cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:05-03-2016 01
Executado por iskvaz (administrador) em ISKVAZ-PC (09-03-2016 10:50:35)
Executando a partir de C:\Users\iskvaz\Desktop
Perfis Carregados: iskvaz (Perfis Disponíveis: iskvaz)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(ALWIL Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(ALWIL Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(DivX, LLC) C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\baidu\qq.exe
() C:\Program Files (x86)\baidu\Bind.exe
() C:\Users\iskvaz\AppData\Local\Temp\uuc.exe
() C:\ProgramData\WindowsMsg\osmsg.exe
() C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600\knskD3CC.tmpfs
() C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600\jnsq1AA2.tmp
() C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600\hnsf68B3.tmp
() C:\Users\iskvaz\AppData\Local\64CE37F0-1457519885-11E2-98F6-CB788A361600\snsnB27F.tmp
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM-x32\...\Run: [avast5] => C:\Program Files\Alwil Software\Avast5\avastUI.exe [2756488 2010-02-11] (ALWIL Software)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1057920 2012-07-31] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [433160 2015-09-04] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-26] (DivX, LLC)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4092249487-3633295780-2845858798-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILDE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4092249487-3633295780-2845858798-1000\...\Run: [apphide] => C:\Program Files (x86)\baidu\qq.exe [217088 2016-03-09] ()
HKU\S-1-5-21-4092249487-3633295780-2845858798-1000\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\osmsg.exe [2036224 2016-02-09] ()
HKU\S-1-5-21-4092249487-3633295780-2845858798-1000\...\MountPoints2: {6a3d9ec3-dfa1-11e5-aa2f-80ee733fc326} - E:\RunMe.exe

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CD810FC4-F8A6-4F31-B872-FE8D377535E8}: [DhcpNameServer] 192.168.1.1
ManualProxies:

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-04] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-04] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-11-04] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-11-04] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-11-04] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-11-04] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-10-28] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-22] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-22] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.com.br/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8"
CHR Profile: C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-30]
CHR Extension: (Google Docs) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-30]
CHR Extension: (Google Drive) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-30]
CHR Extension: (Video AdBlock for Chrome) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd [2015-12-14]
CHR Extension: (YouTube) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-30]
CHR Extension: (Google Search) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-30]
CHR Extension: (Planilhas do Google) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-30]
CHR Extension: (Documentos Google off-line) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-30]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-30]
CHR Extension: (Gmail) - C:\Users\iskvaz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-30]
CHR HKU\S-1-5-21-4092249487-3633295780-2845858798-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-02-11] (ALWIL Software)
S3 avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-02-11] (ALWIL Software)
S3 avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-02-11] (ALWIL Software)
R2 dojygici; C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600\jnsq1AA2.tmp [284160 2016-03-09] () [Arquivo não assinado]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation)
R2 NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [5352960 2011-04-07] (Native Instruments GmbH) [Arquivo não assinado]
R2 rowugoqo; C:\Users\iskvaz\AppData\Local\64CE37F0-1457519885-11E2-98F6-CB788A361600\snsnB27F.tmp [225792 2016-03-09] () [Arquivo não assinado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 wucotusy; C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600\hnsf68B3.tmp [416256 2016-03-09] () [Arquivo não assinado]
R2 nyqiwefizbt; C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600\knskD3CC.tmpfs [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [22096 2010-02-11] (ALWIL Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [63568 2010-02-11] (ALWIL Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [28752 2010-02-11] (ALWIL Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [120912 2010-02-11] (ALWIL Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [51280 2010-02-11] (ALWIL Software)
S3 BEHRINGER_2902; C:\Windows\System32\Drivers\BUSB2902.sys [460864 2009-10-30] (BEHRINGER)
S3 BEHRINGER_2902; C:\Windows\SysWOW64\Drivers\BUSB2902.sys [340480 2007-11-06] (BEHRINGER) [Arquivo não assinado]
S3 BUSB_AUDIO_WDM; C:\Windows\System32\drivers\busbwdm.sys [49728 2009-10-30] (BEHRINGER)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [60928 2015-11-30] (GenesysLogic)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-11-30] (REALiX(tm))
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [3709656 2015-11-30] (Realtek Semiconductor Corporation )
S3 JME; system32\DRIVERS\JME.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-03-09 10:51 - 2016-03-09 10:51 - 19156276 _____ C:\Users\iskvaz\Downloads\Não confirmado 780100.crdownload
2016-03-09 10:48 - 2016-03-09 10:50 - 00022172 _____ C:\Users\iskvaz\Desktop\Addition.txt
2016-03-09 10:46 - 2016-03-09 10:50 - 00013086 _____ C:\Users\iskvaz\Desktop\FRST.txt
2016-03-09 10:46 - 2016-03-09 10:50 - 00000000 ____D C:\FRST
2016-03-09 10:45 - 2016-03-09 10:45 - 02374144 _____ (Farbar) C:\Users\iskvaz\Desktop\FRST64.exe
2016-03-09 10:38 - 2016-03-09 10:49 - 00000000 ____D C:\Users\iskvaz\AppData\Local\64CE37F0-1457519885-11E2-98F6-CB788A361600
2016-03-09 10:32 - 2016-03-09 10:26 - 00001015 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-03-09 10:31 - 2016-03-09 10:32 - 00000000 ____D C:\Program Files (x86)\64CE37F0-1457530276-11E2-98F6-CB788A361600
2016-03-09 10:31 - 2016-03-09 10:31 - 00001206 _____ C:\Users\iskvaz\Desktop\VSDC Free Video Editor.lnk
2016-03-09 10:31 - 2016-03-09 10:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
2016-03-09 10:31 - 2014-10-13 14:04 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax
2016-03-09 10:31 - 2005-08-01 19:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax
2016-03-09 10:31 - 2004-12-10 10:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2016-03-09 10:31 - 2004-09-06 16:06 - 00053248 _____ C:\Windows\SysWOW64\xvid.ax
2016-03-09 10:31 - 2003-05-22 12:26 - 00638976 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divx.dll
2016-03-09 10:31 - 2003-05-22 12:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax
2016-03-09 10:31 - 2003-05-21 23:50 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-03-09 10:31 - 2003-05-21 23:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll
2016-03-09 10:31 - 2003-05-21 23:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2016-03-09 10:31 - 2003-03-25 05:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX
2016-03-09 10:31 - 2002-08-20 00:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll
2016-03-09 10:31 - 2000-03-14 20:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm
2016-03-09 10:30 - 2016-03-09 10:31 - 00000000 ____D C:\Program Files (x86)\FlashIntegro
2016-03-09 10:30 - 2003-05-21 23:50 - 00156910 _____ C:\Windows\WMSysPr8.prx
2016-03-09 10:30 - 2003-05-21 23:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm
2016-03-09 10:30 - 2003-05-21 23:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm
2016-03-09 10:25 - 2016-03-09 10:25 - 00003022 _____ C:\Windows\System32\Tasks\ttwifi
2016-03-09 10:25 - 2016-03-09 10:25 - 00002918 _____ C:\Windows\System32\Tasks\osTip
2016-03-09 10:24 - 2016-03-09 10:25 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-03-09 10:24 - 2016-03-09 10:25 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-03-09 10:24 - 2016-03-09 10:24 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-09 10:24 - 2016-03-09 10:24 - 00000000 ____D C:\Program Files (x86)\baidu
2016-03-09 10:23 - 2014-10-16 01:47 - 30014856 _____ (Flash-Integro LLC ) C:\Users\iskvaz\Downloads\Setup.exe
2016-03-09 10:23 - 2014-10-16 00:56 - 30316215 _____ C:\Users\iskvaz\Downloads\VSDC Free Video Editor 2.2.2.323.exe
2016-03-09 10:23 - 2014-07-10 20:34 - 00187188 _____ C:\Users\iskvaz\Downloads\VSDC Free Video Editor.exe
2016-03-09 10:14 - 2016-03-09 10:17 - 30228685 _____ C:\Users\iskvaz\Downloads\VSDC Free Video Editor 2.2.2.323 (Released Oct 15 2014).zip
2016-03-08 16:40 - 2016-02-11 13:43 - 00000000 ____D C:\Users\iskvaz\Desktop\Cânticos Orquestrados, Cantemos a Jeová
2016-03-08 16:14 - 2016-03-08 16:14 - 00650354 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Telecom - Agenda 01.pdf
2016-03-08 16:09 - 2016-03-08 16:10 - 00603575 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Telecom - Agenda 03.pdf
2016-03-08 11:25 - 2016-03-08 11:25 - 00583107 _____ C:\Users\iskvaz\Downloads\Agenda_4_Tipos_de_planejamento_Empreendendorismo_Modulo II.pdf
2016-03-08 11:25 - 2016-03-08 11:25 - 00563589 _____ C:\Users\iskvaz\Downloads\Agenda_3_A_importancia_do_planejamento_Modulo II.pdf
2016-03-08 11:25 - 2016-03-08 11:25 - 00554568 _____ C:\Users\iskvaz\Downloads\Agenda_2_A_administracao_muda_com_o_mundo_Modulo II.pdf
2016-03-08 09:17 - 2016-03-08 09:17 - 00592237 _____ C:\Users\iskvaz\Downloads\Agenda_1_A_administracao_contemporanea_Modulo II.pdf
2016-03-08 09:15 - 2016-03-08 09:15 - 00838930 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Agenda 04.pdf
2016-03-08 09:14 - 2016-03-08 09:14 - 00693832 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Agenda 03.pdf
2016-03-08 09:14 - 2016-03-08 09:14 - 00651551 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Agenda 02.pdf
2016-03-08 09:00 - 2016-03-08 09:00 - 00850487 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Agenda 01.pdf
2016-03-08 08:58 - 2016-03-08 08:58 - 00609209 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Telecom - Agenda 04.pdf
2016-03-08 08:57 - 2016-03-08 08:57 - 00648956 _____ C:\Users\iskvaz\Downloads\Roteiro Eletrônica III - Telecom - Agenda 02.pdf
2016-03-08 08:26 - 2016-03-08 08:26 - 00000000 ____D C:\Users\iskvaz\AppData\Local\CEF
2016-03-08 08:06 - 2016-03-08 08:08 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-08 08:06 - 2016-03-08 08:06 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-03-03 11:50 - 2016-03-05 09:57 - 00000000 ____D C:\Users\iskvaz\Documents\Eletronica
2016-03-02 07:40 - 2016-03-02 07:40 - 00003584 _____ C:\Users\iskvaz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-02 07:37 - 2016-03-02 07:38 - 00000000 ____D C:\Users\iskvaz\Documents\Arabe
2016-02-26 09:24 - 2016-02-26 09:25 - 00000000 ____D C:\Users\iskvaz\AppData\Roaming\OxelonMC
2016-02-26 09:21 - 2016-02-26 12:17 - 00000000 ____D C:\Users\iskvaz\AppData\Roaming\Free Audio Editor
2016-02-26 09:21 - 2016-02-26 09:21 - 00001921 _____ C:\Users\iskvaz\AppData\Roaming\Microsoft\Windows\Start Menu\Free Audio Editor.lnk
2016-02-26 09:21 - 2016-02-26 09:21 - 00000000 ____D C:\Users\iskvaz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Audio Editor
2016-02-26 09:21 - 2016-02-26 09:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oxelon Media Converter
2016-02-26 09:21 - 2016-02-26 09:21 - 00000000 ____D C:\Program Files (x86)\OxelonMedia
2016-02-26 09:21 - 2016-02-26 09:21 - 00000000 ____D C:\Program Files (x86)\Free Audio Editor
2016-02-26 09:21 - 2006-03-23 12:56 - 00113486 _____ C:\Windows\SysWOW64\NCTWMAProfiles.prx
2016-02-26 09:21 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2016-02-26 09:21 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2016-02-26 09:21 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2016-02-26 09:21 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2016-02-26 09:21 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2016-02-26 09:21 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2016-02-26 09:21 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2016-02-26 09:21 - 2005-03-28 15:52 - 00417792 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTTextToAudio2.dll
2016-02-26 09:21 - 2005-02-24 11:51 - 00348160 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTWMAFile2.dll
2016-02-26 09:21 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2016-02-26 09:21 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2016-02-25 15:58 - 2016-03-02 07:35 - 00000000 ____D C:\Users\iskvaz\Desktop\Festa Van
2016-02-25 15:34 - 2016-03-02 07:35 - 00000000 ____D C:\Users\iskvaz\Desktop\fotos do celular

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-03-09 10:49 - 2015-12-02 21:49 - 00000913 _____ C:\Windows\Tasks\EPSON XP-211 214 216 Series Update {C07EF162-9499-4CD3-8335-2509F0B179A2}.job
2016-03-09 10:49 - 2015-12-02 21:49 - 00000727 _____ C:\Windows\Tasks\EPSON XP-211 214 216 Series Invitation {C07EF162-9499-4CD3-8335-2509F0B179A2}.job
2016-03-09 10:49 - 2009-07-14 02:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-03-09 10:35 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-03-09 10:13 - 2009-07-14 01:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-09 10:13 - 2009-07-14 01:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-09 10:04 - 2015-11-30 12:52 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-09 10:04 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-08 16:43 - 2015-12-13 20:43 - 00000296 _____ C:\Windows\Tasks\Digital Sites.job
2016-03-08 16:01 - 2015-11-30 12:52 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-08 15:19 - 2011-01-27 20:11 - 00654470 _____ C:\Windows\system32\prfh0416.dat
2016-03-08 15:19 - 2011-01-27 20:11 - 00124922 _____ C:\Windows\system32\prfc0416.dat
2016-03-08 15:19 - 2009-07-14 02:13 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-08 08:26 - 2015-12-03 21:34 - 00000000 ____D C:\Users\iskvaz\AppData\Local\Adobe
2016-03-08 08:08 - 2015-12-06 19:02 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-03-08 08:06 - 2015-12-04 17:22 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-03-08 08:06 - 2015-12-04 17:22 - 00000000 ____D C:\ProgramData\Adobe
2016-03-03 11:51 - 2015-11-30 18:54 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-03-02 08:44 - 2015-12-13 21:43 - 00000198 _____ C:\Users\iskvaz\AppData\Roaming\WB.CFG
2016-02-26 09:25 - 2015-11-30 21:34 - 00000000 ____D C:\Users\iskvaz\Desktop\Atalhos
2016-02-22 20:11 - 2015-11-30 13:25 - 00002210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-22 19:56 - 2015-11-30 12:52 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-22 19:56 - 2015-11-30 12:52 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-22 10:13 - 2015-11-30 13:25 - 00000000 ____D C:\Users\iskvaz\Documents\Programas

==================== Arquivos na raiz de alguns diretórios =======

2015-12-13 21:43 - 2016-03-02 08:44 - 0000198 _____ () C:\Users\iskvaz\AppData\Roaming\WB.CFG
2016-03-02 07:40 - 2016-03-02 07:40 - 0003584 _____ () C:\Users\iskvaz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Alguns arquivos em TEMP:
====================
C:\Users\iskvaz\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\iskvaz\AppData\Local\Temp\ose00000.exe
C:\Users\iskvaz\AppData\Local\Temp\qqpcmgr_v11.0.16779.224_74672_Silence.exe
C:\Users\iskvaz\AppData\Local\Temp\set.exe
C:\Users\iskvaz\AppData\Local\Temp\uuc.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-02-29 15:14

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité