cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:27-01-2016
Executado por Administração (administrador) em DANIEL (02-02-2016 19:03:06)
Executando a partir de C:\Users\Administração\Desktop
Perfis Carregados: Administração (Perfis Disponíveis: Administração)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\CisTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Comodo) C:\Program Files\Comodo\Chromodo\chromodo_updater.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
(COMODO) C:\Program Files\Comodo\COMODO Internet Security\cis.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1361088 2015-08-05] (COMODO)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2016-01-28] (Oracle Corporation)
HKU\S-1-5-21-3564467132-2825059751-1223246848-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-3564467132-2825059751-1223246848-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3924024 2016-01-31] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 10.1.1.1
Tcpip\..\Interfaces\{B7C37D83-4756-4CD5-AADD-2E4CAE574D0B}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{B7C37D83-4756-4CD5-AADD-2E4CAE574D0B}: [DhcpNameServer] 10.1.1.1

Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-28] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-28] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Administração\AppData\Roaming\Mozilla\Firefox\Profiles\xv0owg36.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-28] ()
FF Plugin: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-28] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: IDM integration - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2015-12-09]
FF Extension: Skype - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKU\S-1-5-21-3564467132-2825059751-1223246848-1000\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-3564467132-2825059751-1223246848-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Administração\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Administração\AppData\Roaming\IDM\idmmzcc5 [2016-02-02] [não assinado]
FF HKU\S-1-5-21-3564467132-2825059751-1223246848-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-12-29]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-28] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-28] (Microsoft Corporation)
R2 ChromodoUpdater; C:\Program Files\Comodo\Chromodo\chromodo_updater.exe [2055352 2016-01-28] (Comodo)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4353840 2015-09-03] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [1664704 2015-08-05] (COMODO)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2016-02-02] (Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [17064 2015-11-18] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [627312 2015-11-18] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [41736 2015-08-05] (COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [91176 2015-08-05] (COMODO)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2016-02-02] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2016-02-02] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2016-02-02] (Malwarebytes Corporation)
R3 senfilt; C:\Windows\System32\drivers\senfilt.sys [392704 2005-03-01] (Sensaura)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-02 15:11 - 2016-02-02 15:15 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-02-02 15:10 - 2016-02-02 15:10 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-02-02 15:10 - 2016-02-02 15:10 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-02-02 15:10 - 2016-02-02 15:10 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-02-02 15:10 - 2016-02-02 15:10 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-02 15:10 - 2016-02-02 15:10 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2016-02-02 15:10 - 2016-02-02 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-02-02 15:10 - 2016-02-02 15:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-02 15:10 - 2016-02-02 15:10 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-02-02 15:06 - 2016-02-02 15:07 - 22908888 _____ (Malwarebytes ) C:\Users\Administração\Desktop\mbam-setup-2.2.0.1024.exe
2016-02-02 00:15 - 2016-02-02 00:15 - 01706868 _____ C:\Users\Administração\Desktop\Os-10-Passos-Para-Realizar-a-Viagem-do-Seus-Sonhos.pdf
2016-02-01 21:23 - 2016-02-01 21:25 - 22107642 _____ C:\Users\Administração\Desktop\Versão 0 Tripwire from Viajantes Aprendizes on Vimeo.mp4
2016-02-01 19:08 - 2016-02-01 19:08 - 00002021 _____ C:\Users\Administração\Desktop\ZHPCleaner.txt
2016-02-01 18:45 - 2016-02-01 19:08 - 00000000 ____D C:\Users\Administração\AppData\Roaming\ZHP
2016-02-01 18:45 - 2016-02-01 18:45 - 00000836 _____ C:\Users\Administração\Desktop\ZHPCleaner.lnk
2016-02-01 18:25 - 2016-02-01 18:25 - 00001152 _____ C:\Users\Administração\Desktop\JRT.txt
2016-02-01 18:02 - 2016-02-01 18:02 - 00000919 _____ C:\Users\Administração\Desktop\AdwCleaner[C1].txt
2016-02-01 17:12 - 2016-02-01 17:55 - 00000000 ____D C:\AdwCleaner
2016-02-01 16:30 - 2016-02-01 16:30 - 02043392 _____ C:\Users\Administração\Desktop\ZHPCleaner.exe
2016-02-01 16:27 - 2016-02-01 16:27 - 01609032 _____ (Malwarebytes) C:\Users\Administração\Desktop\JRT.exe
2016-02-01 16:25 - 2016-02-01 16:25 - 01508352 _____ C:\Users\Administração\Desktop\AdwCleaner.exe
2016-02-01 15:46 - 2016-02-01 15:46 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-02-01 15:43 - 2016-02-01 15:43 - 00008606 _____ C:\Users\Administração\Desktop\relatorioConsumo01022016.pdf
2016-02-01 02:19 - 2016-02-01 02:19 - 00070018 _____ C:\Users\Administração\Desktop\boleto.pdf
2016-02-01 02:19 - 2016-02-01 02:19 - 00000000 ____D C:\Users\Administração\AppData\Local\CEF
2016-01-31 22:11 - 2016-01-31 22:24 - 181928537 _____ C:\Users\Administração\Desktop\Mais Você - programa de sexta-feira, dia 22_01_2016, na íntegra - Mais Você - Catálogo de Vídeos.mp4
2016-01-31 21:49 - 2016-01-31 21:49 - 00000000 ____D C:\Users\Administração\AppData\Local\Google
2016-01-31 21:48 - 2016-01-31 21:49 - 00000000 ____D C:\Program Files\GUM5E.tmp
2016-01-31 21:48 - 2016-01-31 21:49 - 00000000 ____D C:\Program Files\Google
2016-01-31 21:42 - 2016-01-31 21:42 - 01190608 _____ (Adobe Systems Incorporated) C:\Users\Administração\Desktop\flashplayer20ax_ma_install.exe
2016-01-31 16:18 - 2016-01-31 19:03 - 00017304 _____ C:\Users\Administração\Desktop\Addition.txt
2016-01-31 16:17 - 2016-02-02 19:03 - 00008760 _____ C:\Users\Administração\Desktop\FRST.txt
2016-01-31 16:17 - 2016-02-02 19:03 - 00000000 ____D C:\FRST
2016-01-31 16:02 - 2016-01-31 16:03 - 01721856 _____ (Farbar) C:\Users\Administração\Desktop\FRST.exe
2016-01-31 04:08 - 2016-01-31 04:31 - 316962975 _____ C:\Users\Administração\Desktop\SMI-D4 DrVendas from marcos on Vimeo.mp4
2016-01-31 03:44 - 2016-01-31 20:33 - 00000000 ____D C:\Users\Administração\AppData\Roaming\IDM
2016-01-31 03:44 - 2016-01-31 03:55 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-01-31 03:44 - 2016-01-31 03:44 - 00000983 _____ C:\Users\Administração\Desktop\Internet Download Manager.lnk
2016-01-31 03:44 - 2016-01-31 03:44 - 00000000 ____D C:\Users\Todos os Usuários\IDM
2016-01-31 03:44 - 2016-01-31 03:44 - 00000000 ____D C:\ProgramData\IDM
2016-01-31 03:43 - 2016-01-31 03:44 - 00000000 ____D C:\Users\Administração\Desktop\IDM 6.25 build 10 por Só Tutoriais
2016-01-31 03:43 - 2016-01-31 03:43 - 06757552 _____ (Tonec Inc.) C:\Users\Administração\Desktop\idman625build10.exe
2016-01-31 03:14 - 2016-01-31 03:14 - 08052657 _____ C:\Users\Administração\Desktop\IDM 6.25 build 10 por Só Tutoriais.rar
2016-01-31 02:39 - 2016-02-02 12:39 - 00000000 ____D C:\Users\Administração\AppData\Roaming\DMCache
2016-01-31 02:39 - 2016-02-01 21:26 - 00000000 ____D C:\Users\Administração\Downloads\Video
2016-01-31 02:39 - 2016-01-31 03:44 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-01-31 02:39 - 2016-01-31 02:39 - 00000000 ____D C:\Users\Administração\Downloads\Compressed
2016-01-31 02:39 - 2016-01-31 02:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-01-31 02:30 - 2016-01-31 02:30 - 01250844 _____ C:\Users\Administração\Desktop\processexplorer.zip
2016-01-30 21:11 - 2016-01-30 21:11 - 00008602 _____ C:\Users\Administração\Desktop\relatorioConsumo30012016(1).pdf
