Flux 
Social bookmarking
Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking
Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking
Estatísticas
Temos 14810 usuários registradosO último membro registrado é Josevinil
Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Quem está conectado?
Há 4 usuários online :: 0 registrados, 0 invisíveis e 4 visitantes Nenhum
O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
Top dos mais postadores
| Power Max |
| |||
| joram |
| |||
| Wings [In Memoriam] |
| |||
| caedurodrigues |
| |||
| Amigo Brasileiro |
| |||
| luizvilarinho |
| |||
| Danii |
| |||
| Admin |
| |||
| Danilo Marsaro |
| |||
| Andreata |
|
Shetef Solutions and Consulting (1998)
3 participantes
Página 1 de 1
Shetef Solutions and Consulting (1998)
por Vivics5 Dom 20 Out 2013, 22:52
Olá.
Sou nova aqui no fórum e estou com o mesmo problema que algumas pessoas tiveram aqui.
Não consigo remover esse negócio do Shetef.
Podem me ajudar?
Obrigada!
Sou nova aqui no fórum e estou com o mesmo problema que algumas pessoas tiveram aqui.
Não consigo remover esse negócio do Shetef.
Podem me ajudar?
Obrigada!
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Dom 20 Out 2013, 23:18
Olá Vivics5
:veja:Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Farbar) e salve-o no Desktop
*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Aceite o contrato, desmarque a opção Addition.txt, clique [Scan] e ao término clique [OK]
*Anexe ou cole o relatório FRST.txt criado no Desktop
:veja:Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Farbar) e salve-o no Desktop
*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Aceite o contrato, desmarque a opção Addition.txt, clique [Scan] e ao término clique [OK]
*Anexe ou cole o relatório FRST.txt criado no Desktop
![Wings [In Memoriam]](https://2img.net/u/1712/29/07/67/avatars/414-76.jpg)
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Re: Shetef Solutions and Consulting (1998)
por Vivics5 Seg 21 Out 2013, 18:45
Olá.
Não sei inserir arquivo... :/
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-10-2013
Ran by Virginia (administrator) on VIRGINIA-HP on 21-10-2013 18:34:23
Running from C:\Users\Virginia\Downloads
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: Portuguese Brazilian
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(GAS Tecnologia) C:\PROGRA~1\GbPlugin\GbpSv.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\aestsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation) C:\Program Files\Broadcom\GPS\GpsMgr.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Broadcom Corporation.) C:\Program Files\Broadcom\GPS\LtoGet.exe
(Broadcom Corp.) C:\Program Files\Broadcom\GPS\Gpsct.exe
(DeviceVM, Inc.) C:\SwSetup\HPQWMM\QuickWeb\QW.SYS\config\DVMExportService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Skyhook Wireless) C:\Program Files\Skyhook Wireless\XPS\xpssvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alcor Micro Corp.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Skyhook Wireless) C:\Program Files\Skyhook Wireless\XPS\xpscontrolpanel.exe
(Zecter Inc.) C:\Program Files\Hewlett-Packard\HP CloudDrive\zumodrive.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.com.exe
(CashPartners Company) C:\Users\Virginia\AppData\Local\aHaskZ3\CashPartners.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(BitTorrent Inc.) C:\Users\Virginia\Desktop\448-utorrent.exe
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Microsoft Corporation) C:\PROGRA~1\MICROS~2\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2049320 2011-05-24] (Synaptics Incorporated)
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation)
HKLM\...\Run: [AmIcoSinglun] - C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [237568 2010-06-17] (Alcor Micro Corp.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2010-06-18] (IDT, Inc.)
HKLM\...\Run: [Skyhook Wireless XPS Service] - C:\Program Files\Skyhook Wireless\XPS\xpscontrolpanel.exe [671048 2010-06-28] (Skyhook Wireless)
HKLM\...\Run: [ZumoDrive] - C:\Program Files\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk [2038 2010-08-23] ()
HKLM\...\Run: [HPWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-07-08] (Hewlett-Packard Company)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-08-12] (Microsoft Corporation)
HKLM\...\Run: [SSDMonitor] - C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [HP Quick Launch] - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM\...\Run: [keepvid] - C:\Users\Virginia\AppData\Local\keepvid.com.exe [1120256 2013-06-10] (keepvid.com Company)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\ GbPluginAbn: C:\Program Files\GbPlugin\gbiehAbn.dll (Banco Real)
Winlogon\Notify\ GbPluginBb: C:\Program Files\GbPlugin\gbieh.dll (Banco do Brasil)
HKCU\...\Run: [Google Update] - C:\Users\Virginia\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-05-13] (Google Inc.)
HKCU\...\Run: [Facebook Update] - C:\Users\Virginia\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.)
HKCU\...\Run: [MobileDocuments] - C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKCU\...\Run: [CashPartners] - C:\Users\Virginia\AppData\Local\aHaskZ3\CashPartners.exe [259072 2013-10-02] (CashPartners Company)
HKCU\...\Run: [ConduitFloatingPlugin_mdebcffgnijbblbinknkbefciofebcda] - "C:\Windows\system32\Rundll32.exe" "C:\Program Files\Conduit\CT2851643\plugins\TBVerifier.dll",RunConduitFloatingPlugin mdebcffgnijbblbinknkbefciofebcda
HKCU\...\Run: [8DAE2761CEF6AAA8E62FD73F57726D7E23ABCB76._service_run] - C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe [844752 2013-10-08] (Google Inc.)
IMEO\bitguard.exe: [Debugger] tasklist.exe
IMEO\bprotect.exe: [Debugger] tasklist.exe
IMEO\browsemngr.exe: [Debugger] tasklist.exe
IMEO\browserdefender.exe: [Debugger] tasklist.exe
IMEO\browsermngr.exe: [Debugger] tasklist.exe
IMEO\browserprotect.exe: [Debugger] tasklist.exe
IMEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IMEO\cltmngsvc.exe: [Debugger] tasklist.exe
IMEO\delta babylon.exe: [Debugger] tasklist.exe
IMEO\delta tb.exe: [Debugger] tasklist.exe
IMEO\delta2.exe: [Debugger] tasklist.exe
IMEO\deltainstaller.exe: [Debugger] tasklist.exe
IMEO\deltasetup.exe: [Debugger] tasklist.exe
IMEO\deltatb.exe: [Debugger] tasklist.exe
IMEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IMEO\iminentsetup.exe: [Debugger] tasklist.exe
IMEO\rjatydimofu.exe: [Debugger] tasklist.exe
IMEO\sweetimsetup.exe: [Debugger] tasklist.exe
IMEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - DefaultScope {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {46263695-9B9D-4B3C-8B39-241EDCF80C75} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {C0299368-7B90-446E-8FD6-923EC3A702E9} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - DefaultScope {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {25114B37-1115-415B-84E6-987E90EB0D7A} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {46263695-9B9D-4B3C-8B39-241EDCF80C75} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {C0299368-7B90-446E-8FD6-923EC3A702E9} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
BHO: keepvid.com - {49ed9900-38cd-453c-bba7-3f2613317f5a} - C:\Users\Virginia\AppData\Local\keepvid.dll (keepvid.com Company)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: LocationFinder Class - {BC0E8AD7-13AA-4694-8EDD-0246BC47A35F} - C:\Program Files\Skyhook Wireless\Loki Plugin\loki.dll (Skyhook Wireless)
BHO: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll (Banco do Brasil)
BHO: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540007} - C:\Program Files\GbPlugin\gbiehabn.dll (Banco Real)
BHO: SoundFrost - {d997c836-ff82-4519-b459-1482ba942a4f} - C:\PROGRA~1\BAIXAR~1\SOUNDF~1.DLL (SoundFrost Company)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - C:\Program Files\GbPlugin\gbiehabn.dll [1516456 2013-02-06] (Banco Real)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll [1487912 2013-10-07] (Banco do Brasil)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 201.6.2.182 201.6.2.102 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Virginia\AppData\Roaming\Mozilla\Firefox\Profiles\88b1o8nu.default
FF user.js: detected! => C:\Users\Virginia\AppData\Roaming\Mozilla\Firefox\Profiles\88b1o8nu.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @skyhookwireless.com/LokiPlugin - C:\Program Files\Skyhook Wireless\Loki Plugin\nploki.dll (Skyhook Wireless)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Virginia\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Virginia\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Virginia\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: gastecnologia.com.br/sf/bb - C:\Users\Virginia\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia)
FF HKCU\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886C}] - C:\Users\Virginia\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF Extension: GBBD Banco do Brasil - C:\Users\Virginia\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF HKCU\...\Firefox\Extensions: [SoundFrost@helper.com] - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
FF Extension: No Name - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
FF HKCU\...\Firefox\Extensions: [keepvid.com@helper.com] - C:\Users\Virginia\AppData\Local\keepvid.xpi
FF Extension: No Name - C:\Users\Virginia\AppData\Local\keepvid.xpi
FF HKCU\...\Firefox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack] - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
FF Extension: No Name - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
Chrome:
=======
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR Extension: (YouTube) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Meu Tim\u00E3o) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ginkglnlpcgmjafipbkpfoimoaoabami\80_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (GBBD Banco do Brasil) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgacfjdigcddmmncljpflgcfpfahebkh\3.4.0_1
CHR Extension: (Gmail) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [mdebcffgnijbblbinknkbefciofebcda] - C:\Users\Virginia\AppData\Local\CRE\mdebcffgnijbblbinknkbefciofebcda.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 BrcmGpsMgr; C:\Program Files\Broadcom\GPS\GpsMgr.exe [222720 2010-07-26] (Broadcom Corporation)
R2 DvmMDES; C:\SwSetup\HPQWMM\QuickWeb\QW.SYS\config\DVMExportService.exe [338168 2010-07-20] (DeviceVM, Inc.)
