cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20-07-2016
Executado por Suporte (administrador) em SUPORTE-PC (21-07-2016 20:09:30)
Executando a partir de C:\Users\Suporte\Downloads
Perfis Carregados: Suporte (Perfis Disponíveis: Suporte)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
() C:\Windows\KMS-R@1n.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Windows\KMS-R@1nhook.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7640944 2014-09-29] (Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-06-20] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1504277412-2991787622-1251229655-1000\...\Run: [Google Update] => C:\Users\Suporte\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-06-20] (Google Inc.)
HKU\S-1-5-21-1504277412-2991787622-1251229655-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.)
IFEO\OSPPSVC.EXE: [Debugger] KMS-R@1nhook.exe
IFEO\SppSvc.exe: [Debugger] KMS-R@1nhook.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-06-20] (AVAST Software)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B7D5DA95-7245-427D-8E89-BF67173FD204}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1504277412-2991787622-1251229655-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-07-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-06-20] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-06-20] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-07-04] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-20] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-07-04] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-20] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-07-04] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-07-04] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-04] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-04] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-04] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-04] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Suporte\AppData\Roaming\Mozilla\Firefox\Profiles\askfroe2.default
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-20] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-04] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-07-04] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1504277412-2991787622-1251229655-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Suporte\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-1504277412-2991787622-1251229655-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Suporte\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-20] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-20]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-06-20]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR Profile: C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-20]
CHR Extension: (Google Docs) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-20]
CHR Extension: (Google Drive) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-20]
CHR Extension: (YouTube) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-20]
CHR Extension: (Avast SafePrice) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-06-25]
CHR Extension: (Planilhas do Google) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-20]
CHR Extension: (Documentos Google off-line) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-20]
CHR Extension: (Avast Online Security) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-20]
CHR Extension: (Skype) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-06-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-20]
CHR Extension: (Gmail) - C:\Users\Suporte\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-20]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-06-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-20]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]
StartMenuInternet: Google Chrome.RJFYJEALS7DT2AMBMXVE5KYD5Q - C:\Users\Suporte\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-06-20] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2950848 2016-07-04] (Microsoft Corporation)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2016-06-20] () [Arquivo não assinado]
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU Co., LTD.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-06-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-06-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-06-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-06-20] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-01] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33008 2013-05-07] (Synaptics Incorporated)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-21 20:06 - 2016-07-21 20:09 - 00015876 _____ C:\Users\Suporte\Downloads\FRST.txt
2016-07-21 20:06 - 2016-07-21 20:07 - 00022636 _____ C:\Users\Suporte\Downloads\Addition.txt
2016-07-21 20:05 - 2016-07-21 20:09 - 00000000 ____D C:\FRST
2016-07-21 20:05 - 2016-07-21 20:05 - 02393600 _____ (Farbar) C:\Users\Suporte\Downloads\FRST64.exe
2016-07-21 20:04 - 2016-07-21 20:04 - 01743872 _____ (Farbar) C:\Users\Suporte\Downloads\FRST.exe
2016-07-21 19:57 - 2016-07-21 19:57 - 03012080 _____ (Blizzard Entertainment) C:\Users\Suporte\Downloads\Battle.net-Setup (5).exe
2016-07-21 19:56 - 2016-07-21 19:57 - 03012080 _____ (Blizzard Entertainment) C:\Users\Suporte\Downloads\Battle.net-Setup (4).exe
2016-07-21 19:35 - 2016-07-21 19:36 - 03012080 _____ (Blizzard Entertainment) C:\Users\Suporte\Downloads\Battle.net-Setup (3).exe
2016-07-21 19:35 - 2016-07-21 19:35 - 03012080 _____ (Blizzard Entertainment) C:\Users\Suporte\Downloads\Battle.net-Setup (2).exe
2016-07-21 19:31 - 2016-07-21 19:31 - 03012080 _____ (Blizzard Entertainment) C:\Users\Suporte\Downloads\Battle.net-Setup (1).exe
2016-07-21 19:07 - 2016-07-21 19:07 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-21 19:07 - 2016-07-21 19:07 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-11 20:41 - 2016-07-11 20:42 - 00000046 _____ C:\Users\Suporte\Desktop\Novo Documento de Texto.txt
2016-07-10 10:53 - 2016-07-10 12:46 - 00000000 ____D C:\Users\Suporte\Downloads\Supergirl.1984.720p.BluRay.DUBLADO-LiPEH
2016-07-10 09:14 - 2016-07-10 09:48 - 00000000 ____D C:\Users\Suporte\Downloads\Batman vs. Superman - A Origm da Junstiça ''Versão Estendida'' 720p (2016) Dual Áudio BluRay 5.1 -- By - Lucas Firmo
2016-07-10 09:13 - 2016-07-16 01:54 - 00000000 ____D C:\Users\Suporte\AppData\Roaming\qBittorrent
2016-07-10 09:13 - 2016-07-10 09:17 - 00000000 ____D C:\Users\Suporte\AppData\Local\qBittorrent
2016-07-10 09:11 - 2016-07-10 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2016-07-10 09:11 - 2016-07-10 09:11 - 00000000 ____D C:\Program Files (x86)\qBittorrent
2016-07-10 09:04 - 2016-07-10 09:06 - 16471946 _____ (The qBittorrent project) C:\Users\Suporte\Downloads\qbittorrent_3.3.5_setup.exe
2016-06-23 23:42 - 2016-07-12 20:42 - 00000000 ____D C:\Users\Suporte\AppData\Roaming\vlc
2016-06-22 20:31 - 2016-06-22 20:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-06-21 21:06 - 2016-06-21 21:06 - 00001195 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2016-06-21 21:06 - 2016-06-21 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2016-06-21 18:46 - 2016-07-21 19:07 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2016-06-21 18:46 - 2016-07-08 21:38 - 00000000 ____D C:\Users\Suporte\Documents\Heroes of the Storm

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-21 20:02 - 2016-06-20 20:03 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-07-21 19:41 - 2016-06-20 13:31 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1504277412-2991787622-1251229655-1000UA.job
2016-07-21 19:26 - 2016-06-20 20:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-07-21 19:16 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-21 19:16 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-21 19:11 - 2016-06-20 13:35 - 00000000 ____D C:\Users\Suporte\AppData\Roaming\Skype
2016-07-21 19:09 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-21 19:07 - 2016-06-20 20:07 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2016-07-21 19:06 - 2016-06-20 20:05 - 00000000 ____D C:\Users\Suporte\AppData\Local\Battle.net
2016-07-21 18:52 - 2016-06-20 14:18 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-07-20 20:36 - 2016-06-20 20:05 - 00000000 ____D C:\Users\Suporte\AppData\Roaming\Battle.net
2016-07-20 19:42 - 2016-06-20 13:47 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-07-20 19:42 - 2016-06-20 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-07-20 19:40 - 2016-06-20 13:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-07-18 00:45 - 2016-06-20 20:16 - 00001252 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2016-07-17 13:41 - 2016-06-20 13:31 - 00001034 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1504277412-2991787622-1251229655-1000Core.job
2016-07-11 19:38 - 2009-07-29 13:08 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-07-11 19:38 - 2009-07-29 13:08 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-07-11 19:38 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-11 19:38 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-08 19:06 - 2016-06-20 20:02 - 00000000 ____D C:\Users\Todos os Usuários\Battle.net
2016-07-08 19:06 - 2016-06-20 20:02 - 00000000 ____D C:\ProgramData\Battle.net
2016-07-05 20:48 - 2016-06-20 13:35 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-07-05 20:48 - 2016-06-20 13:35 - 00000000 ____D C:\ProgramData\Skype
2016-07-03 20:40 - 2016-06-20 20:05 - 00000000 ____D C:\Users\Todos os Usuários\Blizzard Entertainment
2016-07-03 20:40 - 2016-06-20 20:05 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-06-24 23:34 - 2016-06-20 13:31 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-06-24 23:34 - 2016-06-20 13:31 - 00000000 ____D C:\ProgramData\Adobe
2016-06-21 01:12 - 2016-06-20 13:31 - 00000000 ____D C:\Users\Suporte\AppData\Local\Google

==================== Arquivos na raiz de alguns diretórios =======

2016-06-20 17:21 - 2016-06-20 17:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Alguns arquivos em TEMP:
====================
C:\Users\Suporte\AppData\Local\Temp\jre-8u91-windows-au.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-07-17 14:35

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité