cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:29-05-2016 02
Executado por User (administrador) em USER-PC (01-06-2016 10:14:29)
Executando a partir de C:\Users\User\Downloads
Perfis Carregados: User (Perfis Disponíveis: User)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\NS.exe
() C:\Program Files (x86)\PP助手2.0\adevicehelpersvr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\NS.exe
(广州铁人网络科技有限公司) C:\Program Files (x86)\PP助手2.0\adevicehelpermon.exe
() C:\Windows\SysWOW64\SYSUSER-PC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\Temp\9FB663BC-474F-4DD0-B828-C5A71D0F0801\DismHost.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Java7 Update] => C:\Windows\SysWOW64\SYSUSER-PC.exe [87375872 2015-08-14] ()
HKLM\...\Run: [Java Scheduler 7] => C:\Windows\SysWOW64\Java8.exe
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKU\S-1-5-21-1266270093-2677187802-1309099160-1000\...\Run: [EPSON TX220 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGDL.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.13.1
Tcpip\..\Interfaces\{00CEE3C0-DAEA-444B-B1E3-2150A892F1C5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F080EB85-5CB4-4785-8A87-1A820404FECE}: [DhcpNameServer] 192.168.13.1

Internet Explorer:
==================
HKU\S-1-5-21-1266270093-2677187802-1309099160-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-1266270093-2677187802-1309099160-1000 -> {481379C8-818E-4A2C-9568-98D26857540F} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-13] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-13] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-13] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.6.0.142\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.6.0.142\coFFAddon [2016-06-01]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.6.0.142\coFFAddon

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-13]
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-13]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Norton Security Toolbar) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-06-01]
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02]
CHR Extension: (Planilhas do Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-13]
CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-19]
CHR Extension: (Norton Identity Safe) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-06-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-14]
CHR Extension: (Yahoo Web) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\npdicihegicnhaangkdmcgbjceoemeoo [2015-11-25]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\Exts\Chrome.crx [2016-06-01]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\Exts\Chrome.crx [2016-06-01]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.6.0.142\NS.exe [289080 2016-02-26] (Symantec Corporation)
R2 PP Assistant Service; C:\Program Files (x86)\PP助手2.0\adevicehelpersvr.exe [118496 2014-08-14] () [Arquivo não assinado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.6.0.142\Definitions\BASHDefs\20160521.001\BHDrvx64.sys [1832176 2016-05-20] (Symantec Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1606000.08E\ccSetx64.sys [173808 2016-02-23] (Symantec Corporation)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497392 2016-04-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156912 2016-04-27] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.6.0.142\Definitions\IPSDefs\20160531.001\IDSvia64.sys [876248 2016-05-31] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.6.0.142\Definitions\VirusDefs\20160531.034\ENG64.SYS [138456 2016-05-06] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.6.0.142\Definitions\VirusDefs\20160531.034\EX64.SYS [2148056 2016-05-06] (Symantec Corporation)
R3 SRTSP; C:\Windows\system32\drivers\NSx64\1606000.08E\SRTSP64.SYS [928504 2016-02-23] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1606000.08E\SRTSPX64.SYS [50936 2016-02-23] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1606000.08E\SYMEFASI64.SYS [1621232 2016-02-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [111344 2016-06-01] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\1606000.08E\Ironx64.SYS [295664 2016-02-23] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\NSx64\1606000.08E\SYMNETS.SYS [577768 2016-02-23] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-01 10:14 - 2016-06-01 10:15 - 00014054 _____ C:\Users\User\Downloads\FRST.txt
2016-06-01 10:13 - 2016-06-01 10:14 - 00000000 ____D C:\FRST
2016-06-01 10:13 - 2016-06-01 10:13 - 02383872 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2016-06-01 10:13 - 2016-06-01 10:13 - 01734656 _____ (Farbar) C:\Users\User\Downloads\FRST (1).exe
2016-06-01 10:12 - 2016-06-01 10:12 - 01734656 _____ (Farbar) C:\Users\User\Downloads\FRST.exe
2016-06-01 09:36 - 2016-06-01 09:36 - 00472064 _____ (Microsoft) C:\Windows\autokms.exe
2016-06-01 09:26 - 2016-06-01 09:26 - 00000000 ___SD C:\Users\User\AppData\LocalLow\Temp
2016-06-01 09:26 - 2016-06-01 09:26 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2016-06-01 09:26 - 2016-06-01 09:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-06-01 09:23 - 2016-06-01 09:23 - 22851472 _____ (Malwarebytes ) C:\Users\User\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-06-01 09:17 - 2016-06-01 09:17 - 00000000 ____D C:\Users\User\AppData\Local\CrashDumps
2016-06-01 03:01 - 2016-06-01 03:01 - 00000000 ____D C:\Windows\system32\SPReview
2016-06-01 01:41 - 2016-06-01 01:43 - 00000000 ____D C:\Users\User\AppData\Local\NPE
2016-06-01 01:10 - 2016-06-01 01:10 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security
2016-06-01 01:06 - 2016-06-01 01:07 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-06-01 01:06 - 2016-06-01 01:06 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-01 01:01 - 2016-06-01 01:01 - 00111344 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2016-06-01 01:01 - 2016-06-01 01:01 - 00008214 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2016-06-01 01:01 - 2016-06-01 01:01 - 00003218 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2016-06-01 01:01 - 2016-06-01 01:01 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2016-06-01 01:00 - 2016-06-01 01:00 - 00002379 _____ C:\Users\Public\Desktop\Norton Security.LNK
2016-06-01 00:57 - 2016-06-01 01:00 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2016-06-01 00:57 - 2016-06-01 00:57 - 00000000 ____D C:\Windows\system32\Drivers\NSx64
2016-06-01 00:57 - 2016-06-01 00:57 - 00000000 ____D C:\Program Files (x86)\Norton Security
2016-06-01 00:53 - 2016-06-01 00:54 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2016-06-01 00:47 - 2016-06-01 01:08 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2016-06-01 00:14 - 2016-06-01 00:14 - 00000000 ____D C:\Users\User\Downloads\atv7.BnM
2016-06-01 00:10 - 2016-06-01 09:36 - 00000000 ____D C:\Users\User\Downloads\Ativador
2016-05-29 14:13 - 2016-05-29 14:14 - 01089432 _____ (Symantec Corporation) C:\Users\User\Downloads\NortonNSDownloader (1).exe
2016-05-29 13:54 - 2016-05-29 13:27 - 01089432 _____ (Symantec Corporation) C:\Users\User\Downloads\NortonNSDownloader.exe
2016-05-29 13:33 - 2016-05-29 13:33 - 00000000 ____D C:\Users\Public\Downloads\Norton
2016-05-12 19:22 - 2016-05-12 19:22 - 05995712 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-01 10:15 - 2015-03-13 14:16 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-01 10:13 - 2009-07-14 01:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-01 10:13 - 2009-07-14 01:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-01 10:13 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-06-01 10:06 - 2015-08-14 23:32 - 01690096 _____ (GlavSoft LLC.) C:\Windows\SysWOW64\crov.exe
2016-06-01 10:06 - 2015-08-14 23:32 - 00055632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\makecert.exe
2016-06-01 10:06 - 2015-08-14 23:32 - 00000002 _____ C:\Windows\SysWOW64\USER-PCX.xml
2016-06-01 10:05 - 2014-11-18 11:28 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-01 10:05 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-01 10:05 - 2009-07-14 01:45 - 00406152 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-01 09:23 - 2014-11-18 11:28 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-01 03:09 - 2015-11-03 17:52 - 00000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2016-06-01 01:41 - 2014-11-18 15:32 - 00000000 ____D C:\Users\Todos os Usuários\Norton
2016-06-01 01:41 - 2014-11-18 15:32 - 00000000 ____D C:\ProgramData\Norton
2016-06-01 00:28 - 2014-11-18 11:12 - 00108360 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-01 00:22 - 2015-08-10 22:50 - 00000000 ____D C:\Windows\Minidump
2016-06-01 00:22 - 2014-11-18 16:32 - 00000000 ____D C:\Windows\Panther
2016-06-01 00:11 - 2009-07-29 13:08 - 00663804 _____ C:\Windows\system32\prfh0416.dat
2016-06-01 00:11 - 2009-07-29 13:08 - 00128094 _____ C:\Windows\system32\prfc0416.dat
2016-06-01 00:11 - 2009-07-14 02:13 - 01517030 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-25 14:18 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-05-15 19:52 - 2014-11-18 11:30 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-15 19:52 - 2014-11-18 11:30 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-12 19:22 - 2015-03-13 14:16 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-12 19:22 - 2015-03-13 14:16 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-12 19:22 - 2015-03-13 14:16 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-05-12 17:42 - 2014-11-18 12:58 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-05-11 23:18 - 2014-11-18 11:28 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-11 23:18 - 2014-11-18 11:28 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-11 17:24 - 2014-11-18 11:12 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-05-11 16:51 - 2015-03-13 13:51 - 00000000 ____D C:\Windows\system32\MRT
2016-05-11 16:43 - 2015-03-13 13:51 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-10 12:55 - 2015-07-13 21:51 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-06-01 03:03

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité