cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 28-06-2016
Executado por THIGETO (administrador) em THIGETO-PC (28-06-2016 23:37:36)
Executando a partir de C:\Users\THIGETO\Downloads
Perfis Carregados: THIGETO (Perfis Disponíveis: THIGETO)
Platform: Windows 7 Home Premium (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
() C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Windows\AsScrPro.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-01] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1861416 2009-10-09] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-12-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6998656 2009-10-26] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2009-08-19] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SB Audigy\Volume Panel\VolPanlu.exe [237693 2008-12-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2170861844-1636376849-3486996999-1000\...\Run: [GoogleChromeAutoLaunch_6D323C098E370F73B7654978DEF7BEC8] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [943944 2016-06-23] (Google Inc.)
HKU\S-1-5-21-2170861844-1636376849-3486996999-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-2170861844-1636376849-3486996999-1000\...\MountPoints2: {9df493cc-3c89-11e6-80cf-1c4bd60d522a} - G:\setup.EXE /AUTORUN
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-25] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-25] (eCareme Technologies, Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1FFEBAD1-4B2D-4EAD-B675-B476C4A53DC4}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2170861844-1636376849-3486996999-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKU\S-1-5-21-2170861844-1636376849-3486996999-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://asus.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKU\S-1-5-21-2170861844-1636376849-3486996999-1000 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-2170861844-1636376849-3486996999-1000 -> {9F38AC98-F44B-42F1-9FA9-8EE6D9F51E62} URL = hxxps://br.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=830633&p={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-27] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-06-10] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-10] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-06-27] (Microsoft Corporation)
BHO-x32: Auxiliar de Conexão do Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-06-10] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-06-10] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2170861844-1636376849-3486996999-1000 -> Sem Nome - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Nenhum Arquivo
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-04-19] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-04-19] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-04-19] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-04-19] (Microsoft Corporation)

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Nenhum Arquivo]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-06-27] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-06-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-27] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.mystartsearch.com/?type=hp&ts=1416106362&from=smt&uid=ST9500420AS_5VJ46HEBXXXX5VJ46HEB
CHR StartupUrls: Default -> "hxxps://www.passeidireto.com/","hxxps://www3.uninove.br/seu/aluno/","hxxps://sec.unip.br/frame.aspx","hxxp://g1.globo.com/index.html","hxxp://www.sebrae.com.br/sites/PortalSebrae","hxxp://revistapegn.globo.com/"
CHR Profile: C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Tradutor) - C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-06-27]
CHR Extension: (RescueTime for Chrome™ & ChromeOS™) - C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2016-06-27]
CHR Extension: (Versão de desenvolvimento do AdBlock) - C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-28]
CHR Extension: (Lingualy - Practice a Language) - C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default\Extensions\iilcekgoelpgecpjnnoikhbleipnjdhf [2016-06-27]
CHR Extension: (Video Speed Controller) - C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2016-06-27]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\THIGETO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-27]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [827680 2015-11-04] (IObit)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-06-10] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2010-04-19] (Creative Labs) [Arquivo não assinado]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-04-19] (Creative Labs) [Arquivo não assinado]
R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe [1267984 2015-02-27] (Disc Soft Ltd)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Arquivo não assinado]
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1647808 2016-06-21] (Foxit Software Inc.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-06-14] (IObit)
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [Arquivo não assinado]
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [Arquivo não assinado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 dtproscsibus; C:\Windows\System32\DRIVERS\dtproscsibus.sys [30352 2016-06-27] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] ()
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-08-06] ()
U3 tmlwf; não ImagePath
U3 tmwfp; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-28 23:37 - 2016-06-28 23:37 - 00018732 _____ C:\Users\THIGETO\Downloads\FRST.txt
2016-06-28 23:36 - 2016-06-28 23:37 - 00000000 ____D C:\FRST
2016-06-28 23:36 - 2016-06-28 23:36 - 02389504 _____ (Farbar) C:\Users\THIGETO\Downloads\FRST64.exe
2016-06-28 19:28 - 2016-06-28 19:28 - 00000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2016-06-28 19:27 - 2016-06-28 19:27 - 00000000 ____D C:\Windows\pss
2016-06-28 19:22 - 2016-06-28 19:22 - 01034556 _____ C:\Users\THIGETO\Downloads\Windows6.1-KB2999226-x64.msu
2016-06-28 19:21 - 2016-06-28 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-28 19:21 - 2016-06-13 19:31 - 00484008 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-06-28 19:20 - 2016-06-28 19:20 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-28 19:20 - 2016-06-28 19:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-27 12:29 - 2016-06-27 12:29 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Epson
2016-06-27 11:26 - 2016-06-27 11:26 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\MPC-HC
2016-06-27 10:38 - 2016-06-27 07:56 - 00000000 ____D C:\Users\THIGETO\AppData\Local\Google
2016-06-27 10:37 - 2016-06-27 10:37 - 00000936 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2016-06-27 10:37 - 2016-06-27 06:46 - 00000073 _____ C:\Windows\EPTX720.ini
2016-06-27 10:37 - 2016-06-27 06:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-06-27 10:37 - 2016-06-27 06:38 - 00000000 ____D C:\Program Files (x86)\epson
2016-06-27 10:37 - 2009-12-09 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2016-06-27 10:37 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2016-06-27 10:37 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\Windows\system32\esxcdev.dll
2016-06-27 10:36 - 2016-06-27 10:36 - 00000000 ____D C:\Program Files\EpsonNet
2016-06-27 10:36 - 2016-06-27 06:38 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\DAEMON Tools iSCSI Target
2016-06-27 10:36 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2016-06-27 10:36 - 2012-11-12 20:41 - 00535552 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2016-06-27 10:36 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2016-06-27 10:36 - 2012-11-12 15:15 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2016-06-27 10:36 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2016-06-27 10:36 - 2012-10-22 17:19 - 00219648 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2016-06-27 10:35 - 2016-06-27 10:35 - 00030352 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtproscsibus.sys
2016-06-27 10:35 - 2016-06-27 10:35 - 00001727 _____ C:\Users\Public\Desktop\DAEMON Tools Pro.lnk
2016-06-27 10:35 - 2016-06-27 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
2016-06-27 10:35 - 2016-06-27 10:35 - 00000000 ____D C:\Program Files\DAEMON Tools Pro
2016-06-27 10:35 - 2016-06-27 07:41 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\DAEMON Tools Pro
2016-06-27 10:34 - 2016-06-27 10:35 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
2016-06-27 10:34 - 2016-06-27 10:34 - 00003580 _____ C:\Windows\System32\Tasks\klcp_update
2016-06-27 10:34 - 2016-06-27 10:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-06-27 10:34 - 2016-06-27 10:34 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-06-27 10:33 - 2016-06-27 10:33 - 00001305 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio 15.lnk
2016-06-27 10:33 - 2016-06-27 10:33 - 00000214 _____ C:\Users\Public\Desktop\My Software Deals.url
2016-06-27 10:33 - 2016-06-27 10:33 - 00000000 ____D C:\Users\THIGETO\AppData\Local\ashampoo
2016-06-27 10:33 - 2016-06-27 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2016-06-27 10:33 - 2016-06-27 10:33 - 00000000 ____D C:\ProgramData\Ashampoo
2016-06-27 10:32 - 2016-06-27 10:32 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2016-06-27 10:32 - 2016-06-27 10:32 - 00000000 ____D C:\Program Files (x86)\Ashampoo
2016-06-27 10:32 - 2016-06-27 07:38 - 00000000 ____D C:\ProgramData\ProductData
2016-06-27 10:32 - 2016-06-27 07:37 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\ProductData
2016-06-27 10:31 - 2016-06-28 19:18 - 00000000 ____D C:\ProgramData\IObit
2016-06-27 10:31 - 2016-06-27 12:22 - 00002262 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk
2016-06-27 10:31 - 2016-06-27 10:32 - 00003188 _____ C:\Windows\System32\Tasks\ASC9_PerformanceMonitor
2016-06-27 10:31 - 2016-06-27 10:32 - 00000000 ____D C:\Users\THIGETO\AppData\LocalLow\IObit
2016-06-27 10:31 - 2016-06-27 10:31 - 00002876 _____ C:\Windows\System32\Tasks\ASC9_SkipUac_THIGETO
2016-06-27 10:31 - 2016-06-27 10:31 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\IObit
2016-06-27 10:31 - 2016-06-27 10:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2016-06-27 10:31 - 2016-06-27 10:31 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-06-27 10:31 - 2016-06-27 07:37 - 00000000 ____D C:\Program Files (x86)\IObit
2016-06-27 10:15 - 2011-04-08 23:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-06-27 10:15 - 2011-04-08 22:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-06-27 10:14 - 2015-03-18 20:07 - 05503416 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-06-27 10:14 - 2015-03-18 19:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-06-27 10:14 - 2015-03-18 19:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-06-27 10:14 - 2014-09-14 17:44 - 03195392 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-06-27 10:14 - 2013-03-18 22:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-06-27 10:14 - 2013-03-18 21:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-06-27 10:14 - 2013-03-18 20:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-06-27 09:57 - 2016-06-27 09:57 - 00000000 ____D C:\Users\THIGETO\Documents\Modelos Personalizados do Office
2016-06-27 09:51 - 2016-06-27 10:12 - 00654470 _____ C:\Windows\system32\prfh0416.dat
2016-06-27 09:51 - 2016-06-27 10:12 - 00124922 _____ C:\Windows\system32\prfc0416.dat
2016-06-27 09:51 - 2016-06-27 09:50 - 00323154 _____ C:\Windows\system32\prfi0416.dat
2016-06-27 09:51 - 2016-06-27 09:50 - 00038536 _____ C:\Windows\system32\prfd0416.dat
2016-06-27 09:39 - 2016-06-27 09:39 - 00000000 ____D C:\Users\THIGETO\AppData\Local\Seven Zip
2016-06-27 09:31 - 2016-06-27 09:33 - 00011258 _____ C:\Users\THIGETO\Downloads\Outlook.com.zip
2016-06-27 09:28 - 2016-06-28 19:21 - 00003942 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C87A02A1-D798-4900-9D8B-B69EFE3DF312}
2016-06-27 09:27 - 2016-06-27 09:27 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Google
2016-06-27 07:40 - 2016-06-28 19:14 - 00000000 ____D C:\ProgramData\Foxit Software
2016-06-27 07:40 - 2016-06-27 08:12 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Foxit Software
2016-06-27 07:40 - 2016-06-27 07:40 - 00001357 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2016-06-27 07:40 - 2016-06-27 07:40 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Foxit AgentInformation
2016-06-27 07:40 - 2016-06-27 07:40 - 00000000 ____D C:\Users\Public\Foxit Software
2016-06-27 07:40 - 2016-06-27 07:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-06-27 07:40 - 2016-06-27 07:40 - 00000000 ____D C:\ProgramData\Foxit ContentPlatform
2016-06-27 07:39 - 2016-06-27 07:39 - 77987840 _____ C:\Windows\system32\config\COMPONENTS.iobit
2016-06-27 07:39 - 2016-06-27 07:39 - 74924032 _____ C:\Windows\system32\config\SOFTWARE.iobit
2016-06-27 07:39 - 2016-06-27 07:39 - 00163840 _____ C:\Windows\system32\config\DEFAULT.iobit
2016-06-27 07:39 - 2016-06-27 07:39 - 00024576 _____ C:\Windows\system32\config\SECURITY.iobit
2016-06-27 07:39 - 2016-06-27 07:39 - 00024576 _____ C:\Windows\system32\config\SAM.iobit
2016-06-27 07:39 - 2016-06-27 07:39 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2016-06-27 07:35 - 2016-06-27 07:36 - 47780016 _____ (Foxit Software Inc. ) C:\Users\THIGETO\Downloads\FoxitReader80_enu_Setup_clean.exe
2016-06-27 07:31 - 2016-06-27 07:31 - 00000000 ____D C:\Users\THIGETO\AppData\LocalLow\Adobe
2016-06-27 07:02 - 2016-06-27 07:02 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\WinRAR
2016-06-27 06:57 - 2016-06-27 06:57 - 00002178 _____ C:\Users\THIGETO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-06-27 06:57 - 2016-06-27 06:57 - 00002112 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-06-27 06:57 - 2016-06-27 06:57 - 00002112 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-06-27 06:57 - 2016-06-27 06:57 - 00000000 ___RD C:\Users\THIGETO\OneDrive
2016-06-27 06:57 - 2016-06-27 06:57 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-06-27 06:57 - 2016-06-27 06:57 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-06-27 06:54 - 2016-06-27 06:54 - 00002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002399 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002396 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00002366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-06-27 06:54 - 2016-06-27 06:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-06-27 06:53 - 2016-06-27 12:49 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-06-27 06:53 - 2016-06-27 06:53 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-06-27 06:51 - 2016-06-27 06:51 - 01804512 _____ C:\WindowsGABRIOLA.tt2
2016-06-27 06:50 - 2016-06-27 06:50 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-06-27 06:49 - 2016-06-28 19:28 - 00000000 ____D C:\Users\THIGETO\AppData\Local\MalwareProtectionLive
2016-06-27 06:49 - 2016-06-27 06:49 - 00001295 _____ C:\Users\Public\Desktop\YTD Video Downloader.lnk
2016-06-27 06:49 - 2016-06-27 06:49 - 00000000 ____D C:\Users\THIGETO\AppData\Local\{B5F70934-5E12-42d2-882D-62D42EA1FA67}
2016-06-27 06:49 - 2016-06-27 06:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
2016-06-27 06:49 - 2016-06-27 06:49 - 00000000 ____D C:\Program Files (x86)\GreenTree Applications
2016-06-27 06:48 - 2016-06-27 12:20 - 00000000 ____D C:\Program Files\WinRAR
2016-06-27 06:48 - 2016-06-27 06:49 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-27 06:48 - 2016-06-27 06:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-27 06:47 - 2016-06-27 07:31 - 00000000 ____D C:\Users\THIGETO\AppData\Local\Adobe
2016-06-27 06:47 - 2016-06-27 06:47 - 00002655 _____ C:\Users\THIGETO\Desktop\µTorrent.lnk
2016-06-27 06:47 - 2016-06-27 06:47 - 00002655 _____ C:\Users\THIGETO\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-06-27 06:47 - 2016-06-27 06:47 - 00000000 ____D C:\Users\THIGETO\AppData\LocalLow\uTorrent
2016-06-27 06:46 - 2016-06-27 11:24 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\uTorrent
2016-06-27 06:45 - 2016-06-27 06:45 - 00000000 ____D C:\Program Files\Synaptics
2016-06-27 06:44 - 2016-06-27 06:58 - 00002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-27 06:42 - 2016-06-27 07:31 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Adobe
2016-06-27 06:42 - 2016-06-27 06:42 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Macromedia
2016-06-27 06:42 - 2016-06-27 06:42 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-06-27 06:42 - 2007-09-07 17:33 - 00135168 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBAPI.dll
2016-06-27 06:42 - 2007-03-28 18:26 - 00065536 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBUtil.dll
2016-06-27 06:42 - 2006-12-19 18:31 - 00110592 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBDSCVR.dll
2016-06-27 06:42 - 2006-12-19 18:20 - 00077824 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EBAPI.dll
2016-06-27 06:42 - 2003-12-17 01:01 - 00055808 _____ (SEIKO EPSON CORPORATION) C:\Windows\SysWOW64\EEBSDKIF.dll
2016-06-27 06:39 - 2016-06-27 06:39 - 00000000 ____D C:\Program Files (x86)\EpsonNet
2016-06-27 06:38 - 2016-06-27 06:42 - 00000000 ____D C:\ProgramData\EPSON
2016-06-27 06:38 - 2016-06-27 06:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2016-06-27 06:38 - 2016-06-27 06:38 - 00000000 ____D C:\Program Files (x86)\Epson Software
2016-06-27 06:38 - 2012-06-02 15:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-06-27 06:38 - 2012-06-02 15:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-06-27 06:38 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-06-27 06:38 - 2012-06-02 15:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-06-27 06:38 - 2012-06-02 15:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-06-27 06:38 - 2012-06-02 15:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-06-27 06:38 - 2012-06-02 15:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-06-27 06:38 - 2012-06-02 15:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-06-27 06:38 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-06-27 06:38 - 2009-09-30 20:01 - 00088064 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_IBCBGYL.DLL
2016-06-27 06:38 - 2008-11-11 20:00 - 00118784 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMGYL.DLL
2016-06-26 15:56 - 2016-06-27 09:26 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Asus WebStorage
2016-06-26 15:56 - 2016-06-26 15:56 - 00000000 ____D C:\Users\THIGETO\Documents\Bluetooth Exchange Folder
2016-06-26 15:56 - 2016-06-26 15:56 - 00000000 ____D C:\Users\THIGETO\Documents\ASUS WebStorage
2016-06-26 15:56 - 2016-06-26 15:56 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\ATI
2016-06-26 15:56 - 2016-06-26 15:56 - 00000000 ____D C:\Users\THIGETO\AppData\Local\Broadcom
2016-06-26 15:56 - 2016-06-26 15:56 - 00000000 ____D C:\Users\THIGETO\AppData\Local\ATI
2016-06-26 15:55 - 2016-06-26 15:55 - 00000000 ____D C:\Users\Public\Documents\eBay
2016-06-26 15:55 - 2016-06-26 15:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Office Outlook Connector
2016-06-26 15:54 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-06-26 15:54 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-06-26 15:53 - 2016-06-27 09:42 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-06-26 15:53 - 2016-06-26 15:53 - 00000000 ____D C:\Program Files (x86)\Windows Live SkyDrive
2016-06-26 15:51 - 2016-06-27 12:21 - 00131712 _____ C:\Users\THIGETO\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-26 15:51 - 2016-06-27 06:57 - 00000000 ____D C:\Users\THIGETO
2016-06-26 15:51 - 2016-06-26 15:56 - 00000000 ___HD C:\ASUS.DAT
2016-06-26 15:51 - 2016-06-26 15:56 - 00000000 ____D C:\Users\THIGETO\AppData\Local\VirtualStore
2016-06-26 15:51 - 2016-06-26 15:51 - 00000020 ___SH C:\Users\THIGETO\ntuser.ini
2016-06-26 15:51 - 2016-06-26 15:51 - 00000000 _SHDL C:\Users\THIGETO\My Documents
2016-06-26 15:51 - 2016-06-26 15:51 - 00000000 _SHDL C:\Users\THIGETO\Documents\My Videos
2016-06-26 15:51 - 2016-06-26 15:51 - 00000000 _SHDL C:\Users\THIGETO\Documents\My Pictures
2016-06-26 15:51 - 2016-06-26 15:51 - 00000000 _SHDL C:\Users\THIGETO\Documents\My Music
2016-06-26 15:51 - 2016-06-26 15:51 - 00000000 ____D C:\Users\THIGETO\AppData\Local\Power2Go
2016-06-26 15:51 - 2009-07-14 00:44 - 00000000 ____D C:\Users\THIGETO\AppData\Roaming\Media Center Programs
2016-06-26 15:45 - 2010-04-19 01:05 - 00000146 _____ C:\Pass.txt

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-28 19:31 - 2010-04-19 13:08 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-28 19:30 - 2009-07-13 22:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-28 19:29 - 2009-07-13 21:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-28 19:29 - 2009-07-13 21:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-28 19:25 - 2009-07-13 21:45 - 00488520 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-28 19:21 - 2009-07-13 20:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-06-27 12:55 - 2010-04-19 13:08 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-27 12:48 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\inf
2016-06-27 12:47 - 2010-04-19 12:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-06-27 12:21 - 2010-04-19 13:45 - 00002028 _____ C:\Windows\system32\AutoRunFilter.ini
2016-06-27 12:21 - 2010-04-19 13:45 - 00001471 _____ C:\Windows\system32\ServiceFilter.ini
2016-06-27 10:12 - 2009-08-03 23:56 - 00355328 _____ C:\Windows\system32\prfh0804.dat
2016-06-27 10:12 - 2009-08-03 23:56 - 00101428 _____ C:\Windows\system32\prfc0804.dat
2016-06-27 10:12 - 2009-08-03 23:31 - 00670084 _____ C:\Windows\system32\prfh0816.dat
2016-06-27 10:12 - 2009-08-03 23:31 - 00130586 _____ C:\Windows\system32\prfc0816.dat
2016-06-27 10:12 - 2009-08-03 23:25 - 00371298 _____ C:\Windows\system32\prfh0404.dat
2016-06-27 10:12 - 2009-08-03 23:25 - 00096514 _____ C:\Windows\system32\prfc0404.dat
2016-06-27 10:12 - 2009-08-03 23:05 - 00684954 _____ C:\Windows\system32\perfh00C.dat
2016-06-27 10:12 - 2009-08-03 23:05 - 00127070 _____ C:\Windows\system32\perfc00C.dat
2016-06-27 10:12 - 2009-08-03 22:59 - 00684000 _____ C:\Windows\system32\perfh00A.dat
2016-06-27 10:12 - 2009-08-03 22:59 - 00133704 _____ C:\Windows\system32\perfc00A.dat
2016-06-27 10:12 - 2009-07-13 22:13 - 04839586 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-27 09:51 - 2009-07-14 00:45 - 00000000 ____D C:\Program Files\Windows Journal
2016-06-27 09:51 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-06-27 09:51 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-06-27 09:51 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2016-06-27 09:51 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-06-27 09:51 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files\Windows Defender
2016-06-27 09:51 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-06-27 09:51 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-06-27 09:51 - 2009-07-13 22:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-06-27 09:51 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2016-06-27 09:51 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\servicing
2016-06-27 09:51 - 2009-07-13 20:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-06-27 09:50 - 2009-08-03 22:58 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-06-27 09:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-06-27 09:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-06-27 09:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\winrm
2016-06-27 09:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\WCN
2016-06-27 09:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\slmgr
2016-06-27 09:50 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\SysWOW64\com
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\oobe
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\MUI
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\migwiz
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\Dism
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\system32\com
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-06-27 09:50 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\IME
2016-06-27 09:43 - 2009-07-13 22:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-27 09:40 - 2010-04-19 13:17 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-06-27 09:35 - 2009-07-14 00:45 - 00000000 ____D C:\Windows\ShellNew
2016-06-27 09:31 - 2009-07-13 19:34 - 00000387 _____ C:\Windows\win.ini
2016-06-27 09:28 - 2010-04-19 13:08 - 00000000 ____D C:\ProgramData\Partner
2016-06-27 09:28 - 2010-04-19 13:08 - 00000000 ____D C:\Program Files\Google
2016-06-27 09:28 - 2010-04-19 13:08 - 00000000 ____D C:\Program Files (x86)\Google
2016-06-27 09:27 - 2010-04-19 13:48 - 00000824 _____ C:\Windows\system32\Drivers\etc\tmvsthfud.bin
2016-06-27 09:27 - 2010-04-19 13:48 - 00000824 _____ C:\Windows\system32\Drivers\etc\tmvsthfss.bin
2016-06-27 09:25 - 2010-04-19 13:00 - 00000000 ____D C:\ProgramData\CyberLink
2016-06-27 07:41 - 2009-07-28 23:03 - 00000000 ____D C:\Windows\Panther
2016-06-27 07:36 - 2010-04-19 13:07 - 00000000 ____D C:\ProgramData\Adobe
2016-06-27 06:58 - 2010-04-19 13:08 - 00002271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-27 06:50 - 2010-04-19 13:08 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-27 06:50 - 2010-04-19 13:08 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-27 06:44 - 2010-04-19 13:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-06-27 06:39 - 2010-04-19 12:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-27 06:38 - 2009-07-13 20:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-06-26 15:50 - 2010-04-19 13:45 - 00000080 _____ C:\Windows\system32\Defrag.ini

==================== Arquivos na raiz de alguns diretórios =======

2010-04-19 13:24 - 2009-12-24 05:38 - 0131368 _____ () C:\ProgramData\FullRemove.exe
2010-04-19 13:04 - 2010-04-19 13:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2010-04-19 13:03 - 2010-04-19 13:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-06-27 10:03

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité