cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:16-06-2016 01
Executado por YUPIHI (administrador) em YUPIHI-PC (17-06-2016 23:33:15)
Executando a partir de C:\Users\YUPIHI\Desktop
Perfis Carregados: YUPIHI (Perfis Disponíveis: YUPIHI)
Platform: Windows 7 Home Premium (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\FPSRunner32.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\x64\FPSRunner64.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzFpsApplet\RzFpsApplet.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\YUPIHI\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\YUPIHI\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\YUPIHI\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\YUPIHI\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\YUPIHI\AppData\Local\Razer\InGameEngine\cache\RzFpsApplet\rzcefrenderprocess.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, Inc.) C:\Program Files\McAfee\VUL\McVulCtr.exe
(McAfee, Inc.) C:\Program Files\McAfee\VUL\McVulAlert.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe [719272 2015-04-02] (McAfee, Inc.)
HKU\S-1-5-21-724740714-3565839479-3563188118-1000\...\Run: [HP Deskjet 3510 series (NET)] => C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B6637057-B3B1-4427-B171-23B4B68896E5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C294A5A6-BBBD-49D7-B9BE-E50BC00DC3DD}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{F704D5EC-DCDB-4001-90BE-3886F1923227}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-724740714-3565839479-3563188118-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com.br/
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-02-12] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2015-09-03] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2015-09-03] (McAfee, Inc.)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\YUPIHI\AppData\Roaming\Mozilla\Firefox\Profiles\m3h800iw.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Keyword.URL: hxxps://www.google.com/search?q=
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-09-03] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-09-03] ()
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-06-07]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-06-06] [não assinado]

Chrome:
=======
CHR Profile: C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-26]
CHR Extension: (Dictanote - Speech Recognizer) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjekmpappghadlogpigifkghlmebjk [2016-05-11]
CHR Extension: (Google Drive) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-26]
CHR Extension: (YouTube) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-26]
CHR Extension: (Slither.io Mods) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlenmmkifnhllnjfoangnjokeadhbbk [2016-05-12]
CHR Extension: (Documentos Google off-line) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-26]
CHR Extension: (Reconhecimento De Voz E Tradução) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjgohjmefljmabkekbfgfhockfegohfp [2016-05-11]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\YUPIHI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-26]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-06]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-06]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [154856 2016-02-12] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [754792 2015-09-03] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe [207344 2015-06-04] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [612688 2015-04-09] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-02-17] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-04-01] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-03-07] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [190120 2016-01-29] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [132864 2016-02-26] (Razer Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [68784 2015-02-17] (McAfee, Inc.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2016-03-26] (REALiX(tm))
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419624 2016-03-11] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349480 2016-03-11] (McAfee, Inc.)
R0 mfedisk; C:\Windows\System32\DRIVERS\mfedisk.sys [101872 2015-02-17] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [488000 2015-02-17] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [842536 2016-03-11] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [482600 2015-01-16] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [100720 2015-01-16] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [340448 2015-02-17] (McAfee, Inc.)
S3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [416768 2009-06-10] (Realtek Semiconductor Corporation )
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [130880 2016-02-24] (Razer, Inc.)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-17 23:33 - 2016-06-17 23:33 - 00016398 _____ C:\Users\YUPIHI\Desktop\FRST.txt
2016-06-17 23:32 - 2016-06-17 23:33 - 00000000 ____D C:\FRST
2016-06-17 23:32 - 2016-06-17 23:32 - 02386944 _____ (Farbar) C:\Users\YUPIHI\Desktop\FRST64.exe
2016-06-17 23:29 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-06-17 23:29 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-06-17 23:29 - 2007-01-08 15:30 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-06-17 23:29 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-06-17 23:29 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-06-17 23:29 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-06-17 23:29 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-06-17 23:29 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-06-17 23:29 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-06-17 23:29 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-06-17 23:29 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-06-17 23:29 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-06-17 23:29 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-06-17 23:29 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-06-17 23:29 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-06-17 23:29 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-06-17 23:29 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-06-17 23:29 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-06-17 23:29 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-06-17 23:29 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-06-17 23:29 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-06-17 23:29 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-06-17 23:28 - 2016-06-17 23:28 - 01034556 _____ C:\Users\YUPIHI\Downloads\Windows6.1-KB2999226-x64.msu
2016-06-17 23:27 - 2016-06-17 23:29 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-06-17 23:27 - 2016-06-17 23:27 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-06-17 23:25 - 2016-06-17 23:25 - 14749120 _____ (Microsoft Corporation) C:\Users\YUPIHI\Downloads\vc_redist.x64.exe
2016-06-17 23:12 - 2016-06-17 23:25 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-06-17 23:12 - 2016-06-17 23:25 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-17 23:09 - 2016-06-17 23:27 - 00002152 _____ C:\Users\Public\Desktop\WinDS PRO.lnk
2016-06-17 23:09 - 2016-06-17 23:27 - 00000000 ____D C:\Users\Public\Documents\WinDS PRO
2016-06-17 23:09 - 2016-06-17 23:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDS PRO
2016-06-17 23:02 - 2016-06-17 23:03 - 43698377 _____ C:\Users\YUPIHI\Downloads\WinDS PRO 2016.04.08.zip
2016-06-15 19:01 - 2016-06-15 19:02 - 02679302 _____ C:\Users\YUPIHI\Downloads\13470038_997687553618218_645770075_n.mp4
2016-06-15 17:13 - 2016-06-15 17:13 - 05545354 _____ C:\Users\YUPIHI\Downloads\Atitude é tudo - Motivação..mp4
2016-06-15 17:12 - 2016-06-15 17:12 - 25292022 _____ C:\Users\YUPIHI\Downloads\Vídeo Oficial - Eleito o Melhor Vídeo Motivacional 2015 - autor Deivison Pedroza.mp4
2016-06-14 15:23 - 2016-06-14 17:40 - 00000000 ____D C:\Users\YUPIHI\AppData\Roaming\TS3Client
2016-06-14 15:22 - 2016-06-14 15:22 - 00001211 _____ C:\Users\YUPIHI\Desktop\TeamSpeak 3 Client.lnk
2016-06-14 15:22 - 2016-06-14 15:22 - 00001169 _____ C:\Users\YUPIHI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-06-14 15:22 - 2016-06-14 15:22 - 00000000 ____D C:\Users\YUPIHI\AppData\Local\TeamSpeak 3 Client
2016-06-14 15:21 - 2016-06-14 15:22 - 31581784 _____ (TeamSpeak Systems GmbH) C:\Users\YUPIHI\Downloads\TeamSpeak3-Client-win64-3.0.19.1.exe
2016-06-13 21:31 - 2016-06-13 21:31 - 02062675 _____ C:\Users\YUPIHI\Downloads\video-1465863545.mp4
2016-06-12 21:21 - 2016-06-12 21:26 - 02359350 _____ C:\Users\YUPIHI\Desktop\11.bmp
2016-06-12 21:15 - 2016-06-12 21:15 - 00214439 _____ C:\Users\YUPIHI\Desktop\10289.img_148573204381695 (1).jpeg
2016-06-12 21:01 - 2016-06-12 21:01 - 00214439 _____ C:\Users\YUPIHI\Desktop\10289.img_148573204381695.jpeg
2016-06-12 19:44 - 2016-06-12 19:51 - 00000000 ____D C:\Users\YUPIHI\AppData\Local\Mozilla
2016-06-12 19:44 - 2016-06-12 19:45 - 00000000 ____D C:\Users\YUPIHI\AppData\Roaming\Mozilla
2016-06-12 19:44 - 2016-06-12 19:44 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-06-12 19:44 - 2016-06-12 19:44 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-06-12 19:44 - 2016-06-12 19:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-12 19:44 - 2016-06-12 19:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-12 19:43 - 2016-06-12 19:43 - 00242296 _____ C:\Users\YUPIHI\Downloads\Firefox Setup Stub 47.0.exe
2016-06-12 19:32 - 2016-06-12 21:54 - 00000000 ____D C:\Users\YUPIHI\Desktop\Yaena
2016-06-12 12:48 - 2016-06-12 12:48 - 00090818 _____ C:\Users\YUPIHI\Desktop\woman-jesus-feet-e1395629904443.jpeg
2016-06-07 22:01 - 2016-06-07 22:02 - 05006268 _____ C:\Users\YUPIHI\Downloads\videoplayback.m4a
2016-06-07 22:00 - 2016-06-07 22:01 - 14909206 _____ C:\Users\YUPIHI\Downloads\Padre Fábio de Melo - A Liturgia do Tempo (Poema) (1).mp4
2016-06-07 21:52 - 2016-06-07 21:52 - 49757826 _____ C:\Users\YUPIHI\Downloads\Padre Fábio de Melo - A Liturgia do Tempo (Poema).mp4
2016-06-07 18:14 - 2016-06-15 05:38 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForYUPIHI.job
2016-06-07 18:14 - 2016-06-14 15:14 - 00003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForYUPIHI
2016-06-06 22:20 - 2016-06-06 22:20 - 05509549 _____ C:\Users\YUPIHI\Downloads\Touch the Sky - Alex Zanardi - Legendas em Português.3gp
2016-06-06 22:16 - 2016-06-06 22:16 - 15947086 _____ C:\Users\YUPIHI\Downloads\Touch the Sky - Alex Zanardi - Legendas em Português.mp4
2016-06-06 21:02 - 2016-06-06 21:02 - 00001916 _____ C:\Users\Public\Desktop\McAfee Internet Security.lnk
2016-06-06 21:02 - 2016-06-06 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-06-06 21:01 - 2016-06-06 21:01 - 00000000 ____D C:\Program Files (x86)\McAfee.com
2016-06-06 21:01 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2016-06-06 20:59 - 2016-06-07 05:42 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-06-06 20:59 - 2016-06-06 21:02 - 00000000 ____D C:\Program Files\McAfee
2016-06-06 20:59 - 2016-06-06 20:59 - 00000000 ____D C:\Program Files\McAfee.com
2016-06-06 20:59 - 2016-06-06 20:59 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-06 20:42 - 2016-06-06 21:01 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-06-06 20:42 - 2016-03-07 15:38 - 00277744 _____ (McAfee, Inc.) C:\Windows\system32\mfevtps.exe
2016-06-06 20:38 - 2016-06-06 20:39 - 08111880 _____ (McAfee, Inc.) C:\Users\YUPIHI\Downloads\Setup_serial_dCcqfDJndnyMaC__nTuqUw2_key.exe
2016-06-06 19:30 - 2016-06-06 19:30 - 00866766 _____ C:\Users\YUPIHI\Desktop\buscaglia_happiness_quote2.bmp
2016-06-05 10:27 - 2016-06-05 10:27 - 00000461 _____ C:\Users\YUPIHI\Desktop\animes.txt
2016-05-31 12:04 - 2016-05-31 12:04 - 00000000 ____D C:\Program Files (x86)\GPLGS
2016-05-31 12:03 - 2016-05-31 12:03 - 02570096 _____ (Acro Software Inc. ) C:\Users\YUPIHI\Downloads\CuteWriter.exe
2016-05-31 12:03 - 2016-05-31 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
2016-05-31 12:03 - 2016-05-31 12:03 - 00000000 ____D C:\Program Files (x86)\Acro Software
2016-05-31 12:03 - 2016-01-22 16:57 - 00089008 _____ C:\Windows\system32\cpwmon64.dll
2016-05-31 11:35 - 2016-05-31 11:35 - 02383074 _____ C:\Users\YUPIHI\Documents\Como Fazer Amigos e Influenciar Pessoas - Dale Carnegie.pdf
2016-05-31 10:53 - 2016-05-31 10:53 - 00001262 _____ C:\Users\YUPIHI\Desktop\Auslogics BoostSpeed 8.lnk
2016-05-31 10:53 - 2016-05-31 10:53 - 00000000 ____D C:\Windows\System32\Tasks\Auslogics
2016-05-31 10:51 - 2016-05-31 10:52 - 14792088 _____ (Auslogics Labs Pty Ltd ) C:\Users\YUPIHI\Downloads\boost-speed-setup.exe
2016-05-31 10:50 - 2016-05-31 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2016-05-31 10:50 - 2016-05-31 10:53 - 00000000 ____D C:\Program Files (x86)\Auslogics
2016-05-31 10:50 - 2016-05-31 10:50 - 00001400 _____ C:\Users\YUPIHI\Desktop\Auslogics Duplicate File Finder.lnk
2016-05-31 10:47 - 2016-05-31 10:47 - 00000000 ____D C:\Users\Todos os Usuários\Auslogics
2016-05-31 10:47 - 2016-05-31 10:47 - 00000000 ____D C:\ProgramData\Auslogics
2016-05-31 10:45 - 2016-05-31 10:45 - 07569760 _____ (Auslogics Labs Pty Ltd ) C:\Users\YUPIHI\Downloads\duplicate-file-finder-setup.exe
2016-05-30 19:33 - 2016-05-30 19:33 - 00000000 ____D C:\Users\YUPIHI\AppData\Roaming\WinRAR
2016-05-30 19:27 - 2016-05-30 19:33 - 00000000 ____D C:\Users\YUPIHI\Desktop\Criar programa portatil
2016-05-30 00:26 - 2014-08-20 02:34 - 22642511 _____ C:\Users\YUPIHI\Documents\Programando_o_Excel_Vba_Para_Leigos_-_2ª_Ed_2013.pdf
2016-05-30 00:24 - 2016-05-30 00:24 - 08403452 _____ C:\Users\YUPIHI\Documents\Access VBA Programming for Dummies.pdf
2016-05-30 00:23 - 2016-05-30 00:23 - 05027987 _____ C:\Users\YUPIHI\Documents\MacroExcel.pdf
2016-05-30 00:22 - 2016-05-30 00:26 - 12546642 _____ C:\Users\YUPIHI\Downloads\programando.excel.rar
2016-05-30 00:19 - 2016-05-30 00:20 - 03176751 _____ C:\Users\YUPIHI\Downloads\codevba.zip
2016-05-27 18:22 - 2016-05-27 18:22 - 00000712 _____ C:\Users\YUPIHI\Desktop\0000_apos apgar - Atalho.lnk
2016-05-24 23:45 - 2016-05-24 23:45 - 01001747 _____ C:\Users\YUPIHI\Documents\Ansiedade - Como Enfrentar o Ma - Augusto Cury (1).pdf
2016-05-24 23:41 - 2016-05-24 23:41 - 01001747 _____ C:\Users\YUPIHI\Documents\Ansiedade - Como Enfrentar o Ma - Augusto Cury.pdf
2016-05-24 16:28 - 2016-05-27 18:08 - 00000000 ____D C:\Users\YUPIHI\Downloads\Dr House

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-06-17 23:30 - 2009-07-14 01:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-17 23:30 - 2009-07-14 01:45 - 00014336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-17 22:49 - 2016-03-26 16:38 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-17 22:49 - 2016-03-26 16:37 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-17 22:48 - 2016-03-26 16:37 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-17 17:47 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-15 22:15 - 2016-03-29 18:47 - 00000000 ____D C:\Users\YUPIHI\AppData\Roaming\Skype
2016-06-15 16:57 - 2016-04-17 09:40 - 00000000 ____D C:\Users\YUPIHI\AppData\Roaming\uTorrent
2016-06-14 15:30 - 2009-07-29 12:49 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-06-14 15:30 - 2009-07-29 12:49 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-06-14 15:30 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-14 15:30 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-06-13 20:37 - 2016-04-16 13:34 - 00000000 ___SD C:\Users\YUPIHI\AppData\LocalLow\Temp
2016-06-07 18:14 - 2016-03-28 14:53 - 00000000 ____D C:\Users\Todos os Usuários\Hewlett-Packard
2016-06-07 18:14 - 2016-03-28 14:53 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-06-07 18:14 - 2016-03-28 14:26 - 00000000 ____D C:\Users\YUPIHI\AppData\Local\Hewlett-Packard
2016-06-07 18:14 - 2016-03-28 14:18 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2016-06-07 18:00 - 2016-03-26 17:07 - 00000000 ____D C:\Users\Todos os Usuários\McAfee
2016-06-07 18:00 - 2016-03-26 17:07 - 00000000 ____D C:\ProgramData\McAfee
2016-06-06 20:36 - 2009-07-14 02:08 - 00000000 ____D C:\Users\Administrator
2016-06-06 20:26 - 2016-04-20 22:20 - 00000000 ____D C:\Users\YUPIHI\Desktop\COISAS DO PAI
2016-06-06 20:15 - 2016-04-16 14:12 - 00000000 ____D C:\Users\YUPIHI\AppData\Roaming\MPC-HC
2016-06-06 19:17 - 2016-05-02 19:10 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-06-04 11:18 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-06-01 21:14 - 2016-04-01 23:40 - 00000000 ____D C:\Users\YUPIHI\AppData\Local\ElevatedDiagnostics
2016-05-31 11:41 - 2016-04-03 22:43 - 00000000 ____D C:\Users\YUPIHI\Downloads\1

==================== Arquivos na raiz de alguns diretórios =======

2016-03-28 14:35 - 2016-03-28 14:35 - 0000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-06-15 20:01

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité