cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:18-04-2016
Executado por Agnelo (administrador) em AGNELO-PC (19-04-2016 15:08:44)
Executando a partir de C:\Users\Agnelo\Downloads
Perfis Carregados: Agnelo (Perfis Disponíveis: Agnelo)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(BitTorrent Inc.) C:\Users\Agnelo\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(BitTorrent Inc.) C:\Users\Agnelo\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe
(BitTorrent Inc.) C:\Users\Agnelo\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157992 2015-06-29] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-941397032-2712255312-4137101116-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-941397032-2712255312-4137101116-1000\...\Run: [uTorrent] => C:\Users\Agnelo\AppData\Roaming\uTorrent\uTorrent.exe [1959424 2016-04-11] (BitTorrent Inc.)
Startup: C:\Users\Agnelo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Deskjet 1510 series.lnk [2016-04-19]
ShortcutTarget: Monitorar alertas de tinta - HP Deskjet 1510 series.lnk -> C:\Program Files\Hp\HP Deskjet 1510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1B0F686F-F1D8-4378-8E27-17820B54E51D}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-21] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-21] (Google Inc.)
Toolbar: HKU\S-1-5-21-941397032-2712255312-4137101116-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-21] (Google Inc.)

FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2002-01-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2002-01-01] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www-searching.com/?s=g4izamobl3137bk,e5e03c34-bc8d-4ee8-af5f-eaa3297abf3a,&prd=smw
CHR StartupUrls: Default -> "hxxp://www-searching.com/?s=g4izamobl3137bk,e5e03c34-bc8d-4ee8-af5f-eaa3297abf3a,&prd=smw"
CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?s=g4izamobl3137bk,e5e03c34-bc8d-4ee8-af5f-eaa3297abf3a,&prd=smw&q={searchTerms}
CHR DefaultSearchKeyword: Default -> www-searching.com
CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms}
CHR Profile: C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-19]
CHR Extension: (Google Docs) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-19]
CHR Extension: (Google Drive) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-19]
CHR Extension: (YouTube) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-19]
CHR Extension: (Planilhas do Google) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-19]
CHR Extension: (Documentos Google off-line) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-19]
CHR Extension: (Gmail) - C:\Users\Agnelo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-19]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-19 15:04 - 2016-04-19 15:09 - 00007374 _____ C:\Users\Agnelo\Downloads\FRST.txt
2016-04-19 15:04 - 2016-04-19 15:08 - 00000000 ____D C:\FRST
2016-04-19 15:03 - 2016-04-19 15:04 - 01726464 _____ (Farbar) C:\Users\Agnelo\Downloads\FRST.exe
2016-04-19 14:03 - 2016-04-19 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
2016-04-19 13:37 - 2016-04-19 13:41 - 00000000 ____D C:\Users\Agnelo\AppData\Local\BrowserAir
2016-04-18 16:14 - 2016-04-19 14:17 - 00000000 ____D C:\Windows\system32\tec
2016-04-18 16:00 - 2016-04-18 16:00 - 00000000 ____D C:\Users\Agnelo\AppData\Local\ElevatedDiagnostics
2016-04-18 15:42 - 2016-04-18 15:42 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\MCorp
2016-04-18 15:35 - 2016-04-18 15:37 - 00000908 _____ C:\Windows\system32\${LOGFILE}
2016-04-18 15:25 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\osTip
2016-04-18 15:24 - 2016-04-18 15:24 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\Mozilla
2016-04-18 15:11 - 2016-04-19 14:17 - 00000000 ____D C:\594e404a700f8bc74128
2016-04-18 15:10 - 2016-04-18 17:02 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\LightGate
2016-04-18 15:09 - 2016-04-18 15:10 - 00000000 ____D C:\Users\Todos os Usuários\Ronzaps