2016-01-30 20:03 - 2016-01-30 20:03 - 00008604 _____ C:\Users\Administração\Desktop\relatorioConsumo30012016.pdf
2016-01-30 20:03 - 2016-01-30 20:03 - 00000000 ____D C:\Users\Administração\AppData\LocalLow\Adobe
2016-01-30 19:59 - 2016-01-30 19:59 - 00000000 ____D C:\Users\Todos os Usuários\McAfee
2016-01-30 19:59 - 2016-01-30 19:59 - 00000000 ____D C:\ProgramData\McAfee
2016-01-30 19:58 - 2016-01-30 23:34 - 00000000 ____D C:\Program Files\Adobe
2016-01-30 19:58 - 2016-01-30 21:38 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-30 19:58 - 2016-01-30 19:58 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-01-30 19:58 - 2016-01-30 19:58 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-01-30 19:57 - 2016-01-30 20:04 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-01-30 19:57 - 2016-01-30 20:04 - 00000000 ____D C:\ProgramData\Adobe
2016-01-30 02:04 - 2016-01-30 02:04 - 00000000 ____D C:\Users\Administração\AppData\Roaming\WinRAR
2016-01-30 01:15 - 2016-01-30 01:15 - 00000985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2016-01-30 01:15 - 2016-01-30 01:15 - 00000979 _____ C:\Users\Public\Desktop\WinRAR.lnk
2016-01-30 01:15 - 2016-01-30 01:15 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-30 01:15 - 2016-01-30 01:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-30 01:14 - 2016-01-30 01:16 - 00000000 ____D C:\Program Files\WinRAR
2016-01-28 22:40 - 2016-01-28 22:40 - 00000000 ____D C:\Users\Administração\Tracing
2016-01-28 22:38 - 2016-02-02 14:34 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Skype
2016-01-28 22:37 - 2016-01-30 02:03 - 00000000 ___RD C:\Program Files\Skype
2016-01-28 22:37 - 2016-01-28 22:38 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-01-28 22:37 - 2016-01-28 22:38 - 00000000 ____D C:\ProgramData\Skype
2016-01-28 22:37 - 2016-01-28 22:37 - 00002687 _____ C:\Users\Public\Desktop\Skype.lnk
2016-01-28 22:37 - 2016-01-28 22:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-28 22:37 - 2016-01-28 22:37 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-01-28 01:14 - 2016-01-30 21:30 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Adobe
2016-01-28 01:14 - 2016-01-28 01:14 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Macromedia
2016-01-28 01:14 - 2016-01-28 01:14 - 00000000 ____D C:\Users\Administração\AppData\Local\Macromedia
2016-01-28 01:09 - 2016-02-02 18:34 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-28 01:09 - 2016-01-31 21:47 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-01-28 01:09 - 2016-01-31 21:47 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-01-28 01:09 - 2016-01-28 01:09 - 00000000 ____D C:\Windows\system32\Macromed
2016-01-28 01:07 - 2016-01-31 21:42 - 00000000 ____D C:\Users\Administração\AppData\Local\Adobe
2016-01-28 00:49 - 2016-01-28 00:49 - 00000000 ____D C:\Program Files\Common Files\Java
2016-01-27 21:31 - 2016-01-27 21:31 - 00077824 _____ (Fox Magic Software) C:\Windows\system32\fmcodec.DLL
2016-01-27 21:31 - 2016-01-27 21:31 - 00001148 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2016-01-27 21:31 - 2016-01-27 21:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2016-01-27 21:31 - 2016-01-27 21:31 - 00000000 ____D C:\Program Files\DsNET Corp
2016-01-27 20:30 - 2016-01-27 20:30 - 00108824 _____ C:\Users\Administração\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-27 20:30 - 2016-01-27 20:30 - 00001870 _____ C:\Users\Public\Desktop\COMODO Firewall.lnk
2016-01-27 20:29 - 2016-01-27 20:29 - 00000000 ____D C:\Users\Todos os Usuários\Shared Space
2016-01-27 20:29 - 2016-01-27 20:29 - 00000000 ____D C:\ProgramData\Shared Space
2016-01-27 20:27 - 2016-01-31 20:00 - 00001149 _____ C:\Users\Administração\Desktop\Internet (Chromodo).lnk
2016-01-27 20:27 - 2016-01-27 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2016-01-27 20:27 - 2016-01-27 20:27 - 00000000 ____D C:\Users\Administração\AppData\Local\Comodo
2016-01-27 20:26 - 2016-01-27 20:35 - 00000000 ____D C:\Program Files\Comodo
2016-01-27 20:21 - 2016-01-27 20:30 - 00000000 ____D C:\Users\Todos os Usuários\Comodo
2016-01-27 20:21 - 2016-01-27 20:30 - 00000000 ____D C:\ProgramData\Comodo
2016-01-27 20:17 - 2012-06-02 20:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-01-27 20:17 - 2012-06-02 20:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-01-27 20:17 - 2012-06-02 20:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-27 20:17 - 2012-06-02 20:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-27 20:17 - 2012-06-02 20:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-01-27 20:17 - 2012-06-02 20:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-01-27 20:17 - 2012-06-02 20:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-01-27 20:16 - 2016-01-28 00:51 - 00000000 ____D C:\Program Files\Java
2016-01-27 20:16 - 2016-01-28 00:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-27 20:16 - 2016-01-28 00:49 - 00095840 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-01-27 20:16 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-01-27 20:16 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-01-27 20:07 - 2016-01-28 00:52 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-01-27 20:07 - 2016-01-28 00:52 - 00000000 ____D C:\ProgramData\Oracle
2016-01-27 20:07 - 2016-01-28 00:49 - 00000000 ____D C:\Users\Administração\.oracle_jre_usage
2016-01-27 20:07 - 2016-01-27 20:07 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Sun
2016-01-27 20:07 - 2016-01-27 20:07 - 00000000 ____D C:\Users\Administração\AppData\LocalLow\Sun
2016-01-27 20:02 - 2016-01-27 20:02 - 00000000 ____D C:\Users\Administração\AppData\LocalLow\Oracle
2016-01-27 20:00 - 2016-01-27 20:06 - 00000000 ____D C:\Users\Administração\AppData\Local\Mozilla
2016-01-27 20:00 - 2016-01-27 20:04 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-01-27 20:00 - 2016-01-27 20:00 - 00001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-27 20:00 - 2016-01-27 20:00 - 00001109 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-01-27 20:00 - 2016-01-27 20:00 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Mozilla
2016-01-27 20:00 - 2016-01-27 20:00 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-01-27 17:35 - 2016-01-27 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-27 17:34 - 2006-10-26 19:56 - 00032592 _____ (Microsoft Corporation) C:\Windows\system32\msonpmon.dll
2016-01-27 17:32 - 2016-01-27 17:32 - 00000000 ____D C:\Program Files\Microsoft Works
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Windows\PCHEALTH
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2016-01-27 17:31 - 2016-01-27 17:31 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-01-27 17:28 - 2016-01-27 17:28 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8
2016-01-27 17:27 - 2016-01-27 17:35 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-01-27 17:27 - 2016-01-27 17:31 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-27 17:27 - 2016-01-27 17:27 - 00000000 __RHD C:\MSOCache
2016-01-27 17:27 - 2016-01-27 17:27 - 00000000 ____D C:\Users\Administração\AppData\Local\Microsoft Help
2016-01-27 16:11 - 2015-12-02 13:25 - 00247976 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-01-27 01:37 - 2005-03-27 23:19 - 00220992 _____ (Analog Devices, Inc.) C:\Windows\system32\Drivers\smwdm.sys
2016-01-27 01:37 - 2005-03-04 09:53 - 00127872 _____ (Andrea Electronics Corporation) C:\Windows\system32\Drivers\aeaudio.sys
2016-01-27 01:37 - 2005-03-01 02:01 - 00392704 _____ (Sensaura) C:\Windows\system32\Drivers\senfilt.sys
2016-01-27 01:28 - 2016-02-01 21:26 - 00000000 ____D C:\Users\Administração\AppData\Roaming\vlc
2016-01-27 01:27 - 2016-01-27 01:34 - 00000000 ____D C:\Program Files\VideoLAN
2016-01-27 01:27 - 2016-01-27 01:27 - 00001028 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-01-27 01:27 - 2016-01-27 01:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-01-27 00:27 - 2016-01-26 23:46 - 00000000 ____D C:\Windows\Panther
2016-01-26 23:51 - 2016-02-02 14:38 - 01492114 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-26 23:47 - 2016-01-26 23:47 - 00001393 _____ C:\Users\Administração\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-26 23:46 - 2016-01-31 02:24 - 00000000 ____D C:\Users\Administração
2016-01-26 23:46 - 2016-01-30 23:36 - 00000000 ____D C:\Users\Administração\AppData\Local\VirtualStore
2016-01-26 23:46 - 2016-01-26 23:46 - 00000020 ___SH C:\Users\Administração\ntuser.ini
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Modelos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Modelos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Meus documentos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Menu Iniciar
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Documents\Minhas músicas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Documents\Minhas imagens
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Documents\Meus vídeos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Configurações locais
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\AppData\Local\Histórico
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\AppData\Local\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Ambiente de rede
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Users\Administração\Ambiente de impressão
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\ProgramData\Modelos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\ProgramData\Documentos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-01-26 23:46 - 2016-01-26 23:46 - 00000000 _SHDL C:\Arquivos de Programas
2016-01-26 23:46 - 2009-07-14 06:52 - 00000000 ____D C:\Users\Administração\AppData\Roaming\Media Center Programs
2016-01-26 23:32 - 2016-01-26 23:32 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-01-26 23:32 - 2016-01-26 23:32 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-12-29 10:23 - 2015-12-29 10:18 - 00124992 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2015-12-11 00:57 - 2015-12-11 00:57 - 00178597 _____ (Igor Pavlov) C:\Users\Administração\Desktop\622-bankerfix.exe

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-02 15:16 - 2009-07-14 02:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-02 15:16 - 2009-07-14 02:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-02 14:38 - 2009-07-14 06:31 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2016-02-02 14:38 - 2009-07-14 06:31 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2016-02-02 14:38 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2016-02-02 14:33 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-31 02:23 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\registration
2016-01-31 01:08 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\rescache
2016-01-30 01:33 - 2014-02-27 16:30 - 00000132 _____ C:\Users\Administração\Desktop\Forum Pc Brasil.txt
2016-01-28 22:44 - 2009-07-13 21:51 - 00146176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2016-01-28 22:43 - 2009-07-13 22:07 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-28 22:43 - 2009-07-13 22:07 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-28 22:43 - 2009-07-13 21:51 - 00080640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2016-01-27 18:39 - 2009-07-14 02:33 - 00413368 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-27 17:32 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-27 17:31 - 2009-07-14 06:53 - 00000000 ____D C:\Windows\ShellNew
2016-01-27 17:31 - 2009-07-14 02:52 - 00000000 ____D C:\Program Files\MSBuild
2016-01-27 17:28 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-27 17:28 - 2009-07-14 00:04 - 00000478 _____ C:\Windows\win.ini
2016-01-27 01:05 - 2009-07-14 00:37 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-27 00:26 - 2009-07-14 02:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-01-26 23:46 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Windows NT
2016-01-26 23:32 - 2009-07-14 02:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-26 23:31 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\sysprep
2016-01-26 23:29 - 2009-07-14 06:53 - 00000000 ____D C:\Windows\CSC

Alguns arquivos em TEMP:
====================
C:\Users\Administração\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Administração\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-01-31 00:07

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité