Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 15.04.2018
Executado por PC (administrador) em PC-PC (15-04-2018 12:18:25)
Executando a partir de C:\Users\PC\Desktop
Perfis Carregados: PC (Perfis Disponíveis: PC)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Encore\Common\RaRegistry.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Encore\Common\RaRegistry64.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Encore Electronics, Inc.) C:\Program Files (x86)\Encore\Common\RaUI.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Users\PC\AppData\Local\Google\Chrome\User Data\SwReporter\28.150.200\software_reporter_tool.exe
(Google) C:\Users\PC\AppData\Local\Google\Chrome\User Data\SwReporter\28.150.200\software_reporter_tool.exe
(Google) C:\Users\PC\AppData\Local\Google\Chrome\User Data\SwReporter\28.150.200\software_reporter_tool.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11613288 2010-11-19] (Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [291056 2018-04-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-10-01] (Raptr, Inc)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2195968 2018-03-22] ()
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1935936 2016-12-12] (APN)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [17074688 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3199776 2018-04-02] (Valve Corporation)
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3682968 2018-03-08] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\MountPoints2: {39b11dd8-61a9-11e5-b115-08626699699b} - F:\setup.exe
HKU\S-1-5-21-1174190188-255333055-695427571-1000\...\MountPoints2: {815340f4-6597-11e5-9a28-08626699699b} - F:\setup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Encore Wireless Utility.lnk [2018-02-09]
ShortcutTarget: Encore Wireless Utility.lnk -> C:\Program Files (x86)\Encore\Common\RaUI.exe (Encore Electronics, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{5612964D-3570-4719-850E-DBB44DAE3293}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7E508FBA-7A55-421B-B4A0-A2EE5000844D}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{86A68164-4EEF-4B9E-B0D3-CB5790DABBBE}: [DhcpNameServer] 192.168.15.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1174190188-255333055-695427571-1000 -> {58DF21FF-613B-4BAD-A555-1A53A4809050} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-1174190188-255333055-695427571-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={14A9487C-CD9C-463F-999A-1776A719227C}&mid=c517723356fd47cd8fc2d92b207d8068-348165d00062e6ec7e5dedf48e44a6724569b4fb&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=1215tb&pr=fr&d=2015-09-29 14:42:22&v=4.3.1.831&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-11-22] (Oracle Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-03-22] (AVG)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-22] (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [Nenhum Arquivo]
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\warsaw.cfg [2018-04-15] <==== ATENÇÃO

Chrome:
=======
CHR HomePage: Default -> teoma.com
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2018-04-15]
CHR Extension: (Apresentações) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-14]
CHR Extension: (Documentos) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-14]
CHR Extension: (Google Drive) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-14]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-14]
CHR Extension: (Yahoo Partner) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedgghdcpmmmilkmfpnklknlenbiolec [2018-04-14]
CHR Extension: (Adobe Acrobat) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-04-14]
CHR Extension: (Planilhas) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-14]
CHR Extension: (Teoma) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhnobihfdnklhoilcilfogdcegekpgfn [2018-04-14]
CHR Extension: (Documentos Google off-line) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-04-14]
CHR Extension: (AdBlock) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-04-14]
CHR Extension: (Yahoo Partner) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2018-04-14]
CHR Extension: (Yahoo Partner) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdmjodecdegfglgaapafjleomjjlpnh [2018-04-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-14]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-04-14]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-14]
CHR HKLM\...\Chrome\Extension: [fhnobihfdnklhoilcilfogdcegekpgfn] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\fhnobihfdnklhoilcilfogdcegekpgfn.crx [2016-12-14]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhnobihfdnklhoilcilfogdcegekpgfn] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\fhnobihfdnklhoilcilfogdcegekpgfn.crx [2016-12-14]
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [Arquivo não assinado]
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [202304 2016-11-15] (APN LLC.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [314688 2018-04-12] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7653992 2018-04-12] (AVG Technologies CZ, s.r.o.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1468608 2016-10-06] (Disc Soft Ltd)
R2 RalinkRegistryWriter; C:\Program Files (x86)\Encore\Common\RaRegistry.exe [185632 2009-10-20] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\Encore\Common\RaRegistry64.exe [212256 2009-10-20] (Ralink Technology, Corp.)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2018-03-09] (Sandboxie Holdings, LLC)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [1995208 2017-05-05] (Scopus Soluções em TI Ltda)
R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-03-22] (AVG Secure Search)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1068376 2017-10-20] (GAS Tecnologia LTDA)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-03-22] ()
S2 ggbugreport; "C:\Program Files (x86)\SearchesToYesbnd\bugreport.exe" {154DFF63-3402-4815-941A-AAD63AE8B428} [X]
S2 RTLDHCPService; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe [X]

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [189032 2018-04-12] (AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\Windows\System32\drivers\avgbdiska.sys [166064 2018-04-12] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [220600 2018-04-12] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [192536 2018-04-12] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [336848 2018-04-12] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [50776 2018-04-12] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-04-12] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [139608 2018-04-12] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [103744 2018-04-12] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [76760 2018-04-12] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1019088 2018-04-12] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [452904 2018-04-12] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [198368 2018-04-12] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [372920 2018-04-12] (AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-10-16] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-10-16] (Disc Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-17] ()
R3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2246488 2015-11-19] (MediaTek Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228208 2018-03-09] (Sandboxie Holdings, LLC)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [28376 2018-04-15] (GAS Tecnologia)
R1 wsddntf; C:\Windows\System32\DRIVERS\wsddntf.sys [36984 2016-06-16] (GAS Tecnologia)
S1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [44624 2017-11-29] (GAS Tecnologia)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [43608 2017-11-29] (GAS Tecnologia)
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-04-15 12:18 - 2018-04-15 12:19 - 000020980 _____ C:\Users\PC\Desktop\FRST.txt
2018-04-15 12:17 - 2018-04-15 12:18 - 000000000 ____D C:\FRST
2018-04-15 12:17 - 2018-04-15 12:16 - 002403328 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2018-04-15 01:23 - 2018-04-15 01:23 - 000003176 _____ C:\Windows\System32\Tasks\{FDE71020-E174-49A1-8FF1-D1F3BB1E32D5}
2018-04-15 01:23 - 2018-04-15 01:23 - 000000000 ____D C:\Users\PC\AppData\Local\VirtualStore
2018-04-15 00:56 - 2018-04-15 12:16 - 000000000 ____D C:\Users\PC\Desktop\Clube do Hardwere
2018-04-14 23:26 - 2018-04-14 23:26 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\PC\Downloads\rkill.exe
2018-04-14 23:18 - 2018-04-14 23:05 - 000024064 _____ C:\Windows\zoek-delete.exe
2018-04-14 20:53 - 2018-04-15 01:45 - 000000000 ____D C:\Users\PC\Documents\Arquivos do Outlook
2018-04-14 02:26 - 2018-04-14 02:26 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-04-12 23:24 - 2018-04-12 23:24 - 000377584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2018-04-12 11:36 - 2018-04-12 11:36 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-03-31 21:11 - 2018-03-31 21:12 - 003889136 _____ (Blizzard Entertainment) C:\Users\PC\Desktop\Battle.net-Setup.exe
2018-03-30 16:25 - 2018-03-30 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2018-03-28 22:59 - 2018-03-28 22:59 - 000000222 _____ C:\Users\PC\Desktop\Tree of Savior (English Ver.).url
2018-03-15 19:21 - 2015-11-19 15:57 - 000079216 _____ C:\Windows\SysWOW64\Drivers\FW_7662.bin
2018-03-15 19:21 - 2015-11-19 15:57 - 000079216 _____ C:\Windows\system32\Drivers\FW_7662.bin
2018-03-15 19:21 - 2015-11-19 15:57 - 000020626 _____ C:\Windows\SysWOW64\Drivers\Patch_7662.bin
2018-03-15 19:21 - 2015-11-19 15:57 - 000020626 _____ C:\Windows\system32\Drivers\Patch_7662.bin
2018-03-15 19:20 - 2018-03-15 19:20 - 000000000 ____D C:\Users\Todos os Usuários\Mediatek Driver
2018-03-15 19:20 - 2018-03-15 19:20 - 000000000 ____D C:\ProgramData\Mediatek Driver
2018-03-15 19:20 - 2015-11-19 16:06 - 002246488 _____ (MediaTek Inc.) C:\Windows\system32\Drivers\netr28ux.sys
2018-03-15 19:20 - 2015-11-19 16:06 - 000343712 _____ (Mediatek Inc.) C:\Windows\system32\RaCoInstx.dll
2018-03-15 19:20 - 2015-11-19 15:57 - 000016389 _____ C:\Windows\system32\RaCoInst.dat
2018-03-15 19:07 - 2012-02-14 19:37 - 000594432 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll
2018-03-15 19:07 - 2010-12-01 09:31 - 000451072 _____ C:\Windows\SysWOW64\ISSRemoveSP.exe
2018-03-15 19:07 - 2009-03-31 14:31 - 000380928 _____ (Realtek) C:\Windows\RtlUI2.exe
2018-03-15 19:07 - 2009-01-05 20:31 - 000000901 _____ C:\Windows\RtlUI2.exe.manifest
2018-03-15 19:07 - 2008-07-01 12:31 - 000614400 _____ (Realtek Semiconductor Corp. ) C:\Windows\SysWOW64\Rtlihvs.dll
2018-03-15 19:07 - 2007-04-26 14:05 - 000100000 _____ C:\Windows\SysWOW64\EAPPkt9x.VXD
2018-03-15 19:07 - 2001-09-26 11:03 - 000012981 _____ C:\Windows\SysWOW64\REALPKT.VXD
2018-03-14 20:35 - 2018-03-14 20:58 - 000000000 ____D C:\Users\PC\AppData\Roaming\tree-of-savior-addon-manager
2018-03-14 20:34 - 2018-03-14 20:34 - 000000000 ____D C:\Users\PC\Desktop\Tree.of.Savior.Addon.Manager-win32-ia32
2018-03-14 00:32 - 2018-03-14 00:33 - 000000000 ____D C:\Users\PC\Documents\Rayman Legends
2018-03-14 00:18 - 2018-03-14 00:22 - 000001201 _____ C:\Users\Public\Desktop\Rayman Legends.lnk
2018-03-13 00:16 - 2018-03-13 00:16 - 000000000 ____D C:\Users\PC\AppData\Local\Fallout4
2018-03-13 00:15 - 2018-03-13 00:15 - 000000759 _____ C:\Users\Public\Desktop\Fallout 4.lnk
2018-03-13 00:15 - 2018-03-13 00:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout 4
2018-03-12 23:48 - 2018-03-12 23:48 - 000000000 ____D C:\Games
2018-03-07 13:46 - 2018-03-07 13:49 - 000001195 _____ C:\Users\PC\Desktop\Titan Quest Anniversary Edition Ragnarok.lnk
2018-03-07 13:46 - 2018-03-07 13:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Titan Quest Anniversary Edition Ragnarok
2018-03-07 13:36 - 2018-03-07 13:47 - 000000000 ____D C:\Program Files (x86)\Titan Quest Anniversary Edition Ragnarok
2018-03-07 03:06 - 2018-03-07 03:06 - 000001959 _____ C:\Users\PC\Desktop\forced - Atalho.lnk
2018-03-05 22:24 - 2018-03-05 22:24 - 000000000 ____D C:\Users\PC\AppData\Roaming\Arrowhead
2018-03-05 22:22 - 2018-03-05 22:22 - 000001295 _____ C:\Users\PC\Desktop\Gauntlet Slayer Edition.lnk
2018-03-05 22:22 - 2018-03-05 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gauntlet Slayer Edition
2018-03-05 22:21 - 2018-03-05 22:22 - 000000000 ____D C:\Program Files (x86)\Gauntlet Slayer Edition
2018-03-04 16:51 - 2018-03-04 16:51 - 000000000 ____D C:\Users\PC\AppData\Roaming\ParadoxInteractive
2018-03-04 16:45 - 2018-03-04 16:45 - 000000916 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magicka 2.lnk
2018-03-04 16:45 - 2018-03-04 16:45 - 000000904 _____ C:\Users\Public\Desktop\Magicka 2.lnk
2018-03-04 16:45 - 2018-03-04 16:45 - 000000000 ____D C:\Program Files (x86)\Magicka 2
2018-03-03 14:14 - 2018-04-06 17:41 - 000000000 ____D C:\Users\PC\AppData\Local\ElevatedDiagnostics
2018-03-03 12:53 - 2018-03-03 12:53 - 000000000 ____D C:\Users\PC\AppData\Local\FLT
2018-03-03 12:48 - 2018-03-03 12:48 - 000001928 _____ C:\Users\Public\Desktop\Castle Crashers.lnk
2018-03-03 12:48 - 2018-03-03 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Castle Crashers
2018-03-03 12:47 - 2018-03-03 12:47 - 000000000 ____D C:\Program Files (x86)\Castle Crashers
2018-03-02 23:56 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2018-03-02 23:56 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2018-03-02 23:56 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2018-03-02 23:56 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2018-03-02 23:56 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2018-03-02 23:56 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2018-03-02 19:37 - 2018-03-02 19:37 - 000000000 ____D C:\Users\PC\AppData\Local\UnrealEngine
2018-03-02 19:37 - 2018-03-02 19:37 - 000000000 ____D C:\Users\PC\AppData\Local\ExampleGame
2018-03-01 04:57 - 2018-03-01 04:57 - 000000000 ____D C:\Users\PC\AppData\LocalLow\FullyIllustrated
2018-03-01 04:56 - 2018-03-01 04:56 - 000001043 _____ C:\Users\PC\Desktop\Wulverblade.lnk
2018-03-01 04:56 - 2018-03-01 04:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wulverblade
2018-03-01 04:54 - 2018-03-01 04:56 - 000000000 ____D C:\Program Files (x86)\Wulverblade
2018-03-01 04:53 - 2018-03-01 04:53 - 000000000 ___RD C:\Sandbox
2018-03-01 04:49 - 2018-04-13 16:41 - 000001680 _____ C:\Windows\Sandboxie.ini
2018-03-01 04:49 - 2018-03-28 20:07 - 000000992 _____ C:\Users\PC\Desktop\Navegador web em uma caixa.lnk
2018-03-01 04:49 - 2018-03-01 04:49 - 000000000 ____D C:\Program Files\Sandboxie
2018-02-28 17:27 - 2018-03-01 22:27 - 000000000 ____D C:\Users\PC\AppData\Roaming\Bioshock2Steam
2018-02-28 17:27 - 2018-02-28 17:27 - 000000000 ____D C:\Users\PC\Documents\Bioshock2
2018-02-27 20:11 - 2018-02-27 20:11 - 000000000 ____D C:\Users\PC\Documents\Assassin's Creed Freedom Cry
2018-02-27 20:05 - 2018-03-14 00:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2018-02-27 20:05 - 2018-02-27 20:05 - 000001259 _____ C:\Users\Public\Desktop\Assassin's Creed - Freedom Cry.lnk
2018-02-26 20:30 - 2018-02-26 20:30 - 000000000 ____D C:\zoek_backup
2018-02-13 12:33 - 2018-02-13 12:33 - 000002912 _____ C:\Windows\System32\Tasks\Rerun Warsaw's CoreFixer
2018-02-13 12:32 - 2018-04-15 12:05 - 000028376 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2018-02-13 12:32 - 2018-02-13 12:32 - 000000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2018-02-13 12:32 - 2018-02-13 12:32 - 000000000 ___HD C:\Program Files (x86)\Diebold
2018-02-13 12:32 - 2017-11-29 13:33 - 000044624 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2018-02-13 12:32 - 2017-11-29 13:20 - 000043608 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddprm.sys
2018-02-13 12:32 - 2016-06-16 18:43 - 000036984 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddntf.sys
2018-02-13 12:32 - 2016-06-16 18:43 - 000008811 _____ C:\Windows\system32\Drivers\wsddntf.cat
2018-02-13 12:31 - 2018-02-13 12:31 - 000000000 ____D C:\Program Files\Diebold
2018-02-09 23:58 - 2018-02-10 00:00 - 000000000 ____D C:\Users\Todos os Usuários\Ralink
2018-02-09 23:58 - 2018-02-10 00:00 - 000000000 ____D C:\ProgramData\Ralink
2018-02-09 23:57 - 2018-02-09 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Encore Wireless
2018-02-09 23:56 - 2018-02-09 23:56 - 000000000 ____D C:\Users\Todos os Usuários\Encore Driver
2018-02-09 23:56 - 2018-02-09 23:56 - 000000000 ____D C:\ProgramData\Encore Driver
2018-02-09 23:56 - 2015-11-19 15:57 - 000016389 _____ C:\Windows\SysWOW64\RaCoInst.dat
2018-02-09 23:55 - 2018-02-09 23:55 - 000000000 ____D C:\Program Files (x86)\Encore
2018-02-09 23:55 - 2009-10-20 12:13 - 002056192 _____ (Ralink Technology, Corp.) C:\Windows\system32\RaCertMgr.dll
2018-02-09 23:55 - 2009-10-20 12:13 - 001585152 _____ (Ralink Technology, Corp.) C:\Windows\SysWOW64\RaCertMgr.dll
2018-02-09 23:55 - 2009-10-20 12:13 - 001055232 _____ (Ralink Technology, Corp.) C:\Windows\SysWOW64\RAIHV.dll
2018-02-09 23:55 - 2009-10-20 12:13 - 001055232 _____ (Ralink Technology, Corp.) C:\Windows\system32\RAIHV.dll
2018-02-09 23:55 - 2009-10-20 12:13 - 000104448 _____ (Ralink Technology, Corp.) C:\Windows\SysWOW64\RAEXTUI.dll
2018-02-09 23:55 - 2009-10-20 12:13 - 000104448 _____ (Ralink Technology, Corp.) C:\Windows\system32\RAEXTUI.dll
2018-02-05 18:47 - 2018-02-11 18:03 - 000000000 ____D C:\Users\PC\Documents\BioshockHD
2018-02-05 18:47 - 2018-02-11 18:03 - 000000000 ____D C:\Users\PC\AppData\Roaming\BioshockHD

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-04-15 12:13 - 2009-07-14 01:45 - 000020576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-04-15 12:13 - 2009-07-14 01:45 - 000020576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-04-15 12:10 - 2015-09-22 23:36 - 000000000 ____D C:\Users\PC\Downloads\Torrents
2018-04-15 12:08 - 2017-10-04 12:59 - 000003758 _____ C:\Windows\System32\Tasks\AutoKMS
2018-04-15 12:07 - 2015-12-01 20:38 - 000000000 ____D C:\Program Files (x86)\Steam
2018-04-15 12:04 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-04-15 02:27 - 2017-09-30 05:34 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2018-04-15 02:25 - 2015-09-22 03:26 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2018-04-14 23:38 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2018-04-14 23:36 - 2015-09-23 09:37 - 000000000 ____D C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
2018-04-14 23:36 - 2015-09-23 00:56 - 000000000 ____D C:\Windows\Minidump
2018-04-14 23:36 - 2015-09-22 03:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\uTorrent
2018-04-14 21:59 - 2017-12-21 12:56 - 000000000 ____D C:\Windows\System32\Tasks\AVG
2018-04-14 21:59 - 2016-09-27 21:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-04-14 21:59 - 2011-02-05 12:15 - 000000000 ___RD C:\Users\Public\Recorded TV
2018-04-14 21:58 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\registration
2018-04-12 23:25 - 2017-05-23 22:45 - 000139608 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2018-04-12 23:25 - 2017-05-23 22:45 - 000003916 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2018-04-12 23:24 - 2017-11-27 12:56 - 000189032 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2018-04-12 23:24 - 2017-05-23 22:45 - 000452904 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2018-04-12 23:24 - 2017-05-23 22:45 - 000372920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2018-04-12 23:24 - 2017-05-23 22:45 - 000198368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2018-04-12 23:24 - 2017-05-23 22:45 - 000103744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2018-04-12 23:24 - 2017-05-23 22:45 - 000076760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2018-04-12 23:24 - 2017-05-23 22:45 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2018-04-12 23:23 - 2017-05-23 22:45 - 001019088 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2018-04-12 23:23 - 2017-05-23 22:44 - 000336848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2018-04-12 23:23 - 2017-05-23 22:44 - 000220600 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2018-04-12 23:23 - 2017-05-23 22:44 - 000192536 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2018-04-12 23:23 - 2017-05-23 22:44 - 000166064 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys
2018-04-12 23:23 - 2017-05-23 22:44 - 000050776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2018-04-12 23:19 - 2015-10-03 16:32 - 000000000 ____D C:\Program Files\CCleaner
2018-04-12 11:21 - 2009-07-14 14:55 - 000705070 _____ C:\Windows\system32\prfh0416.dat
2018-04-12 11:21 - 2009-07-14 14:55 - 000146910 _____ C:\Windows\system32\prfc0416.dat
2018-04-12 11:21 - 2009-07-14 02:13 - 001633534 _____ C:\Windows\system32\PerfStringBackup.INI
2018-04-11 21:01 - 2015-09-22 23:22 - 000000000 ____D C:\Users\PC\Downloads\Animes & Séries
2018-04-10 06:25 - 2016-02-09 22:57 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-04-10 06:25 - 2016-02-09 22:57 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-04-10 06:25 - 2016-02-09 22:57 - 000004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-04-10 06:25 - 2016-02-09 22:57 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-04-10 06:25 - 2016-02-09 22:57 - 000000000 ____D C:\Windows\system32\Macromed
2018-04-08 18:46 - 2015-09-22 15:57 - 000000000 ____D C:\Users\PC\Downloads\Filmes
2018-04-08 18:46 - 2015-09-22 03:28 - 000000000 ____D C:\Users\PC\Downloads\Jogos
2018-04-01 04:34 - 2015-09-22 04:01 - 000000000 ____D C:\Users\PC\AppData\Local\Battle.net
2018-04-01 00:34 - 2015-09-22 03:59 - 000000000 ____D C:\Program Files (x86)\Battle.net
2018-03-28 22:59 - 2015-12-01 20:54 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-03-28 15:13 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF
2018-03-22 23:05 - 2015-09-22 01:54 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-22 08:29 - 2015-09-29 14:42 - 000000000 ____D C:\Users\Todos os Usuários\AVG Web TuneUp
2018-03-22 08:29 - 2015-09-29 14:42 - 000000000 ____D C:\ProgramData\AVG Web TuneUp
2018-03-22 08:28 - 2015-09-29 14:42 - 000000000 ____D C:\Program Files (x86)\AVG Web TuneUp

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2018-04-08 03:28

==================== Fim de FRST.txt ============================