2016-04-18 15:09 - 2016-04-18 15:10 - 00000000 ____D C:\ProgramData\Ronzaps
2016-04-18 15:09 - 2016-04-18 15:09 - 00000000 ____D C:\Users\Todos os Usuários\aa6e9b24-7a53-0
2016-04-18 15:09 - 2016-04-18 15:09 - 00000000 ____D C:\Users\Todos os Usuários\aa6e9b24-6f51-1
2016-04-18 15:09 - 2016-04-18 15:09 - 00000000 ____D C:\ProgramData\aa6e9b24-7a53-0
2016-04-18 15:09 - 2016-04-18 15:09 - 00000000 ____D C:\ProgramData\aa6e9b24-6f51-1
2016-04-18 15:07 - 2016-04-19 14:17 - 00000000 ____D C:\Users\Agnelo\AppData\Local\Setup Wizard
2016-04-18 15:07 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\badu
2016-04-18 15:07 - 2016-04-18 15:08 - 00000000 ____D C:\Users\Todos os Usuários\9787fb56-7a63-0
2016-04-18 15:07 - 2016-04-18 15:08 - 00000000 ____D C:\ProgramData\9787fb56-7a63-0
2016-04-18 15:07 - 2016-04-18 15:07 - 00189629 _____ () C:\Users\Agnelo\AppData\Roaming\Bamkix.bin
2016-04-18 15:07 - 2016-04-18 15:07 - 00000000 ____D C:\Users\Todos os Usuários\baidu
2016-04-18 15:07 - 2016-04-18 15:07 - 00000000 ____D C:\Users\Todos os Usuários\9787fb56-6113-1
2016-04-18 15:07 - 2016-04-18 15:07 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\Baidu
2016-04-18 15:07 - 2016-04-18 15:07 - 00000000 ____D C:\ProgramData\baidu
2016-04-18 15:07 - 2016-04-18 15:07 - 00000000 ____D C:\ProgramData\9787fb56-6113-1
2016-04-18 15:07 - 2016-04-18 15:07 - 00000000 ____D C:\Program Files\Baidu
2016-04-18 15:07 - 2016-04-18 09:37 - 01920512 _____ C:\Users\Agnelo\AppData\Roaming\msiql.exe
2016-04-18 15:06 - 2016-04-19 14:17 - 00000000 ____D C:\Users\Todos os Usuários\Ronzap
2016-04-18 15:06 - 2016-04-19 14:17 - 00000000 ____D C:\ProgramData\Ronzap
2016-04-18 15:06 - 2016-04-18 15:06 - 00126464 _____ C:\Users\Agnelo\AppData\Roaming\noah.dat
2016-04-18 15:06 - 2016-04-18 15:06 - 00065568 _____ C:\Users\Agnelo\AppData\Roaming\Config.xml
2016-04-18 15:06 - 2016-04-18 15:06 - 00018432 _____ C:\Users\Agnelo\AppData\Roaming\Main.dat
2016-04-18 15:05 - 2016-04-18 15:06 - 06494208 _____ C:\Users\Agnelo\AppData\Roaming\agent.dat
2016-04-18 15:05 - 2016-04-18 15:05 - 01626777 _____ C:\Users\Agnelo\AppData\Roaming\Can-Home.tst
2016-04-18 15:04 - 2016-04-18 15:06 - 00005568 _____ C:\Users\Agnelo\AppData\Roaming\md.xml
2016-04-18 15:04 - 2016-04-18 15:04 - 00126464 _____ C:\Users\Agnelo\AppData\Roaming\lobby.dat
2016-04-18 15:04 - 2016-04-18 15:04 - 00072717 _____ C:\Users\Agnelo\AppData\Roaming\GrooveIty.tst
2016-04-18 15:04 - 2016-04-18 15:04 - 00054272 _____ C:\Users\Agnelo\AppData\Roaming\ApplicationHosting.dat
2016-04-18 15:04 - 2016-04-18 15:04 - 00000000 ____D C:\Users\Todos os Usuários\CloudPrinter
2016-04-18 15:04 - 2016-04-18 15:04 - 00000000 ____D C:\Users\Public\Documents\Tools
2016-04-18 15:04 - 2016-04-18 15:04 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-04-18 15:03 - 2016-04-18 15:03 - 00848437 _____ C:\Users\Agnelo\AppData\Roaming\Hotsoft.bin
2016-04-18 15:03 - 2016-04-18 15:03 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-04-18 14:59 - 2016-04-18 15:00 - 00016992 _____ C:\Users\Agnelo\AppData\Roaming\InstallationConfiguration.xml
2016-04-18 14:59 - 2016-04-18 14:59 - 00127488 _____ C:\Users\Agnelo\AppData\Roaming\Installer.dat
2016-04-18 14:59 - 2016-04-18 14:59 - 00055972 _____ C:\Users\Agnelo\AppData\Roaming\inst.lat
2016-04-18 14:55 - 2016-04-18 14:55 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-04-18 14:54 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\MyBestOffersToday
2016-04-18 14:54 - 2016-04-18 14:54 - 00000000 ____D C:\Users\Agnelo\AppData\Local\rec_en_258
2016-04-18 14:52 - 2016-04-18 14:52 - 00000000 ____D C:\Users\Agnelo\AppData\LocalLow\Company
2016-04-18 14:52 - 2016-04-18 14:52 - 00000000 ____D C:\Users\Agnelo\AppData\Local\Tempfolder
2016-04-18 14:52 - 2016-04-18 14:52 - 00000000 ____D C:\uninst
2016-04-18 14:50 - 2016-04-19 14:17 - 00000000 ____D C:\Users\Agnelo\AppData\Local\mbot_en_037050302
2016-04-18 14:50 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\mbot_en_037050302
2016-04-18 14:44 - 2016-04-19 14:18 - 00000000 ____D C:\Program Files\Simple for You
2016-04-18 14:42 - 2016-04-19 13:44 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\WTools
2016-04-18 14:37 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\EasyHotspot
2016-04-18 14:37 - 2016-04-19 13:58 - 625693917 _____ C:\Users\Agnelo\Downloads\Microsoft Office Professional Plus 2013 x86 PT-BR + Ativador Permanente [YahSoft].rar
2016-04-18 14:36 - 2016-04-18 14:44 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\Store
2016-04-18 14:34 - 2016-04-18 14:34 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\Nosibay
2016-04-18 14:31 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\FFFFFFFF-1461000676-C3CB-7C80-7071BC807CE9
2016-04-18 14:28 - 2016-04-19 14:18 - 00000000 ____D C:\Program Files\MPC Cleaner
2016-04-18 14:26 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\yesbnd
2016-04-18 14:26 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\Jejochclipasp
2016-04-18 14:26 - 2016-04-18 14:27 - 00000000 ____D C:\Users\Agnelo\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-04-18 14:26 - 2016-04-18 14:26 - 00000000 ____D C:\extensions
2016-04-18 14:25 - 2016-04-18 14:26 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-04-18 14:14 - 2016-04-19 14:19 - 00000000 ____D C:\Users\Agnelo\AppData\LocalLow\uTorrent
2016-04-14 15:48 - 2016-04-14 16:01 - 00000000 ____D C:\Users\Agnelo\Downloads\peter pan
2016-04-14 15:28 - 2016-04-19 14:16 - 1315873259 _____ C:\Users\Agnelo\Downloads\Planet Gangbang 2.mp4
2016-04-14 15:01 - 2016-04-19 14:18 - 00000000 ____D C:\Users\Agnelo\Downloads\Microsoft Office Professional Plus 2013
2016-04-13 16:08 - 2016-04-13 16:08 - 00100391 _____ C:\Users\Agnelo\Downloads\FaturaOnline.pdf
2016-04-13 15:43 - 2016-04-13 15:44 - 00237385 _____ C:\Users\Agnelo\Downloads\Minha_Fatura_CLASSICO GOLD MC_25-04-2016.pdf
2016-04-06 13:42 - 2016-04-06 13:42 - 00408766 _____ C:\Users\Agnelo\Downloads\odontologia legal.pdf
2016-04-01 14:22 - 2016-04-01 14:22 - 00000285 _____ C:\Users\Agnelo\Downloads\playlist.asx
2016-03-29 14:57 - 2016-03-29 14:57 - 00253308 _____ C:\Users\Agnelo\Downloads\Educação Permanente em Saude.pdf
2016-03-24 15:45 - 2016-03-24 15:45 - 00039997 _____ C:\Users\Agnelo\Downloads\novocodigodeetica.pdf
2016-03-24 15:37 - 2016-03-24 15:38 - 00237590 _____ C:\Users\Agnelo\Downloads\Minha_Fatura_CLASSICO GOLD MC_25-03-2016.pdf
2016-03-23 14:55 - 2016-03-23 14:55 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\WinRAR
2016-03-23 14:55 - 2016-03-23 14:55 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-03-23 14:55 - 2016-03-23 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-03-23 14:55 - 2016-03-23 14:55 - 00000000 ____D C:\Program Files\WinRAR
2016-03-23 14:53 - 2016-03-23 14:54 - 03342040 _____ C:\Users\Agnelo\Downloads\wrar531br.exe
2016-03-22 15:08 - 2016-04-19 14:03 - 00000000 ____D C:\Users\Agnelo\AppData\LocalLow\Temp
2016-03-22 15:08 - 2016-03-22 15:08 - 00146762 _____ C:\Users\Agnelo\Downloads\DARF AGNELO.xps
2016-03-22 14:30 - 2016-03-22 14:30 - 00002606 _____ C:\Users\Agnelo\Desktop\µTorrent.lnk
2016-03-22 14:30 - 2016-03-22 14:30 - 00002606 _____ C:\Users\Agnelo\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-03-22 14:29 - 2016-04-19 15:07 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\uTorrent
2016-03-22 14:28 - 2016-03-22 14:28 - 02094080 _____ (BitTorrent Inc.) C:\Users\Agnelo\Downloads\uTorrent.exe

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-19 15:04 - 2015-05-28 15:47 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-19 14:23 - 2011-01-26 00:08 - 00654470 _____ C:\Windows\system32\prfh0416.dat
2016-04-19 14:23 - 2011-01-26 00:08 - 00124922 _____ C:\Windows\system32\prfc0416.dat
2016-04-19 14:23 - 2010-11-20 18:01 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-19 14:23 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2016-04-19 14:18 - 2015-05-28 15:47 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-19 14:18 - 2015-05-28 15:46 - 00000000 ____D C:\Users\Agnelo\AppData\Local\Apps\2.0
2016-04-19 14:18 - 2015-05-20 11:27 - 00000000 ____D C:\Users\Agnelo
2016-04-19 14:18 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-19 14:18 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\NDF
2016-04-19 14:18 - 2009-07-13 23:04 - 00000505 _____ C:\Windows\win.ini
2016-04-19 14:17 - 2015-10-26 14:06 - 00000000 ____D C:\Users\Agnelo\AppData\Roaming\Skype
2016-04-19 14:17 - 2015-07-09 14:59 - 00000000 ____D C:\Program Files\Bonjour
2016-04-19 14:17 - 2015-05-28 15:47 - 00000000 ____D C:\Program Files\Google
2016-04-19 14:17 - 2015-05-28 15:46 - 00000000 ____D C:\Users\Agnelo\AppData\Local\Google
2016-04-19 14:17 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-04-19 14:17 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\registration
2016-04-19 14:16 - 2009-07-14 01:34 - 00012912 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-19 14:16 - 2009-07-14 01:34 - 00012912 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-13 15:22 - 2015-07-29 15:22 - 00000268 _____ C:\Windows\Tasks\DriverDoc_UPDATES.job
2016-04-12 10:06 - 2015-05-28 15:51 - 00002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-12 10:06 - 2015-05-28 15:51 - 00002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-08 14:19 - 2015-07-29 15:44 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2016-04-01 08:06 - 2009-07-14 01:53 - 00032588 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Arquivos na raiz de alguns diretórios =======

2016-04-18 15:05 - 2016-04-18 15:06 - 6494208 _____ () C:\Users\Agnelo\AppData\Roaming\agent.dat
2016-04-18 15:04 - 2016-04-18 15:04 - 0054272 _____ () C:\Users\Agnelo\AppData\Roaming\ApplicationHosting.dat
2016-04-18 15:07 - 2016-04-18 15:07 - 0189629 _____ () C:\Users\Agnelo\AppData\Roaming\Bamkix.bin
2016-04-18 14:31 - 2016-04-18 14:42 - 0001294 _____ () C:\Users\Agnelo\AppData\Roaming\Bubble Dock.boostrap.log
2016-04-18 14:33 - 2016-04-18 14:35 - 0005717 _____ () C:\Users\Agnelo\AppData\Roaming\Bubble Dock.installation.log
2016-04-18 15:05 - 2016-04-18 15:05 - 1626777 _____ () C:\Users\Agnelo\AppData\Roaming\Can-Home.tst
2016-04-18 15:06 - 2016-04-18 15:06 - 0065568 _____ () C:\Users\Agnelo\AppData\Roaming\Config.xml
2016-04-18 15:04 - 2016-04-18 15:04 - 0072717 _____ () C:\Users\Agnelo\AppData\Roaming\GrooveIty.tst
2016-04-18 15:03 - 2016-04-18 15:03 - 0848437 _____ () C:\Users\Agnelo\AppData\Roaming\Hotsoft.bin
2016-04-18 14:59 - 2016-04-18 14:59 - 0055972 _____ () C:\Users\Agnelo\AppData\Roaming\inst.lat
2016-04-18 14:59 - 2016-04-18 15:00 - 0016992 _____ () C:\Users\Agnelo\AppData\Roaming\InstallationConfiguration.xml
2016-04-18 14:59 - 2016-04-18 14:59 - 0127488 _____ () C:\Users\Agnelo\AppData\Roaming\Installer.dat
2016-04-18 15:04 - 2016-04-18 15:04 - 0126464 _____ () C:\Users\Agnelo\AppData\Roaming\lobby.dat
2016-04-18 15:06 - 2016-04-18 15:06 - 0018432 _____ () C:\Users\Agnelo\AppData\Roaming\Main.dat
2016-04-18 15:04 - 2016-04-18 15:06 - 0005568 _____ () C:\Users\Agnelo\AppData\Roaming\md.xml
2016-04-18 15:07 - 2016-04-18 09:37 - 1920512 _____ () C:\Users\Agnelo\AppData\Roaming\msiql.exe
2016-04-18 15:06 - 2016-04-18 15:06 - 0126464 _____ () C:\Users\Agnelo\AppData\Roaming\noah.dat
2016-04-18 14:42 - 2016-04-18 14:42 - 0000078 _____ () C:\Users\Agnelo\AppData\Roaming\Selection Tools.installation.log
2016-04-18 14:31 - 2016-04-18 14:31 - 0000097 _____ () C:\Users\Agnelo\AppData\Roaming\WindApp.boostrap.log
2016-04-18 14:36 - 2016-04-18 14:36 - 0000078 _____ () C:\Users\Agnelo\AppData\Roaming\WindApp.installation.log
2015-06-02 15:33 - 2015-06-02 15:33 - 0000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-04-19 14:43

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité