:34 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-04-23 23:23 - 2009-07-14 01:34 - 000016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-04-23 23:16 - 2009-07-14 01:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-04-23 23:15 - 2014-08-21 22:56 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA 2018-04-23 23:15 - 2014-08-21 22:56 - 000000000 ____D C:\ProgramData\NVIDIA 2018-04-23 23:09 - 2015-06-25 23:34 - 000400544 _____ (Microsoft Corporation) C:\Windows\system32\vcamp140.dll 2018-04-23 16:57 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\inf 2018-04-23 02:01 - 2014-08-23 23:19 - 000000000 ____D C:\Users\Teigor\AppData\Local\Adobe 2018-04-22 21:45 - 2015-05-18 20:34 - 000000000 ____D C:\Users\Teigor\AppData\Roaming\DMCache 2018-04-22 21:17 - 2014-08-21 18:55 - 001678450 _____ C:\Windows\system32\PerfStringBackup.INI 2018-04-22 21:17 - 2009-07-14 05:31 - 000718648 _____ C:\Windows\system32\prfh0416.dat 2018-04-22 21:17 - 2009-07-14 05:31 - 000155842 _____ C:\Windows\system32\prfc0416.dat 2018-04-22 20:52 - 2017-07-24 11:24 - 000000000 ____D C:\Program Files\Common Files\Native Instruments 2018-04-22 20:50 - 2014-09-01 21:22 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache 2018-04-22 20:50 - 2014-09-01 21:22 - 000000000 ____D C:\ProgramData\Package Cache 2018-04-22 20:43 - 2017-07-22 00:04 - 000000000 ____D C:\Users\Teigor\Projetos Musicais 2018-04-22 20:37 - 2014-08-21 18:50 - 000000000 ____D C:\Users\Teigor 2018-04-20 17:45 - 2014-10-01 22:14 - 000111616 ___SH C:\Users\Teigor\Documents\Thumbs.db 2018-04-11 19:45 - 2014-11-02 09:34 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2018-04-11 19:45 - 2014-11-02 09:34 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2018-04-11 19:45 - 2014-09-26 10:42 - 000000000 ____D C:\Windows\system32\Macromed 2018-04-10 13:29 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\system32\NDF 2018-04-07 17:23 - 2014-09-06 11:57 - 000000000 ____D C:\Users\Teigor\.aria2 2018-04-07 14:45 - 2014-10-22 11:58 - 000104960 ___SH C:\Users\Teigor\Thumbs.db 2018-04-06 12:54 - 2017-07-22 00:45 - 000000894 __RSH C:\Users\Todos os Usuários\ntuser.pol 2018-04-06 12:54 - 2017-07-22 00:45 - 000000894 __RSH C:\ProgramData\ntuser.pol 2018-04-02 10:42 - 2017-06-04 09:02 - 000000035 _____ C:\Users\Todos os Usuários\droidcam-settings 2018-04-02 10:42 - 2017-06-04 09:02 - 000000035 _____ C:\ProgramData\droidcam-settings 2018-04-01 07:41 - 2009-07-13 23:37 - 000000000 ____D C:\Windows\registration 2018-03-28 19:47 - 2014-09-26 14:41 - 000000000 ____D C:\Users\Teigor\AppData\Local\ElevatedDiagnostics ==================== Arquivos na raiz de alguns diretórios ======= 2016-11-28 14:32 - 2018-02-10 07:49 - 000000096 _____ () C:\Users\Teigor\AppData\Roaming\Camdata.ini 2016-11-28 14:32 - 2018-02-10 07:49 - 000000408 _____ () C:\Users\Teigor\AppData\Roaming\CamLayout.ini 2016-11-28 14:32 - 2018-02-10 07:49 - 000000408 _____ () C:\Users\Teigor\AppData\Roaming\CamShapes.ini 2016-11-28 14:32 - 2018-02-10 07:49 - 000004509 _____ () C:\Users\Teigor\AppData\Roaming\CamStudio.cfg 2015-11-13 12:00 - 2015-11-13 15:19 - 000000600 _____ () C:\Users\Teigor\AppData\Roaming\winscp.rnd 2015-01-15 11:55 - 2015-01-15 11:55 - 000000038 ___SH () C:\Users\Teigor\AppData\Local\69ff07055291669bb2b218.72821112 2014-08-26 09:29 - 2017-10-17 20:58 - 000000600 _____ () C:\Users\Teigor\AppData\Local\PUTTY.RND 2014-08-21 18:55 - 2015-05-13 13:27 - 000007605 _____ () C:\Users\Teigor\AppData\Local\resmon.resmoncfg Alguns arquivos em TEMP: ==================== 2013-08-05 03:15 - 2013-08-05 03:15 - 004292136 _____ (www.Bandisoft.com) C:\Users\Teigor\AppData\Local\temp\bdfilters.dll 2017-12-01 20:22 - 2017-12-01 20:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1091371423767370480.dll 2017-12-24 08:07 - 2017-12-24 08:07 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1156335590356693935.dll 2017-12-03 15:00 - 2017-12-03 15:00 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1387513744070915830.dll 2017-12-17 12:11 - 2017-12-17 12:11 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1416710207593670899.dll 2017-11-10 15:51 - 2017-11-10 15:51 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1477127123835203798.dll 2017-12-18 08:20 - 2017-12-18 08:20 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1567719341639438263.dll 2017-12-12 20:24 - 2017-12-12 20:24 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1595404144871301619.dll 2017-11-26 14:54 - 2017-11-26 14:54 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-1807912310135813574.dll 2018-01-07 19:26 - 2018-01-07 19:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2062668053664517090.dll 2017-12-28 21:10 - 2017-12-28 21:10 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2086515452821349819.dll 2017-11-14 19:30 - 2017-11-14 19:30 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2156315789689334.dll 2017-12-24 00:55 - 2017-12-24 00:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2413208182066942050.dll 2017-11-11 12:06 - 2017-11-11 12:06 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2425845826561315157.dll 2017-11-09 16:00 - 2017-11-09 16:00 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2505193955064825318.dll 2017-11-13 19:08 - 2017-11-13 19:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2526846373789252422.dll 2017-11-03 13:34 - 2017-11-03 13:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2539654218900271099.dll 2017-12-18 19:44 - 2017-12-18 19:44 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2566645535392264984.dll 2017-12-17 22:12 - 2017-12-17 22:12 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2664832255793627823.dll 2017-11-11 18:09 - 2017-11-11 18:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2716468064958746895.dll 2017-11-26 22:42 - 2017-11-26 22:42 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2732379316322986995.dll 2017-12-06 20:58 - 2017-12-06 20:58 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2854815022031084471.dll 2017-11-19 22:22 - 2017-11-19 22:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2895025751228986576.dll 2017-11-08 12:27 - 2017-11-08 12:27 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-2912930658035838343.dll 2017-12-26 20:58 - 2017-12-26 20:58 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3091735438934970033.dll 2017-12-24 08:17 - 2017-12-24 08:17 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3153501252876286859.dll 2017-11-15 20:50 - 2017-11-15 20:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3388305781062489055.dll 2017-11-14 16:47 - 2017-11-14 16:47 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3489443416293279022.dll 2017-11-09 08:38 - 2017-11-09 08:38 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3526521850035438528.dll 2017-12-24 21:22 - 2017-12-24 21:22 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3650012044910073035.dll 2017-11-19 21:55 - 2017-11-19 21:55 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3738722485089496150.dll 2017-12-13 03:29 - 2017-12-13 03:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3775954583906268269.dll 2017-12-20 00:29 - 2017-12-20 00:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3843590259468493503.dll 2017-11-12 11:48 - 2017-11-12 11:48 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3906366525917647683.dll 2017-12-19 21:42 - 2017-12-19 21:42 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3987758530224947686.dll 2017-12-05 19:33 - 2017-12-05 19:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-3990223268855252060.dll 2017-11-05 12:53 - 2017-11-05 12:53 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4063393546085919434.dll 2017-11-06 15:51 - 2017-11-06 15:51 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4150449214236809667.dll 2017-11-18 10:09 - 2017-11-18 10:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4150998588922092675.dll 2017-11-19 21:26 - 2017-11-19 21:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4264892956358154711.dll 2017-11-09 16:54 - 2017-11-09 16:54 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4398530712562065018.dll 2017-11-07 08:27 - 2017-11-07 08:27 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4514621137394281089.dll 2017-11-07 08:33 - 2017-11-07 08:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4550631402071037550.dll 2017-12-18 08:13 - 2017-12-18 08:13 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4563184743047097283.dll 2017-12-09 07:09 - 2017-12-09 07:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4642390963835310315.dll 2017-12-24 19:30 - 2017-12-24 19:30 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4689489484746632727.dll 2017-12-16 02:18 - 2017-12-16 02:18 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4741788527000479788.dll 2017-12-17 08:47 - 2017-12-17 08:47 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4837480339462984022.dll 2017-11-04 13:37 - 2017-11-04 13:37 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-4916498597991676016.dll 2017-11-13 01:10 - 2017-11-13 01:10 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5003780218836374692.dll 2017-11-14 13:51 - 2017-11-14 13:51 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5007726753245682932.dll 2017-11-29 19:36 - 2017-11-29 19:36 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5125878059882063926.dll 2017-11-05 21:50 - 2017-11-05 21:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5254371755334644958.dll 2017-11-18 18:59 - 2017-11-18 18:59 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5263914632188435094.dll 2017-11-26 15:01 - 2017-11-26 15:01 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5277983374770517667.dll 2017-11-04 13:26 - 2017-11-04 13:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-541796380414952506.dll 2017-11-20 16:31 - 2017-11-20 16:31 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5619114013043857464.dll 2017-12-29 11:36 - 2017-12-29 11:36 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-5916443695039896703.dll 2017-12-16 19:09 - 2017-12-16 19:09 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6037979153556383403.dll 2017-11-30 19:10 - 2017-11-30 19:10 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6204376989785749582.dll 2017-12-24 07:59 - 2017-12-24 07:59 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6279531150675278146.dll 2017-12-05 21:55 - 2017-12-05 21:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6324577905750310215.dll 2017-12-11 00:47 - 2017-12-11 00:47 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6726017569146285915.dll 2017-11-10 07:56 - 2017-11-10 07:56 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6762594375011440769.dll 2017-12-05 11:43 - 2017-12-05 11:43 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6782055650071171005.dll 2017-11-13 22:08 - 2017-11-13 22:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6913094635268426785.dll 2017-12-20 21:50 - 2017-12-20 21:50 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-694198932138518342.dll 2017-12-28 20:34 - 2017-12-28 20:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6946637863619716878.dll 2017-12-20 21:26 - 2017-12-20 21:26 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-6960304283981496306.dll 2017-11-27 19:05 - 2017-11-27 19:05 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7055588390321028610.dll 2017-11-28 19:24 - 2017-11-28 19:24 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7343328348145554450.dll 2017-12-24 20:46 - 2017-12-24 20:46 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7363047084553755051.dll 2017-11-17 22:14 - 2017-11-17 22:14 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7458852769060475294.dll 2017-11-28 11:07 - 2017-11-28 11:07 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7543866751837789700.dll 2017-11-27 08:21 - 2017-11-27 08:21 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7571873208172968670.dll 2017-11-27 19:08 - 2017-11-27 19:08 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7579484657152559724.dll 2017-11-27 19:34 - 2017-11-27 19:34 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-7786435389752508004.dll 2017-12-03 23:44 - 2017-12-03 23:44 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8268673286796483135.dll 2017-11-10 12:21 - 2017-11-10 12:21 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8369077996517167016.dll 2017-11-05 13:35 - 2017-11-05 13:35 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8391561761335848930.dll 2017-12-13 19:29 - 2017-12-13 19:29 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8601618099310097044.dll 2017-11-25 12:33 - 2017-11-25 12:33 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8617743122658378940.dll 2017-11-19 21:55 - 2017-11-19 21:55 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8767598716626346928.dll 2017-12-18 08:19 - 2017-12-18 08:19 - 000017408 _____ (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8891075873315740649.dll 2017-12-18 08:20 - 2017-12-18 08:20 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-8909456297867713766.dll 2017-11-04 11:20 - 2017-11-04 11:20 - 000017408 ____N (Red Hat®, Inc.) C:\Users\Teigor\AppData\Local\temp\jansi-32-9027917338178594090.dll 2017-12-06 18:19 - 2017-12-06 18:19 - 001052704 ____N (CANON INC.) C:\Users\Teigor\AppData\Local\temp\MSETUP4.EXE 2017-12-06 18:21 - 2017-12-06 18:19 - 000354392 _____ (CANON INC.) C:\Users\Teigor\AppData\Local\temp\uninstall.exe 2018-02-03 22:27 - 2006-05-23 00:00 - 000455600 _____ (Macrovision Corporation) C:\Users\Teigor\AppData\Local\temp\_is2AE1.exe 2018-02-03 22:27 - 2006-05-23 00:00 - 000455600 _____ (Macrovision Corporation) C:\Users\Teigor\AppData\Local\temp\_isA2A6.exe ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2018-04-18 00:11 ==================== Fim de FRST.txt ============================