cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:10-06-2016
Executado por Mauricio (administrador) em MAURICIO-PC (11-06-2016 21:47:12)
Executando a partir de C:\Users\Mauricio\Downloads
Perfis Carregados: Mauricio (Perfis Disponíveis: Mauricio)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(BitTorrent Inc.) C:\Users\Mauricio\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Mauricio\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Mauricio\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-05-20] (Oracle Corporation)
HKU\S-1-5-21-4003524503-1740687423-324460066-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A7EFF619-DD10-4624-98BC-66FD9BE85DD9}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-06-11] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-11] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-11] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-11] (Google Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqBHIsAHMsAk..&v=20160607&uid=84768AAD895E57D854A0E6549770C9C4&ptid=epf1&mode=loadm
CHR StartupUrls: Default -> "hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqBHIsAHMsAk..&v=20160607&uid=84768AAD895E57D854A0E6549770C9C4&ptid=epf1&mode=loadm"
CHR Profile: C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-11]
CHR Extension: (Google Docs) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-11]
CHR Extension: (Google Drive) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-11]
CHR Extension: (YouTube) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-11]
CHR Extension: (Planilhas do Google) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-11]
CHR Extension: (PDFConverterHQ) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbbkoefeoahoeacccmoggemldnjccbdf [2016-06-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-11]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-11]
CHR Extension: (Gmail) - C:\Users\Mauricio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-11]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960160 2016-04-22] (IObit)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-11 23:12 - 2016-06-11 18:24 - 00000000 ____D C:\Windows\Panther
2016-06-11 23:03 - 2016-06-11 23:03 - 00000000 ____D C:\Windows.old.002
2016-06-11 22:50 - 2016-06-11 22:50 - 00000000 ____D C:\Windows.old.001
2016-06-11 21:46 - 2016-06-11 21:47 - 00013301 _____ C:\Users\Mauricio\Downloads\Addition.txt
2016-06-11 21:45 - 2016-06-11 21:47 - 00006690 _____ C:\Users\Mauricio\Downloads\FRST.txt
2016-06-11 21:45 - 2016-06-11 21:47 - 00000000 ____D C:\FRST
2016-06-11 21:44 - 2016-06-11 21:44 - 02385408 _____ (Farbar) C:\Users\Mauricio\Desktop\FRST64.exe
2016-06-11 21:40 - 2016-06-11 21:40 - 01192976 _____ (Microsoft Corporation) C:\Users\Mauricio\Downloads\sdksetup.exe
2016-06-11 21:34 - 2016-06-11 21:34 - 00000000 ____D C:\Users\Mauricio\Desktop\Nova pasta
2016-06-11 21:33 - 2016-06-11 21:34 - 12805918 _____ C:\Users\Mauricio\Downloads\citra-latest-windows-amd64.7z
2016-06-11 21:26 - 2016-06-11 21:26 - 14572000 _____ (Microsoft Corporation) C:\Users\Mauricio\Downloads\vc_redist.x64.exe
2016-06-11 21:26 - 2016-06-11 21:26 - 13767776 _____ (Microsoft Corporation) C:\Users\Mauricio\Downloads\vc_redist.x86.exe
2016-06-11 21:17 - 2016-06-11 21:17 - 01005170 _____ C:\Users\Mauricio\Downloads\Windows8.1-KB2999226-x64.msu
2016-06-11 21:08 - 2016-06-11 21:08 - 00000000 ____D C:\37691e2e5adf16d93f2ca4f0a52d016b
2016-06-11 21:05 - 2016-06-11 21:07 - 4292116480 _____ C:\Users\Mauricio\Downloads\W7-COMPLETO-x86-x64-AUTO-ATIVAÇÃO-downloadsfulltorrent.blogspot.com.iso
2016-06-11 21:04 - 2016-06-11 21:42 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-06-11 21:04 - 2016-06-11 21:42 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-11 21:04 - 2016-06-11 21:04 - 00002113 _____ C:\Users\Public\Desktop\WinDS PRO.lnk
2016-06-11 21:04 - 2016-06-11 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDS PRO
2016-06-11 21:03 - 2016-06-11 21:08 - 00000000 ____D C:\Users\Public\Documents\WinDS PRO
2016-06-11 21:03 - 2016-06-11 21:03 - 43698377 _____ C:\Users\Mauricio\Downloads\WinDS PRO 2016.04.08.zip
2016-06-11 20:56 - 2016-06-11 21:04 - 00000000 ____D C:\Users\Mauricio\AppData\LocalLow\uTorrent
2016-06-11 20:56 - 2016-06-11 20:58 - 00000000 ___SD C:\Users\Mauricio\AppData\LocalLow\Temp
2016-06-11 20:56 - 2016-06-11 20:56 - 00002616 _____ C:\Users\Mauricio\Desktop\µTorrent.lnk
2016-06-11 20:56 - 2016-06-11 20:56 - 00002616 _____ C:\Users\Mauricio\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-06-11 20:54 - 2016-06-11 21:47 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\uTorrent
2016-06-11 20:54 - 2016-06-11 20:54 - 02530304 _____ (BitTorrent Inc.) C:\Users\Mauricio\Downloads\uTorrent.exe
2016-06-11 20:40 - 2016-06-11 20:40 - 00000000 ____D C:\Users\Mauricio\AppData\Local\WpfApplication1
2016-06-11 20:28 - 2016-06-11 20:28 - 01565646 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-06-11 20:25 - 2016-06-11 20:40 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\Ikara Software Limited
2016-06-11 20:18 - 2016-06-11 20:18 - 01821192 _____ (Microsoft Corporation) C:\Users\Mauricio\Downloads\vcredist_x86.exe
2016-06-11 20:16 - 2016-06-11 20:16 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-06-11 20:16 - 2016-06-11 20:16 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\Sun
2016-06-11 20:16 - 2016-06-11 20:16 - 00000000 ____D C:\Users\Mauricio\AppData\LocalLow\Sun
2016-06-11 20:16 - 2016-06-11 20:16 - 00000000 ____D C:\Users\Mauricio\.oracle_jre_usage
2016-06-11 20:16 - 2016-06-11 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-11 20:15 - 2016-06-11 20:15 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-06-11 20:15 - 2016-06-11 20:15 - 00000000 ____D C:\Users\Mauricio\AppData\LocalLow\Oracle
2016-06-11 20:15 - 2016-06-11 20:15 - 00000000 ____D C:\ProgramData\Oracle
2016-06-11 20:15 - 2016-06-11 20:15 - 00000000 ____D C:\Program Files\Java
2016-06-11 20:14 - 2016-06-11 20:15 - 57667136 _____ (Oracle Corporation) C:\Users\Mauricio\Downloads\jre-8u91-windows-x64.exe
2016-06-11 20:14 - 2016-06-11 20:14 - 62034496 _____ (Oracle Corporation) C:\Users\Mauricio\Downloads\jre-8u92-windows-x64.exe
2016-06-11 20:12 - 2016-06-11 20:12 - 00889416 _____ (Microsoft Corporation) C:\Users\Mauricio\Downloads\dotNetFx40_Full_setup.exe
2016-06-11 20:09 - 2016-06-11 20:09 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\WinRAR
2016-06-11 20:09 - 2016-06-11 20:09 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-11 20:09 - 2016-06-11 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-11 20:08 - 2016-06-11 20:09 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-06-11 20:06 - 2016-06-11 20:08 - 01808528 _____ C:\Users\Mauricio\Downloads\wrar531.exe
2016-06-11 20:04 - 2016-06-11 20:06 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2016-06-11 20:04 - 2016-06-11 20:06 - 00000000 ____D C:\ProgramData\ProductData
2016-06-11 20:04 - 2016-06-11 20:04 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2016-06-11 20:04 - 2016-06-11 20:04 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\ProductData
2016-06-11 20:03 - 2016-06-11 20:04 - 00000000 ____D C:\Users\Mauricio\AppData\LocalLow\IObit
2016-06-11 20:03 - 2016-06-11 20:03 - 00000000 ____D C:\Users\Todos os Usuários\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-06-11 20:03 - 2016-06-11 20:03 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-06-11 20:02 - 2016-06-11 20:15 - 00000000 ____D C:\Program Files (x86)\IObit
2016-06-11 20:02 - 2016-06-11 20:04 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2016-06-11 20:02 - 2016-06-11 20:04 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\IObit
2016-06-11 20:02 - 2016-06-11 20:04 - 00000000 ____D C:\ProgramData\IObit
2016-06-11 19:58 - 2016-06-11 19:58 - 00315624 _____ (Microsoft Corporation) C:\Users\Mauricio\Downloads\dxwebsetup.exe
2016-06-11 19:58 - 2016-06-11 19:58 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-06-11 18:31 - 2016-06-11 18:31 - 00002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-11 18:31 - 2016-06-11 18:31 - 00002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-11 18:30 - 2016-06-11 21:13 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-11 18:30 - 2016-06-11 20:32 - 00000000 ____D C:\Users\Mauricio\AppData\Local\Google
2016-06-11 18:30 - 2016-06-11 19:13 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-11 18:30 - 2016-06-11 19:08 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-11 18:30 - 2016-06-11 19:08 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-11 18:30 - 2016-06-11 18:31 - 00000000 ____D C:\Program Files (x86)\Google
2016-06-11 18:30 - 2016-06-11 18:30 - 00057560 _____ C:\Users\Mauricio\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-11 18:30 - 2016-06-11 18:30 - 00000000 ____D C:\Users\Mauricio\AppData\Local\Deployment
2016-06-11 18:30 - 2016-06-11 18:30 - 00000000 ____D C:\Users\Mauricio\AppData\Local\Apps\2.0
2016-06-11 18:26 - 2016-06-11 18:26 - 00001419 _____ C:\Users\Mauricio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-11 18:26 - 2016-06-11 18:26 - 00001385 _____ C:\Users\Mauricio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-06-11 18:26 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-06-11 18:26 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-06-11 18:26 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-06-11 18:26 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-06-11 18:25 - 2016-06-11 18:25 - 00000020 ___SH C:\Users\Mauricio\ntuser.ini
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Modelos
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Meus documentos
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Menu Iniciar
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Documents\Minhas músicas
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Documents\Minhas imagens
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Documents\Meus vídeos
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Dados de aplicativos
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Configurações locais
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\AppData\Local\Histórico
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\AppData\Local\Dados de aplicativos
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Ambiente de rede
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 _SHDL C:\Users\Mauricio\Ambiente de impressão
2016-06-11 18:25 - 2016-06-11 18:25 - 00000000 ____D C:\Users\Mauricio\AppData\Local\VirtualStore
2016-06-11 18:25 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-06-11 18:25 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-06-11 18:25 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-06-11 18:25 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-06-11 18:25 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-06-11 18:25 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-06-11 18:25 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-06-11 18:25 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-06-11 18:25 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-06-11 18:25 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-06-11 18:25 - 2010-11-21 04:16 - 00000000 ____D C:\Users\Mauricio\AppData\Roaming\Media Center Programs
2016-06-11 18:24 - 2016-06-11 20:16 - 00000000 ____D C:\Users\Mauricio
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Modelos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\ProgramData\Modelos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\ProgramData\Documentos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-06-11 18:24 - 2016-06-11 18:24 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-06-11 18:17 - 2016-06-11 18:17 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-06-11 18:17 - 2016-06-11 18:17 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-06-11 18:15 - 2016-06-11 18:15 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-06-09 20:30 - 2016-06-09 20:30 - 00000000 ____D C:\Windows.old.000
2016-06-09 16:49 - 2016-06-09 17:01 - 00000000 ____D C:\f1b9c1e4ec1018a20163
2016-06-08 18:39 - 2016-06-08 18:39 - 00000000 ____D C:\Windows.old
2016-06-08 12:36 - 2016-06-08 12:47 - 00000000 ____D C:\123ac7ecf138a270bc5560
2016-06-07 13:46 - 2016-06-07 13:46 - 00000000 ____D C:\uninst
2016-05-24 10:53 - 2016-05-24 10:55 - 00000000 ____D C:\18bd756f08724caaec
2016-05-21 15:27 - 2016-06-10 15:02 - 00000000 ____D C:\extensions
2016-05-21 15:27 - 2016-05-21 15:27 - 00000000 ____D C:\searchplugins
2016-05-15 16:50 - 2016-04-08 17:46 - 43946452 _____ (WinDS PRO Central ) C:\WinDS PRO 2016.04.08.exe
2016-05-12 14:42 - 2016-05-12 16:43 - 00000000 ____D C:\AeriaGames
2016-05-12 13:48 - 2016-06-10 17:43 - 00000000 ____D C:\MoveGames

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-11 23:12 - 2009-07-14 02:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-06-11 20:28 - 2011-01-27 20:11 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-06-11 20:28 - 2011-01-27 20:11 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-06-11 20:28 - 2009-07-14 02:13 - 01638428 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-11 20:28 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-06-11 20:22 - 2009-07-14 01:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-11 20:22 - 2009-07-14 01:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-11 18:25 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache
2016-06-11 18:24 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-11 18:24 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Windows NT
2016-06-11 18:22 - 2009-07-14 01:45 - 00274824 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-11 18:17 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-11 18:16 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-06-11 18:14 - 2010-11-21 04:16 - 00000000 ____D C:\Windows\CSC
2016-06-06 16:21 - 2015-03-06 19:39 - 00000000 ____D C:\Joymax
2016-05-23 03:04 - 2014-08-18 20:42 - 00000000 ____D C:\fea20a25fc5e74ec73b421f95fa492

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-06-11 18:13

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité