cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-11-2015
Ran by Daniela Sene (administrator) on DANIELASENE-PC (06-11-2015 19:59:35)
Running from C:\Users\Daniela Sene\Downloads
Loaded Profiles: Daniela Sene (Available Profiles: Daniela Sene)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) Language: Português (Brasil)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SFB\SmartRestarter.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_FATIIFA.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_FATIIFA.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_FATIIFA.EXE
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10119784 2011-06-25] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [1812264 2010-11-12] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782520 2015-10-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1719184 2015-10-26] (APN)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-10-14] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-814804594-2668639654-1688492262-1000\...\Run: [EPLTarget\P0000000000000001] => C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIIFA.EXE [246368 2011-11-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-814804594-2668639654-1688492262-1000\...\Run: [EPLTarget\P0000000000000000] => C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIIFA.EXE [246368 2011-11-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-814804594-2668639654-1688492262-1000\...\Run: [EPLTarget\P0000000000000002] => C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIIFA.EXE [246368 2011-11-01] (SEIKO EPSON CORPORATION)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2012-02-02]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Daniela Sene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de tela e Iniciador do OneNote 2007.lnk [2012-08-01]
ShortcutTarget: Recorte de tela e Iniciador do OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 201.6.2.123 201.6.2.223
Tcpip\..\Interfaces\{7F303135-163A-4334-A833-6EE11D3EE1F2}: [DhcpNameServer] 201.6.2.123 201.6.2.223

Internet Explorer:
==================
HKU\S-1-5-21-814804594-2668639654-1688492262-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.canilsenasene.com.br/
HKU\S-1-5-21-814804594-2668639654-1688492262-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-814804594-2668639654-1688492262-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={405C4774-AE17-4EBF-BD4C-585D3CFC91EA}&mid=98a27ea583b647d0b2f941ed984038aa-b608f1090011948a970cda7a129ad0bf6ea15a71&lang=pt-br&ds=AVG&pr=pr&d=2012-04-23 22:19:31&v=11.0.0.9&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-814804594-2668639654-1688492262-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={405C4774-AE17-4EBF-BD4C-585D3CFC91EA}&mid=98a27ea583b647d0b2f941ed984038aa-b608f1090011948a970cda7a129ad0bf6ea15a71&lang=pt-br&ds=AVG&pr=pr&d=2012-04-23 22:19:31&v=11.0.0.9&sap=dsp&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO: Avira SearchFree Toolbar -> {41564952-412D-5637-4300-7A786E7484D7} -> C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll [2015-09-14] (APN LLC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll [2015-09-14] (APN LLC.)
Toolbar: HKU\S-1-5-21-814804594-2668639654-1688492262-1000 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-03-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-09] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-20] (Google Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.dogfamily.com.br/"
CHR Profile: C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-06]
CHR Extension: (Google Drive) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (YouTube) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-29]
CHR Extension: (Google Search) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm [2015-03-06]
CHR Extension: (Gmail) - C:\Users\Daniela Sene\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pcoohmdcpejoeggdnihdfhohjgdbllgm] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7C\CRX\ToolbarCR.crx [2015-10-27]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-10-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672 2015-10-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672 2015-10-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1147720 2015-10-29] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [206224 2015-09-14] (APN LLC.)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [243968 2015-10-14] (Avira Operations GmbH & Co. KG)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [108448 2015-10-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [136728 2015-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37896 2015-05-26] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\windows\System32\DRIVERS\avnetflt.sys [55912 2015-10-29] (Avira Operations GmbH & Co. KG)
R3 btwampfl; C:\windows\System32\drivers\btwampfl.sys [297000 2010-07-13] (Broadcom Corporation.)
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [116008 2010-11-12] (ELAN Microelectronics Corp.)
S3 rtport; C:\windows\system32\drivers\rtport.sys [15656 2012-01-24] (Windows (R) 2003 DDK 3790 provider)
R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [31848 2015-06-22] (Avira Operations GmbH & Co. KG)
U2 wuaserv; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-06 19:59 - 2015-11-06 20:01 - 00013703 _____ C:\Users\Daniela Sene\Downloads\FRST.txt
2015-11-06 19:58 - 2015-11-06 19:59 - 00000000 ____D C:\FRST
2015-11-06 19:57 - 2015-11-06 19:58 - 01702400 _____ (Farbar) C:\Users\Daniela Sene\Downloads\FRST (1).exe
2015-11-06 19:52 - 2015-11-06 19:57 - 01702400 _____ (Farbar) C:\Users\Daniela Sene\Downloads\FRST.exe
2015-11-05 19:12 - 2015-11-05 19:13 - 00195927 ____H C:\Users\Daniela Sene\Downloads\~WRL3832.tmp
2015-11-05 07:44 - 2015-11-05 07:44 - 00040652 _____ C:\Users\Daniela Sene\Desktop\UsbFix_Report.txt
2015-11-05 07:26 - 2015-11-05 07:26 - 00001448 _____ C:\Users\Daniela Sene\Desktop\UsbFix.lnk
2015-11-05 07:25 - 2015-11-05 07:26 - 00000000 ____D C:\UsbFix
2015-11-05 07:24 - 2015-11-05 07:25 - 03061232 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Daniela Sene\Downloads\UsbFix_2016_8.143 (1).exe
2015-11-05 07:16 - 2015-11-05 07:18 - 03061232 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Daniela Sene\Downloads\UsbFix_2016_8.143.exe
2015-11-04 22:15 - 2015-11-04 22:20 - 00000000 ____D C:\Users\Daniela Sene\Desktop\iN lOCO
2015-10-30 20:34 - 2015-10-30 20:35 - 25345536 _____ C:\Users\Daniela Sene\Downloads\Documentação Pedagógica 2.ppt
2015-10-29 23:33 - 2015-11-06 18:39 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy
2015-10-29 23:33 - 2015-11-06 18:34 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-10-29 23:30 - 2015-10-29 23:30 - 00000000 ____D C:\Users\Daniela Sene\Desktop\Antivirus
2015-10-29 20:28 - 2015-10-29 20:28 - 02196480 _____ C:\Users\Daniela Sene\Downloads\Palestra Avaliação Fábrica 2.ppt
2015-10-27 19:59 - 2015-11-06 17:50 - 00001096 _____ C:\Users\Public\Desktop\Avira Launcher.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-06 19:49 - 2013-12-23 14:27 - 00001058 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-06 19:47 - 2011-07-26 23:02 - 01467235 _____ C:\windows\WindowsUpdate.log
2015-11-06 18:48 - 2014-09-09 08:35 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-06 18:48 - 2013-12-23 14:27 - 00001054 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-06 18:48 - 2009-07-14 02:34 - 00016160 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-06 18:48 - 2009-07-14 02:34 - 00016160 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-06 18:44 - 2011-07-26 21:40 - 00705268 _____ C:\windows\system32\prfh0416.dat
2015-11-06 18:44 - 2011-07-26 21:40 - 00147108 _____ C:\windows\system32\prfc0416.dat
2015-11-06 18:44 - 2010-11-20 19:01 - 01633534 _____ C:\windows\system32\PerfStringBackup.INI
2015-11-06 18:39 - 2010-11-20 19:48 - 00555274 _____ C:\windows\PFRO.log
2015-11-06 18:39 - 2009-07-14 02:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-11-06 18:39 - 2009-07-14 02:39 - 00058269 _____ C:\windows\setupact.log
2015-11-06 18:36 - 2010-11-20 22:38 - 00000000 ____D C:\windows\system32\winrm
2015-11-06 18:36 - 2010-11-20 22:38 - 00000000 ____D C:\windows\system32\WCN
2015-11-06 18:36 - 2010-11-20 22:38 - 00000000 ____D C:\windows\system32\slmgr
2015-11-06 18:36 - 2010-11-20 22:38 - 00000000 ____D C:\windows\system32\Printing_Admin_Scripts
2015-11-06 18:36 - 2009-07-14 02:52 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-06 18:36 - 2009-07-14 00:37 - 00000000 ____D C:\windows\Speech
2015-11-06 17:49 - 2013-12-23 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-11-05 20:52 - 2015-03-12 23:07 - 00000000 ____D C:\Users\Daniela Sene\Desktop\EMEI
2015-11-05 19:58 - 2009-07-14 02:52 - 00000000 ____D C:\windows\system32\FxsTmp
2015-11-05 07:23 - 2014-11-09 12:36 - 00000000 ____D C:\Users\Daniela Sene\Desktop\UAB
2015-10-30 01:57 - 2009-07-14 00:37 - 00000000 ____D C:\windows\rescache
2015-10-30 01:31 - 2011-07-26 21:40 - 00000000 ____D C:\windows\system32\XPSViewer
2015-10-30 01:31 - 2010-11-20 22:38 - 00000000 ____D C:\windows\DigitalLocker
2015-10-30 01:31 - 2009-07-14 02:52 - 00000000 ____D C:\Program Files\Windows Sidebar
2015-10-30 01:31 - 2009-07-14 02:52 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-30 01:31 - 2009-07-14 02:52 - 00000000 ____D C:\Program Files\DVD Maker
2015-10-30 01:31 - 2009-07-14 00:37 - 00000000 ____D C:\windows\system32\MUI
2015-10-30 01:31 - 2009-07-14 00:37 - 00000000 ____D C:\windows\IME
2015-10-30 01:31 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-30 01:30 - 2009-07-14 00:37 - 00000000 ____D C:\windows\system32\com
2015-10-29 20:36 - 2013-12-23 14:59 - 00108448 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avgntflt.sys
2015-10-29 20:36 - 2013-12-23 14:59 - 00055912 _____ (Avira Operations GmbH & Co. KG) C:\windows\system32\Drivers\avnetflt.sys
2015-10-27 20:12 - 2013-12-23 14:30 - 00002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-27 20:10 - 2013-12-23 14:27 - 00000000 ____D C:\Users\Daniela Sene\AppData\Local\Google
2015-10-27 19:57 - 2015-05-28 20:54 - 00000000 ____D C:\Users\Daniela Sene\Desktop\ITQ

==================== Files in the root of some directories =======

2012-02-02 19:06 - 2010-01-16 07:18 - 0131368 _____ () C:\ProgramData\FullRemove.exe

Some files in TEMP:
====================
C:\Users\Daniela Sene\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-30 01:06

==================== End of FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité