cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:15-06-2016
Executado por Samuel Aglio (administrador) em SAMUEL-NOTE (15-06-2016 21:20:49)
Executando a partir de D:\Samuel - Documentos\Downloads
Perfis Carregados: Samuel Aglio (Perfis Disponíveis: Samuel Aglio & Convidado)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7405752 2016-06-13] (AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2016-05-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-05-05] (AVAST Software)
Startup: C:\Users\Samuel Aglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Recorte de tela e Iniciador do OneNote 2007.lnk [2016-05-29]
ShortcutTarget: Recorte de tela e Iniciador do OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicyScripts: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 10.171.172.241
Tcpip\..\Interfaces\{1EA102B3-08C2-4562-A6CD-DB8994D9F451}: [DhcpNameServer] 10.171.172.241

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2016-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-23] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-23] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Samuel Aglio\AppData\Roaming\Mozilla\Firefox\Profiles\yxskzt09.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-27] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-23] (Oracle Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-05]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-05]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-05] (AVAST Software)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [32792 2016-05-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2016-05-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [91168 2016-05-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-05-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [58776 2016-05-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [815792 2016-05-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449640 2016-05-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [124808 2016-05-05] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [221368 2016-05-05] (AVAST Software)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-15 21:17 - 2016-06-15 21:20 - 00000000 ____D C:\FRST
2016-06-15 21:13 - 2016-06-15 21:13 - 00001856 _____ C:\Users\Public\Desktop\PCSX2 1.4.0.lnk
2016-06-15 21:13 - 2016-06-15 21:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2016-06-15 21:13 - 2016-06-15 21:13 - 00000000 ____D C:\Program Files\PCSX2 1.4.0
2016-06-15 21:03 - 2016-06-15 21:04 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-06-15 21:03 - 2016-06-15 21:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-15 19:25 - 2016-06-15 19:25 - 00000000 ____D C:\Windows\system32\appmgmt
2016-06-13 21:26 - 2016-06-15 19:26 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-05-29 21:05 - 2016-05-29 21:05 - 00000000 ____D C:\Users\Todos os Usuários\HP
2016-05-29 21:05 - 2016-05-29 21:05 - 00000000 ____D C:\ProgramData\HP
2016-05-28 16:52 - 2016-06-01 01:05 - 00000000 ____D C:\Program Files\psx emulation cheater
2016-05-28 16:52 - 2016-05-28 16:52 - 00001878 _____ C:\Users\Samuel Aglio\Desktop\psx emulation cheater.lnk
2016-05-28 16:52 - 2016-05-28 16:52 - 00001878 _____ C:\Users\Convidado\Desktop\psx emulation cheater.lnk
2016-05-28 16:52 - 2016-05-28 16:52 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\psx emulation cheater
2016-05-28 16:52 - 2016-05-28 16:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\psx emulation cheater
2016-05-27 21:43 - 2016-06-15 21:16 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-13 00:06 - 2016-05-13 00:06 - 00002147 _____ C:\Users\Public\Desktop\Barbarian Invasion.lnk
2016-05-13 00:06 - 2016-05-13 00:06 - 00002124 _____ C:\Users\Public\Desktop\Rome - Total War.lnk
2016-05-12 23:55 - 2016-05-12 23:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-05-06 21:28 - 2016-05-06 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameVicio
2016-05-06 21:28 - 2016-05-06 21:28 - 00000000 ____D C:\Program Files\GameVicio
2016-05-05 21:35 - 2016-05-05 21:35 - 256527469 _____ C:\Windows\MEMORY.DMP
2016-05-05 21:35 - 2016-05-05 21:35 - 01508304 _____ C:\Windows\Minidump\050516-20810-01.dmp
2016-05-05 21:35 - 2016-05-05 21:35 - 00000000 ____D C:\Windows\Minidump
2016-05-05 21:16 - 2016-06-13 18:25 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-05-05 20:40 - 2016-05-05 20:40 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Local\Macromedia
2016-05-05 20:39 - 2016-05-05 20:39 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Macromedia
2016-05-05 19:45 - 2016-05-13 00:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total War
2016-05-05 19:35 - 2016-05-12 23:55 - 00000000 ____D C:\Program Files\The Creative Assembly
2016-05-05 18:48 - 2016-05-05 18:47 - 00334280 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-05-05 18:47 - 2016-05-05 18:47 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-05-01 19:18 - 2016-05-11 18:46 - 00003584 _____ C:\Users\Convidado\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-01 17:42 - 2016-05-01 17:42 - 00000000 ___SD C:\Users\Convidado\AppData\LocalLow\Temp
2016-05-01 17:21 - 2016-05-01 17:21 - 00000000 ____D C:\Users\Convidado\AppData\Roaming\LibreOffice
2016-05-01 17:19 - 2016-05-01 17:19 - 00001514 _____ C:\Users\Public\Desktop\LibreOffice 5.1.lnk
2016-05-01 17:19 - 2016-05-01 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
2016-05-01 17:17 - 2016-05-01 17:19 - 00000000 ____D C:\Program Files\LibreOffice 5
2016-05-01 17:05 - 2016-05-01 17:11 - 00000000 ____D C:\Users\Convidado\AppData\Local\Mozilla
2016-05-01 17:05 - 2016-05-01 17:05 - 00000000 ____D C:\Users\Convidado\AppData\Roaming\Mozilla
2016-05-01 16:57 - 2016-05-01 16:57 - 00000000 ____D C:\Users\Convidado\AppData\Roaming\Adobe
2016-05-01 16:57 - 2016-05-01 16:57 - 00000000 ____D C:\Users\Convidado\AppData\LocalLow\Adobe
2016-05-01 16:57 - 2016-05-01 16:57 - 00000000 ____D C:\Users\Convidado\AppData\Local\CEF
2016-05-01 16:57 - 2016-05-01 16:57 - 00000000 ____D C:\Users\Convidado\AppData\Local\Adobe
2016-05-01 16:47 - 2016-05-01 18:30 - 00124448 _____ C:\Users\Convidado\AppData\Local\GDIPFONTCACHEV1.DAT
2016-05-01 16:47 - 2016-05-01 16:47 - 00000020 ___SH C:\Users\Convidado\ntuser.ini
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Modelos
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Meus documentos
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Menu Iniciar
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Dados de aplicativos
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Configurações locais
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\AppData\Local\Histórico
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\AppData\Local\Dados de aplicativos
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Ambiente de rede
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 _SHDL C:\Users\Convidado\Ambiente de impressão
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 ____D C:\Users\Convidado\AppData\Roaming\AVAST Software
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 ____D C:\Users\Convidado\AppData\Local\VirtualStore
2016-05-01 16:47 - 2016-05-01 16:47 - 00000000 ____D C:\Users\Convidado
2016-05-01 16:47 - 2009-07-14 05:52 - 00000000 ____D C:\Users\Convidado\AppData\Roaming\Media Center Programs
2016-05-01 16:41 - 2016-05-01 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-05-01 16:40 - 2006-10-26 19:56 - 00032592 _____ (Microsoft Corporation) C:\Windows\system32\msonpmon.dll
2016-05-01 16:38 - 2016-05-01 16:38 - 00000000 ____D C:\Program Files\Microsoft Works
2016-05-01 16:38 - 2016-05-01 16:38 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2016-05-01 16:38 - 2016-05-01 16:38 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-05-01 16:37 - 2016-05-01 16:37 - 00000000 ____D C:\Windows\PCHEALTH
2016-05-01 16:36 - 2016-05-01 16:36 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8
2016-05-01 16:35 - 2016-05-01 16:41 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-05-01 16:35 - 2016-05-01 16:38 - 00000000 ____D C:\Program Files\Microsoft Office
2016-05-01 16:35 - 2016-05-01 16:35 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Local\Microsoft Help
2016-05-01 16:34 - 2016-05-01 16:34 - 00000000 __RHD C:\MSOCache
2016-04-25 00:07 - 2016-05-06 20:05 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\.minecraft
2016-04-24 22:22 - 2016-04-24 22:22 - 00000000 ____D C:\Users\Samuel Aglio\AppData\LocalLow\Adobe
2016-04-24 22:22 - 2016-04-24 22:22 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Local\CEF
2016-04-24 18:45 - 2016-04-24 18:45 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\WinRAR
2016-04-24 18:34 - 2016-04-24 18:34 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-04-23 22:56 - 2010-07-02 10:14 - 00826472 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192se.sys
2016-04-23 22:38 - 2016-05-04 18:29 - 00124448 _____ C:\Users\Samuel Aglio\AppData\Local\GDIPFONTCACHEV1.DAT
2016-04-23 22:38 - 2016-04-23 20:49 - 00000898 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-04-23 22:38 - 2016-04-23 20:49 - 00000898 __RSH C:\ProgramData\ntuser.pol
2016-04-23 22:22 - 2009-02-12 01:00 - 01481728 _____ C:\Windows\system32\LegitCheckControl.dll
2016-04-23 22:22 - 2009-02-12 01:00 - 00323072 _____ C:\Windows\system32\WgaTray.exe
2016-04-23 22:22 - 2009-02-12 01:00 - 00190976 _____ C:\Windows\system32\WgaLogon.dll
2016-04-23 22:20 - 2016-06-15 19:30 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-23 22:15 - 2016-05-28 16:52 - 00000000 ____D C:\Users\Samuel Aglio
2016-04-23 22:15 - 2016-05-05 21:18 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Local\VirtualStore
2016-04-23 22:15 - 2016-04-23 22:15 - 00000020 ___SH C:\Users\Samuel Aglio\ntuser.ini
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Modelos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Meus documentos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Menu Iniciar
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Configurações locais
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\AppData\Local\Histórico
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\AppData\Local\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Ambiente de rede
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Samuel Aglio\Ambiente de impressão
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Modelos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\ProgramData\Modelos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\ProgramData\Documentos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-04-23 22:15 - 2016-04-23 22:15 - 00000000 _SHDL C:\Arquivos de Programas
2016-04-23 22:15 - 2009-07-14 05:52 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Media Center Programs
2016-04-23 22:12 - 2016-04-23 22:12 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-04-23 22:11 - 2016-04-23 22:11 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-04-23 22:10 - 2016-04-23 22:10 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-04-23 22:07 - 2016-04-23 22:15 - 00000000 ____D C:\Windows\Panther
2016-04-23 21:14 - 2016-04-23 21:18 - 00000000 ____D C:\Program Files\Common Files\COMODO
2016-04-23 20:54 - 2016-06-15 19:26 - 00000000 ____D C:\Users\Todos os Usuários\Comodo
2016-04-23 20:54 - 2016-06-15 19:26 - 00000000 ____D C:\ProgramData\Comodo
2016-04-23 20:41 - 2016-04-23 20:41 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-23 20:41 - 2016-04-23 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-23 20:41 - 2016-04-23 20:41 - 00000000 ____D C:\Program Files\WinRAR
2016-04-23 20:37 - 2016-04-23 20:43 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Local\Mozilla
2016-04-23 20:37 - 2016-04-23 20:37 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Mozilla
2016-04-23 20:36 - 2016-06-15 19:26 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-04-23 20:36 - 2016-04-23 20:36 - 00001128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-23 20:36 - 2016-04-23 20:36 - 00001116 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-04-23 20:35 - 2016-06-03 21:33 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-04-23 20:35 - 2016-04-23 21:12 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-04-23 20:35 - 2016-04-23 21:12 - 00000000 ____D C:\ProgramData\Adobe
2016-04-23 20:35 - 2016-04-23 20:35 - 00002024 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-04-23 20:35 - 2016-04-23 20:35 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-04-23 20:35 - 2016-04-23 20:35 - 00000000 ____D C:\Program Files\Adobe
2016-04-23 20:30 - 2016-04-23 20:31 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-04-23 20:30 - 2016-04-23 20:31 - 00000000 ____D C:\ProgramData\Oracle
2016-04-23 20:30 - 2016-04-23 20:30 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-04-23 20:30 - 2016-04-23 20:30 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Sun
2016-04-23 20:30 - 2016-04-23 20:30 - 00000000 ____D C:\Users\Samuel Aglio\AppData\LocalLow\Sun
2016-04-23 20:30 - 2016-04-23 20:30 - 00000000 ____D C:\Users\Samuel Aglio\.oracle_jre_usage
2016-04-23 20:30 - 2016-04-23 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-23 20:30 - 2016-04-23 20:30 - 00000000 ____D C:\Program Files\Common Files\Java
2016-04-23 20:29 - 2016-04-23 20:29 - 00000000 ____D C:\Program Files\Java
2016-04-23 20:27 - 2016-04-23 20:27 - 00000000 ____D C:\Users\Samuel Aglio\AppData\LocalLow\Oracle
2016-04-23 20:25 - 2016-05-27 21:43 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-04-23 20:25 - 2016-05-27 21:43 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-04-23 20:25 - 2016-04-24 22:22 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\Adobe
2016-04-23 20:25 - 2016-04-23 20:25 - 00001125 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-04-23 20:25 - 2016-04-23 20:25 - 00001125 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-23 20:25 - 2016-04-23 20:25 - 00000000 ____D C:\Windows\system32\Macromed
2016-04-23 20:24 - 2016-05-05 18:47 - 00035096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-04-23 20:23 - 2016-05-05 20:39 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Local\Adobe
2016-04-23 20:19 - 2016-04-23 20:19 - 00002086 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-04-23 20:19 - 2016-04-23 20:19 - 00000000 ___SD C:\Users\Samuel Aglio\AppData\LocalLow\Temp
2016-04-23 20:19 - 2016-04-23 20:19 - 00000000 ____D C:\Users\Samuel Aglio\AppData\Roaming\AVAST Software
2016-04-23 20:19 - 2016-04-23 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-04-23 20:19 - 2016-04-23 20:19 - 00000000 ____D C:\Program Files\Common Files\AV
2016-04-23 20:18 - 2016-05-05 18:48 - 00449640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-04-23 20:18 - 2016-05-05 18:48 - 00221368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-04-23 20:18 - 2016-05-05 18:48 - 00124808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-04-23 20:18 - 2016-05-05 18:48 - 00091232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-04-23 20:18 - 2016-05-05 18:48 - 00091168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-04-23 20:18 - 2016-05-05 18:48 - 00058776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-04-23 20:18 - 2016-05-05 18:48 - 00032792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-04-23 20:18 - 2016-05-05 18:47 - 00815792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-04-23 20:14 - 2016-04-23 20:24 - 00000000 ____D C:\Program Files\AVAST Software
2016-04-23 20:13 - 2016-04-23 20:24 - 00000000 ____D C:\Users\Todos os Usuários\AVAST Software
2016-04-23 20:13 - 2016-04-23 20:24 - 00000000 ____D C:\ProgramData\AVAST Software

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-15 19:33 - 2009-07-14 01:34 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-15 19:33 - 2009-07-14 01:34 - 00014192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-15 19:30 - 2009-07-14 05:31 - 00654470 _____ C:\Windows\system32\prfh0416.dat
2016-06-15 19:30 - 2009-07-14 05:31 - 00124922 _____ C:\Windows\system32\prfc0416.dat
2016-06-15 19:30 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2016-06-15 19:26 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-01 21:35 - 2009-07-13 23:37 - 00000000 __RHD C:\Users\Public\Libraries
2016-05-29 21:05 - 2013-01-08 05:02 - 00271032 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpinkstsc111LM.dll
2016-05-29 21:05 - 2013-01-08 05:02 - 00222904 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpinkcoic111.dll
2016-05-29 21:05 - 2009-07-13 21:14 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2016-05-29 21:04 - 2013-01-08 05:02 - 02525368 _____ (Hewlett-Packard Co.) C:\Windows\system32\HPScanTRDrv_DJ1510.dll
2016-05-29 21:04 - 2013-01-08 05:02 - 02220216 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpinkinsc111.exe
2016-05-29 21:04 - 2013-01-08 05:02 - 00420024 _____ (Hewlett-Packard) C:\Windows\system32\HPWia2_DJ1510.dll

Alguns arquivos em TEMP:
====================
C:\Users\Samuel Aglio\AppData\Local\Temp\vcredist_2015_Update_1_x86.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-06-08 22:53

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité