[Resolvido] csrss.exe possivelmente infectado, como posso resolver?

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 20-08-2016
Executado por Xanxus Boss (administrador) em FAMILIAPRAXEDES (20-08-2016 14:39:46)
Executando a partir de C:\Users\Xanxus Boss\Desktop
Perfis Carregados: Xanxus Boss (Perfis Disponíveis: MICROCOMPUTADOR I & Xanxus Boss)
Platform: Microsoft Windows 7 Home Basic Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgrsx.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
(Hi-Rez Studios) C:\Program Files\Hi-Rez Studios\HiPatchService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(RealNetworks, Inc.) C:\Program Files\Online Games Manager\ogmservice.exe
(hxxp://winaero.com/) C:\Program Files\winaero.com\Personalization Panel DWM Controller\persdwmsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(Vimicro) C:\Windows\VM303_STI.EXE
(SlySoft, Inc.) C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(BitTorrent Inc.) C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent\BitTorrent.exe
(Seekar Ltd) C:\Program Files\Ares\Ares.exe
(BitTorrent Inc.) C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent\updates\7.9.8_42450\utorrentie.exe
(BitTorrent Inc.) C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent\updates\7.9.8_42450\utorrentie.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(VS Revo Group) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgcsrvx.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [5299984 2016-07-28] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [BigDog303] => C:\Windows\VM303_STI.EXE [61440 2006-01-24] (Vimicro)
HKLM\...\Run: [CloneCDTray] => C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-29] (SlySoft, Inc.)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [792112 2016-06-22] (GAS Tecnologia LTDA)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [186640 2016-07-20] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
Winlogon\Notify\ GbPluginCef: C:\Program Files\GbPlugin\gbiehCef.dll [2016-08-02] (Caixa Economica Federal)
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Run: [BitTorrent] => C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent\BitTorrent.exe [2140680 2016-08-11] (BitTorrent Inc.)
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50676864 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Run: [ares] => C:\Program Files\Ares\Ares.exe [935936 2013-07-19] (Seekar Ltd)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2014-06-02] (Microsoft Corporation)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\PROGRAM FILES\GbPlugin\gbiehcef.dll [1903328 2016-08-02] (Caixa Economica Federal)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{4DF661A9-ADCA-4B62-BEBB-C67505133C8B}: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{701B1294-9815-4FE3-87FC-60F64D8D8308}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3742549918-194137127-2073451767-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-04] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\PROGRAM FILES\GBPLUGIN\gbiehcef.dll [2016-08-02] (Caixa Economica Federal)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-04] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

FireFox:
========
FF ProfilePath: C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default
FF Homepage: hxxps://www.facebook.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin: @google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-04] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin: @zylom.com/ZylomGamesPlayer -> C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll [2009-10-23] (Zylom)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-26] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3742549918-194137127-2073451767-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Xanxus Boss\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-11-09] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3742549918-194137127-2073451767-1001: gastecnologia.com.br/sf/cef -> C:\Users\Xanxus Boss\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll [2014-12-09] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-3742549918-194137127-2073451767-1001: pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Nenhum Arquivo]
FF user.js: detected! => C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default\user.js [2016-05-13]
FF Extension: E-Web Print - C:\Program Files\Epson Software\E-Web Print\Firefox Add-on [2016-03-22] [não assinado]
FF Extension: Greasemonkey - C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-08-20]
FF Extension: MEGA - C:\Users\Xanxus Boss\AppData\Roaming\Mozilla\Firefox\Profiles\ay4b63oz.default\Extensions\[EMAIL]firefox@mega.co.nz.xpi[/EMAIL] [2016-05-05]
FF Extension: Adblock Plus - C:\Users\Xanxus Boss\AppData\Roaming\Mozilla\Firefox\Profiles\ay4b63oz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF Extension: Greasemonkey - C:\Users\Xanxus Boss\AppData\Roaming\Mozilla\Firefox\Profiles\ay4b63oz.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-04-29]
FF Extension: MEGA - C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default\Extensions\[EMAIL]firefox@mega.co.nz.xpi[/EMAIL] [2016-08-17]
FF Extension: Hola Better Internet - C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2016-08-09]
FF Extension: Video DownloadHelper - C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-08-02]
FF Extension: Adblock Plus - C:\Users\Xanxus Boss\AppData\Roaming\Profiles\22m5l2gc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF HKLM\...\Firefox\Extensions: [[EMAIL]e-webprint@epson.com[/EMAIL]] - C:\Program Files\Epson Software\E-Web Print\Firefox Add-on
FF HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => não encontrado (a)
FF HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Xanxus Boss\AppData\Local\GAS Tecnologia\GBBD\cef\xpi
FF Extension: GBBD Caixa Economica Federal - C:\Users\Xanxus Boss\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [2015-05-13] [não assinado]

Chrome:
=======
CHR HomePage: ChromeDefaultData -> hxxp://www.yessearches.com/?ts=AHEqAn4lC3ArA0..&v=20160513&uid=92AD1EE1D4E240A1893E6883E58DA9F4&ptid=wak&mode=loadm
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.yessearches.com/?ts=AHEqAn4lC3ArA0..&v=20160513&uid=92AD1EE1D4E240A1893E6883E58DA9F4&ptid=wak&mode=loadm"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.yessearches.com/chrome.php?q={searchTerms}&ts=AHEqAn4lC3ArA0..&v=20160513&uid=92AD1EE1D4E240A1893E6883E58DA9F4&ptid=wak&mode=loadm
CHR DefaultSearchKeyword: ChromeDefaultData -> yessearches
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => Nenhum Arquivo
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (BonanzaDealsLive Update) - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (DealPlyLive Update) - C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (Zylom Plugin) - C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
CHR Plugin: (Raidcall plugin) - C:\Users\Xanxus Boss\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll => Nenhum Arquivo
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll => Nenhum Arquivo
CHR Profile: C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Extension: (Google Drive) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (YouTube) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Google Search) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28]
CHR Extension: (Gmail) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-18]
CHR Profile: C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Apresentações) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-21]
CHR Extension: (Google Docs) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-21]
CHR Extension: (Google Drive) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-21]
CHR Extension: (YouTube) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-21]
CHR Extension: (Planilhas do Google) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-21]
CHR Extension: (Documentos Google off-line) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-22]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-21]
CHR Extension: (Gmail) - C:\Users\Xanxus Boss\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-21]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

"Warsaw Technology" => serviço foi desbloqueado. <===== ATENÇÃO

S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [674552 2016-07-28] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [4097280 2016-07-28] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [906512 2016-07-20] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [632632 2016-07-28] (AVG Technologies CZ, s.r.o.)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [277640 2012-12-28] (Intel Corporation)
R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [539744 2012-05-10] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [122000 2011-12-12] (Seiko Epson Corporation)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project) [Arquivo não assinado]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project) [Arquivo não assinado]
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [631520 2016-08-02] (GAS Tecnologia)
U2 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [9216 2015-03-12] (Hi-Rez Studios) [Arquivo não assinado]
R3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752 2012-04-24] (Intel Corporation)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [121088 2013-02-23] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-04-21] (IObit)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 ogmservice; C:\Program Files\Online Games Manager\ogmservice.exe [582544 2016-07-13] (RealNetworks, Inc.)
R2 persdwmsrv; C:\Program Files\winaero.com\Personalization Panel DWM Controller\persdwmsrv.exe [8192 2012-04-07] (hxxp://winaero.com/) [Arquivo não assinado]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 Themes; C:\Windows\system32\themeservice.dll [37376 2013-08-06] (Microsoft Corporation) [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [792112 2016-06-22] (GAS Tecnologia LTDA)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S4 WsAppService; C:\Program Files\Wondershare\WAF\2.2.0.5\WsAppService.exe [411648 2016-03-31] (Wondershare) [Arquivo não assinado]
S4 EteqgOuapupc; "C:\Program Files\Emim\EteqgOuapupc.exe" [X]
S4 OmunSoxsopu; "C:\Program Files\Akaqdukseut\OmunSoxsopu.exe" [X]
S4 Rkcadpsrv; "C:\Program Files\Reikuchreawopy\Rkcadpsrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
S4 WsDrvInst; C:\Program Files\Wondershare\Dr.Fone para Android\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [134912 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [259328 2016-06-30] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [201472 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [212736 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [287008 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [201472 2016-07-19] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [47360 2016-06-01] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [231168 2016-07-12] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\Windows\System32\DRIVERS\avgunivx.sys [65280 2016-06-20] (AVG Technologies CZ, s.r.o.)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-01-09] (Baidu, Inc.)
R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [30008 2015-11-14] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [225720 2015-11-14] (Dev47Apps)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-08-16] (Disc Soft Ltd)
R3 e1cexpress; C:\Windows\System32\DRIVERS\e1c6232.sys [368392 2013-02-21] (Intel Corporation)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [34760 2007-02-15] (SlySoft, Inc.)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [24232 2009-02-17] (Elaborate Bytes AG)
R0 GbpKm; C:\Windows\System32\drivers\GbpKm.sys [49496 2015-09-03] (GAS Tecnologia)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2014-02-12] (GFI Software)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2016-07-28] (Malwarebytes)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2015-10-19] (GAS Tecnologia)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert32.sys [31448 2015-07-07] (Basil)
S1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [80728 2016-05-22] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [79064 2015-03-18] (GAS Tecnologia)
S3 ZSMC303; C:\Windows\System32\Drivers\usbVM303.sys [391300 2006-02-23] (Vimicro Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
S3 catchme; \??\C:\Users\XANXUS~1\AppData\Local\Temp\catchme.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg32.sys [X]
S3 XDva403; \??\C:\Windows\system32\XDva403.sys [X]
S3 XDva404; \??\C:\Windows\system32\XDva404.sys [X]
S3 XDva405; \??\C:\Windows\system32\XDva405.sys [X]
S3 XDva407; \??\C:\Windows\system32\XDva407.sys [X]
S3 XDva408; \??\C:\Windows\system32\XDva408.sys [X]
S3 XDva409; \??\C:\Windows\system32\XDva409.sys [X]
S3 XDva410; \??\C:\Windows\system32\XDva410.sys [X]
S3 XDva424; \??\C:\Windows\system32\XDva424.sys [X]
S3 XDva534; \??\C:\Windows\system32\XDva534.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-20 14:39 - 2016-08-20 14:40 - 00025602 _____ C:\Users\Xanxus Boss\Desktop\FRST.txt
2016-08-20 14:39 - 2016-08-20 14:39 - 00000000 ____D C:\FRST
2016-08-20 14:38 - 2016-08-20 14:39 - 01745920 _____ (Farbar) C:\Users\Xanxus Boss\Desktop\FRST.exe
2016-08-20 14:31 - 2016-08-20 14:31 - 00001230 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2016-08-20 14:31 - 2016-08-20 14:31 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Local\VS Revo Group
2016-08-20 14:31 - 2016-08-20 14:31 - 00000000 ____D C:\Users\Todos os Usuários\VS Revo Group
2016-08-20 14:31 - 2016-08-20 14:31 - 00000000 ____D C:\ProgramData\VS Revo Group
2016-08-20 14:31 - 2016-08-20 14:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2016-08-20 14:31 - 2016-08-20 14:31 - 00000000 ____D C:\Program Files\VS Revo Group
2016-08-20 14:31 - 2009-12-30 11:21 - 00027192 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2016-08-20 14:26 - 2016-08-20 14:27 - 00001047 _____ C:\DelFix.txt
2016-08-20 14:26 - 2016-08-20 14:26 - 11374528 _____ (VS Revo Group ) C:\Users\Xanxus Boss\Desktop\RevoUninProSetup.exe
2016-08-19 14:33 - 2016-08-20 00:49 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Torcedores.com
2016-08-18 14:45 - 2016-08-18 14:45 - 00205560 _____ C:\Users\MICROCOMPUTADOR I\Documents\Regador.studio3
2016-08-16 14:55 - 2016-08-16 15:14 - 00000000 ____D C:\f0a7a7e85f2afae251
2016-08-16 14:51 - 2016-08-16 15:14 - 00000000 ____D C:\e50d55548d633a61688227efa178
2016-08-14 16:01 - 2016-08-14 16:01 - 00000470 _____ C:\Users\MICROCOMPUTADOR I\Desktop\PPPoe Edatel - Atalho (2).lnk
2016-08-14 11:04 - 2016-08-14 11:04 - 00001228 _____ C:\Users\MICROCOMPUTADOR I\Desktop\Silhouette Studio.lnk
2016-08-14 11:01 - 2016-08-14 11:01 - 00000000 ____D C:\Users\Xanxus Boss\Desktop\My Shared Folder
2016-08-14 10:52 - 2016-08-14 10:52 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\AppData\Roaming\Adobe
2016-08-14 10:52 - 2016-08-14 10:52 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\AppData\Local\Adobe
2016-08-14 01:09 - 2016-08-14 01:09 - 00001165 _____ C:\Users\Xanxus Boss\Desktop\Adobe Fireworks CS6.lnk
2016-08-14 00:53 - 2016-08-14 00:53 - 00001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Fireworks CS6.lnk
2016-08-14 00:49 - 2016-08-14 01:04 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Adobe Fireworks CS6
2016-08-14 00:34 - 2016-08-14 00:34 - 00001189 _____ C:\Users\Xanxus Boss\Desktop\Adobe Dreamweaver CS6.lnk
2016-08-14 00:29 - 2016-08-14 00:29 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\com.adobe.WidgetBrowser
2016-08-14 00:27 - 2016-08-14 00:54 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe
2016-08-14 00:27 - 2016-08-14 00:54 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-14 00:26 - 2016-08-14 00:26 - 00001189 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CS6.lnk
2016-08-14 00:25 - 2016-08-14 00:53 - 00001311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2016-08-14 00:25 - 2016-08-14 00:25 - 00001477 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2016-08-14 00:24 - 2016-08-14 00:24 - 00001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk
2016-08-14 00:24 - 2016-08-14 00:24 - 00000967 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2016-08-14 00:21 - 2016-08-17 20:14 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-08-14 00:21 - 2016-08-17 20:14 - 00000000 ____D C:\ProgramData\Adobe
2016-08-14 00:18 - 2016-08-14 00:18 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Adobe Dreamweaver CS6 (2)
2016-08-13 17:22 - 2016-08-13 17:22 - 00000494 _____ C:\Users\MICROCOMPUTADOR I\Desktop\PPPoe Edatel - Atalho.lnk
2016-08-11 16:42 - 2016-08-20 14:21 - 00000000 ____D C:\Users\Xanxus Boss\AppData\LocalLow\BitTorrent
2016-08-11 12:46 - 2016-08-11 12:46 - 00384680 _____ C:\Users\MICROCOMPUTADOR I\Documents\dia dos pais.studio3
2016-08-10 20:53 - 2016-08-10 20:53 - 00456840 _____ C:\Users\MICROCOMPUTADOR I\Documents\casa do snoop pronta 2.studio3
2016-08-08 14:03 - 2016-08-08 14:03 - 00137616 _____ C:\Windows\Minidump\080816-32651-01.dmp
2016-08-08 14:01 - 2016-08-08 14:01 - 00137616 _____ C:\Windows\Minidump\080816-16536-01.dmp
2016-08-07 19:52 - 2016-08-07 19:52 - 03114430 _____ C:\Users\MICROCOMPUTADOR I\Documents\sacola da mirela perfeita.studio3
2016-08-07 16:59 - 2016-08-07 16:59 - 03114448 _____ C:\Users\MICROCOMPUTADOR I\Documents\nova sacolinha mirela.studio3
2016-08-07 16:17 - 2016-08-07 16:17 - 02291012 _____ C:\Users\MICROCOMPUTADOR I\Documents\Sacolinha mirela pronta.studio3
2016-08-07 11:05 - 2016-08-07 11:05 - 01145951 _____ C:\Users\MICROCOMPUTADOR I\Documents\Sacolinha mirela quase pronta.studio3
2016-08-02 18:34 - 2016-08-02 18:34 - 01091008 _____ (Unity Technologies ApS) C:\Users\MICROCOMPUTADOR I\Downloads\UnityWebPlayer (2).exe
2016-08-02 18:33 - 2016-08-02 18:33 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\AppData\Local\Deployment
2016-08-02 18:33 - 2016-08-02 18:33 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\AppData\Local\Apps\2.0
2016-08-02 17:02 - 2016-08-02 17:04 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\alfabeto novo
2016-08-02 17:01 - 2016-08-02 17:01 - 00159682 _____ C:\Users\MICROCOMPUTADOR I\Documents\A.studio3
2016-08-02 15:39 - 2016-08-02 15:39 - 00106019 _____ C:\Users\MICROCOMPUTADOR I\Documents\forminha laco duplo terminada.studio3
2016-08-01 22:15 - 2016-08-02 01:11 - 00000000 ____D C:\Users\Xanxus Boss\Documents\De downloads
2016-08-01 22:10 - 2016-08-01 22:10 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Local\eMuleTorrent
2016-08-01 22:09 - 2016-08-01 22:15 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\mulehome
2016-08-01 22:09 - 2016-08-01 22:10 - 00000000 ____D C:\Program Files\eMuleTorrent
2016-08-01 22:09 - 2016-08-01 22:09 - 00000155 _____ C:\Windows\$PREFFILE
2016-08-01 22:09 - 2016-08-01 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMuleTorrent
2016-08-01 21:00 - 2016-08-01 21:00 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Local\Ares
2016-07-31 17:25 - 2016-07-31 22:33 - 03305287 _____ C:\Users\MICROCOMPUTADOR I\Documents\snoop pronto do arthur.studio3
2016-07-30 17:09 - 2016-07-30 17:09 - 00000000 ____D C:\Users\Xanxus Boss\Desktop\Photoshop CS6 Portátil
2016-07-30 12:54 - 2016-07-30 15:51 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\Dog-House-3D-AuriniaCrafts-FREEBIE
2016-07-30 12:54 - 2016-07-30 12:54 - 00509441 _____ C:\Users\MICROCOMPUTADOR I\Documents\Dog-House-3D-AuriniaCrafts-FREEBIE.zip
2016-07-29 12:59 - 2016-07-29 12:59 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\NÚMEROS
2016-07-29 12:44 - 2016-07-29 12:44 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\LETRAS
2016-07-29 12:16 - 2016-07-29 12:16 - 00210887 _____ C:\Users\MICROCOMPUTADOR I\Documents\caixa para balinhaa.studio3
2016-07-26 15:28 - 2016-07-26 15:28 - 00141031 _____ C:\Users\MICROCOMPUTADOR I\Documents\Casinha snoop teste.studio3
2016-07-26 15:20 - 2016-07-26 15:20 - 00112837 _____ C:\Users\MICROCOMPUTADOR I\Documents\teste telhado casa snoop.studio3
2016-07-26 14:47 - 2016-07-26 14:47 - 05164204 _____ C:\Users\MICROCOMPUTADOR I\Documents\Posteres.pdf
2016-07-25 16:02 - 2016-07-25 16:02 - 00981504 _____ C:\Users\MICROCOMPUTADOR I\Documents\Tag ana vitoria 2.studio3
2016-07-25 14:35 - 2016-07-25 14:36 - 01604964 _____ C:\Users\MICROCOMPUTADOR I\Documents\Tag ana vitoria 1.studio3
2016-07-24 20:45 - 2016-07-24 20:45 - 00171710 _____ C:\Users\MICROCOMPUTADOR I\Documents\Flor.studio3
2016-07-24 16:51 - 2016-07-24 16:51 - 03318668 _____ C:\Users\MICROCOMPUTADOR I\Documents\snoop quase pronto 3.studio3
2016-07-24 15:09 - 2016-07-24 15:09 - 01361090 _____ C:\Users\MICROCOMPUTADOR I\Documents\snoop quase pronto 2.studio3
2016-07-23 20:48 - 2016-07-23 20:48 - 00541691 _____ C:\Users\MICROCOMPUTADOR I\Documents\snoop quase pronto.studio3
2016-07-19 12:28 - 2016-07-19 12:28 - 00201472 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx86.sys
2016-07-12 16:12 - 2016-07-12 16:12 - 00231168 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdix.sys
2016-07-11 11:46 - 2016-07-11 11:46 - 00427667 _____ C:\Users\MICROCOMPUTADOR I\Documents\arbustos base torre - nicole neves.studio3
2016-07-08 21:21 - 2016-07-08 21:12 - 24911879 ____N C:\Users\Xanxus Boss\Desktop\VID_20160708_211214012.mp4
2016-07-08 19:01 - 2016-07-08 19:13 - 00000000 ____D C:\e470987138561d6d307851897a
2016-07-07 00:26 - 2016-07-07 00:43 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\com.silhouettesoftware
2016-07-07 00:26 - 2016-07-07 00:43 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\com.aspexsoftware.Silhouette_Studio
2016-07-07 00:26 - 2016-07-07 00:26 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\com.aspexsoftware.studio_helper
2016-06-30 14:46 - 2016-06-30 14:46 - 00259328 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys
2016-06-27 13:30 - 2016-06-27 13:30 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\AVG
2016-06-27 13:29 - 2016-06-27 13:29 - 00001389 _____ C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-27 13:29 - 2016-06-27 13:29 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Epson
2016-06-27 13:29 - 2016-06-27 13:29 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Adobe
2016-06-27 13:29 - 2016-06-27 13:29 - 00000000 ____D C:\Users\TEMP\AppData\Local\Google
2016-06-27 13:29 - 2016-06-27 13:29 - 00000000 ____D C:\Users\TEMP\AppData\Local\Avg
2016-06-27 13:28 - 2016-06-27 13:29 - 00000000 ____D C:\Users\TEMP
2016-06-27 13:28 - 2016-06-27 13:28 - 00000020 ___SH C:\Users\TEMP\ntuser.ini
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Modelos
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Meus documentos
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Menu Iniciar
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Documents\Minhas músicas
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Documents\Minhas imagens
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Documents\Meus vídeos
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Dados de aplicativos
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Configurações locais
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\AppData\Local\Histórico
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\AppData\Local\Dados de aplicativos
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Ambiente de rede
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 _SHDL C:\Users\TEMP\Ambiente de impressão
2016-06-27 13:28 - 2016-06-27 13:28 - 00000000 ____D C:\Users\TEMP\AppData\Local\VirtualStore
2016-06-27 13:28 - 2014-05-31 04:53 - 00000000 ____D C:\Users\TEMP\AppData\Local\Microsoft Help
2016-06-27 13:28 - 2013-09-13 09:43 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\TuneUp Software
2016-06-27 13:28 - 2013-08-13 13:53 - 00000000 ____D C:\Users\TEMP\AppData\Roaming\Macromedia
2016-06-22 11:44 - 2016-06-22 11:44 - 00435962 _____ C:\Users\MICROCOMPUTADOR I\Documents\Caderno de Pedidos PDF.pdf
2016-06-20 15:17 - 2016-06-20 15:17 - 00065280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgunivx.sys
2016-06-18 17:13 - 2016-07-23 20:52 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\jerliane tema chaves
2016-06-16 00:08 - 2016-06-16 00:08 - 02668160 _____ C:\Users\MICROCOMPUTADOR I\Documents\caixinha branca de neve grande.studio3
2016-06-15 23:49 - 2016-06-15 23:49 - 02686333 _____ C:\Users\MICROCOMPUTADOR I\Documents\caixinhas baranca de neve pequena.studio3
2016-06-15 18:31 - 2016-06-15 18:31 - 00300875 _____ C:\Users\MICROCOMPUTADOR I\Documents\cx sacolinha bailarina (1).studio3
2016-06-15 15:21 - 2016-06-15 15:21 - 00087731 _____ C:\Users\MICROCOMPUTADOR I\Documents\caixinha para bombom.studio
2016-06-15 15:19 - 2016-06-15 15:19 - 00245891 _____ C:\Users\MICROCOMPUTADOR I\Documents\caixinha rastreada para bem casado.studio3
2016-06-13 12:27 - 2016-06-13 12:27 - 00062601 _____ C:\Users\MICROCOMPUTADOR I\Documents\CAIXA-TRAVESSEIRO.studio3
2016-06-08 21:53 - 2016-06-17 13:21 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\jerliane - Cópia
2016-06-07 23:40 - 2016-06-08 09:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-06-07 00:56 - 2016-06-07 00:56 - 00005937 _____ C:\Users\Xanxus Boss\Documents\Autenticação de Certificado.pdf
2016-06-06 10:08 - 2016-06-06 10:08 - 08985377 _____ C:\Users\MICROCOMPUTADOR I\Documents\branca de neve.studio3
2016-06-05 17:27 - 2016-06-05 17:27 - 00001918 _____ C:\Users\Xanxus Boss\Desktop\fm - Atalho.lnk
2016-06-01 13:29 - 2016-06-01 13:29 - 00212736 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys
2016-06-01 13:28 - 2016-06-01 13:28 - 00201472 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidshx.sys
2016-06-01 13:16 - 2016-06-01 13:16 - 00047360 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx86.sys
2016-05-28 23:39 - 2016-05-28 23:39 - 00000000 ____D C:\CFLog
2016-05-28 16:55 - 2016-07-20 23:46 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Cross Fire
2016-05-28 03:09 - 2016-05-28 03:09 - 00001140 _____ C:\Users\Xanxus Boss\Desktop\CrossFire BR.lnk
2016-05-28 03:09 - 2016-05-28 03:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Z8Games
2016-05-23 23:03 - 2016-05-23 23:03 - 00255401 _____ C:\Users\Xanxus Boss\Downloads\5024869_certificado_Fgv.pdf
2016-05-23 22:10 - 2016-05-23 22:10 - 00252843 _____ C:\Users\Xanxus Boss\Downloads\3900972_certificado_Fgv.pdf

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-20 14:41 - 2013-08-22 19:29 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent
2016-08-20 14:34 - 2013-08-06 13:53 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-08-20 14:34 - 2013-08-06 12:32 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-08-20 14:34 - 2013-08-06 12:32 - 00000000 ____D C:\ProgramData\MFAData
2016-08-20 14:32 - 2014-12-12 22:31 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-20 14:22 - 2016-01-21 18:49 - 00000000 ____D C:\Program Files\Steam
2016-08-20 14:22 - 2015-02-20 00:21 - 00000000 ____D C:\Program Files\Common Files\Steam
2016-08-20 14:22 - 2013-08-06 13:44 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\Skype
2016-08-20 14:21 - 2015-10-18 09:21 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-08-20 14:21 - 2015-10-18 09:21 - 00000000 ____D C:\ProgramData\GbPlugin
2016-08-20 14:20 - 2014-12-12 22:31 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-20 14:19 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-20 05:56 - 2015-07-24 18:22 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Curso
2016-08-20 02:00 - 2014-10-03 01:05 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Local\Adobe
2016-08-19 11:24 - 2016-04-05 20:33 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\Documents\arquivos sil
2016-08-19 11:11 - 2016-04-28 21:14 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\AppData\Roaming\com.silhouettesoftware
2016-08-19 11:11 - 2015-03-03 15:19 - 00000000 ____D C:\Users\MICROCOMPUTADOR I\AppData\Roaming\com.aspexsoftware.Silhouette_Studio
2016-08-19 04:08 - 2009-07-14 01:34 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-19 04:08 - 2009-07-14 01:34 - 00010096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-18 11:41 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\NDF
2016-08-17 20:14 - 2014-04-24 21:54 - 00000000 ____D C:\Users\Xanxus Boss\AppData\Roaming\Adobe
2016-08-17 00:57 - 2014-08-10 18:31 - 00000000 ____D C:\Users\Xanxus Boss\Documents\curriculo
2016-08-16 14:51 - 2013-08-06 13:29 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Programas
2016-08-14 16:02 - 2013-08-06 15:50 - 00156936 _____ C:\Users\MICROCOMPUTADOR I\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-14 10:52 - 2009-07-14 01:33 - 03914440 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-14 00:54 - 2013-08-06 14:22 - 00156936 _____ C:\Users\Xanxus Boss\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-14 00:53 - 2013-08-06 14:33 - 00000000 ____D C:\Program Files\Adobe
2016-08-14 00:52 - 2013-08-06 14:33 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-08-13 15:10 - 2009-07-14 01:53 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-08-12 12:21 - 2014-11-22 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-08-08 17:35 - 2015-08-28 21:41 - 00002183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-08 17:35 - 2015-08-28 21:41 - 00002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-08 14:03 - 2013-08-24 20:17 - 204761490 _____ C:\Windows\MEMORY.DMP
2016-08-08 14:03 - 2013-08-24 20:17 - 00000000 ____D C:\Windows\Minidump
2016-08-08 14:01 - 2016-05-19 18:15 - 00537228 _____ C:\Windows\ntbtlog.txt
2016-08-07 16:11 - 2013-11-04 13:44 - 00000132 _____ C:\Users\MICROCOMPUTADOR I\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-08-03 17:21 - 2015-12-15 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-08-03 16:06 - 2015-10-18 09:21 - 00000000 ____D C:\Program Files\GbPlugin
2016-07-28 15:53 - 2016-05-13 14:48 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-27 15:35 - 2015-04-13 00:41 - 00000000 ____D C:\Users\Xanxus Boss\Documents\Faculdade

==================== Arquivos na raiz de alguns diretórios =======

2014-08-18 15:27 - 2014-08-18 23:32 - 0000184 _____ () C:\Users\Xanxus Boss\AppData\Roaming\burnaware.ini
2016-05-13 02:56 - 2016-05-13 02:56 - 0127488 _____ () C:\Users\Xanxus Boss\AppData\Roaming\Installer.dat
2014-11-03 00:17 - 2016-05-23 02:08 - 0000132 _____ () C:\Users\Xanxus Boss\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2015-05-13 18:58 - 2015-05-13 18:58 - 0017788 _____ () C:\Users\Xanxus Boss\AppData\Roaming\unins000.dat
2015-05-13 18:58 - 2015-05-13 18:58 - 0730322 _____ () C:\Users\Xanxus Boss\AppData\Roaming\unins000.exe
2016-04-23 12:19 - 2014-07-24 23:39 - 0293320 ____N (深圳市迅雷网络技术有限公司) C:\Users\Xanxus Boss\AppData\Roaming\xldl.dll
2014-01-25 23:09 - 2014-01-25 23:26 - 142848334 _____ () C:\Users\Xanxus Boss\AppData\Local\ACCCx2_3_0_322.zip.aamdownload
2014-01-25 23:09 - 2014-01-25 23:18 - 0001796 _____ () C:\Users\Xanxus Boss\AppData\Local\ACCCx2_3_0_322.zip.aamdownload.aamd
2014-03-14 21:39 - 2014-03-14 22:04 - 0004608 _____ () C:\Users\Xanxus Boss\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-08-06 20:38 - 2013-08-06 20:38 - 0000017 _____ () C:\Users\Xanxus Boss\AppData\Local\resmon.resmoncfg
2015-12-17 22:19 - 2015-12-17 22:19 - 0000000 _____ () C:\Users\Xanxus Boss\AppData\Local\{6ABFBAE0-11B3-4C69-BE77-FA743FC5987D}
2014-08-11 19:13 - 2015-09-27 04:23 - 0000041 ___SH () C:\ProgramData\.zreglib
2014-12-31 21:29 - 2015-11-14 23:15 - 0000034 _____ () C:\ProgramData\droidcam-settings
2014-06-21 16:22 - 2014-07-09 22:10 - 0007999 _____ () C:\ProgramData\hpzinstall.log

Arquivos para serem movidos ou deletados:
====================
C:\Users\Xanxus Boss\steam_api.dll


Alguns arquivos em TEMP:
====================
C:\Users\MICROCOMPUTADOR I\AppData\Local\temp\avguirn_081150011115.exe
C:\Users\MICROCOMPUTADOR I\AppData\Local\temp\avguirn_081554576775.exe
C:\Users\MICROCOMPUTADOR I\AppData\Local\temp\avguirn_082109086568.exe
C:\Users\Xanxus Boss\AppData\Local\temp\avguirn_08445161449.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => MD5 é legítimo
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-08-16 17:04

==================== Fim de FRST.txt ============================

Resultado do exame Adicional Farbar Recovery Scan Tool (x86) Versão: 20-08-2016
Executado por Xanxus Boss (20-08-2016 14:41:52)
Executando a partir de C:\Users\Xanxus Boss\Desktop
Microsoft Windows 7 Home Basic Service Pack 1 (X86) (2010-02-02 00:54:26)
Modo da Inicialização: Normal
==========================================================


==================== Contas: =============================

Administrador (S-1-5-21-3742549918-194137127-2073451767-500 - Administrator - Disabled)
Convidado (S-1-5-21-3742549918-194137127-2073451767-501 - Limited - Disabled)
MICROCOMPUTADOR I (S-1-5-21-3742549918-194137127-2073451767-1000 - Administrator - Enabled) => C:\Users\MICROCOMPUTADOR I
Xanxus Boss (S-1-5-21-3742549918-194137127-2073451767-1001 - Administrator - Enabled) => C:\Users\Xanxus Boss

==================== Central de Segurança ========================

(Se uma entrada for incluída na fixlist, será removida.)

AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Programas Instalados ======================

(Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.)

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
7-Zip 9.34 alpha (HKLM\...\7-Zip) (Version: - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe Dreamweaver CS6 (HKLM\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 22 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 22.0.0.210 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS (HKLM\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Adobe Reader XI (11.0.05) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.05 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Ares 2.2.5 (HKLM\...\Ares) (Version: 2.2.5-Build#3049 - Seekar Ltd)
AVG (HKLM\...\AvgZen) (Version: 1.82.2.30772 - AVG Technologies)
AVG (Version: 16.101.7752 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4649 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.101.7752 - AVG Technologies)
AVG Zen (Version: 1.82.2 - AVG Technologies) Hidden
BitTorrent (HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\BitTorrent) (Version: 7.9.8.42450 - BitTorrent Inc.)
BurnAware Free 7.3 (HKLM\...\BurnAware Free_is1) (Version: - Burnaware)
CloneCD (HKLM\...\CloneCD) (Version: - SlySoft)
CrossFire BR (HKLM\...\CrossFire BR_is1) (Version: V5126 - Z8Games.com)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
Easy CD and DVD Cover Creator 4.13 (HKLM\...\Easy CD and DVD Cover Creator) (Version: 4.13 - Ben Williamson)
Easy Video Logo Remover (HKLM\...\Easy Video Logo Remover_is1) (Version: - dandans)
eMuleTorrent (HKLM\...\eMuleTorrent) (Version: 1.0.0.21 - eMule.com)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM\...\{79D0F056-39DE-4FDD-83FD-1554CE2C6443}) (Version: 2.4.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery (HKLM\...\EEPPPlugIn) (Version: - SEIKO EPSON Corporation)
Epson Easy Photo Print Plug-in for Windows Live Photo Gallery Setup (Version: 1.00.0000 - SEIKO EPSON Corporation) Hidden
Epson Event Manager (HKLM\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson E-Web Print (HKLM\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
EPSON L355 Series Printer Uninstall (HKLM\...\EPSON L355 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
Firebird 2.5.0.26074 (Win32) (HKLM\...\FBDBServer_2_5_is1) (Version: 2.5.0.26074 - Firebird Project)
FMW 1 (Version: 1.112.3 - AVG Technologies) Hidden
Foxit Cloud (HKLM\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.7.143.923 - Foxit Software Inc.)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 7.0.6.1126 - Foxit Software Inc.)
Galeria de Fotos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GBBD Caixa Economica Federal (HKLM\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: 3.12.0.2 - )
Google Chrome (HKLM\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Network Connections 18.2.63.0 (HKLM\...\PROSetDX) (Version: 18.2.63.0 - Intel)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IP Camera Adapter (HKLM\...\{6D140BFF-7CC5-4BFE-AD6D-47035FFE5F14}) (Version: 2.0.0.0 - Pavel Khlebovich)
IP Camera DS Filter (HKLM\...\IPCameraDSFilter) (Version: 5.8.0.0 - Moonware Studios)
Iso2God v1.3.6 (HKLM\...\{AB95979D-85EF-484A-9805-EB28E676E201}_is1) (Version: - Team 360h)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
K-Lite Codec Pack 9.6.5 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 9.6.5 - )
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Minimal ADB and Fastboot version 1.1.3 (HKLM\...\{DE46417A-9E9E-4BCD-BBDD-DA21943193BB}_is1) (Version: 1.1.3 - )
MotoHelper MergeModules (Version: 1.2.0 - Motorola) Hidden
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Studio Platinum 12.0 (HKLM\...\{D112D601-C0E2-11E1-AAB9-F04DA23A5C58}) (Version: 12.0.333 - Sony)
Mozilla Firefox 47.0 (x86 pt-BR) (HKLM\...\Mozilla Firefox 47.0 (x86 pt-BR)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Online Games Manager v1.50 (HKLM\...\Online Games Manager) (Version: 1.50.4 - Real Networks, Inc.)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x86) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.3.2 - Frank Heindörfer, Philip Chinery)
Personalization Panel (HKLM\...\Personalization Panel) (Version: 2.5 - hxxp://winaero.com/)
Personalization Panel DWM Controller (HKLM\...\{3925EB7E-77A2-4F6B-8B97-3C083667D4AA}) (Version: 2.5 - winaero.com)
Revo Uninstaller Pro 3.1.6 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.6 - VS Revo Group, Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Silhouette Studio (HKLM\...\{5F40843F-2F30-4CBE-AD17-6281F3E2DD64}) (Version: 3.7.206 - Silhouette America)
Skype™ 7.21 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
UmmyVideoDownloader (HKLM\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.6.0.3 - ) <==== ATENÇÃO
Unity Web Player (HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
VC_CRT_x86 (Version: 1.02.0000 - Intel Corporation) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VSO ConvertXToDVD (HKLM\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.42 - VSO-Software SARL)
Warsaw 1.12.4.14 32 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.12.4.14 - GAS Tecnologia)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
yessearches - Uninstall (HKLM\...\{71007DF8-B800-4146-8226-16E5A57AE07B}) (Version: - ) <==== ATENÇÃO
Zylom Games Player Plugin (HKLM\...\Zylom Games Player Plugin) (Version: - Zylom Games)

==================== Exame Personalizado CLSID (Whitelisted): ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

CustomCLSID: HKU\S-1-5-21-3742549918-194137127-2073451767-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0007}\InprocServer32 -> C:\Users\Xanxus Boss\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3742549918-194137127-2073451767-1001_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0007}\InprocServer32 -> C:\Users\Xanxus Boss\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-3742549918-194137127-2073451767-1001_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Xanxus Boss\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {0DDA1CD1-328B-4244-A1A0-029AE3584198} - System32\Tasks\{39C08FFC-863D-4BFB-B76A-3B54140B7EAF} => pcalua.exe -a "C:\Users\Xanxus Boss\Documents\Programas HaCKERS\vbasic_web.exe" -d "C:\Users\Xanxus Boss\Documents\Programas HaCKERS"
Task: {50E649F2-1DCD-4497-A737-9516FFDF5157} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {78BEC26E-1169-45B2-9FC9-E10AE544C899} - System32\Tasks\{704097E8-6350-4132-8A96-7488239901C1} => pcalua.exe -a "C:\Users\Xanxus Boss\Documents\Programas\GFX_Win7_Win8_32_9.18.10.3165.exe" -d "C:\Users\Xanxus Boss\Documents\Programas"
Task: {88653F6F-A988-4B15-9046-8B099BAF30AA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-15] (Adobe Systems Incorporated)
Task: {99DB19B9-A147-40EF-8D88-BECB7344673C} - \Funmoods -> Nenhum Arquivo <==== ATENÇÃO
Task: {E990E672-58CA-40B4-B566-EF81AD76BB06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {F98A6BB3-93E7-4E24-B280-108B0EEAF072} - System32\Tasks\AdobeAAMUpdater-1.0-FAMILIAPRAXEDES-Xanxus Boss => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Atalhos =============================

(As entradas podem ser listadas para serem restauradas ou removidas.)

ShortcutWithArgument: C:\Users\Xanxus Boss\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --enable-udd-profiles

==================== Módulos Carregados (Whitelisted) ==============

2013-09-04 23:14 - 2013-09-04 23:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2012-12-12 16:38 - 2012-12-12 16:38 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2014-04-17 02:27 - 2014-04-17 02:27 - 00087552 _____ () C:\Program Files\IP Camera Adapter\IPCameraAdapter.dll
2015-05-08 02:08 - 2015-05-08 02:08 - 00151552 _____ () C:\Program Files\DroidCam\lib\DroidCam.dll
2015-05-08 02:08 - 2015-05-08 02:08 - 00081920 _____ () C:\Program Files\DroidCam\lib\DroidCamFilter.ax
2015-05-08 02:14 - 2015-05-08 02:14 - 00086016 _____ () C:\Program Files\DroidCam\lib\DroidCamFilter240p.ax
2015-12-15 15:19 - 2016-04-07 20:44 - 40500224 _____ () C:\Program Files\AVG\UiDll\2171\libcef.dll
2016-01-21 19:04 - 2016-08-08 20:27 - 00785920 _____ () C:\Program Files\Steam\SDL2.dll
2016-01-21 19:04 - 2015-07-01 19:06 - 04962816 _____ () C:\Program Files\Steam\v8.dll
2016-01-21 19:04 - 2015-07-01 19:06 - 01556992 _____ () C:\Program Files\Steam\icui18n.dll
2016-01-21 19:04 - 2015-07-01 19:06 - 01187840 _____ () C:\Program Files\Steam\icuuc.dll
2016-01-21 19:04 - 2016-08-16 17:54 - 02321184 _____ () C:\Program Files\Steam\video.dll
2016-01-21 19:04 - 2016-01-27 04:49 - 02549760 _____ () C:\Program Files\Steam\libavcodec-56.dll
2016-01-21 19:04 - 2016-01-27 04:49 - 00442880 _____ () C:\Program Files\Steam\libavutil-54.dll
2016-01-21 19:04 - 2016-01-27 04:49 - 00491008 _____ () C:\Program Files\Steam\libavformat-56.dll
2016-01-21 19:04 - 2016-01-27 04:49 - 00332800 _____ () C:\Program Files\Steam\libavresample-2.dll
2016-01-21 19:04 - 2016-01-27 04:49 - 00485888 _____ () C:\Program Files\Steam\libswscale-3.dll
2016-01-21 19:04 - 2016-08-16 17:54 - 00835360 _____ () C:\Program Files\Steam\bin\chromehtml.DLL
2016-01-21 19:04 - 2016-08-04 17:56 - 49825056 _____ () C:\Program Files\Steam\bin\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(Se uma entrada for incluída na fixlist, somente o ADS será removido.)

AlternateDataStreams: C:\Program Files\GbPlugin:IncompleteStartProcessProtection.cnt [8]
AlternateDataStreams: C:\Program Files\GbPlugin:u6eBQrM0Z2K3FKLVBMG8dY3IkKT2rqFO+Sf68h8fDg== [32]
AlternateDataStreams: C:\Windows\system32\drivers:GbpKmAp.lst [420]
AlternateDataStreams: C:\Windows\system32\Drivers\wsddfac.sys:X5ZN8aGXs4 [1198]
AlternateDataStreams: C:\ProgramData\GbPlugin:IncompleteStartGbprcm.cnt [10]
AlternateDataStreams: C:\Users\Todos os Usuários\GbPlugin:IncompleteStartGbprcm.cnt [10]

==================== Modo de Segurança (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O valor "AlternateShell" será restaurado.)


==================== Associação (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido.)


==================== Internet Explorer confiável/restrito ===============

(Se uma entrada for incluída na fixlist, será removida do Registro.)

IE trusted site: HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\caixa.gov.br -> hxxps://imagem.caixa.gov.br
IE trusted site: HKU\S-1-5-21-3742549918-194137127-2073451767-1001\...\hola.org -> hxxp://hola.org

==================== Hosts Conteúdo: ===============================

(Se necessário, a diretiva Hosts: pode ser incluída na fixlist para redefinir o Hosts.)

2009-07-13 23:04 - 2016-05-19 04:26 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Outras Áreas ============================

(Atualmente não há nenhuma correção automática para esta seção.)

HKU\S-1-5-21-3742549918-194137127-2073451767-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Xanxus Boss\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall do Windows está desabilitado.

==================== MSCONFIG/TASK MANAGER ítens desabilitados ==

(Atualmente não há nenhuma correção automática para esta seção.)

MSCONFIG\Services: D136FF27-1F7C-49D3-8EE2-76706CF84A15 => 2
MSCONFIG\Services: EteqgOuapupc => 2
MSCONFIG\Services: MPCProtectService =>
MSCONFIG\Services: OmunSoxsopu => 2
MSCONFIG\Services: QQRepairFixSVC => 2
MSCONFIG\Services: Rkcadpsrv => 2
MSCONFIG\Services: WsAppService => 2
MSCONFIG\Services: WsDrvInst => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^MobileGo Service.lnk => C:\Windows\pss\MobileGo Service.lnk.CommonStartup

==================== Regras do Firewall (Whitelisted) ===============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

FirewallRules: [{733DFA9E-075E-4BD1-B4D2-62F291D8E36A}] => (Allow) C:\Program Files\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{08120E49-1E67-4936-A0A9-32EACA915B01}] => (Allow) C:\Program Files\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{DEAB78D2-4D55-4736-A154-8B105EB668B6}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{96748091-5A4E-4D6C-A7D2-831A56172A2A}] => (Allow) C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{BD2AE8BC-0648-4DC6-981A-DB3A7DFD4CBB}] => (Allow) C:\Users\Xanxus Boss\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{090A5BA5-F484-4ACE-B105-D58627E97854}] => (Block) %ProgramFiles%\Football Manager 2013\fm.exe
FirewallRules: [{29623055-95DE-4179-9ED6-78FDF2A98CF0}] => (Block) %ProgramFiles%\Football Manager 2013\fm.exe
FirewallRules: [TCP Query User{0A9A093B-9289-42E4-9EC8-90A1CAFEB208}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe
FirewallRules: [UDP Query User{1941916C-55FB-4F4B-A7E1-09B6A4D29CCE}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe
FirewallRules: [{5B297980-7561-476D-925D-E1CDD8F8F6F9}] => (Allow) C:\Program Files\AVG\AVG2013\avgnsx.exe
FirewallRules: [{19DC245C-4211-447D-8104-F3BF0BDBC537}] => (Allow) C:\Program Files\AVG\AVG2013\avgnsx.exe
FirewallRules: [{F9864CBA-2A12-4761-AC63-65E3D0B2B027}] => (Allow) C:\Program Files\AVG\AVG2013\avgdiagex.exe
FirewallRules: [{CA2394E6-E7CC-4EDF-857D-9AF91B284AC6}] => (Allow) C:\Program Files\AVG\AVG2013\avgdiagex.exe
FirewallRules: [{7D3A1654-493D-4FB8-9E67-6D7E1F040034}] => (Allow) C:\Program Files\AVG\AVG2013\avgemcx.exe
FirewallRules: [{4AC90774-AA32-4354-A1D2-14A8B0060957}] => (Allow) C:\Program Files\AVG\AVG2013\avgemcx.exe
FirewallRules: [TCP Query User{0547FD0B-820C-4C0E-BBB8-342BA6001103}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe
FirewallRules: [UDP Query User{E4FF30D8-EF50-4673-88B4-AFB2433A9AED}C:\program files\ares\ares.exe] => (Block) C:\program files\ares\ares.exe
FirewallRules: [TCP Query User{4100D21F-9647-46D8-9474-D8A7971FE4E1}C:\users\microcomputador i\downloads\winbox-2.2.13.exe] => (Allow) C:\users\microcomputador i\downloads\winbox-2.2.13.exe
FirewallRules: [UDP Query User{14D7E592-7AA4-4F82-8106-6C088A1CC817}C:\users\microcomputador i\downloads\winbox-2.2.13.exe] => (Allow) C:\users\microcomputador i\downloads\winbox-2.2.13.exe
FirewallRules: [TCP Query User{A7EDC102-BD0C-4F3D-AEE9-1E4842A6F8D4}C:\users\microcomputador i\downloads\winbox-2.2.13.exe] => (Allow) C:\users\microcomputador i\downloads\winbox-2.2.13.exe
FirewallRules: [UDP Query User{2D9F698F-DD15-4FD8-96B6-8BAAF29577E4}C:\users\microcomputador i\downloads\winbox-2.2.13.exe] => (Allow) C:\users\microcomputador i\downloads\winbox-2.2.13.exe
FirewallRules: [{82303F22-6897-4407-99E0-E224FD0F6CC1}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{669477DC-6B94-4EDF-8CF0-AA8F9D02E776}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{421C6815-35C7-4DB7-9345-24E9D8A0938E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{7E784507-502B-4263-9647-A150D29C2ABA}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{5E794ABB-2813-4E50-9D28-EAFE5B828ED4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C8ED4D4-222A-4960-A667-E0C5F3BB8C2E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{78F1BCFD-F5B7-4354-B7B3-1BCC4661CB65}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8BFB48FB-8403-4C85-9AF4-E591F24A7DDE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{7656368B-99A1-4720-9660-7B3506506007}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{B605EA1A-4E07-49AA-A741-52592BC9B97E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{F554B87B-8DD0-46E6-9558-3D6F67A24BEB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{9CEF005C-D48B-4036-90DD-73CC3C5D42ED}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{B2A6E96B-46E3-41FF-96C0-77A5C0C9DB0D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{AD2E07F4-6D07-4E91-A3DB-C7B3D3A2EC6F}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{8DBCE0CB-E253-4AB3-AE26-826B6CF5540D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{3AD63860-29B2-4A17-B332-CEA674DDE4CF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{450ED396-5ACA-4729-B2EB-38261DB446C4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{15E93A0C-4F55-4C6E-9B3E-E746C05E0F40}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{2E67B0CA-0D0C-4201-8AF9-0C1728BCDFD4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{4664E087-76E5-46D3-ACA4-42A5CF6149E2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{87BCC63E-4930-4E07-AAE6-99F55EF31AE7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{14B53F6C-AD07-4B1E-9588-F08AF0E34882}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{173AE94C-9C4B-4C0C-97CC-DBAF90C22E1F}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{5B3D7758-92D9-4FA3-957F-849FBF3E9662}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{44087075-5E03-4587-9703-BF8A2FDE59A6}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{11F19ABB-C6D4-462C-B912-0E5AE4344D58}C:\program files\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files\spacialaudio\sambc\sambc.exe
FirewallRules: [UDP Query User{2C9AA535-DF0D-4B6D-890A-7FC651AF074D}C:\program files\spacialaudio\sambc\sambc.exe] => (Allow) C:\program files\spacialaudio\sambc\sambc.exe
FirewallRules: [{3AAA9631-8BA2-440A-9F53-3595C36A87A9}] => (Allow) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
FirewallRules: [{1B0BF84B-7242-44D3-A72D-EF1DD3EF2BAE}] => (Allow) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
FirewallRules: [{A8E8FD19-12F5-4F72-9704-C5933393373F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{39DFD447-9DA0-4FDE-9812-46CC6336DF83}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6E388713-BC6A-4A52-B953-DD2B14AAB08A}] => (Allow) C:\Program Files\Simple Port Forwarding\spf.exe
FirewallRules: [{48259E3E-7C84-4D40-80C0-F2D8A9C9C0C5}] => (Allow) C:\Program Files\Simple Port Forwarding\spf.exe
FirewallRules: [{D8025384-8BD5-4F76-BD85-31E2BEF7F533}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{B001458F-D2F2-48DE-8BEF-B18DF74AD24D}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{918D7809-CC47-4526-A9E8-677998731183}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{0E837380-4DCB-4535-B622-8EECBB5F3D71}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{8A1E0379-29B9-43FA-AE9D-3C2BDAA6231A}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{50EE9595-C093-415D-878B-FFBAAD68257B}] => (Allow) C:\Program Files\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{49DC198B-4744-49EF-B545-9FACB8A22160}] => (Allow) C:\Program Files\Diebold\Warsaw\core.exe
FirewallRules: [{67DA11B9-84E6-442A-8188-EFCF434F03FF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{19E46DD6-EE3A-4687-B4B2-F7021DB39EF3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{4591A484-7350-41EB-A5B1-48CB5B1DE082}] => (Allow) C:\Program Files\DroidCam\DroidCamApp.exe
FirewallRules: [{296B03B1-F0EF-4161-890B-196F0DA9835D}] => (Allow) C:\Program Files\DroidCam\DroidCamApp.exe
FirewallRules: [{8BF3D345-4115-4106-8AF7-02EE4398F90E}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{66900C37-2952-4AED-A018-B786A0C00821}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{8F56F797-11DD-4A9C-8977-96BC2E1AC55D}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EA968F92-0AD2-4A00-B9BE-7E295CECD327}] => (Allow) LPort=2869
FirewallRules: [{4EAC875D-C314-4622-B0BF-5C93A48F8841}] => (Allow) LPort=1900
FirewallRules: [{677CFD4B-710C-497A-884F-6BC132091A86}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{E16F4354-383B-4DCE-8122-B73C65C2E279}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{BCE6662F-BD0D-4CDC-9048-88DA1B06F3E3}] => (Allow) c:\users\xanxus boss\appdata\roaming\download\MiniThunderPlatform.exe
FirewallRules: [{80A869E0-9DA2-4FDA-8ABE-65241A0F5C04}] => (Allow) c:\users\xanxus boss\appdata\roaming\download\MiniThunderPlatform.exe
FirewallRules: [{F6DCAD2C-4E3E-4E83-A519-23181774A32B}] => (Allow) C:\Users\Xanxus Boss\AppData\Local\Temp\qdw.exe
FirewallRules: [{0DD6EB06-D8DE-461A-AEA4-F31C2126D759}] => (Allow) C:\Users\Xanxus Boss\AppData\Local\Temp\qdw.exe
FirewallRules: [{36E1B9CA-BC16-44A6-B581-ECB3348E91AC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{C6E6B2EE-4BA5-4B3D-93E6-359B22492CB5}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{1022FEA5-90EC-449B-88E0-92899E05001C}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{92B02B6C-DC73-4BDB-8956-5284CEFE94B8}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{52E42D5B-6903-4ACD-ADC8-309D8E513DCC}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{E17B6580-BAA6-4CD0-BBA1-655F13E40482}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
FirewallRules: [{3C004E2A-71FD-40BE-857D-CA3DF808C7E7}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe

==================== Pontos de Restauração =========================

20-08-2016 14:27:20 Fim da desinfecção
20-08-2016 14:28:56 20/08/2016
20-08-2016 14:32:55 Revo Uninstaller Pro's restore point - ESET Online Scanner v3

==================== Dispositivos Apresentando Falhas No Gerenciador =============

Name: Controlador de barramento SM
Description: Controlador de barramento SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erros no Log de eventos: =========================

Erros em Aplicativos:
==================
Error: (08/20/2016 02:32:54 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {584bdf96-913d-4c80-94e7-48e3fbd6ef35}

Error: (08/20/2016 02:27:19 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback. hr = 0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.


Operação:
Obtendo Dados do Gravador

Contexto:
Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
Nome do Gravador: System Writer
ID de Instância de Gravador: {584bdf96-913d-4c80-94e7-48e3fbd6ef35}

Error: (08/20/2016 02:20:45 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Falha de ativação da licença do Windows. Erro 0x80070005.

Error: (08/20/2016 12:17:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa fm.exe versão 16.2.0.0 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID de Processo: 1e80

Hora de Início: 01d1fa706d140f10

Hora de Término: 74

Caminho do Aplicativo: C:\Program Files\Steam\steamapps\common\Football Manager 2016\fm.exe

Id do Relatório:

Error: (08/19/2016 02:14:29 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Falha de ativação da licença do Windows. Erro 0x80070005.

Error: (08/19/2016 01:43:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (08/19/2016 01:43:16 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Assembly dependente Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (08/19/2016 01:24:54 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoId={9398D0F6-0C0F-44C6-A802-255A3D37933E}: o usuário FAMILIAPRAXEDES\MICROCOMPUTADOR I discou uma conexão de nome PPPoe Edatel que falhou. O código do erro retornado na falha é 0.

Error: (08/19/2016 01:22:39 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Falha de ativação da licença do Windows. Erro 0x80070005.

Error: (08/19/2016 11:06:26 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Falha de ativação da licença do Windows. Erro 0x80070005.


Erros de Sistema:
=============
Error: (08/20/2016 02:21:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço Gbpddreg svc devido ao seguinte erro:
%%2 = O sistema não pode encontrar o arquivo especificado.

Error: (08/20/2016 02:20:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 1 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/20/2016 02:20:48 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Falha ao carregar o(s) seguinte(s) driver(s) de início do sistema ou de inicialização:
gbpddreg
wsddfac

Error: (08/20/2016 05:23:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 9 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/20/2016 03:23:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 8 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/20/2016 01:23:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 7 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/19/2016 11:23:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 6 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/19/2016 09:23:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 5 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/19/2016 07:23:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: O serviço Warsaw Technology foi finalizado inesperadamente. Isto aconteceu 4 vez(es). A seguinte ação corretiva será tomada em 0 milissegundos: Reiniciar o serviço.

Error: (08/19/2016 05:59:02 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}


==================== Informações da Memória ===========================

Processador: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz
Percentagem de memória em uso: 58%
RAM física total: 3494.45 MB
RAM física disponível: 1442.38 MB
Virtual Total: 6987.19 MB
Virtual disponível: 4987.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:142.98 GB) NTFS

==================== MBR & Tabela de Partições ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 337E4135)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== Fim de Addition.txt ============================

ESETSmartInstaller@High as downloader log:
Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9267006db6d4054295bc2448f6eaa301
# end=init
# utc_time=2016-08-21 11:45:12
# local_time=2016-08-21 08:45:12 (-0300, Hora oficial do Brasil)
# country="Brazil"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 30496
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9267006db6d4054295bc2448f6eaa301
# end=updated
# utc_time=2016-08-22 12:15:44
# local_time=2016-08-21 09:15:44 (-0300, Hora oficial do Brasil)
# country="Brazil"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=9267006db6d4054295bc2448f6eaa301
# engine=30496
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2016-08-22 04:12:49
# local_time=2016-08-22 01:12:49 (-0300, Hora oficial do Brasil)
# country="Brazil"
# lang=11046
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='AVG AntiVirus Free Edition'
# compatibility_mode=1057 16777213 100 97 0 1319561 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 69148792 223387560 0 0
# scanned=630243
# found=2
# cleaned=2
# scan_time=14225
sh=52E40204CB88F20C20478D36F1F72BB6B8FD735D ft=0 fh=0000000000000000 vn="uma variante de Win32/HackTool.Patcher.A Aplicação potencialmente insegura (excluído)" ac=C fn="C:\Users\Xanxus Boss\Documents\Programas\Adobe Fireworks CS6.zip"
sh=ABD3489A0DA64B82EAE23012F0B5D5EC75733681 ft=1 fh=0a654f7f2975e12d vn="uma variante de Win32/FusionCore.I Aplicação potencialmente não desejado (excluído)" ac=C fn="C:\Users\Xanxus Boss\Documents\Programas\emule.exe"

Runscanner logfile http://www.runscanner.net

* = signed file
- = file not found

General info
------------
Computer name : DESKTOP-IBHDG3S
Creation time : 22/08/2016 23:28:07
Hosts <> 127.0.0.1 : 1
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 9.11.14905.0
OS : Windows 10 Pro Insider Preview
OS Build : 9200
OS SP :
RunScanner Version : 2.0.0.60
User Language : Português (Brasil)
User rights : Administrator
Windows folder : C:\WINDOWS

Running processes
-----------------
C:\WINDOWS\system32\wininit.exe (Microsoft Corporation)
C:\Windows\System32\winlogon.exe (Microsoft Corporation)
C:\WINDOWS\system32\services.exe (Microsoft Corporation)
C:\Windows\System32\spoolsv.exe (Microsoft Corporation)
C:\Windows\System32\ApplicationFrameHost.exe (Microsoft Corporation)
C:\Windows\System32\SystemSettingsAdminFlows.exe (Microsoft Corporation)
* C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe (Gadwin Systems)
C:\Windows\System32\dwm.exe (Microsoft Corporation)
C:\WINDOWS\system32\smss.exe (Microsoft Corporation)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
* C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
C:\Windows\System32\DataExchangeHost.exe (Microsoft Corporation)
C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation)
C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation)
C:\Windows\System32\lsass.exe (Microsoft Corporation)
C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation)
* C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation)
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\svchost.exe (Microsoft Corporation)
C:\Windows\System32\taskhostw.exe (Microsoft Corporation)
C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
* C:\Users\EDSON\Downloads\runscanner.exe (Runscanner.net)
C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation)
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe (Microsoft Corporation)
* C:\Windows\System32\ViakaraokeSrv.exe (VIA Technologies, Inc.)
C:\Windows\System32\msdtc.exe (Microsoft Corporation)
C:\Windows\System32\sihost.exe (Microsoft Corporation)
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.111.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_11607.1001.51.0_x86__8wekyb3d8bbwe\WinStore.Mobile.exe (Microsoft Corporation)
C:\Windows\System32\SystemSettingsBroker.exe (Microsoft Corporation)
C:\Windows\System32\fontdrvhost.exe (Microsoft Corporation)
C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
C:\Windows\explorer.exe (Microsoft Corporation)
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe (Microsoft Corporation)

Unrated items
-------------
002 * C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
002 C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
003 * C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen32.exe (Gadwin Systems)
010 C:\WINDOWS\system32\wbem\wmiapsrv.exe (Adaptador Reverso de Desempenho WMI)
010 C:\WINDOWS\system32\ncbservice.dll (Agente de Conexão de Rede)
010 C:\WINDOWS\system32\DevQueryBroker.dll (Agente de Descoberta em Segundo Plano de DevQuery)
010 C:\WINDOWS\system32\TimeBrokerServer.dll (Agente de Evento de Tempo)
010 C:\WINDOWS\system32\SystemEventsBrokerServer.dll (Agente de Eventos do Sistema)
010 C:\WINDOWS\system32\iscsidsc.dll (API de Descoberta iSCSI)
010 C:\WINDOWS\SYSTEM32\gpapi.dll (API do Cliente da Política de Grupo)
010 C:\WINDOWS\system32\FirewallAPI.dll (API do Firewall do Windows)
010 C:\WINDOWS\system32\spoolsv.exe (Aplicativo de subsistema de spooler)
010 C:\WINDOWS\System32\AppReadiness.dll (AppReadiness)
010 C:\WINDOWS\system32\usocore.dll (Atualizar Sessão do Orchestrator Core)
010 C:\WINDOWS\System32\BthHFSrv.dll (Bluetooth Handsfree Service)
010 C:\WINDOWS\system32\trkwks.dll (Cliente de rastreamento de link distribuído)
010 C:\WINDOWS\system32\ipnathlp.dll (Componentes do Microsoft NAT Helper)
010 C:\WINDOWS\system32\wcncsvc.dll (Conexão Fácil do Windows - Serviço Registrador de Configuração)
010 C:\WINDOWS\system32\flightsettings.dll (Configurações da Nova Versão)
010 C:\WINDOWS\System32\AudioEndpointBuilder.dll (Construtor de Pontos de Extremidade de Áudio do Windows)
010 C:\WINDOWS\system32\dcpsvc.dll (dcpsvc Task)
010 C:\Program Files\Windows Defender\MpAsDesc.dll (Descrições de Atualizações de Definições)
010 C:\Program Files\Windows Defender\MpAsDesc.dll (Descrições de Atualizações de Definições)
010 C:\WINDOWS\system32\ui0detect.exe (Detecção de serviços interativos)
010 C:\WINDOWS\System32\DeveloperToolsSvc.exe (Developer Tools Service)
010 C:\WINDOWS\system32\wiarpc.dll (DLL cliente de RPC do Assistente de Aquisição de Imagens do Windows)
010 C:\WINDOWS\System32\dnsapi.dll (DLL da API de cliente DNS)
010 C:\WINDOWS\system32\polstore.dll (DLL de armazenamento de política)
010 C:\WINDOWS\system32\fxsresm.dll (DLL de recursos do serviço de fax Microsoft)
010 C:\WINDOWS\system32\PhoneserviceRes.dll (DLL de Recursos para o Serviço de Telefonia)
010 C:\WINDOWS\system32\pnrpauto.dll (DLL de Serviço Automático PNRP)
010 C:\WINDOWS\system32\NcdAutoSetup.dll (DLL de serviço de Instalação Automática de Dispositivos Conectados à Rede)
010 C:\WINDOWS\system32\seclogon.dll (DLL de serviço de logon secundário)
010 C:\WINDOWS\system32\srvsvc.dll (DLL de Serviço do Servidor)
010 C:\WINDOWS\system32\browser.dll (DLL de Serviço Pesquisador de Computadores)
010 C:\WINDOWS\system32\pnrpsvc.dll (Dll de serviço PNRP)
010 C:\WINDOWS\system32\pnrpsvc.dll (Dll de serviço PNRP)
010 C:\WINDOWS\System32\netlogon.dll (DLL de serviços de logon de rede)
010 C:\WINDOWS\system32\lmhsvc.dll (DLL de Serviços de Transporte NetBios TCP/IP)
010 C:\WINDOWS\System32\shsvcs.dll (DLL de serviços do Shell do Windows)
010 C:\WINDOWS\SYSTEM32\EnterpriseAppMgmtSvc.dll (Dll de servidor empresarial)
010 C:\WINDOWS\system32\cscsvc.dll (DLL do Serviço CSC)
010 C:\WINDOWS\system32\dssvc.dll (DLL do Serviço de Compartilhamento de Dados NT)
010 C:\WINDOWS\System32\wlansvc.dll (DLL do Serviço de Configuração Automática de WLAN do Windows)
010 C:\WINDOWS\system32\wkssvc.dll (DLL do Serviço de Estação de Trabalho)
010 C:\WINDOWS\system32\Windows.Internal.Management.dll (DLL do Serviço de Gerenciamento do Windows)
010 C:\WINDOWS\system32\AJRouter.dll (DLL do Serviço de Roteador AllJoyn)
010 C:\WINDOWS\System32\themeservice.dll (DLL do Serviço de Tema do Shell do Windows)
010 C:\WINDOWS\System32\wcmsvc.dll (DLL do Serviço do Gerenciador de Conexões do Windows)
010 C:\WINDOWS\system32\ssdpsrv.dll (DLL do Serviço SSDP)
010 C:\WINDOWS\system32\webclnt.dll (DLL do Serviço WebDAV)
010 C:\WINDOWS\system32\appxdeploymentserver.dll (DLL do Servidor de Implantação AppX)
010 C:\WINDOWS\system32\FrameServer.dll (DLL do Servidor de Quadros de Câmera do Windows)
010 C:\WINDOWS\system32\samsrv.dll (DLL do servidor do SAM)
010 C:\WINDOWS\system32\dmwappushsvc.dll (dmwappushsvc)
010 C:\WINDOWS\system32\wpdbusenum.dll (Enumerador de Dispositivos Portáteis)
010 C:\WINDOWS\system32\wbengine.exe (EXE de Serviço do Mecanismo de Backup em Nível de Bloco da Microsoft®)
010 C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe (Executável do Serviço Proteção Avançada contra Ameaças do Windows Defender)
010 C:\WINDOWS\system32\ikeext.dll (Extensão IKE)
010 C:\WINDOWS\system32\rasmans.dll (Gerenciador de conexão de acesso remoto)
010 C:\WINDOWS\system32\netman.dll (Gerenciador de conexões de rede)
010 C:\WINDOWS\System32\termsrv.dll (Gerenciador de Conexões Remotas do Servidor Host da Sessão da Área de Trabalho Remota)
010 C:\WINDOWS\system32\rasauto.dll (Gerenciador de Discagem Automática de Acesso Remoto)
010 C:\WINDOWS\system32\DeviceSetupManager.dll (Gerenciador de Instalação de Dispositivo)
010 C:\WINDOWS\system32\netprofmsvc.dll (Gerenciador de Listas de Redes)
010 C:\WINDOWS\System32\moshost.dll (Gerenciador de Mapas Baixados)
010 C:\WINDOWS\system32\TieringEngineService.exe (Gerenciamento de Camadas de Armazenamento)
010 * C:\Program Files\Google\Update\GoogleUpdate.exe (Google Installer)
010 * C:\Program Files\Google\Update\GoogleUpdate.exe (Google Installer)
010 C:\WINDOWS\system32\upnphost.dll (Host de dispositivo UPnP)
010 C:\WINDOWS\system32\sysmain.dll (Host de Serviço Superfetch)
010 C:\WINDOWS\system32\PresentationHost.exe (Host do Windows Presentation Foundation)
010 C:\WINDOWS\system32\SearchIndexer.exe (Indexador do Microsoft Windows Search)
010 C:\WINDOWS\system32\wdi.dll (Infraestrutura de Diagnóstico do Windows)
010 C:\WINDOWS\system32\wdi.dll (Infraestrutura de Diagnóstico do Windows)
010 C:\WINDOWS\servicing\TrustedInstaller.exe (Instalador de Módulos do Windows)
010 C:\WINDOWS\system32\snmptrap.exe (Interceptação SNMP)
010 C:\WINDOWS\system32\licensemanagersvc.dll (LicenseManagerSvc)
010 C:\WINDOWS\system32\Locator.exe (Localizador RPC)
010 C:\WINDOWS\system32\pla.dll (Logs e Alertas de Desempenho)
010 C:\WINDOWS\system32\RpcEpMap.dll (Mapeador de Ponto de Extremidade RPC)
010 C:\WINDOWS\system32\bfe.dll (Mecanismo de Filtragem Básica)
010 C:\WINDOWS\system32\msimsg.dll (Mensagens Internacionais do Windows®)
010 C:\WINDOWS\system32\AppVClient.exe (Microsoft Application Virtualization Client Service)
010 C:\WINDOWS\SYSTEM32\combase.dll (Microsoft COM para Windows)
010 C:\WINDOWS\SYSTEM32\combase.dll (Microsoft COM para Windows)
010 C:\WINDOWS\system32\coremessaging.dll (Microsoft CoreMessaging Dll)
010 C:\WINDOWS\system32\defragsvc.dll (Microsoft\Otimizador de Unidade)
010 C:\WINDOWS\system32\svsvc.dll (Microsoft\Verificador de Ponto)
010 C:\WINDOWS\System32\irmon.dll (Monitor de infravermelho)
010 C:\WINDOWS\system32\sstpsvc.dll (Oferece a facilidade de usar o SSTP para estabelecer conexão com computadores remotos (usando VPN).)
010 C:\WINDOWS\system32\dosvc.dll (Otimização de Entrega)
010 C:\WINDOWS\System32\svchost.exe (Processo de Host para Serviços do Windows)
010 C:\WINDOWS\system32\profsvc.dll (ProfSvc)
010 C:\WINDOWS\System32\swprv.dll (Provedor de software de serviço de cópias de sombra de volume da Microsoft®)
010 C:\WINDOWS\system32\RMapi.dll (Radio Manager API)
010 C:\WINDOWS\system32\diagtrack.dll (Rastreamento de Diagnóstico do Microsoft Windows)
010 C:\WINDOWS\System32\RDXService.dll (RDXService)
010 C:\WINDOWS\System32\nlasvc.dll (Reconhecimento de Locais de Rede 2)
010 C:\WINDOWS\SYSTEM32\comres.dll (Recursos COM+)
010 C:\WINDOWS\SYSTEM32\comres.dll (Recursos COM+)
010 C:\WINDOWS\SYSTEM32\comres.dll (Recursos COM+)
010 C:\WINDOWS\SYSTEM32\comres.dll (Recursos COM+)
010 C:\WINDOWS\system32\lltdres.dll (Recursos da Descoberta de Topologia da Camada de Link)
010 C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll (Recursos do Coletor de Padrões de Hub de Diagnóstico da Microsoft (R))
010 C:\WINDOWS\System32\wercplsupport.dll (Relatórios de Problemas e Soluções)
010 * C:\WINDOWS\system32\viakaraokesrv.exe (Service binary)
010 C:\WINDOWS\system32\schedsvc.dll (Serviço Agendador de Tarefas)
010 C:\WINDOWS\system32\ncasvc.dll (Serviço Assistente de Conectividade de Rede da Microsoft)
010 C:\WINDOWS\system32\pcasvc.dll (Serviço Auxiliar de Compatibilidade de Programas)
010 C:\WINDOWS\system32\bdesvc.dll (Serviço BDE)
010 C:\WINDOWS\system32\peerdistsvc.dll (Serviço BranchCache)
010 C:\WINDOWS\System32\wscsvc.dll (Serviço Central de Segurança do Windows)
010 C:\WINDOWS\system32\wecsvc.dll (Serviço Coletor de Eventos)
010 C:\WINDOWS\system32\wlidsvc.dll (Serviço Conta da Microsoft®)
010 C:\WINDOWS\system32\sppsvc.exe (Serviço da Plataforma de Proteção de Software da Microsoft)
010 C:\WINDOWS\system32\das.dll (Serviço de Associação de Dispositivo)
010 C:\WINDOWS\System32\audiosrv.dll (Serviço de Áudio do Windows)
010 C:\WINDOWS\system32\sdrsvc.dll (Serviço de Backup do Microsoft® Windows)
010 C:\WINDOWS\system32\wbiosrvc.dll (Serviço de Biometria do Windows)
010 C:\WINDOWS\system32\FntCache.dll (Serviço de Cache de Fontes do Windows)
010 C:\WINDOWS\System32\WalletService.dll (Serviço de Carteira)
010 C:\WINDOWS\System32\tetheringservice.dll (Serviço de Compartilhamento de Internet)
010 C:\Program Files\Windows Media Player\wmpnetwk.exe (Serviço de Compartilhamento de Rede do Windows Media Player)
010 C:\WINDOWS\system32\icsvc.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvc.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvcext.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvc.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvc.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvc.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvc.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\icsvcext.dll (Serviço de Componente de Integração de Máquina Virtual)
010 C:\WINDOWS\system32\dot3svc.dll (Serviço de Configuração Automática com Fio)
010 C:\WINDOWS\System32\wwansvc.dll (Serviço de Configuração Automática de WWAN)
010 C:\WINDOWS\System32\SessEnv.dll (Serviço de Configuração da Área de Trabalho Remota)
010 C:\WINDOWS\system32\NetSetupSvc.dll (Serviço de Configuração de Rede)
010 C:\WINDOWS\System32\NgcCtnrSvc.dll (Serviço de Contêiner do Microsoft Passport)
010 C:\WINDOWS\system32\vssvc.exe (Serviço de cópias de sombra de volume da Microsoft®)
010 C:\WINDOWS\system32\vds.exe (Serviço de disco virtual)
010 C:\WINDOWS\System32\hidserv.dll (Serviço de Dispositivos de Interface Humana)
010 C:\WINDOWS\system32\umpo.dll (Serviço de Energia no Modo de Usuário)
010 C:\WINDOWS\System32\ScDeviceEnum.dll (Serviço de Enumeração de Dispositivo de Cartão Inteligente)
010 C:\WINDOWS\System32\lfsvc.dll (Serviço de Geolocalização)
010 C:\WINDOWS\system32\vaultsvc.dll (Serviço de Gerenciamento de Credenciais)
010 C:\WINDOWS\system32\fhsvc.dll (Serviço de Histórico de Arquivos)
010 C:\WINDOWS\system32\fdPHost.dll (Serviço de Host de Provedor da Descoberta de Função)
010 C:\WINDOWS\system32\wephostsvc.dll (Serviço de Host do Provedor de Criptografia do Windows)
010 C:\WINDOWS\system32\appidsvc.dll (Serviço de Identidade de Aplicativo)
010 C:\WINDOWS\system32\appinfo.dll (Serviço de Informações de Aplicativos)
010 C:\WINDOWS\system32\bisrv.dll (Serviço de Infraestrutura de Tarefas de Segundo Plano)
010 C:\WINDOWS\SYSTEM32\appmgmts.dll (Serviço de instalação do software)
010 C:\WINDOWS\SYSTEM32\keyiso.dll (Serviço de Isolamento de Chave CNG)
010 C:\WINDOWS\system32\ClipSVC.dll (Serviço de Licenças de Cliente)
010 C:\WINDOWS\system32\wevtsvc.dll (Serviço de log de eventos)
010 C:\WINDOWS\System32\sensrsvc.dll (Serviço de Monitoramento de Sensor do Microsoft Windows)
010 C:\WINDOWS\system32\Sens.dll (Serviço de Notificação de Eventos do Sistema (SENS))
010 C:\WINDOWS\system32\dps.dll (Serviço de Política de Diagnóstico WDI)
010 C:\WINDOWS\System32\certprop.dll (Serviço de Propagação de Certificado de Cartão Inteligente da Microsoft)
010 C:\WINDOWS\System32\certprop.dll (Serviço de Propagação de Certificado de Cartão Inteligente da Microsoft)
010 C:\WINDOWS\system32\fdrespub.dll (Serviço de Publicação de Recursos de Descoberta de Função)
010 C:\WINDOWS\system32\embeddedmodesvc.dll (Serviço de Registro de Depuração)
010 C:\WINDOWS\System32\wersvc.dll (Serviço de Relatórios de Erro do Windows)
010 C:\WINDOWS\System32\SmsRouterSvc.dll (Serviço de Roteador SMS do Windows)
010 C:\WINDOWS\System32\sensorservice.dll (Serviço de Sensor)
010 C:\WINDOWS\System32\bthserv.dll (Serviço de Suporte a Bluetooth)
010 C:\WINDOWS\system32\w32time.dll (Serviço de Tempo do Windows)
010 C:\WINDOWS\system32\qmgr.dll (Serviço de transferência inteligente de tela de fundo)
010 C:\WINDOWS\system32\dhcpcore.dll (Serviço do Cliente DHCP)
010 C:\WINDOWS\system32\lsm.dll (Serviço do Gerenciador de Sessão Local)
010 C:\WINDOWS\system32\umrdp.dll (Serviço do Redirecionador de Dispositivo dos Serviços de Área de Trabalho Remota)
010 C:\WINDOWS\system32\wpnservice.dll (Serviço do Sistema de Notificação por Push do Windows)
010 C:\WINDOWS\system32\wiaservc.dll (Serviço dos dispositivos de imagem fixa)
010 C:\WINDOWS\system32\efssvc.dll (Serviço EFS)
010 C:\WINDOWS\system32\Alg.exe (Serviço Gateway de Camada de Aplicativo)
010 C:\WINDOWS\system32\AxInstSV.dll (Serviço Instalador do ActiveX)
010 C:\WINDOWS\system32\cdpsvc.dll (Serviço Microsoft (R) CDP)
010 C:\WINDOWS\system32\eapsvc.dll (Serviço Microsoft EAPHost)
010 C:\WINDOWS\System32\ngcsvc.dll (Serviço Microsoft Passport)
010 C:\WINDOWS\system32\workfolderssvc.dll (Serviço Pastas de Trabalho da Microsoft (C))
010 C:\WINDOWS\system32\umpnpmgr.dll (Serviço plug-and-play modo usuário)
010 C:\WINDOWS\system32\umpnpmgr.dll (Serviço plug-and-play modo usuário)
010 C:\WINDOWS\system32\iphlpsvc.dll (Serviço que oferece conectividade IPv6 em uma rede IPv4.)
010 C:\WINDOWS\system32\SensorDataService.exe (Serviço Sensor de Dados)
010 C:\WINDOWS\system32\wsmsvc.dll (Serviço WSMan)
010 C:\WINDOWS\System32\StorSvc.dll (Serviços de Armazenamento)
010 C:\WINDOWS\system32\cryptsvc.dll (Serviços de criptografia)
010 C:\WINDOWS\system32\p2psvc.dll (Serviços Ponto a Ponto)
010 C:\WINDOWS\system32\windows.staterepository.dll (Servidor da API de StateRepository do Windows)
010 C:\WINDOWS\system32\tileobjserver.dll (Servidor de modelo de Dados de Bloco)
010 C:\WINDOWS\system32\tapisrv.dll (Servidor de telefonia do Microsoft® Windows(TM))
010 C:\WINDOWS\system32\nsisvc.dll (Servidor RPC de Interface de Repositório de Rede)
010 C:\WINDOWS\system32\SshBroker.dll (SSH Server Broker)
010 C:\WINDOWS\system32\SshProxy.dll (SSH Server Proxy)
010 C:\WINDOWS\System32\smphost.dll (Storage Management Provider (SMP) host service)
010 C:\WINDOWS\system32\TabSvc.dll (Teclado Virtual da Microsoft e Serviço de Painel de Manuscrito)
010 C:\WINDOWS\system32\usermgr.dll (UserMgr)
010 C:\WINDOWS\System32\wfdsconmgrsvc.dll (Wi-Fi Direct Services Connection Manager Service)
010 C:\WINDOWS\system32\wudfsvc.dll (Windows Driver Foundation - Serviço de Estrutura do Driver de Modo de Usuário)
010 C:\WINDOWS\System32\ListSvc.dll (Windows HomeGroup)
010 C:\WINDOWS\System32\provsvc.dll (Windows HomeGroup)
010 C:\WINDOWS\system32\winhttp.dll (Windows HTTP Services)
010 C:\WINDOWS\system32\qwave.dll (Windows NT)
010 C:\WINDOWS\system32\wuaueng.dll (Windows Update Agent)
010 C:\WINDOWS\system32\wbem\wmisvc.dll (WMI)
010 C:\WINDOWS\system32\XblAuthManager.dll (Xbox Live Auth Manager)
010 C:\WINDOWS\system32\XblGameSave.dll (Xbox Live Game Save Service)
010 C:\WINDOWS\system32\XboxNetApiSvc.dll (Xbox Live Networking Service)
011 C:\WINDOWS\system32\drivers\udecx.sys ("udecx.DRIVER")
011 c:\windows\System32\drivers\1394ohci.sys (1394 OpenHCI Driver)
011 C:\WINDOWS\System32\drivers\3ware.sys (3ware)
011 c:\windows\System32\drivers\AcpiDev.sys (ACPI Devices Driver)
011 C:\WINDOWS\System32\drivers\ACPI.sys (ACPI Driver for NT)
011 c:\windows\System32\drivers\acpipmi.sys (ACPI Power Metering Driver)
011 c:\windows\System32\drivers\acpipagr.sys (ACPI Processor Aggregator Device Driver)
011 c:\windows\System32\drivers\acpitime.sys (ACPI Wake Alarm)
011 C:\WINDOWS\System32\Drivers\acpiex.sys (ACPIEx Driver)
011 C:\WINDOWS\System32\drivers\arcsas.sys (Adaptec SAS RAID WS03 Driver)
011 C:\WINDOWS\System32\drivers\ADP80XX.SYS (ADP80XX)
011 C:\WINDOWS\System32\drivers\pacer.sys (Agendador de pacotes de serviço)
011 C:\WINDOWS\System32\drivers\amdsata.sys (amdsata)
011 C:\WINDOWS\System32\drivers\amdsbs.sys (amdsbs)
011 C:\WINDOWS\System32\drivers\amdxata.sys (amdxata)
011 C:\WINDOWS\system32\drivers\afd.sys (Ancillary Function Driver for WinSock)
011 C:\WINDOWS\system32\drivers\ahcache.sys (Application Compatibility Cache)
011 C:\WINDOWS\System32\drivers\atapi.sys (ATAPI IDE Miniport Driver)
011 c:\windows\System32\drivers\BasicDisplay.sys (BasicDisplay)
011 c:\windows\System32\drivers\BasicRender.sys (BasicRender)
011 c:\windows\System32\drivers\bcmfn.sys (BCM Function 2 Device Driver)
011 c:\windows\System32\drivers\bcmfn2.sys (BCM Function 2 Device Driver)
011 C:\WINDOWS\system32\drivers\Beep.sys (BEEP Driver)
011 C:\WINDOWS\system32\drivers\fvevol.sys (BitLocker Drive Encryption Driver)
011 c:\windows\System32\drivers\BthAvrcpTg.sys (Bluetooth Audio/Video Remote Control HID)
011 c:\windows\System32\drivers\bthmodem.sys (Bluetooth Communications Driver)
011 c:\windows\System32\drivers\bthhfenum.sys (Bluetooth Hands-Free Audio and Call Control HID Enumerator)
011 c:\windows\System32\drivers\BthHFHid.sys (Bluetooth Hands-free HID Minidriver)
011 c:\windows\System32\drivers\buttonconverter.sys (Button Converter Driver)
011 c:\windows\System32\drivers\capimg.sys (CapImg HID Driver)
011 C:\WINDOWS\System32\Drivers\cng.sys (CNG)
011 C:\WINDOWS\system32\drivers\clfs.sys (Common Log File System Driver)
011 C:\WINDOWS\System32\drivers\condrv.sys (Console Driver)
011 c:\windows\System32\drivers\circlass.sys (Consumer IR Class Driver for eHome)
011 c:\windows\System32\drivers\CmBatt.sys (Control Method Battery Driver)
011 C:\WINDOWS\system32\drivers\dam.sys (DAM Kernel Driver)
011 C:\Program Files\Windows Defender\MpAsDesc.dll (Descrições de Atualizações de Definições)
011 C:\Program Files\Windows Defender\MpAsDesc.dll (Descrições de Atualizações de Definições)
011 C:\Program Files\Windows Defender\MpAsDesc.dll (Descrições de Atualizações de Definições)
011 c:\windows\System32\drivers\dxgkrnl.sys (DirectX Graphics Kernel)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\mprmsg.dll (DLL de mensagens de serviço roteador multiprotocolo)
011 C:\WINDOWS\system32\srvsvc.dll (DLL de Serviço do Servidor)
011 C:\WINDOWS\system32\srvsvc.dll (DLL de Serviço do Servidor)
011 C:\WINDOWS\system32\browser.dll (DLL de Serviço Pesquisador de Computadores)
011 C:\WINDOWS\system32\cscsvc.dll (DLL do Serviço CSC)
011 C:\WINDOWS\system32\wkssvc.dll (DLL do Serviço de Estação de Trabalho)
011 C:\WINDOWS\system32\wkssvc.dll (DLL do Serviço de Estação de Trabalho)
011 C:\WINDOWS\system32\wkssvc.dll (DLL do Serviço de Estação de Trabalho)
011 C:\WINDOWS\system32\wkssvc.dll (DLL do Serviço de Estação de Trabalho)
011 C:\WINDOWS\system32\wkssvc.dll (DLL do Serviço de Estação de Trabalho)
011 C:\WINDOWS\system32\webclnt.dll (DLL do Serviço WebDAV)
011 c:\windows\System32\drivers\dmvsc.sys (dmvsc)
011 C:\WINDOWS\system32\DRIVERS\nwifi.sys (Driver da Miniporta NativeWiFi)
011 c:\windows\System32\drivers\USBSTOR.SYS (Driver de Classe de Armazenamento em Massa USB)
011 c:\windows\System32\drivers\kbdclass.sys (Driver de Classe de Teclado)
011 c:\windows\System32\drivers\mouclass.sys (Driver de classe modem)
011 c:\windows\System32\drivers\sdstor.sys (Driver de Classe para Armazenamento SD)
011 C:\WINDOWS\system32\drivers\modem.sys (Driver de dispositivo de modem)
011 c:\windows\System32\drivers\serial.sys (Driver de dispositivo serial)
011 C:\WINDOWS\system32\drivers\ndisuio.sys (Driver de E/S do modo de usuário NDIS)
011 C:\WINDOWS\system32\drivers\volmgrx.sys (Driver de Extensão do Gerenciador de Volumes)
011 C:\WINDOWS\System32\drivers\scfilter.sys (Driver de Filtro de Leitura de Cartão Inteligente da Microsoft)
011 C:\WINDOWS\System32\drivers\volmgr.sys (Driver de Gerenciador de Volumes)
011 c:\windows\System32\drivers\usbhub.sys (Driver de Hub Padrão para USB)
011 c:\windows\System32\drivers\UsbHub3.sys (Driver de HUB USB3)
011 c:\windows\System32\drivers\tunnel.sys (Driver de Interface de Túnel Microsoft)
011 c:\windows\System32\drivers\hidbth.sys (Driver de Miniporta Bluetooth para Dispositivos HID)
011 c:\windows\System32\drivers\sermouse.sys (Driver de porta de mouse serial)
011 c:\windows\System32\drivers\i8042prt.sys (Driver de porta i8042)
011 c:\windows\System32\drivers\parport.sys (Driver de porta paralela)
011 C:\WINDOWS\system32\drivers\mup.sys (Driver de Provedor UNC Múltiplo)
011 C:\WINDOWS\system32\drivers\qwavedrv.sys (Driver de Suporte do Microsoft Quality Windows Audio Video Experience (qWave))
011 C:\WINDOWS\system32\drivers\vhf.sys (Driver de VHF (Estrutura HID Virtual))
011 C:\WINDOWS\System32\drivers\vmstorfl.sys (Driver do Filtro de Armazenamento Virtual)
011 C:\WINDOWS\system32\drivers\tsusbflt.sys (Driver do Filtro de Hub USB da Área de Trabalho Remota)
011 C:\WINDOWS\system32\drivers\luafv.sys (Driver do Filtro de Virtualização do Arquivo LUA)
011 C:\WINDOWS\System32\Drivers\mssecflt.sys (Driver do filtro do sistema de arquivos do Componente de Eventos de Segurança da Microsoft)
011 C:\WINDOWS\system32\drivers\mslldp.sys (Driver do Protocolo Microsoft LLDP)
011 C:\WINDOWS\System32\drivers\vmbus.sys (Driver Filho do Barramento VMBus do Microsoft Hyper-V)
011 c:\windows\System32\drivers\MTConfig.sys (Driver HID Multitoque Microsoft)
011 C:\WINDOWS\system32\drivers\mshidumdf.sys (Driver pass-through para Interface HID-UMDF)
011 c:\windows\System32\drivers\USBXHCI.SYS (Driver USB XHCI)
011 C:\WINDOWS\system32\drivers\VerifierExt.sys (Driver Verifier Extension)
011 c:\windows\System32\drivers\usbehci.sys (EHCI eUSB Miniport Driver)
011 C:\WINDOWS\system32\drivers\EhStorClass.sys (Enhanced Storage Class driver for IEEE 1667 devices)
011 c:\windows\System32\drivers\NdisVirtualBus.sys (Enumerador de Adaptador de Rede Virtual Microsoft)
011 C:\WINDOWS\System32\drivers\pci.sys (Enumerador NT Plug and Play PCI)
011 c:\windows\System32\drivers\errdev.sys (Error Device Driver)
011 C:\WINDOWS\system32\drivers\fastfat.sys (Fast FAT File System Driver)
011 C:\WINDOWS\system32\drivers\fsdepends.sys (File System Dependency Manager Mini Filter Driver)
011 C:\WINDOWS\system32\drivers\filetrace.sys (File Trace Filter Driver)
011 C:\WINDOWS\system32\drivers\fileinfo.sys (FileInfo Filter Driver)
011 C:\WINDOWS\system32\drivers\Wof.sys (Filtro de sobreposição do Windows)
011 C:\WINDOWS\System32\drivers\storqosflt.sys (Filtro QoS de Armazenamento)
011 c:\windows\System32\drivers\fdc.sys (Floppy Disk Controller Driver)
011 c:\windows\System32\drivers\flpydisk.sys (Floppy Driver)
011 c:\windows\System32\drivers\umpass.sys (Generic pass-through driver)
011 c:\windows\System32\drivers\genericusbfn.sys (Generic USB Function Class Driver)
011 C:\WINDOWS\system32\drivers\fltmgr.sys (Gerenciador de Filtro do Filesystem Microsoft)
011 C:\WINDOWS\system32\drivers\mountmgr.sys (Gerenciador de Pontos de Montagem)
011 c:\windows\System32\drivers\msgpiowin32.sys (GPIO Button Driver)
011 C:\WINDOWS\System32\Drivers\msgpioclx.sys (GPIO Class Extension Driver)
011 C:\WINDOWS\system32\drivers\gpuenergydrv.sys (GPU Energy Kernel Driver)
011 C:\WINDOWS\system32\drivers\hwpolicy.sys (Hardware Policy Driver)
011 c:\windows\System32\drivers\HidBatt.sys (Hid Battery Driver)
011 c:\windows\System32\drivers\hidinterrupt.sys (HID Button over Interrupt Driver)
011 c:\windows\System32\drivers\mouhid.sys (HID Mouse Filter Driver)
011 c:\windows\System32\drivers\kbdhid.sys (HID Mouse Filter Driver)
011 c:\windows\System32\drivers\HDAudBus.sys (High Definition Audio Bus Driver)
011 C:\WINDOWS\System32\drivers\HpSAMD.sys (HpSAMD)
011 C:\WINDOWS\system32\drivers\tsusbhub.sys (Hub USB de Área de Trabalho Remota)
011 c:\windows\System32\drivers\hyperkbd.sys (hyperkbd)
011 C:\WINDOWS\system32\drivers\iorate.sys (I/O rate control Filter)
011 c:\windows\System32\drivers\hidi2c.sys (I2C HID Miniport Driver)
011 C:\WINDOWS\system32\drivers\IndirectKmd.sys (Indirect displays kernel-mode filter driver)
011 C:\WINDOWS\system32\drivers\irenum.sys (Infra-Red Bus Enumerator)
011 c:\windows\System32\drivers\hidir.sys (Infrared Miniport Driver for Input Devices)
011 C:\WINDOWS\System32\drivers\iaStorV.sys (Intel Matrix Storage Manager driver - ia32)
011 C:\WINDOWS\System32\drivers\intelpep.sys (Intel Power Engine Plugin)
011 c:\windows\System32\drivers\iaiogpio.sys (Intel(R) Atom(TM) Processor GPIO Controller Driver)
011 c:\windows\System32\drivers\iaioi2c.sys (Intel(R) Atom(TM) Processor I2C Controller Driver)
011 C:\WINDOWS\System32\drivers\iaStorAV.sys (Intel(R) Rapid Storage Technology driver (inbox) - x86)
011 c:\windows\System32\drivers\iagpio.sys (Intel(R) Serial IO GPIO Controller Driver)
011 c:\windows\System32\drivers\iai2c.sys (Intel(R) Serial IO I2C Driver)
011 C:\WINDOWS\System32\drivers\intelide.sys (intelide)
011 C:\WINDOWS\System32\drivers\ipnat.sys (IP Network Address Translator)
011 c:\windows\System32\drivers\IPMIDrv.sys (IPMIDRV)
011 c:\windows\system32\drivers\irda.sys (IRDA Protocol Driver)
011 C:\WINDOWS\System32\drivers\isapnp.sys (isapnp)
011 C:\WINDOWS\System32\Drivers\ksecdd.sys (KSecDD)
011 C:\WINDOWS\System32\Drivers\ksecpkg.sys (KSecPkg)
011 C:\WINDOWS\System32\drivers\lsi_sas.sys (LSI_SAS)
011 C:\WINDOWS\System32\drivers\lsi_sas2i.sys (LSI_SAS2i)
011 C:\WINDOWS\System32\drivers\lsi_sas3i.sys (LSI_SAS3i)
011 C:\WINDOWS\System32\drivers\lsi_sss.sys (LSI_SSS)
011 c:\windows\System32\drivers\mausbhost.sys (MA-USB Host Controller Driver)
011 c:\windows\System32\drivers\mausbip.sys (MA-USB IP Driver)
011 C:\WINDOWS\system32\drivers\netbt.sys (MBT Transport driver)
011 C:\WINDOWS\System32\drivers\megasas.sys (megasas)
011 C:\WINDOWS\System32\drivers\megasr.sys (megasr)
011 C:\WINDOWS\system32\drivers\AppvStrm.sys (Microsoft Application Virtualization Streaming Driver)
011 C:\WINDOWS\system32\drivers\AppvVemgr.sys (Microsoft Application Virtualization VE Manager Driver)
011 C:\WINDOWS\system32\drivers\AppvVfs.sys (Microsoft Application Virtualization VFS Filter Driver)
011 C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys (Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols)
011 C:\WINDOWS\system32\drivers\exfat.sys (Microsoft Extended FAT File System)
011 c:\windows\System32\drivers\msiscsi.sys (Microsoft iSCSI Initiator Driver)
011 c:\windows\System32\drivers\kdnic.sys (Microsoft Kernel Debugger Network Miniport)
011 C:\WINDOWS\System32\drivers\ndiscap.sys (Microsoft NDIS Packet Capture Filter Driver)
011 C:\WINDOWS\System32\drivers\ndisimplatform.sys (Microsoft Network Adapter Multiplexor)
011 C:\WINDOWS\System32\drivers\stornvme.sys (Microsoft NVM Express Storport Miniport Driver)
011 C:\WINDOWS\system32\drivers\mpsdrv.sys (Microsoft Protection Service Driver)
011 c:\windows\System32\drivers\rdpbus.sys (Microsoft RDP Bus Device driver)
011 C:\WINDOWS\System32\drivers\rdpvideominiport.sys (Microsoft RDP Video Miniport driver)
011 c:\windows\system32\DRIVERS\drmkaud.sys (Microsoft Trusted Audio Drivers)
011 c:\windows\System32\drivers\uaspstor.sys (Microsoft Uasp Driver)
011 C:\WINDOWS\system32\drivers\mmcss.sys (MMCSS Driver)
011 c:\windows\System32\drivers\monitor.sys (Monitor Driver)
011 C:\WINDOWS\System32\drivers\storahci.sys (MS AHCI Storport Miniport Driver)
011 c:\windows\system32\DRIVERS\MSKSSRV.sys (MS KS Server)
011 c:\windows\system32\DRIVERS\MSPCLOCK.sys (MS Proxy Clock)
011 c:\windows\system32\DRIVERS\MSPQM.sys (MS Proxy Quality Manager)
011 C:\WINDOWS\System32\drivers\storufs.sys (MS UFS Storport Miniport Driver)
011 C:\WINDOWS\system32\drivers\Msfs.sys (Msfs)
011 C:\WINDOWS\System32\drivers\msisadrv.sys (msisadrv)
011 C:\WINDOWS\system32\drivers\MsRPC.sys (MsRPC)
011 c:\windows\System32\DriverStore\FileRepository\compositebus.inf_x86_bd5ce01b794ea235\CompositeBus.sys (Multi-Transport Composite Bus Enumerator)
011 C:\WINDOWS\System32\drivers\mvumis.sys (mvumis)
011 c:\windows\System32\drivers\npsvctrig.sys (Named pipe service triggers)
011 C:\WINDOWS\system32\drivers\ndis.sys (NDIS (Especificação de Interface de Driver de Rede))
011 C:\WINDOWS\system32\drivers\NetAdapterCx.sys (NetAdapterCx.sys)
011 C:\WINDOWS\system32\drivers\netbios.sys (NetBIOS interface driver)
011 C:\WINDOWS\system32\drivers\Npfs.sys (Npfs)
011 C:\WINDOWS\system32\drivers\nsiproxy.sys (NSI Proxy)
011 C:\WINDOWS\system32\drivers\NTFS.sys (NTFS)
011 C:\WINDOWS\system32\drivers\Null.sys (Null)
011 C:\WINDOWS\System32\drivers\nvraid.sys (nvraid)
011 C:\WINDOWS\System32\drivers\nvstor.sys (nvstor)
011 C:\WINDOWS\system32\tcpipcfg.dll (Objetos de configuração de rede)
011 C:\WINDOWS\system32\tcpipcfg.dll (Objetos de configuração de rede)
011 C:\WINDOWS\system32\sstpsvc.dll (Oferece a facilidade de usar o SSTP para estabelecer conexão com computadores remotos (usando VPN).)
011 c:\windows\System32\drivers\usbohci.sys (OHCI USB Miniport Driver)
011 C:\WINDOWS\system32\drivers\partmgr.sys (Partition driver)
011 c:\windows\System32\drivers\parvdm.sys (Parvdm)
011 C:\WINDOWS\system32\drivers\mshidkmdf.sys (Pass-through HID to KMDF Filter Driver)
011 C:\WINDOWS\System32\drivers\pciide.sys (pciide)
011 C:\WINDOWS\System32\drivers\pcmcia.sys (pcmcia)
011 C:\WINDOWS\System32\drivers\percsas2i.sys (percsas2i)
011 C:\WINDOWS\System32\drivers\percsas3i.sys (percsas3i)
011 C:\WINDOWS\System32\drivers\pcw.sys (Performance Counters for Windows Driver)
011 C:\WINDOWS\system32\drivers\http.sys (Pilha do protocolo HTTP)
011 c:\windows\System32\drivers\swenum.sys (Plug and Play Software Device Enumerator)
011 C:\WINDOWS\System32\drivers\disk.sys (PnP Disk Driver)
011 C:\WINDOWS\system32\drivers\pdc.sys (Power Dependency Coordinator Driver)
011 c:\windows\System32\drivers\amdppm.sys (Processor Device Driver)
011 c:\windows\System32\drivers\processr.sys (Processor Device Driver)
011 c:\windows\System32\drivers\viac7.sys (Processor Device Driver)
011 c:\windows\System32\drivers\intelppm.sys (Processor Device Driver)
011 c:\windows\System32\drivers\amdk8.sys (Processor Device Driver)
011 C:\WINDOWS\system32\drivers\peauth.sys (Protected Environment Authentication and Authorization Export Driver)
011 C:\WINDOWS\System32\DRIVERS\rasacd.sys (RAS Automatic Connection Driver)
011 C:\WINDOWS\System32\drivers\rdyboost.sys (ReadyBoost Driver)
011 c:\windows\System32\drivers\rt640x86.sys (Realtek 8136/8168/8169 NDIS 6.40 32-bit Driver )
011 C:\WINDOWS\system32\lltdres.dll (Recursos da Descoberta de Topologia da Camada de Link)
011 C:\WINDOWS\system32\lltdres.dll (Recursos da Descoberta de Topologia da Camada de Link)
011 C:\WINDOWS\system32\bridgeres.dll (Recursos de Ponte)
011 C:\WINDOWS\System32\DRIVERS\rdpdr.sys (Redirecionador do Dispositivo RDP da Microsoft)
011 C:\WINDOWS\system32\drivers\registry.sys (Registry Containment Driver)
011 c:\windows\System32\drivers\TsUsbGD.sys (Remote Desktop Generic USB Driver)
011 c:\windows\System32\drivers\vms3cap.sys (s3cap)
011 C:\WINDOWS\System32\drivers\sbp2port.sys (SBP-2 Protocol Driver)
011 c:\windows\System32\drivers\cdrom.sys (SCSI CD-ROM Driver)
011 c:\windows\System32\drivers\sfloppy.sys (SCSI Floppy Driver)
011 c:\windows\System32\drivers\sdbus.sys (sdbus)
011 C:\WINDOWS\system32\drivers\SerCx.sys (Serial Class Extension)
011 C:\WINDOWS\system32\drivers\SerCx2.sys (Serial Class Extension V2)
011 c:\windows\System32\drivers\serenum.sys (Serial Port Enumerator)
011 C:\WINDOWS\System32\drivers\SiSRaid2.sys (SiSRaid2)
011 C:\WINDOWS\System32\drivers\sisraid4.sys (SiSRaid4)
011 C:\WINDOWS\system32\drivers\SpbCx.sys (SPB Class Extension)
011 C:\WINDOWS\system32\srpapi.dll (SRP APIs Dll)
011 C:\WINDOWS\system32\srpapi.dll (SRP APIs Dll)
011 C:\WINDOWS\System32\DRIVERS\srvnet.sys (srvnet)
011 C:\WINDOWS\System32\drivers\stexstor.sys (stexstor)
011 C:\WINDOWS\System32\drivers\spaceport.sys (Storage Spaces Driver)
011 C:\WINDOWS\System32\drivers\storvsc.sys (storvsc)
011 c:\windows\System32\drivers\Synth3dVsc.sys (Synth3dVsc)
011 c:\windows\System32\drivers\mssmbios.sys (System Management BIOS Driver)
011 C:\WINDOWS\System32\drivers\tcpipreg.sys (TCP/IP Registry Compatibility Driver)
011 C:\WINDOWS\system32\drivers\Wdf01000.sys (Tempo de Execução da Estrutura de Driver em Modo Kernel)
011 c:\windows\System32\drivers\terminpt.sys (Terminal Server Input Driver)
011 C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys (UCM-TCPCI KMDF Class Extension)
011 c:\windows\System32\drivers\UEFI.sys (UEFI Driver for NT)
011 c:\windows\System32\drivers\UfxChipidea.sys (UFX Chipidea Client Driver)
011 c:\windows\System32\drivers\ufxsynopsys.sys (UFX Synopsys Client Driver)
011 c:\windows\System32\drivers\usbuhci.sys (UHCI USB Miniport Driver)
011 c:\windows\System32\drivers\usbccgp.sys (USB Common Class Generic Parent Driver)
011 C:\WINDOWS\System32\Drivers\UcmCx.sys (USB Connector Manager KMDF Class Extension)
011 c:\windows\System32\drivers\UcmUcsi.sys (USB Connector Manager UCSI Client)
011 c:\windows\System32\drivers\usbcir.sys (USB Consumer IR Driver for eHome)
011 C:\WINDOWS\system32\drivers\ucx01000.sys (USB Controller Extension)
011 C:\WINDOWS\system32\drivers\ufx01000.sys (USB Function Driver Class Extension)
011 c:\windows\System32\drivers\hidusb.sys (USB Miniport Driver for Input Devices)
011 c:\windows\System32\drivers\usbprint.sys (USB Printer driver)
011 C:\WINDOWS\system32\drivers\urscx01000.sys (USB Role-Switch Class Extension)
011 c:\windows\System32\drivers\urschipidea.sys (USB Role-Switch Driver for Chipidea Core)
011 c:\windows\System32\drivers\urssynopsys.sys (USB Role-Switch Driver for Synopsys Core)
011 c:\windows\System32\drivers\usbser.sys (USB Serial Driver)
011 c:\windows\System32\drivers\umbus.sys (User-Mode Bus Enumerator)
011 c:\windows\System32\drivers\vhdmp.sys (vhdmp)
011 * c:\windows\system32\drivers\viahduaa.sys (VIA High Definition Audio Function Driver)
011 C:\WINDOWS\System32\drivers\vstxraid.sys (VIA StorX RAID Controller Driver)
011 C:\WINDOWS\System32\drivers\vdrvroot.sys (Virtual Drive Root Enumerator)
011 c:\windows\System32\drivers\vmgencounter.sys (Virtual Machine Generation Counter)
011 c:\windows\System32\drivers\vmgid.sys (Virtual Machine Guest Infrastructure Driver)
011 C:\WINDOWS\System32\drivers\vwififlt.sys (Virtual WiFi Filter Driver)
011 C:\WINDOWS\System32\drivers\vwifibus.sys (Virtual Wireless Bus Driver)
011 c:\windows\System32\drivers\VMBusHID.sys (VMBusHID)
011 C:\WINDOWS\System32\drivers\volume.sys (Volume driver)
011 C:\WINDOWS\system32\drivers\volsnap.sys (Volume Shadow Copy driver)
011 C:\WINDOWS\System32\drivers\vsmraid.sys (vsmraid)
011 c:\windows\System32\drivers\wacompen.sys (Wacom Serial Pen Tablet HID Driver)
011 C:\WINDOWS\system32\DRIVERS\wdiwifi.sys (WDI Driver Framework Driver)
011 c:\windows\system32\DRIVERS\MSTEE.sys (WDM Tee/Communication Transform Filter )
011 C:\WINDOWS\System32\drivers\wfplwfs.sys (WFP NDIS 6.30 Lightweight Filter Driver)
011 C:\WINDOWS\system32\drivers\wimmount.sys (Wim file system Driver)
011 C:\WINDOWS\system32\drivers\wcifs.sys (Windows Container Isolation FS Filter Driver)
011 C:\WINDOWS\system32\drivers\wcnfs.sys (Windows Container Name Virtualization FS Filter Driver)
011 C:\WINDOWS\system32\drivers\WudfPf.sys (Windows Driver Foundation - User-mode Driver Framework Platform Driver)
011 C:\WINDOWS\system32\drivers\WudfRd.sys (Windows Driver Foundation - User-mode Driver Framework Reflector)
011 c:\windows\System32\drivers\wmiacpi.sys (Windows Management Interface for ACPI)
011 C:\WINDOWS\system32\drivers\Ndu.sys (Windows Network Data Usage Monitoring Driver)
011 C:\WINDOWS\System32\drivers\WpdUpFltr.sys (Windows Portable Device Upper Class Filter Driver)
011 C:\WINDOWS\system32\drivers\filecrypt.sys (Windows sandboxing and encryption filter)
011 C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys (Windows Trusted Runtime Interface Driver)
011 C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys (Windows Trusted Runtime Service Proxy Driver)
011 c:\windows\System32\drivers\WinUSB.SYS (Windows WinUSB Class Driver)
011 c:\windows\system32\DRIVERS\WUDFRd.sys (WUDFWpdFs)
011 c:\windows\System32\drivers\xinputhid.sys (XINPUT filter driver for HID)
011 * C:\WINDOWS\System32\drivers\zamguard32.sys (ZAM)
011 * C:\WINDOWS\System32\drivers\zam32.sys (ZAM)
030 C:\Windows\System32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 C:\Windows\System32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 C:\Windows\System32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
031 C:\Windows\System32\mshtml.dll (Microsoft Corporation) {3050F406-98B5-11CF-BB82-00AA00BDCE0B}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {3dd53d40-7b8b-11D0-b013-00aa0059ce02}
031 C:\Windows\System32\msvidctl.dll (Microsoft Corporation) {12D51199-0DB5-46FE-A120-47A3D7D937CC}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {79eac9e7-baf9-11ce-8c82-00aa004ba90b}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {79eac9e3-baf9-11ce-8c82-00aa004ba90b}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {79eac9e2-baf9-11ce-8c82-00aa004ba90b}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {79eac9e5-baf9-11ce-8c82-00aa004ba90b}
031 C:\Windows\System32\itss.dll (Microsoft Corporation) {9D148291-B9C8-11D0-A4CC-0000F80149F6}
031 C:\Windows\System32\mshtml.dll (Microsoft Corporation) {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {79eac9e7-baf9-11ce-8c82-00aa004ba90b}
031 C:\Windows\System32\mshtml.dll (Microsoft Corporation) {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B}
031 C:\Windows\System32\inetcomm.dll (Microsoft Corporation) {05300401-BCBC-11d0-85E3-00C04FD85AB4}
031 C:\Windows\System32\urlmon.dll (Microsoft Corporation) {79eac9e6-baf9-11ce-8c82-00aa004ba90b}
031 C:\Windows\System32\itss.dll (Microsoft Corporation) {9D148291-B9C8-11D0-A4CC-0000F80149F6}
031 C:\Windows\System32\mshtml.dll (Microsoft Corporation) {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B}
031 C:\Windows\System32\tbauth.dll (Microsoft Corporation) {14654CA6-5711-491D-B89A-58E571679951}
031 C:\Windows\System32\msvidctl.dll (Microsoft Corporation) {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E}
031 C:\Windows\System32\mshtml.dll (Microsoft Corporation) {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B}
031 C:\Windows\System32\tbauth.dll (Microsoft Corporation) {14654CA6-5711-491D-B89A-58E571679951}
032 C:\WINDOWS\system32\rdpclip.exe (Microsoft Corporation)
033 C:\Windows\system32\userinit.exe (Microsoft Corporation)
034 C:\WINDOWS\explorer.exe (Microsoft Corporation)
035 C:\Program Files\Windows Mail\WinMail.exe (Microsoft Corporation) {44BBA840-CC51-11CF-AAFA-00AA00B6015C}
035 C:\WINDOWS\system32\unregmp2.exe (Microsoft Corporation) {6BF52A52-394A-11d3-B153-00C04F79FAA6}
035 C:\Windows\System32\ie4uinit.exe (Microsoft Corporation) {89820200-ECBD-11cf-8B85-00AA005B4383}
040 C:\Windows\System32\ieframe.dll (Microsoft Corporation) {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
042 GUID / CLSID not found {31D09BA0-12F5-4CCE-BE8A-2923E76605DA}
042 GUID / CLSID not found {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}
042 GUID / CLSID not found {2670000A-7350-4f3c-8081-5663EE0C6C49}
048 Zone: remoteassistance.support.services.microsoft.com : https://remoteassistance.support.services.microsoft.com
060 GUID / CLSID not found {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
061 C:\Program Files\Common Files\System\wab32.dll (Microsoft Corporation) {8082C5E6-4C27-48ec-A809-B8E1122E8F97}
061 C:\Program Files\Common Files\System\wab32.dll (Microsoft Corporation) {4F58F63F-244B-4c07-B29F-210BE59BE9B4}
061 C:\Windows\System32\webcheck.dll (Microsoft Corporation) {7D559C10-9FE9-11d0-93F7-00AA0059CE02}
061 C:\Program Files\Common Files\System\wab32.dll (Microsoft Corporation) {CF67796C-F57F-45F8-92FB-AD698826C602}
061 C:\Windows\System32\dlnashext.dll (Microsoft Corporation) {289AF617-1CC3-42A6-926C-E6A863F0E3BA}
061 C:\Program Files\Windows Defender\shellext.dll (Microsoft Corporation) {09A47860-11B0-4DA5-AFA5-26D86198A780}
061 C:\Program Files\Common Files\System\wab32.dll (Microsoft Corporation) {16C2C29D-0E5F-45f3-A445-03E03F587B7D}
061 C:\Windows\System32\WindowsCodecsRaw.dll (Microsoft Corporation) {3DBEE9A1-C471-4B95-BBCA-F39310064458}
061 C:\Windows\System32\inetcomm.dll (Microsoft Corporation) {92dbad9f-5025-49b0-9078-2d78f935e341}
061 C:\Windows\System32\inetcomm.dll (Microsoft Corporation) {b9815375-5d7f-4ce2-9245-c9d4da436930}
061 C:\Windows\System32\inetcomm.dll (Microsoft Corporation) {BFD468D2-D0A0-4bdc-878C-E69C2F5B435D}
061 C:\Windows\System32\inetcomm.dll (Microsoft Corporation) {f8b8412b-dea3-4130-b36c-5e8be73106ac}
061 C:\Windows\System32\wshext.dll (Microsoft Corporation) {60254CA5-953B-11CF-8C96-00AA00B8708C}
061 C:\Windows\System32\webcheck.dll (Microsoft Corporation) {F5175861-2688-11d0-9C5E-00AA00A45957}
061 C:\Windows\System32\webcheck.dll (Microsoft Corporation) {ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}
061 C:\Windows\System32\webcheck.dll (Microsoft Corporation) {7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}
061 C:\Windows\System32\webcheck.dll (Microsoft Corporation) {08165EA0-E946-11CF-9C87-00AA005127ED}
061 C:\Program Files\Common Files\System\wab32.dll (Microsoft Corporation) {13D3C4B8-B179-4ebb-BF62-F704173E7448}
064 C:\WINDOWS\SYSTEM32\advapi32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\clbcatq.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\combase.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\COMDLG32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\coml2.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\difxapi.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\gdi32.dll (Microsoft Corporation)
064 C:\WINDOWS\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14905.1000_none_0430ed2f109d6f4e\gdiplus.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\IMAGEHLP.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\IMM32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\kernel32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\MSCTF.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\MSVCRT.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\NORMALIZ.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\NSI.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\ole32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\OLEAUT32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\PSAPI.DLL (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\rpcrt4.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\sechost.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\Setupapi.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\SHCORE.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\SHELL32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\SHLWAPI.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\user32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\WLDAP32.dll (Microsoft Corporation)
064 C:\WINDOWS\SYSTEM32\WS2_32.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
068 C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
069 C:\WINDOWS\SYSTEM32\localspl.dll (Microsoft Corporation)
069 C:\WINDOWS\SYSTEM32\FXSMON.DLL (Microsoft Corporation)
069 C:\WINDOWS\SYSTEM32\tcpmon.dll (Microsoft Corporation)
069 C:\WINDOWS\SYSTEM32\usbmon.dll (Microsoft Corporation)
069 C:\WINDOWS\SYSTEM32\WSDMon.dll (Microsoft Corporation)
070 C:\WINDOWS\SYSTEM32\msv1_0.dll (Microsoft Corporation)
071 C:\WINDOWS\SYSTEM32\scecli.dll (Microsoft Corporation)
073 GoogleUpdateTaskMachineCore.job : C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
073 GoogleUpdateTaskMachineUA.job : C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
100 Start Page HKCU : http://www.google.com.br/
105 E&xport to Microsoft Excel : res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
105 Se&nd to OneNote : res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
107 C:\WINDOWS\system32\napinsp.dll (Microsoft Corporation)
107 C:\WINDOWS\system32\NLAapi.dll (Microsoft Corporation)
107 C:\WINDOWS\system32\pnrpnsp.dll (Microsoft Corporation)
107 C:\WINDOWS\system32\pnrpnsp.dll (Microsoft Corporation)
107 C:\WINDOWS\System32\winrnr.dll (Microsoft Corporation)
107 C:\WINDOWS\System32\mswsock.dll (Microsoft Corporation)
145 C:\WINDOWS\system32\drivers\kbdclass.sys (Microsoft Corporation)
146 C:\WINDOWS\system32\cmd.exe (Microsoft Corporation)
147 C:\WINDOWS\SYSTEM32\credssp.dll (Microsoft Corporation)
153 C:\WINDOWS\SYSTEM32\wdmaud.drv (Microsoft Corporation)
153 C:\WINDOWS\SYSTEM32\midimap.dll (Microsoft Corporation)
172 C:\WINDOWS\System32\ntlanman.dll (Microsoft Corporation)
172 C:\WINDOWS\System32\drprov.dll (Microsoft Corporation)
172 C:\WINDOWS\System32\davclnt.dll (Microsoft Corporation)
173 GUID / CLSID not found {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}
173 C:\WINDOWS\system32\syncui.dll (Microsoft Corporation) {85BBD920-42A0-1069-A2E4-08002B30309D}
173 C:\Program Files\Windows Defender\shellext.dll (Microsoft Corporation) {09A47860-11B0-4DA5-AFA5-26D86198A780}
173 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {09799AFB-AD67-11d1-ABCD-00C04FC30936}
173 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {A470F8CF-A1E8-4f65-8335-227475AA5C46}
173 C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
173 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Start Menu Pin
173 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Taskband Pin
173 C:\Windows\System32\WorkfoldersShell.dll (Microsoft Corporation) {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3}
174 C:\WINDOWS\system32\SystemPropertiesPerformance.exe (Microsoft Corporation)
180 HKEY_CLASSES_ROOT htafile : C:\Windows\System32\mshta.exe "%1" {1E460BD7-F1C3-4B2E-88BF-4E770A288AF5}%U{1E460BD7-F1C3-4B2E-88BF-4E770A288AF5} %*
211 C:\WINDOWS\System32\cleanmgr.exe (Microsoft Corporation)
212 C:\WINDOWS\system32\dfrgui.exe (Microsoft Corporation)
220 GUID / CLSID not found {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}
221 C:\WINDOWS\system32\syncui.dll (Microsoft Corporation) {85BBD920-42A0-1069-A2E4-08002B30309D}
221 C:\Program Files\Windows Defender\shellext.dll (Microsoft Corporation) {09A47860-11B0-4DA5-AFA5-26D86198A780}
221 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {09799AFB-AD67-11d1-ABCD-00C04FC30936}
221 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {A470F8CF-A1E8-4f65-8335-227475AA5C46}
221 C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
221 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Start Menu Pin
221 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Taskband Pin
221 C:\Windows\System32\WorkfoldersShell.dll (Microsoft Corporation) {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3}
223 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {f3d06e7c-1e45-4a26-847e-f9fcdee59be0}
223 C:\WINDOWS\System32\cscui.dll (Microsoft Corporation)
223 C:\WINDOWS\system32\twext.dll (Microsoft Corporation)
223 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {7BA4C740-9E81-11CF-99D3-00AA004AE837}
223 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Start Menu Pin
225 C:\WINDOWS\system32\syncui.dll (Microsoft Corporation) {85BBD920-42A0-1069-A2E4-08002B30309D}
225 C:\WINDOWS\system32\syncui.dll (Microsoft Corporation) {85BBD920-42A0-1069-A2E4-08002B30309D}
225 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {3dad6c5d-2167-4cae-9914-f99e41c12cfa}
225 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {3dad6c5d-2167-4cae-9914-f99e41c12cfa}
225 C:\WINDOWS\System32\cscui.dll (Microsoft Corporation) {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
225 C:\WINDOWS\System32\cscui.dll (Microsoft Corporation) {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
225 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {470C0EBD-5D73-4d58-9CED-E91E22E23282}
225 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {470C0EBD-5D73-4d58-9CED-E91E22E23282}
225 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Start Menu Pin
225 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) Start Menu Pin
226 GUID / CLSID not found {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}
227 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {A470F8CF-A1E8-4f65-8335-227475AA5C46}
227 C:\Program Files\Windows Defender\shellext.dll (Microsoft Corporation) {09A47860-11B0-4DA5-AFA5-26D86198A780}
227 C:\WINDOWS\System32\cscui.dll (Microsoft Corporation) {474C98EE-CF3D-41f5-80E3-4AAB0AB04301}
227 C:\WINDOWS\system32\twext.dll (Microsoft Corporation)
227 C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
227 C:\Windows\System32\WorkfoldersShell.dll (Microsoft Corporation) {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3}
228 GUID / CLSID not found {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}
229 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {D969A300-E7FF-11d0-A93B-00A0C90F2719}
229 C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
229 C:\Windows\System32\WorkfoldersShell.dll (Microsoft Corporation) {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3}
241 GUID / CLSID not found {5AB7172C-9C11-405C-8DD5-AF20F3606282}
241 GUID / CLSID not found {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}
241 GUID / CLSID not found {A78ED123-AB77-406B-9962-2A5D9D2F7F30}
241 GUID / CLSID not found {BBACC218-34EA-4666-9D7A-C78F2274A524}
241 GUID / CLSID not found {F241C880-6982-4CE5-8CF7-7085BA96DA5A}
241 C:\Windows\System32\EhStorShell.dll (Microsoft Corporation) {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}
241 C:\WINDOWS\System32\cscui.dll (Microsoft Corporation) {4E77131D-3629-431c-9818-C5679DC83E81}
253 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
253 C:\WINDOWS\system32\rshx32.dll (Microsoft Corporation)
253 C:\Windows\System32\DfsShlEx.dll (Microsoft Corporation)
253 C:\WINDOWS\system32\mydocs.dll (Microsoft Corporation)
253 C:\WINDOWS\System32\cscui.dll (Microsoft Corporation) {7EFA68C6-086B-43e1-A2D2-55A113531240}
253 C:\WINDOWS\system32\twext.dll (Microsoft Corporation)
253 C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
254 C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) {217FC9C0-3AEA-1069-A2DB-08002B30309D}
254 C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) {40dd6e20-7c17-11ce-a804-00aa003ca9f6}
001 Memory
001 MsMpEng.exe
001 NisSrv.exe

Missing files
-------------
011 netavpna.inf
011 todo.dll
011 C:\WINDOWS\system32\drivers\todo.sys
011 tpm.inf
011 xboxgip.inf
035 C:\WINDOWS\inf\unregmp2.exe
035
035 U
067 wlnotify.dll
072

# DelFix v1.010 - Relatório criado 23/08/2016 às 01:57:36
# Atualizado 26/04/2015 por Xplode
# Usuário : Xanxus Boss - FAMILIAPRAXEDES
# Sistema Operacional : Windows 7 Home Basic Service Pack 1 (32 bits)

~ Removendo ferramentas de desinfecção ...

Removido : C:\FRST
Removido : C:\Users\Xanxus Boss\Desktop\Addition.txt
Removido : C:\Users\Xanxus Boss\Desktop\esetsmartinstaller_ptg.exe
Removido : C:\Users\Xanxus Boss\Desktop\FRST.exe
Removido : C:\Users\Xanxus Boss\Desktop\FRST.txt

~ Limpando pontos da restauração do sistema ...

Removido : RP #248 [Fim da desinfecção | 08/20/2016 17:27:20]
Removido : RP #249 [20/08/2016 | 08/20/2016 17:28:56]
Removido : RP #251 [Revo Uninstaller Pro's restore point - ESET Online Scanner v3 | 08/20/2016 17:32:55]
Removido : RP #252 [Windows Update | 08/20/2016 18:39:12]
Removido : RP #254 [Revo Uninstaller Pro's restore point - ESET Online Scanner v3 | 08/23/2016 04:50:10]
Removido : RP #256 [Revo Uninstaller Pro's restore point - Malwarebytes Anti-Malware versão 2.2.1.1043 | 08/23/2016 04:53:38]
Removido : RP #258 [Revo Uninstaller Pro's restore point - Malwarebytes Anti-Malware versão 2.2.1.1043 | 08/23/2016 04:55:09]

Novo ponto de restauração criado !

########## - EOF - ##########