R2 GbpSv; C:\PROGRA~1\GbPlugin\GbpSv.exe [452136 2013-10-08] (GAS Tecnologia)
R2 HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [103992 2010-07-08] (Hewlett-Packard Company)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-08-12] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295376 2013-08-12] (Microsoft Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [237650 2010-06-18] (IDT, Inc.)
R2 xpssvc; C:\Program Files\Skyhook Wireless\XPS\xpssvc.exe [707400 2010-06-28] (Skyhook Wireless)
==================== Drivers (Whitelisted) ====================
S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [27136 2010-06-17] (Alcor Micro, Corp.)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [64480 2013-08-08] (Baidu, Inc.)
R3 btwampfl; C:\Windows\System32\drivers\btwampfl.sys [294952 2010-06-09] (Broadcom Corporation.)
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-13] (Microsoft Corporation)
R1 DVMIO; C:\Windows\System32\DRIVERS\dvmio.sys [18136 2009-11-11] (DeviceVM, Inc.)
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [49536 2013-05-08] (GAS Tecnologia)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
S3 Ndisrd; C:\Windows\System32\DRIVERS\gbpndisrd.sys [31088 2013-10-20] (GbPlugin NDIS Device Driver)
R3 NdisrdMP; C:\Windows\System32\DRIVERS\gbpndisrd.sys [31088 2013-10-20] (GbPlugin NDIS Device Driver)
R3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [60744 2010-07-26] (Silicon Laboratories)
R3 XPSVCOM; C:\Windows\System32\DRIVERS\XPSVCOM.sys [12416 2010-06-01] (Skyhook Wireless)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [x]
R1 MpKsl7141d6dd; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AF4F63AD-3CD4-4467-B884-8AF51A309386}\MpKsl7141d6dd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-21 18:31 - 2013-10-21 18:32 - 01087515 _____ (Farbar) C:\Users\Virginia\Downloads\FRST.exe
2013-10-21 18:27 - 2013-10-21 18:27 - 00008735 _____ C:\Users\Virginia\Downloads\35131000776574000741550010218668481649637990.xml
2013-10-20 22:27 - 2013-10-20 22:27 - 00000056 _____ C:\Windows\setupact.log
2013-10-20 22:27 - 2013-10-20 22:27 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 22:26 - 2013-10-20 22:26 - 00008500 _____ C:\Windows\PFRO.log
2013-10-20 21:34 - 2013-10-20 22:46 - 00055887 _____ C:\Users\Virginia\Desktop\FRST.txt
2013-10-20 21:31 - 2013-10-20 21:34 - 00025721 _____ C:\Users\Virginia\Desktop\Addition.txt
2013-10-20 21:22 - 2013-10-20 21:22 - 00000000 ____D C:\FRST
2013-10-20 20:35 - 2013-10-20 20:35 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 20:29 - 2013-10-20 20:29 - 04369632 _____ (Piriform Ltd) C:\Users\Virginia\Downloads\845-ccsetup406.exe
2013-10-20 20:24 - 2013-10-20 20:25 - 00673608 _____ C:\Users\Virginia\Downloads\ccleaner-4064324-32-bits.exe
2013-10-20 20:10 - 2013-10-20 20:10 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Malwarebytes
2013-10-20 20:08 - 2013-10-20 20:09 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 20:08 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 20:04 - 2013-10-20 20:04 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Virginia\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 20:01 - 2013-10-20 20:02 - 00673608 _____ C:\Users\Virginia\Downloads\malwarebytes-anti-malware-17501300-32-bits.exe
2013-10-20 19:36 - 2013-10-20 19:37 - 02840480 _____ C:\Users\Virginia\Downloads\The_Lemonheads_-_Mrs_Robinson.exe
2013-10-20 19:18 - 2013-10-20 19:20 - 00000000 ____D C:\Users\Virginia\AppData\Local\CRE
2013-10-20 19:18 - 2013-10-20 19:18 - 00000000 ____D C:\Program Files\Conduit
2013-10-20 19:14 - 2013-10-20 19:14 - 00000796 _____ C:\Users\Virginia\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-20 19:11 - 2013-10-21 18:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\uTorrent
2013-10-20 19:11 - 2013-10-20 19:11 - 01141328 _____ (BitTorrent Inc.) C:\Users\Virginia\Desktop\448-utorrent.exe
2013-10-20 19:11 - 2013-10-20 19:11 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\baidu
2013-10-20 19:08 - 2013-10-20 19:08 - 00169272 _____ (Firseria·s·l·) C:\Users\Virginia\Downloads\utorrent (1).exe
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:29 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:28 - 00000000 ____D C:\Program Files\Baidu Security
2013-10-20 16:28 - 2013-08-08 01:25 - 00064480 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bhbase.sys
2013-10-20 16:27 - 2013-10-20 16:28 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2013-10-20 16:27 - 2013-10-20 16:28 - 00000000 ____D C:\ProgramData\Baidu Security
2013-10-20 16:27 - 2013-10-20 16:27 - 11817992 _____ (DsNET Corp) C:\Users\Virginia\Downloads\989-aTubeCatcher.exe
2013-10-20 16:23 - 2013-10-20 16:23 - 00673608 _____ C:\Users\Virginia\Downloads\atube-catcher-384272-32-bits.exe
2013-10-20 16:19 - 2013-10-20 16:19 - 00589624 _____ C:\Users\Virginia\Downloads\uplayermediaplayer-setup.exe
2013-10-20 16:13 - 2013-10-20 16:13 - 01957376 _____ C:\Users\Virginia\Downloads\tutorial - reserva.pps
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 16:06 - 2013-10-20 16:06 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-20 16:06 - 2013-10-08 07:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-20 16:06 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-20 16:06 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-20 16:06 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-20 16:03 - 2013-10-20 16:06 - 00004865 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-10-20 15:56 - 2013-10-20 15:56 - 00915368 _____ (Oracle Corporation) C:\Users\Virginia\Downloads\chromeinstall-7u45.exe
2013-10-20 15:54 - 2013-10-20 15:54 - 00835496 _____ (AirInstaller ) C:\Users\Virginia\Downloads\instalação.exe
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BitGuard
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-18 23:52 - 2013-10-19 01:04 - 00624988 _____ C:\Users\Virginia\AppData\Local\helper.dat
2013-10-18 23:52 - 2013-10-19 00:23 - 00089088 _____ (keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.dll
2013-10-18 23:52 - 2013-10-19 00:22 - 00035009 _____ C:\Users\Virginia\AppData\Local\keepvid.xpi
2013-10-18 23:52 - 2013-10-18 23:52 - 00000000 ____D C:\Users\Virginia\AppData\Local\aHaskZ3
2013-10-18 23:52 - 2013-08-19 13:42 - 00108032 _____ C:\Users\Virginia\AppData\Local\ContentAgent.exe
2013-10-18 23:52 - 2013-08-07 17:32 - 02598912 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Virginia\AppData\Local\QtCore4.dll
2013-10-18 23:52 - 2013-06-27 12:16 - 08581632 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Virginia\AppData\Local\QtGui4.dll
2013-10-18 23:52 - 2013-06-27 12:10 - 01053696 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Virginia\AppData\Local\QtNetwork4.dll
2013-10-18 23:52 - 2013-06-10 18:59 - 01120256 _____ (keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.com.exe
2013-10-18 23:52 - 2013-03-18 19:45 - 01122304 _____ (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] C:\Users\Virginia\AppData\Local\libeay32.dll
2013-10-18 23:52 - 2013-03-18 19:45 - 00274432 _____ (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] C:\Users\Virginia\AppData\Local\ssleay32.dll
2013-10-18 23:52 - 2011-06-11 02:58 - 00773968 _____ (Microsoft Corporation) C:\Users\Virginia\AppData\Local\msvcr100.dll
2013-10-18 23:52 - 2011-06-11 02:58 - 00421200 _____ (Microsoft Corporation) C:\Users\Virginia\AppData\Local\msvcp100.dll
2013-10-18 23:41 - 2013-10-19 01:04 - 00000286 __RSH C:\Users\Virginia\ntuser.pol
2013-10-18 23:40 - 2013-10-19 00:10 - 00000000 ____D C:\Program Files\Baixar Musicas Gratis
2013-10-18 23:33 - 2013-10-21 18:30 - 00000304 _____ C:\Windows\Tasks\UpdaterEX.job
2013-10-18 23:33 - 2013-10-18 23:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\UpdaterEX
2013-10-18 23:14 - 2013-10-18 23:14 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf (1).zip
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf (1)
2013-10-16 16:42 - 2013-09-22 21:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-16 16:42 - 2013-09-22 21:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-16 16:42 - 2013-09-22 21:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-16 16:42 - 2013-09-22 21:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-16 16:42 - 2013-09-21 01:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-16 16:42 - 2013-09-21 00:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-15 23:07 - 2013-10-15 23:07 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-10-15 22:56 - 2013-09-13 22:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-15 22:56 - 2013-09-08 00:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-15 22:56 - 2013-09-08 00:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-15 22:56 - 2013-08-28 23:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-10-15 22:56 - 2013-08-28 23:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-15 22:56 - 2013-08-28 23:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-15 22:56 - 2013-08-28 23:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-15 22:56 - 2013-08-28 23:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-15 22:56 - 2013-08-27 22:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-15 22:56 - 2013-08-01 09:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-15 22:56 - 2013-07-20 08:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-15 22:56 - 2013-07-04 09:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-15 22:56 - 2013-07-03 02:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-15 22:56 - 2013-07-03 01:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-15 22:56 - 2013-07-03 01:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-15 22:56 - 2013-06-06 02:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-15 22:56 - 2013-06-06 02:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-15 22:56 - 2013-06-06 02:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-15 22:56 - 2013-06-06 01:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-15 22:56 - 2013-06-06 01:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-15 22:54 - 2013-08-27 23:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-15 22:53 - 2013-07-12 08:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-15 22:53 - 2013-07-12 08:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-15 22:53 - 2013-07-04 09:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-15 22:53 - 2013-07-04 09:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-15 22:53 - 2013-07-04 07:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-15 22:53 - 2013-06-25 20:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-06 03:16 - 2013-10-06 03:16 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf
2013-10-06 03:15 - 2013-10-06 03:15 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf.zip
2013-09-29 23:11 - 2013-09-29 23:14 - 02770099 _____ C:\Users\Virginia\Downloads\Tom Jobim 2.pptx
2013-09-29 20:00 - 2013-09-29 20:00 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_edital
2013-09-29 19:59 - 2013-09-29 19:59 - 00650468 _____ C:\Users\Virginia\Downloads\ibge0213_edital.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00204075 _____ C:\Users\Virginia\Downloads\ibge0213_retificacao.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_retificacao
2013-09-26 00:00 - 2013-09-26 00:00 - 01096527 _____ C:\Users\Virginia\Downloads\073DE (1).ZIP
2013-09-25 20:47 - 2013-09-25 20:47 - 00000000 ____D C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa
2013-09-25 20:45 - 2013-09-25 20:46 - 09069330 _____ C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa.zip
2013-09-23 19:54 - 2013-09-23 19:58 - 00000000 ____D C:\Users\Virginia\Desktop\abril sac
2013-09-23 19:48 - 2013-09-23 19:48 - 01412108 _____ C:\Users\Virginia\Desktop\setembro-2012.tif
2013-09-23 19:45 - 2013-09-23 19:46 - 08263752 _____ C:\Users\Virginia\Downloads\digits.zip
2013-09-23 19:18 - 2013-09-23 19:19 - 00136718 _____ C:\Users\Virginia\Downloads\image.jpeg
2013-09-23 19:12 - 2013-09-23 19:17 - 00133935 _____ C:\Users\Virginia\Downloads\image (6).jpeg
2013-09-23 19:12 - 2013-09-23 19:16 - 00136329 _____ C:\Users\Virginia\Downloads\image (1).jpeg
2013-09-23 19:12 - 2013-09-23 19:15 - 00145183 _____ C:\Users\Virginia\Downloads\image (2).jpeg
2013-09-23 19:12 - 2013-09-23 19:15 - 00143341 _____ C:\Users\Virginia\Downloads\image (3).jpeg
2013-09-23 19:12 - 2013-09-23 19:14 - 00138082 _____ C:\Users\Virginia\Downloads\image (5).jpeg
2013-09-23 19:12 - 2013-09-23 19:14 - 00138067 _____ C:\Users\Virginia\Downloads\image (4).jpeg
2013-09-22 23:00 - 2013-09-22 23:01 - 01721856 _____ C:\Users\Virginia\Downloads\Luiz Gonzaga.ppt
2013-09-22 22:21 - 2013-09-22 22:22 - 01614896 _____ C:\Users\Virginia\Downloads\Tom Jobim.pptx
2013-09-22 22:21 - 2013-09-22 22:21 - 00304199 _____ C:\Users\Virginia\Downloads\Martinho da Vila.pptx
2013-09-22 22:20 - 2013-09-22 22:23 - 06343674 _____ C:\Users\Virginia\Downloads\Tom Jobim2.pptx
==================== One Month Modified Files and Folders =======
2013-10-21 18:33 - 2013-10-20 19:11 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\uTorrent
2013-10-21 18:33 - 2011-05-13 23:58 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000UA.job
2013-10-21 18:32 - 2013-10-21 18:31 - 01087515 _____ (Farbar) C:\Users\Virginia\Downloads\FRST.exe
2013-10-21 18:30 - 2013-10-18 23:33 - 00000304 _____ C:\Windows\Tasks\UpdaterEX.job
2013-10-21 18:27 - 2013-10-21 18:27 - 00008735 _____ C:\Users\Virginia\Downloads\35131000776574000741550010218668481649637990.xml
2013-10-21 18:17 - 2011-05-13 23:58 - 00001038 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000Core.job
2013-10-21 18:16 - 2011-04-18 15:37 - 02061886 _____ C:\Windows\WindowsUpdate.log
2013-10-21 18:07 - 2011-11-03 20:42 - 00001086 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000UA.job
2013-10-21 18:05 - 2012-04-04 14:50 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-21 18:04 - 2013-07-15 21:44 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2013-10-21 18:04 - 2013-07-15 21:44 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2013-10-21 18:04 - 2012-11-09 19:42 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-21 18:03 - 2011-05-27 19:12 - 00000000 ____D C:\Users\Virginia\AppData\Local\CrashDumps
2013-10-20 22:46 - 2013-10-20 21:34 - 00055887 _____ C:\Users\Virginia\Desktop\FRST.txt
2013-10-20 22:38 - 2010-08-24 00:08 - 00703580 _____ C:\Windows\system32\prfh0416.dat
2013-10-20 22:38 - 2010-08-24 00:08 - 00146366 _____ C:\Windows\system32\prfc0416.dat
2013-10-20 22:38 - 2009-09-06 21:02 - 01628224 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-20 22:37 - 2009-07-14 02:34 - 00014128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-20 22:37 - 2009-07-14 02:34 - 00014128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-20 22:31 - 2011-05-12 00:51 - 00000132 _____ C:\Users\Virginia\AppData\Local\mv_Photo.xml
2013-10-20 22:31 - 2011-05-12 00:51 - 00000123 _____ C:\Users\Virginia\AppData\Local\mv_music.xml
2013-10-20 22:29 - 2012-11-09 19:42 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-20 22:29 - 2011-05-12 00:49 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\ZumoDrive
2013-10-20 22:28 - 2011-05-12 00:43 - 00000000 ____D C:\Users\Virginia
2013-10-20 22:27 - 2013-10-20 22:27 - 00000056 _____ C:\Windows\setupact.log
2013-10-20 22:27 - 2013-10-20 22:27 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 22:27 - 2013-07-15 21:53 - 00031088 _____ (GbPlugin NDIS Device Driver) C:\Windows\system32\Drivers\GbpNdisrd.sys
2013-10-20 22:27 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-20 22:26 - 2013-10-20 22:26 - 00008500 _____ C:\Windows\PFRO.log
2013-10-20 22:26 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\registration
2013-10-20 21:34 - 2013-10-20 21:31 - 00025721 _____ C:\Users\Virginia\Desktop\Addition.txt
2013-10-20 21:22 - 2013-10-20 21:22 - 00000000 ____D C:\FRST
2013-10-20 21:10 - 2011-12-12 21:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Skype
2013-10-20 21:10 - 2011-05-14 12:34 - 00000000 ____D C:\Users\Virginia\Tracing
2013-10-20 21:08 - 2012-08-06 19:33 - 00000000 ____D C:\Windows\Minidump
2013-10-20 21:08 - 2009-09-06 21:51 - 00000000 ____D C:\Windows\Panther
2013-10-20 21:07 - 2011-11-03 20:42 - 00001064 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000Core.job
2013-10-20 20:35 - 2013-10-20 20:35 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 20:29 - 2013-10-20 20:29 - 04369632 _____ (Piriform Ltd) C:\Users\Virginia\Downloads\845-ccsetup406.exe
2013-10-20 20:25 - 2013-10-20 20:24 - 00673608 _____ C:\Users\Virginia\Downloads\ccleaner-4064324-32-bits.exe
2013-10-20 20:10 - 2013-10-20 20:10 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Malwarebytes
2013-10-20 20:09 - 2013-10-20 20:08 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 20:04 - 2013-10-20 20:04 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Virginia\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 20:02 - 2013-10-20 20:01 - 00673608 _____ C:\Users\Virginia\Downloads\malwarebytes-anti-malware-17501300-32-bits.exe
2013-10-20 19:37 - 2013-10-20 19:36 - 02840480 _____ C:\Users\Virginia\Downloads\The_Lemonheads_-_Mrs_Robinson.exe
2013-10-20 19:20 - 2013-10-20 19:18 - 00000000 ____D C:\Users\Virginia\AppData\Local\CRE
2013-10-20 19:18 - 2013-10-20 19:18 - 00000000 ____D C:\Program Files\Conduit
2013-10-20 19:14 - 2013-10-20 19:14 - 00000796 _____ C:\Users\Virginia\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-20 19:11 - 2013-10-20 19:11 - 01141328 _____ (BitTorrent Inc.) C:\Users\Virginia\Desktop\448-utorrent.exe
2013-10-20 19:11 - 2013-10-20 19:11 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\baidu
2013-10-20 19:08 - 2013-10-20 19:08 - 00169272 _____ (Firseria·s·l·) C:\Users\Virginia\Downloads\utorrent (1).exe
2013-10-20 19:00 - 2013-01-27 21:08 - 00000278 _____ C:\Windows\Tasks\RMSchedule.job
2013-10-20 18:50 - 2012-09-17 14:44 - 00000000 ____D C:\Program Files\DsNET Corp
2013-10-20 17:04 - 2012-08-16 19:25 - 00000000 ____D C:\Users\Virginia\Desktop\Congresso Hispanistas
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Baidu Security
2013-10-20 16:29 - 2013-10-20 16:28 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:28 - 00000000 ____D C:\Program Files\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:27 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:27 - 00000000 ____D C:\ProgramData\Baidu Security
2013-10-20 16:27 - 2013-10-20 16:27 - 11817992 _____ (DsNET Corp) C:\Users\Virginia\Downloads\989-aTubeCatcher.exe
2013-10-20 16:23 - 2013-10-20 16:23 - 00673608 _____ C:\Users\Virginia\Downloads\atube-catcher-384272-32-bits.exe
2013-10-20 16:19 - 2013-10-20 16:19 - 00589624 _____ C:\Users\Virginia\Downloads\uplayermediaplayer-setup.exe
2013-10-20 16:13 - 2013-10-20 16:13 - 01957376 _____ C:\Users\Virginia\Downloads\tutorial - reserva.pps
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 16:06 - 2013-10-20 16:06 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-20 16:06 - 2013-10-20 16:03 - 00004865 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-10-20 16:06 - 2010-08-23 22:04 - 00000000 ____D C:\Program Files\Java
2013-10-20 15:56 - 2013-10-20 15:56 - 00915368 _____ (Oracle Corporation) C:\Users\Virginia\Downloads\chromeinstall-7u45.exe
2013-10-20 15:54 - 2013-10-20 15:54 - 00835496 _____ (AirInstaller ) C:\Users\Virginia\Downloads\instalação.exe
2013-10-19 01:06 - 2012-03-18 20:41 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2013-10-19 01:06 - 2012-03-18 20:41 - 00000000 ____D C:\ProgramData\GbPlugin
2013-10-19 01:06 - 2012-03-18 20:41 - 00000000 ____D C:\Program Files\GbPlugin
2013-10-19 01:04 - 2013-10-18 23:52 - 00624988 _____ C:\Users\Virginia\AppData\Local\helper.dat
2013-10-19 01:04 - 2013-10-18 23:41 - 00000286 __RSH C:\Users\Virginia\ntuser.pol
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BitGuard
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-19 00:23 - 2013-10-18 23:52 - 00089088 _____ (keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.dll
2013-10-19 00:22 - 2013-10-18 23:52 - 00035009 _____ C:\Users\Virginia\AppData\Local\keepvid.xpi
2013-10-19 00:10 - 2013-10-18 23:40 - 00000000 ____D C:\Program Files\Baixar Musicas Gratis
2013-10-18 23:52 - 2013-10-18 23:52 - 00000000 ____D C:\Users\Virginia\AppData\Local\aHaskZ3
2013-10-18 23:51 - 2013-01-15 17:06 - 00000000 ____D C:\Users\Virginia\Desktop\TCC UGF
2013-10-18 23:41 - 2009-07-14 00:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-10-18 23:34 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-18 23:33 - 2013-10-18 23:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\UpdaterEX
2013-10-18 23:29 - 2013-03-30 01:03 - 00000000 ____D C:\Users\Virginia\Desktop\SciLor's Grooveshark.com Downloader
2013-10-18 23:14 - 2013-10-18 23:14 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf (1).zip
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf (1)
2013-10-18 00:29 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-17 21:55 - 2009-07-14 02:33 - 00344040 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-17 21:54 - 2010-08-23 21:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-17 01:01 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\pt-BR
2013-10-17 00:59 - 2011-09-06 19:55 - 00001912 _____ C:\Windows\epplauncher.mif
2013-10-17 00:59 - 2011-09-06 19:55 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-10-17 00:46 - 2013-08-19 23:02 - 00000000 ____D C:\Users\Virginia\Documents\john
2013-10-16 16:59 - 2011-05-12 23:34 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2013-10-16 16:59 - 2011-05-12 23:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-16 16:53 - 2013-08-05 20:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-16 16:48 - 2011-05-15 12:21 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-16 16:36 - 2011-05-17 15:11 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-10-16 16:35 - 2011-11-01 18:58 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-10-15 23:08 - 2012-04-04 14:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-15 23:08 - 2011-06-05 11:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-15 23:07 - 2013-10-15 23:07 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-10-08 08:16 - 2012-12-06 21:33 - 00000000 ____D C:\Users\Virginia\Desktop\SI II
2013-10-08 07:50 - 2013-10-20 16:06 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-08 07:46 - 2013-10-20 16:06 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-08 07:46 - 2013-10-20 16:06 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-08 07:46 - 2013-10-20 16:06 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 01:02 - 2013-01-19 20:25 - 00000000 ____D C:\Users\Virginia\Desktop\Mestrado - Qualificacao
2013-10-07 00:30 - 2011-12-08 22:28 - 00000000 ____D C:\Users\Virginia\Desktop\trabalho
2013-10-06 03:16 - 2013-10-06 03:16 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf
2013-10-06 03:15 - 2013-10-06 03:15 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf.zip
2013-10-05 20:11 - 2013-04-08 20:43 - 00000000 ____D C:\Users\Virginia\Desktop\Iphone
2013-09-29 23:14 - 2013-09-29 23:11 - 02770099 _____ C:\Users\Virginia\Downloads\Tom Jobim 2.pptx
2013-09-29 20:00 - 2013-09-29 20:00 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_edital
2013-09-29 19:59 - 2013-09-29 19:59 - 00650468 _____ C:\Users\Virginia\Downloads\ibge0213_edital.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00204075 _____ C:\Users\Virginia\Downloads\ibge0213_retificacao.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_retificacao
2013-09-26 02:07 - 2013-05-10 01:03 - 01096527 _____ C:\Users\Virginia\Desktop\073DE.ZIP
2013-09-26 00:00 - 2013-09-26 00:00 - 01096527 _____ C:\Users\Virginia\Downloads\073DE (1).ZIP
2013-09-25 20:47 - 2013-09-25 20:47 - 00000000 ____D C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa
2013-09-25 20:46 - 2013-09-25 20:45 - 09069330 _____ C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa.zip
2013-09-23 19:58 - 2013-09-23 19:54 - 00000000 ____D C:\Users\Virginia\Desktop\abril sac
2013-09-23 19:48 - 2013-09-23 19:48 - 01412108 _____ C:\Users\Virginia\Desktop\setembro-2012.tif
2013-09-23 19:46 - 2013-09-23 19:45 - 08263752 _____ C:\Users\Virginia\Downloads\digits.zip
2013-09-23 19:19 - 2013-09-23 19:18 - 00136718 _____ C:\Users\Virginia\Downloads\image.jpeg
2013-09-23 19:17 - 2013-09-23 19:12 - 00133935 _____ C:\Users\Virginia\Downloads\image (6).jpeg
2013-09-23 19:16 - 2013-09-23 19:12 - 00136329 _____ C:\Users\Virginia\Downloads\image (1).jpeg
2013-09-23 19:15 - 2013-09-23 19:12 - 00145183 _____ C:\Users\Virginia\Downloads\image (2).jpeg
2013-09-23 19:15 - 2013-09-23 19:12 - 00143341 _____ C:\Users\Virginia\Downloads\image (3).jpeg
2013-09-23 19:14 - 2013-09-23 19:12 - 00138082 _____ C:\Users\Virginia\Downloads\image (5).jpeg
2013-09-23 19:14 - 2013-09-23 19:12 - 00138067 _____ C:\Users\Virginia\Downloads\image (4).jpeg
2013-09-22 23:01 - 2013-09-22 23:00 - 01721856 _____ C:\Users\Virginia\Downloads\Luiz Gonzaga.ppt
2013-09-22 22:23 - 2013-09-22 22:20 - 06343674 _____ C:\Users\Virginia\Downloads\Tom Jobim2.pptx
2013-09-22 22:22 - 2013-09-22 22:21 - 01614896 _____ C:\Users\Virginia\Downloads\Tom Jobim.pptx
2013-09-22 22:21 - 2013-09-22 22:21 - 00304199 _____ C:\Users\Virginia\Downloads\Martinho da Vila.pptx
2013-09-22 21:28 - 2013-10-16 16:42 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 21:28 - 2013-10-16 16:42 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 21:28 - 2013-10-16 16:42 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-22 21:27 - 2013-10-16 16:42 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-21 01:30 - 2013-10-16 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-21 00:39 - 2013-10-16 16:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
Some content of TEMP:
====================
C:\Users\Virginia\AppData\Local\Temp\MusicCodecPack__3465_il4.exe
C:\Users\Virginia\AppData\Local\Temp\swt-gdip-win32-3448.dll
C:\Users\Virginia\AppData\Local\Temp\swt-win32-3448.dll
C:\Users\Virginia\AppData\Local\Temp\uttF46F.tmp.exe
C:\Users\Virginia\AppData\Local\Temp\WindowsAPI.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-25 22:25
==================== End Of Log ============================
Não sei inserir arquivo... :/
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-10-2013
Ran by Virginia (administrator) on VIRGINIA-HP on 21-10-2013 18:34:23
Running from C:\Users\Virginia\Downloads
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: Portuguese Brazilian
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(GAS Tecnologia) C:\PROGRA~1\GbPlugin\GbpSv.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\aestsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation) C:\Program Files\Broadcom\GPS\GpsMgr.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Broadcom Corporation.) C:\Program Files\Broadcom\GPS\LtoGet.exe
(Broadcom Corp.) C:\Program Files\Broadcom\GPS\Gpsct.exe
(DeviceVM, Inc.) C:\SwSetup\HPQWMM\QuickWeb\QW.SYS\config\DVMExportService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Skyhook Wireless) C:\Program Files\Skyhook Wireless\XPS\xpssvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alcor Micro Corp.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Skyhook Wireless) C:\Program Files\Skyhook Wireless\XPS\xpscontrolpanel.exe
(Zecter Inc.) C:\Program Files\Hewlett-Packard\HP CloudDrive\zumodrive.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.com.exe
(CashPartners Company) C:\Users\Virginia\AppData\Local\aHaskZ3\CashPartners.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(BitTorrent Inc.) C:\Users\Virginia\Desktop\448-utorrent.exe
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Microsoft Corporation) C:\PROGRA~1\MICROS~2\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2049320 2011-05-24] (Synaptics Incorporated)
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation)
HKLM\...\Run: [AmIcoSinglun] - C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [237568 2010-06-17] (Alcor Micro Corp.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2010-06-18] (IDT, Inc.)
HKLM\...\Run: [Skyhook Wireless XPS Service] - C:\Program Files\Skyhook Wireless\XPS\xpscontrolpanel.exe [671048 2010-06-28] (Skyhook Wireless)
HKLM\...\Run: [ZumoDrive] - C:\Program Files\Hewlett-Packard\HP CloudDrive\ZumoLauncher.lnk [2038 2010-08-23] ()
HKLM\...\Run: [HPWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-07-08] (Hewlett-Packard Company)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-08-12] (Microsoft Corporation)
HKLM\...\Run: [SSDMonitor] - C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [HP Quick Launch] - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM\...\Run: [keepvid] - C:\Users\Virginia\AppData\Local\keepvid.com.exe [1120256 2013-06-10] (keepvid.com Company)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\ GbPluginAbn: C:\Program Files\GbPlugin\gbiehAbn.dll (Banco Real)
Winlogon\Notify\ GbPluginBb: C:\Program Files\GbPlugin\gbieh.dll (Banco do Brasil)
HKCU\...\Run: [Google Update] - C:\Users\Virginia\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-05-13] (Google Inc.)
HKCU\...\Run: [Facebook Update] - C:\Users\Virginia\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.)
HKCU\...\Run: [MobileDocuments] - C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKCU\...\Run: [CashPartners] - C:\Users\Virginia\AppData\Local\aHaskZ3\CashPartners.exe [259072 2013-10-02] (CashPartners Company)
HKCU\...\Run: [ConduitFloatingPlugin_mdebcffgnijbblbinknkbefciofebcda] - "C:\Windows\system32\Rundll32.exe" "C:\Program Files\Conduit\CT2851643\plugins\TBVerifier.dll",RunConduitFloatingPlugin mdebcffgnijbblbinknkbefciofebcda
HKCU\...\Run: [8DAE2761CEF6AAA8E62FD73F57726D7E23ABCB76._service_run] - C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe [844752 2013-10-08] (Google Inc.)
IMEO\bitguard.exe: [Debugger] tasklist.exe
IMEO\bprotect.exe: [Debugger] tasklist.exe
IMEO\browsemngr.exe: [Debugger] tasklist.exe
IMEO\browserdefender.exe: [Debugger] tasklist.exe
IMEO\browsermngr.exe: [Debugger] tasklist.exe
IMEO\browserprotect.exe: [Debugger] tasklist.exe
IMEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IMEO\cltmngsvc.exe: [Debugger] tasklist.exe
IMEO\delta babylon.exe: [Debugger] tasklist.exe
IMEO\delta tb.exe: [Debugger] tasklist.exe
IMEO\delta2.exe: [Debugger] tasklist.exe
IMEO\deltainstaller.exe: [Debugger] tasklist.exe
IMEO\deltasetup.exe: [Debugger] tasklist.exe
IMEO\deltatb.exe: [Debugger] tasklist.exe
IMEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IMEO\iminentsetup.exe: [Debugger] tasklist.exe
IMEO\rjatydimofu.exe: [Debugger] tasklist.exe
IMEO\sweetimsetup.exe: [Debugger] tasklist.exe
IMEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - DefaultScope {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {46263695-9B9D-4B3C-8B39-241EDCF80C75} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM - {C0299368-7B90-446E-8FD6-923EC3A702E9} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - DefaultScope {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {25114B37-1115-415B-84E6-987E90EB0D7A} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {46263695-9B9D-4B3C-8B39-241EDCF80C75} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {A603166E-6A39-407D-98D2-671C7804AE70} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {C0299368-7B90-446E-8FD6-923EC3A702E9} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
BHO: keepvid.com - {49ed9900-38cd-453c-bba7-3f2613317f5a} - C:\Users\Virginia\AppData\Local\keepvid.dll (keepvid.com Company)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: LocationFinder Class - {BC0E8AD7-13AA-4694-8EDD-0246BC47A35F} - C:\Program Files\Skyhook Wireless\Loki Plugin\loki.dll (Skyhook Wireless)
BHO: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll (Banco do Brasil)
BHO: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540007} - C:\Program Files\GbPlugin\gbiehabn.dll (Banco Real)
BHO: SoundFrost - {d997c836-ff82-4519-b459-1482ba942a4f} - C:\PROGRA~1\BAIXAR~1\SOUNDF~1.DLL (SoundFrost Company)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - C:\Program Files\GbPlugin\gbiehabn.dll [1516456 2013-02-06] (Banco Real)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll [1487912 2013-10-07] (Banco do Brasil)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 201.6.2.182 201.6.2.102 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Virginia\AppData\Roaming\Mozilla\Firefox\Profiles\88b1o8nu.default
FF user.js: detected! => C:\Users\Virginia\AppData\Roaming\Mozilla\Firefox\Profiles\88b1o8nu.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @skyhookwireless.com/LokiPlugin - C:\Program Files\Skyhook Wireless\Loki Plugin\nploki.dll (Skyhook Wireless)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Virginia\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Virginia\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Virginia\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: gastecnologia.com.br/sf/bb - C:\Users\Virginia\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia)
FF HKCU\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886C}] - C:\Users\Virginia\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF Extension: GBBD Banco do Brasil - C:\Users\Virginia\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF HKCU\...\Firefox\Extensions: [SoundFrost@helper.com] - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
FF Extension: No Name - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
FF HKCU\...\Firefox\Extensions: [keepvid.com@helper.com] - C:\Users\Virginia\AppData\Local\keepvid.xpi
FF Extension: No Name - C:\Users\Virginia\AppData\Local\keepvid.xpi
FF HKCU\...\Firefox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack] - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
FF Extension: No Name - C:\Program Files\Baixar Musicas Gratis\SoundFrost.xpi
Chrome:
=======
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR Extension: (YouTube) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Meu Tim\u00E3o) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ginkglnlpcgmjafipbkpfoimoaoabami\80_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (GBBD Banco do Brasil) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgacfjdigcddmmncljpflgcfpfahebkh\3.4.0_1
CHR Extension: (Gmail) - C:\Users\Virginia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [mdebcffgnijbblbinknkbefciofebcda] - C:\Users\Virginia\AppData\Local\CRE\mdebcffgnijbblbinknkbefciofebcda.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Virginia\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 BrcmGpsMgr; C:\Program Files\Broadcom\GPS\GpsMgr.exe [222720 2010-07-26] (Broadcom Corporation)
R2 DvmMDES; C:\SwSetup\HPQWMM\QuickWeb\QW.SYS\config\DVMExportService.exe [338168 2010-07-20] (DeviceVM, Inc.)
R2 GbpSv; C:\PROGRA~1\GbPlugin\GbpSv.exe [452136 2013-10-08] (GAS Tecnologia)
R2 HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [103992 2010-07-08] (Hewlett-Packard Company)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-08-12] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295376 2013-08-12] (Microsoft Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [237650 2010-06-18] (IDT, Inc.)
R2 xpssvc; C:\Program Files\Skyhook Wireless\XPS\xpssvc.exe [707400 2010-06-28] (Skyhook Wireless)
==================== Drivers (Whitelisted) ====================
S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [27136 2010-06-17] (Alcor Micro, Corp.)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [64480 2013-08-08] (Baidu, Inc.)
R3 btwampfl; C:\Windows\System32\drivers\btwampfl.sys [294952 2010-06-09] (Broadcom Corporation.)
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-13] (Microsoft Corporation)
R1 DVMIO; C:\Windows\System32\DRIVERS\dvmio.sys [18136 2009-11-11] (DeviceVM, Inc.)
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [49536 2013-05-08] (GAS Tecnologia)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
S3 Ndisrd; C:\Windows\System32\DRIVERS\gbpndisrd.sys [31088 2013-10-20] (GbPlugin NDIS Device Driver)
R3 NdisrdMP; C:\Windows\System32\DRIVERS\gbpndisrd.sys [31088 2013-10-20] (GbPlugin NDIS Device Driver)
R3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [60744 2010-07-26] (Silicon Laboratories)
R3 XPSVCOM; C:\Windows\System32\DRIVERS\XPSVCOM.sys [12416 2010-06-01] (Skyhook Wireless)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [x]
R1 MpKsl7141d6dd; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AF4F63AD-3CD4-4467-B884-8AF51A309386}\MpKsl7141d6dd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-21 18:31 - 2013-10-21 18:32 - 01087515 _____ (Farbar) C:\Users\Virginia\Downloads\FRST.exe
2013-10-21 18:27 - 2013-10-21 18:27 - 00008735 _____ C:\Users\Virginia\Downloads\35131000776574000741550010218668481649637990.xml
2013-10-20 22:27 - 2013-10-20 22:27 - 00000056 _____ C:\Windows\setupact.log
2013-10-20 22:27 - 2013-10-20 22:27 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 22:26 - 2013-10-20 22:26 - 00008500 _____ C:\Windows\PFRO.log
2013-10-20 21:34 - 2013-10-20 22:46 - 00055887 _____ C:\Users\Virginia\Desktop\FRST.txt
2013-10-20 21:31 - 2013-10-20 21:34 - 00025721 _____ C:\Users\Virginia\Desktop\Addition.txt
2013-10-20 21:22 - 2013-10-20 21:22 - 00000000 ____D C:\FRST
2013-10-20 20:35 - 2013-10-20 20:35 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 20:29 - 2013-10-20 20:29 - 04369632 _____ (Piriform Ltd) C:\Users\Virginia\Downloads\845-ccsetup406.exe
2013-10-20 20:24 - 2013-10-20 20:25 - 00673608 _____ C:\Users\Virginia\Downloads\ccleaner-4064324-32-bits.exe
2013-10-20 20:10 - 2013-10-20 20:10 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Malwarebytes
2013-10-20 20:08 - 2013-10-20 20:09 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 20:08 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 20:04 - 2013-10-20 20:04 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Virginia\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 20:01 - 2013-10-20 20:02 - 00673608 _____ C:\Users\Virginia\Downloads\malwarebytes-anti-malware-17501300-32-bits.exe
2013-10-20 19:36 - 2013-10-20 19:37 - 02840480 _____ C:\Users\Virginia\Downloads\The_Lemonheads_-_Mrs_Robinson.exe
2013-10-20 19:18 - 2013-10-20 19:20 - 00000000 ____D C:\Users\Virginia\AppData\Local\CRE
2013-10-20 19:18 - 2013-10-20 19:18 - 00000000 ____D C:\Program Files\Conduit
2013-10-20 19:14 - 2013-10-20 19:14 - 00000796 _____ C:\Users\Virginia\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-20 19:11 - 2013-10-21 18:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\uTorrent
2013-10-20 19:11 - 2013-10-20 19:11 - 01141328 _____ (BitTorrent Inc.) C:\Users\Virginia\Desktop\448-utorrent.exe
2013-10-20 19:11 - 2013-10-20 19:11 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\baidu
2013-10-20 19:08 - 2013-10-20 19:08 - 00169272 _____ (Firseria·s·l·) C:\Users\Virginia\Downloads\utorrent (1).exe
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:29 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:28 - 00000000 ____D C:\Program Files\Baidu Security
2013-10-20 16:28 - 2013-08-08 01:25 - 00064480 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bhbase.sys
2013-10-20 16:27 - 2013-10-20 16:28 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2013-10-20 16:27 - 2013-10-20 16:28 - 00000000 ____D C:\ProgramData\Baidu Security
2013-10-20 16:27 - 2013-10-20 16:27 - 11817992 _____ (DsNET Corp) C:\Users\Virginia\Downloads\989-aTubeCatcher.exe
2013-10-20 16:23 - 2013-10-20 16:23 - 00673608 _____ C:\Users\Virginia\Downloads\atube-catcher-384272-32-bits.exe
2013-10-20 16:19 - 2013-10-20 16:19 - 00589624 _____ C:\Users\Virginia\Downloads\uplayermediaplayer-setup.exe
2013-10-20 16:13 - 2013-10-20 16:13 - 01957376 _____ C:\Users\Virginia\Downloads\tutorial - reserva.pps
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 16:06 - 2013-10-20 16:06 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-20 16:06 - 2013-10-08 07:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-20 16:06 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-20 16:06 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-20 16:06 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-20 16:03 - 2013-10-20 16:06 - 00004865 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-10-20 15:56 - 2013-10-20 15:56 - 00915368 _____ (Oracle Corporation) C:\Users\Virginia\Downloads\chromeinstall-7u45.exe
2013-10-20 15:54 - 2013-10-20 15:54 - 00835496 _____ (AirInstaller ) C:\Users\Virginia\Downloads\instalação.exe
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BitGuard
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-18 23:52 - 2013-10-19 01:04 - 00624988 _____ C:\Users\Virginia\AppData\Local\helper.dat
2013-10-18 23:52 - 2013-10-19 00:23 - 00089088 _____ (keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.dll
2013-10-18 23:52 - 2013-10-19 00:22 - 00035009 _____ C:\Users\Virginia\AppData\Local\keepvid.xpi
2013-10-18 23:52 - 2013-10-18 23:52 - 00000000 ____D C:\Users\Virginia\AppData\Local\aHaskZ3
2013-10-18 23:52 - 2013-08-19 13:42 - 00108032 _____ C:\Users\Virginia\AppData\Local\ContentAgent.exe
2013-10-18 23:52 - 2013-08-07 17:32 - 02598912 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Virginia\AppData\Local\QtCore4.dll
2013-10-18 23:52 - 2013-06-27 12:16 - 08581632 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Virginia\AppData\Local\QtGui4.dll
2013-10-18 23:52 - 2013-06-27 12:10 - 01053696 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Virginia\AppData\Local\QtNetwork4.dll
2013-10-18 23:52 - 2013-06-10 18:59 - 01120256 _____ (keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.com.exe
2013-10-18 23:52 - 2013-03-18 19:45 - 01122304 _____ (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] C:\Users\Virginia\AppData\Local\libeay32.dll
2013-10-18 23:52 - 2013-03-18 19:45 - 00274432 _____ (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] C:\Users\Virginia\AppData\Local\ssleay32.dll
2013-10-18 23:52 - 2011-06-11 02:58 - 00773968 _____ (Microsoft Corporation) C:\Users\Virginia\AppData\Local\msvcr100.dll
2013-10-18 23:52 - 2011-06-11 02:58 - 00421200 _____ (Microsoft Corporation) C:\Users\Virginia\AppData\Local\msvcp100.dll
2013-10-18 23:41 - 2013-10-19 01:04 - 00000286 __RSH C:\Users\Virginia\ntuser.pol
2013-10-18 23:40 - 2013-10-19 00:10 - 00000000 ____D C:\Program Files\Baixar Musicas Gratis
2013-10-18 23:33 - 2013-10-21 18:30 - 00000304 _____ C:\Windows\Tasks\UpdaterEX.job
2013-10-18 23:33 - 2013-10-18 23:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\UpdaterEX
2013-10-18 23:14 - 2013-10-18 23:14 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf (1).zip
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf (1)
2013-10-16 16:42 - 2013-09-22 21:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-16 16:42 - 2013-09-22 21:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-16 16:42 - 2013-09-22 21:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-16 16:42 - 2013-09-22 21:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-16 16:42 - 2013-09-22 21:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-16 16:42 - 2013-09-21 01:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-16 16:42 - 2013-09-21 00:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-15 23:07 - 2013-10-15 23:07 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-10-15 22:56 - 2013-09-13 22:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-15 22:56 - 2013-09-08 00:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-15 22:56 - 2013-09-08 00:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-15 22:56 - 2013-08-28 23:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-10-15 22:56 - 2013-08-28 23:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-15 22:56 - 2013-08-28 23:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-15 22:56 - 2013-08-28 23:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-15 22:56 - 2013-08-28 23:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-15 22:56 - 2013-08-27 22:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-15 22:56 - 2013-08-01 09:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-15 22:56 - 2013-07-20 08:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-15 22:56 - 2013-07-04 09:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-15 22:56 - 2013-07-03 02:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-15 22:56 - 2013-07-03 01:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-15 22:56 - 2013-07-03 01:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-15 22:56 - 2013-06-06 02:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-15 22:56 - 2013-06-06 02:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-15 22:56 - 2013-06-06 02:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-15 22:56 - 2013-06-06 01:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-15 22:56 - 2013-06-06 01:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-15 22:54 - 2013-08-27 23:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-15 22:53 - 2013-07-12 08:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-15 22:53 - 2013-07-12 08:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-15 22:53 - 2013-07-04 09:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-15 22:53 - 2013-07-04 09:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-15 22:53 - 2013-07-04 07:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-15 22:53 - 2013-06-25 20:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-06 03:16 - 2013-10-06 03:16 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf
2013-10-06 03:15 - 2013-10-06 03:15 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf.zip
2013-09-29 23:11 - 2013-09-29 23:14 - 02770099 _____ C:\Users\Virginia\Downloads\Tom Jobim 2.pptx
2013-09-29 20:00 - 2013-09-29 20:00 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_edital
2013-09-29 19:59 - 2013-09-29 19:59 - 00650468 _____ C:\Users\Virginia\Downloads\ibge0213_edital.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00204075 _____ C:\Users\Virginia\Downloads\ibge0213_retificacao.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_retificacao
2013-09-26 00:00 - 2013-09-26 00:00 - 01096527 _____ C:\Users\Virginia\Downloads\073DE (1).ZIP
2013-09-25 20:47 - 2013-09-25 20:47 - 00000000 ____D C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa
2013-09-25 20:45 - 2013-09-25 20:46 - 09069330 _____ C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa.zip
2013-09-23 19:54 - 2013-09-23 19:58 - 00000000 ____D C:\Users\Virginia\Desktop\abril sac
2013-09-23 19:48 - 2013-09-23 19:48 - 01412108 _____ C:\Users\Virginia\Desktop\setembro-2012.tif
2013-09-23 19:45 - 2013-09-23 19:46 - 08263752 _____ C:\Users\Virginia\Downloads\digits.zip
2013-09-23 19:18 - 2013-09-23 19:19 - 00136718 _____ C:\Users\Virginia\Downloads\image.jpeg
2013-09-23 19:12 - 2013-09-23 19:17 - 00133935 _____ C:\Users\Virginia\Downloads\image (6).jpeg
2013-09-23 19:12 - 2013-09-23 19:16 - 00136329 _____ C:\Users\Virginia\Downloads\image (1).jpeg
2013-09-23 19:12 - 2013-09-23 19:15 - 00145183 _____ C:\Users\Virginia\Downloads\image (2).jpeg
2013-09-23 19:12 - 2013-09-23 19:15 - 00143341 _____ C:\Users\Virginia\Downloads\image (3).jpeg
2013-09-23 19:12 - 2013-09-23 19:14 - 00138082 _____ C:\Users\Virginia\Downloads\image (5).jpeg
2013-09-23 19:12 - 2013-09-23 19:14 - 00138067 _____ C:\Users\Virginia\Downloads\image (4).jpeg
2013-09-22 23:00 - 2013-09-22 23:01 - 01721856 _____ C:\Users\Virginia\Downloads\Luiz Gonzaga.ppt
2013-09-22 22:21 - 2013-09-22 22:22 - 01614896 _____ C:\Users\Virginia\Downloads\Tom Jobim.pptx
2013-09-22 22:21 - 2013-09-22 22:21 - 00304199 _____ C:\Users\Virginia\Downloads\Martinho da Vila.pptx
2013-09-22 22:20 - 2013-09-22 22:23 - 06343674 _____ C:\Users\Virginia\Downloads\Tom Jobim2.pptx
==================== One Month Modified Files and Folders =======
2013-10-21 18:33 - 2013-10-20 19:11 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\uTorrent
2013-10-21 18:33 - 2011-05-13 23:58 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000UA.job
2013-10-21 18:32 - 2013-10-21 18:31 - 01087515 _____ (Farbar) C:\Users\Virginia\Downloads\FRST.exe
2013-10-21 18:30 - 2013-10-18 23:33 - 00000304 _____ C:\Windows\Tasks\UpdaterEX.job
2013-10-21 18:27 - 2013-10-21 18:27 - 00008735 _____ C:\Users\Virginia\Downloads\35131000776574000741550010218668481649637990.xml
2013-10-21 18:17 - 2011-05-13 23:58 - 00001038 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000Core.job
2013-10-21 18:16 - 2011-04-18 15:37 - 02061886 _____ C:\Windows\WindowsUpdate.log
2013-10-21 18:07 - 2011-11-03 20:42 - 00001086 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000UA.job
2013-10-21 18:05 - 2012-04-04 14:50 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-21 18:04 - 2013-07-15 21:44 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2013-10-21 18:04 - 2013-07-15 21:44 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2013-10-21 18:04 - 2012-11-09 19:42 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-21 18:03 - 2011-05-27 19:12 - 00000000 ____D C:\Users\Virginia\AppData\Local\CrashDumps
2013-10-20 22:46 - 2013-10-20 21:34 - 00055887 _____ C:\Users\Virginia\Desktop\FRST.txt
2013-10-20 22:38 - 2010-08-24 00:08 - 00703580 _____ C:\Windows\system32\prfh0416.dat
2013-10-20 22:38 - 2010-08-24 00:08 - 00146366 _____ C:\Windows\system32\prfc0416.dat
2013-10-20 22:38 - 2009-09-06 21:02 - 01628224 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-20 22:37 - 2009-07-14 02:34 - 00014128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-20 22:37 - 2009-07-14 02:34 - 00014128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-20 22:31 - 2011-05-12 00:51 - 00000132 _____ C:\Users\Virginia\AppData\Local\mv_Photo.xml
2013-10-20 22:31 - 2011-05-12 00:51 - 00000123 _____ C:\Users\Virginia\AppData\Local\mv_music.xml
2013-10-20 22:29 - 2012-11-09 19:42 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-20 22:29 - 2011-05-12 00:49 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\ZumoDrive
2013-10-20 22:28 - 2011-05-12 00:43 - 00000000 ____D C:\Users\Virginia
2013-10-20 22:27 - 2013-10-20 22:27 - 00000056 _____ C:\Windows\setupact.log
2013-10-20 22:27 - 2013-10-20 22:27 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 22:27 - 2013-07-15 21:53 - 00031088 _____ (GbPlugin NDIS Device Driver) C:\Windows\system32\Drivers\GbpNdisrd.sys
2013-10-20 22:27 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-20 22:26 - 2013-10-20 22:26 - 00008500 _____ C:\Windows\PFRO.log
2013-10-20 22:26 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\registration
2013-10-20 21:34 - 2013-10-20 21:31 - 00025721 _____ C:\Users\Virginia\Desktop\Addition.txt
2013-10-20 21:22 - 2013-10-20 21:22 - 00000000 ____D C:\FRST
2013-10-20 21:10 - 2011-12-12 21:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Skype
2013-10-20 21:10 - 2011-05-14 12:34 - 00000000 ____D C:\Users\Virginia\Tracing
2013-10-20 21:08 - 2012-08-06 19:33 - 00000000 ____D C:\Windows\Minidump
2013-10-20 21:08 - 2009-09-06 21:51 - 00000000 ____D C:\Windows\Panther
2013-10-20 21:07 - 2011-11-03 20:42 - 00001064 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-675908956-1697833330-1058339944-1000Core.job
2013-10-20 20:35 - 2013-10-20 20:35 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 20:29 - 2013-10-20 20:29 - 04369632 _____ (Piriform Ltd) C:\Users\Virginia\Downloads\845-ccsetup406.exe
2013-10-20 20:25 - 2013-10-20 20:24 - 00673608 _____ C:\Users\Virginia\Downloads\ccleaner-4064324-32-bits.exe
2013-10-20 20:10 - 2013-10-20 20:10 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Malwarebytes
2013-10-20 20:09 - 2013-10-20 20:08 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2013-10-20 20:08 - 2013-10-20 20:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 20:04 - 2013-10-20 20:04 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Virginia\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 20:02 - 2013-10-20 20:01 - 00673608 _____ C:\Users\Virginia\Downloads\malwarebytes-anti-malware-17501300-32-bits.exe
2013-10-20 19:37 - 2013-10-20 19:36 - 02840480 _____ C:\Users\Virginia\Downloads\The_Lemonheads_-_Mrs_Robinson.exe
2013-10-20 19:20 - 2013-10-20 19:18 - 00000000 ____D C:\Users\Virginia\AppData\Local\CRE
2013-10-20 19:18 - 2013-10-20 19:18 - 00000000 ____D C:\Program Files\Conduit
2013-10-20 19:14 - 2013-10-20 19:14 - 00000796 _____ C:\Users\Virginia\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2013-10-20 19:11 - 2013-10-20 19:11 - 01141328 _____ (BitTorrent Inc.) C:\Users\Virginia\Desktop\448-utorrent.exe
2013-10-20 19:11 - 2013-10-20 19:11 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\baidu
2013-10-20 19:08 - 2013-10-20 19:08 - 00169272 _____ (Firseria·s·l·) C:\Users\Virginia\Downloads\utorrent (1).exe
2013-10-20 19:00 - 2013-01-27 21:08 - 00000278 _____ C:\Windows\Tasks\RMSchedule.job
2013-10-20 18:50 - 2012-09-17 14:44 - 00000000 ____D C:\Program Files\DsNET Corp
2013-10-20 17:04 - 2012-08-16 19:25 - 00000000 ____D C:\Users\Virginia\Desktop\Congresso Hispanistas
2013-10-20 16:29 - 2013-10-20 16:29 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\Baidu Security
2013-10-20 16:29 - 2013-10-20 16:28 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:28 - 00000000 ____D C:\Program Files\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:27 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2013-10-20 16:28 - 2013-10-20 16:27 - 00000000 ____D C:\ProgramData\Baidu Security
2013-10-20 16:27 - 2013-10-20 16:27 - 11817992 _____ (DsNET Corp) C:\Users\Virginia\Downloads\989-aTubeCatcher.exe
2013-10-20 16:23 - 2013-10-20 16:23 - 00673608 _____ C:\Users\Virginia\Downloads\atube-catcher-384272-32-bits.exe
2013-10-20 16:19 - 2013-10-20 16:19 - 00589624 _____ C:\Users\Virginia\Downloads\uplayermediaplayer-setup.exe
2013-10-20 16:13 - 2013-10-20 16:13 - 01957376 _____ C:\Users\Virginia\Downloads\tutorial - reserva.pps
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-20 16:07 - 2013-10-20 16:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 16:06 - 2013-10-20 16:06 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-20 16:06 - 2013-10-20 16:03 - 00004865 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-10-20 16:06 - 2010-08-23 22:04 - 00000000 ____D C:\Program Files\Java
2013-10-20 15:56 - 2013-10-20 15:56 - 00915368 _____ (Oracle Corporation) C:\Users\Virginia\Downloads\chromeinstall-7u45.exe
2013-10-20 15:54 - 2013-10-20 15:54 - 00835496 _____ (AirInstaller ) C:\Users\Virginia\Downloads\instalação.exe
2013-10-19 01:06 - 2012-03-18 20:41 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2013-10-19 01:06 - 2012-03-18 20:41 - 00000000 ____D C:\ProgramData\GbPlugin
2013-10-19 01:06 - 2012-03-18 20:41 - 00000000 ____D C:\Program Files\GbPlugin
2013-10-19 01:04 - 2013-10-18 23:52 - 00624988 _____ C:\Users\Virginia\AppData\Local\helper.dat
2013-10-19 01:04 - 2013-10-18 23:41 - 00000286 __RSH C:\Users\Virginia\ntuser.pol
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\Users\Todos os Usuários\BitGuard
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BrowserProtect
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\Browser Manager
2013-10-19 00:32 - 2013-10-19 00:32 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-19 00:23 - 2013-10-18 23:52 - 00089088 _____ (keepvid.com Company) C:\Users\Virginia\AppData\Local\keepvid.dll
2013-10-19 00:22 - 2013-10-18 23:52 - 00035009 _____ C:\Users\Virginia\AppData\Local\keepvid.xpi
2013-10-19 00:10 - 2013-10-18 23:40 - 00000000 ____D C:\Program Files\Baixar Musicas Gratis
2013-10-18 23:52 - 2013-10-18 23:52 - 00000000 ____D C:\Users\Virginia\AppData\Local\aHaskZ3
2013-10-18 23:51 - 2013-01-15 17:06 - 00000000 ____D C:\Users\Virginia\Desktop\TCC UGF
2013-10-18 23:41 - 2009-07-14 00:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-10-18 23:34 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-18 23:33 - 2013-10-18 23:33 - 00000000 ____D C:\Users\Virginia\AppData\Roaming\UpdaterEX
2013-10-18 23:29 - 2013-03-30 01:03 - 00000000 ____D C:\Users\Virginia\Desktop\SciLor's Grooveshark.com Downloader
2013-10-18 23:14 - 2013-10-18 23:14 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf (1).zip
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf (1)
2013-10-18 00:29 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-17 21:55 - 2009-07-14 02:33 - 00344040 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-17 21:54 - 2010-08-23 21:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-17 01:01 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\pt-BR
2013-10-17 00:59 - 2011-09-06 19:55 - 00001912 _____ C:\Windows\epplauncher.mif
2013-10-17 00:59 - 2011-09-06 19:55 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-10-17 00:46 - 2013-08-19 23:02 - 00000000 ____D C:\Users\Virginia\Documents\john
2013-10-16 16:59 - 2011-05-12 23:34 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2013-10-16 16:59 - 2011-05-12 23:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-16 16:53 - 2013-08-05 20:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-16 16:48 - 2011-05-15 12:21 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-16 16:36 - 2011-05-17 15:11 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-10-16 16:35 - 2011-11-01 18:58 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-10-15 23:08 - 2012-04-04 14:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-15 23:08 - 2011-06-05 11:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-15 23:07 - 2013-10-15 23:07 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-10-08 08:16 - 2012-12-06 21:33 - 00000000 ____D C:\Users\Virginia\Desktop\SI II
2013-10-08 07:50 - 2013-10-20 16:06 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-08 07:46 - 2013-10-20 16:06 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-08 07:46 - 2013-10-20 16:06 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-08 07:46 - 2013-10-20 16:06 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 01:02 - 2013-01-19 20:25 - 00000000 ____D C:\Users\Virginia\Desktop\Mestrado - Qualificacao
2013-10-07 00:30 - 2011-12-08 22:28 - 00000000 ____D C:\Users\Virginia\Desktop\trabalho
2013-10-06 03:16 - 2013-10-06 03:16 - 00000000 ____D C:\Users\Virginia\Downloads\modelo_cd_ugf
2013-10-06 03:15 - 2013-10-06 03:15 - 00371648 _____ C:\Users\Virginia\Downloads\modelo_cd_ugf.zip
2013-10-05 20:11 - 2013-04-08 20:43 - 00000000 ____D C:\Users\Virginia\Desktop\Iphone
2013-09-29 23:14 - 2013-09-29 23:11 - 02770099 _____ C:\Users\Virginia\Downloads\Tom Jobim 2.pptx
2013-09-29 20:00 - 2013-09-29 20:00 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_edital
2013-09-29 19:59 - 2013-09-29 19:59 - 00650468 _____ C:\Users\Virginia\Downloads\ibge0213_edital.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00204075 _____ C:\Users\Virginia\Downloads\ibge0213_retificacao.zip
2013-09-29 19:58 - 2013-09-29 19:58 - 00000000 ____D C:\Users\Virginia\Downloads\ibge0213_retificacao
2013-09-26 02:07 - 2013-05-10 01:03 - 01096527 _____ C:\Users\Virginia\Desktop\073DE.ZIP
2013-09-26 00:00 - 2013-09-26 00:00 - 01096527 _____ C:\Users\Virginia\Downloads\073DE (1).ZIP
2013-09-25 20:47 - 2013-09-25 20:47 - 00000000 ____D C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa
2013-09-25 20:46 - 2013-09-25 20:45 - 09069330 _____ C:\Users\Virginia\Downloads\(2013) UFMG - Segunda Etapa.zip
2013-09-23 19:58 - 2013-09-23 19:54 - 00000000 ____D C:\Users\Virginia\Desktop\abril sac
2013-09-23 19:48 - 2013-09-23 19:48 - 01412108 _____ C:\Users\Virginia\Desktop\setembro-2012.tif
2013-09-23 19:46 - 2013-09-23 19:45 - 08263752 _____ C:\Users\Virginia\Downloads\digits.zip
2013-09-23 19:19 - 2013-09-23 19:18 - 00136718 _____ C:\Users\Virginia\Downloads\image.jpeg
2013-09-23 19:17 - 2013-09-23 19:12 - 00133935 _____ C:\Users\Virginia\Downloads\image (6).jpeg
2013-09-23 19:16 - 2013-09-23 19:12 - 00136329 _____ C:\Users\Virginia\Downloads\image (1).jpeg
2013-09-23 19:15 - 2013-09-23 19:12 - 00145183 _____ C:\Users\Virginia\Downloads\image (2).jpeg
2013-09-23 19:15 - 2013-09-23 19:12 - 00143341 _____ C:\Users\Virginia\Downloads\image (3).jpeg
2013-09-23 19:14 - 2013-09-23 19:12 - 00138082 _____ C:\Users\Virginia\Downloads\image (5).jpeg
2013-09-23 19:14 - 2013-09-23 19:12 - 00138067 _____ C:\Users\Virginia\Downloads\image (4).jpeg
2013-09-22 23:01 - 2013-09-22 23:00 - 01721856 _____ C:\Users\Virginia\Downloads\Luiz Gonzaga.ppt
2013-09-22 22:23 - 2013-09-22 22:20 - 06343674 _____ C:\Users\Virginia\Downloads\Tom Jobim2.pptx
2013-09-22 22:22 - 2013-09-22 22:21 - 01614896 _____ C:\Users\Virginia\Downloads\Tom Jobim.pptx
2013-09-22 22:21 - 2013-09-22 22:21 - 00304199 _____ C:\Users\Virginia\Downloads\Martinho da Vila.pptx
2013-09-22 21:28 - 2013-10-16 16:42 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 21:28 - 2013-10-16 16:42 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 21:28 - 2013-10-16 16:42 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-22 21:27 - 2013-10-16 16:42 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 21:27 - 2013-10-16 16:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-21 01:30 - 2013-10-16 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-21 00:39 - 2013-10-16 16:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
Some content of TEMP:
====================
C:\Users\Virginia\AppData\Local\Temp\MusicCodecPack__3465_il4.exe
C:\Users\Virginia\AppData\Local\Temp\swt-gdip-win32-3448.dll
C:\Users\Virginia\AppData\Local\Temp\swt-win32-3448.dll
C:\Users\Virginia\AppData\Local\Temp\uttF46F.tmp.exe
C:\Users\Virginia\AppData\Local\Temp\WindowsAPI.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-25 22:25
==================== End Of Log ============================
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 19:44
Baixe o arquivo fixlist.txt e salve-o no mesmo local onde encontra-se o FRST*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Clique [Fix] e cole o relatório Fixlog.txt criado no Desktop
Reinicie o PC Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Xplode) e salve-o no Desktop (Área de Trabalho)*Salve qualquer trabalho aberto e feche o seu navegador
*Execute-o, clique [Examinar] e aguarde o término
*Clique [Limpar] e aguarde o término
*Caso seja solicitada a reinicialização do PC, clique [OK] para reiniciar.
*Cole o relatório C:\AdwCleaner\AdwCleaner[S0].txt
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 20:14
Parabéns!!...
Aprendeu a anexar!!...
Reinicie o PC e faça o procedimento do AdwCleaner.
Aprendeu a anexar!!...
Reinicie o PC e faça o procedimento do AdwCleaner.
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
(Resolvido) Relatório
por Vivics5 Seg 21 Out 2013, 20:39
Kkkkk, brigada! :rindo_atoa:
Mas acho que fiz caca pq acabei não salvando o relatório e não aparece em nenhum lugar... Refaço o que disse?
Mas acho que fiz caca pq acabei não salvando o relatório e não aparece em nenhum lugar... Refaço o que disse?
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 20:41
Sim..preciso ter certeza de que foram removidos os adwares. Haviam muitos.Vivics5 escreveu:Kkkkk, brigada! :rindo_atoa:
Mas acho que fiz caca pq acabei não salvando o relatório e não aparece em nenhum lugar... Refaço o que disse?
Se vc fez o procedimento do AdwCleaner, o relatório estará em C:\AdwCleaner\AdwCleaner[S0].txt, pois o programa salva automaticamente.
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Re: Shetef Solutions and Consulting (1998)
por Vivics5 Seg 21 Out 2013, 20:42
Achei que ele salvava que nem o FRST, direto no Download.Vivics5 escreveu:Kkkkk, brigada! :rindo_atoa:
Mas acho que fiz caca pq acabei não salvando o relatório e não aparece em nenhum lugar... Refaço o que disse?
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 20:43
[quote="Vivics5"]
Leia o que escrevi acima.Vivics5 escreveu:Achei que ele salvava que nem o FRST, direto no Download.
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 20:50
Precisamos usar mais um programa para terminar....
Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Smeenk)
*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)
*Clique com o botão direito do mouse no Zoek e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Cole as linhas em marrom no espaço do Zoek
autoclean;
emptyalltemp;
*Feche o seu navegador e clique [Run Script]
*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!
*Anexe o relatório C:\zoek-results.txt
Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Smeenk)*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)
*Clique com o botão direito do mouse no Zoek e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Cole as linhas em marrom no espaço do Zoek
autoclean;
emptyalltemp;
*Feche o seu navegador e clique [Run Script]
*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!
*Caso a reinicialização do PC seja solicitada, clique [OK]
Zoek.exe is running now.
Do not start any browser windows, they will be closed automatically.
Please wait! This window will close when finished.
A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log
*Anexe o relatório C:\zoek-results.txt
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Re: Shetef Solutions and Consulting (1998)
por Vivics5 Seg 21 Out 2013, 21:25
Acho que deu algum erro porque não apareceu o lugar para digitar as linhas em marrom, e ainda veio um relatório.
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 21:29
OK...como está o PC?
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Re: Shetef Solutions and Consulting (1998)
por Vivics5 Seg 21 Out 2013, 21:31
Acho que está ok. Parou de aparecer o "shetef".
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Wings [In Memoriam] Seg 21 Out 2013, 21:32
Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Xplode) *Execute-o, deixe selecionadas as opções Remove disinfection tools e Purge system restore
[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]
*Clique [Run] e feche o relatório apresentado
O PC está limpo...
Um abraço...
Wings [In Memoriam]- Moderador
- Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ -
Vivics5- Iniciante
- Mensagens : 9
Reputação : 0
Data de inscrição : 20/10/2013
Re: Shetef Solutions and Consulting (1998)
por Admin Seg 21 Out 2013, 22:09
CASO RESOLVIDO
Caso o(a) autor(a) do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.
Caso o(a) autor(a) do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.
Admin- Administrador Fundador
- Mensagens : 515
Reputação : 49
Data de inscrição : 26/05/2008
Idade : 46
Localização : Brasil -
Tópicos semelhantes» Shetef Solutions & Consulting 1998 LTD
» Shetef Solutions and Consulting (1998)
» shetef solutions e consulting (1998)
» Shetef Solutions e Consulting (1998)
» Shetef Solutions & Consulting 1998 LTD
» Shetef Solutions and Consulting (1998)
» shetef solutions e consulting (1998)
» Shetef Solutions e Consulting (1998)
» Shetef Solutions & Consulting 1998 LTD
Página 1 de 1
Permissões neste sub-fórum
Não podes responder a tópicos|
|
|