Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:27-04-2016
Executado por RONNA (administrador) em RONNAELLE (28-04-2016 23:50:36)
Executando a partir de C:\Users\RONNA\Downloads
Perfis Carregados: RONNA (Perfis Disponíveis: RONNA)
Platform: Microsoft Windows 8.1 Pro (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Autodesk Inc.) C:\Program Files\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Akamai Technologies, Inc.) C:\Users\RONNA\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\RONNA\AppData\Local\Akamai\netsession_win.exe
(Autodesk) C:\Program Files\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\WinRAR\WinRAR.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [ADSKAppManager] => C:\Program Files\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [692160 2016-01-19] (Autodesk, Inc.)
HKU\S-1-5-21-3332443456-3493485007-4152111455-1001\...\Run: [Google Update] => C:\Users\RONNA\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-04-27] (Google Inc.)
HKU\S-1-5-21-3332443456-3493485007-4152111455-1001\...\Run: [Akamai NetSession Interface] => C:\Users\RONNA\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3332443456-3493485007-4152111455-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1151016 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-3332443456-3493485007-4152111455-1001\...\Policies\Explorer: [] 
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1151016 2016-02-02] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Nenhum Arquivo
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9B0325EB-2FC6-4543-BFC4-9D300147533C}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)

FireFox:
========
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-3332443456-3493485007-4152111455-1001: @tools.google.com/Google Update;version=3 -> C:\Users\RONNA\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-27] (Google Inc.)
FF Plugin HKU\S-1-5-21-3332443456-3493485007-4152111455-1001: @tools.google.com/Google Update;version=9 -> C:\Users\RONNA\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-27] (Google Inc.)

Chrome: 
=======
CHR Profile: C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-28]
CHR Extension: (Google Docs) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-28]
CHR Extension: (Google Drive) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-28]
CHR Extension: (YouTube) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-28]
CHR Extension: (Planilhas do Google) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-28]
CHR Extension: (Documentos Google off-line) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28]
CHR Extension: (Gmail) - C:\Users\RONNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-28]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdAppMgrSvc; C:\Program Files\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1222664 2016-01-19] (Autodesk Inc.)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [290224 2015-06-01] (Intel Corporation)
S3 FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [1233376 2016-04-28] (Flexera Software LLC)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] () [Arquivo não assinado]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [278264 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22240 2013-08-22] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 MEI; C:\Windows\System32\drivers\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 NETJME; C:\Windows\system32\DRIVERS\NETJME.sys [119296 2013-06-18] (JMicron Technology Corp.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1659096 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [29128 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [214368 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [93024 2013-08-22] (Microsoft Corporation)
S3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-28 23:48 - 2016-04-28 23:48 - 00022396 _____ C:\Users\RONNA\Downloads\Addition.txt
2016-04-28 23:47 - 2016-04-28 23:50 - 00009597 _____ C:\Users\RONNA\Downloads\FRST.txt
2016-04-28 23:47 - 2016-04-28 23:50 - 00000000 ____D C:\FRST
2016-04-28 23:46 - 2016-04-28 23:46 - 01728000 _____ (Farbar) C:\Users\RONNA\Downloads\FRST.exe
2016-04-28 23:44 - 2016-04-28 23:44 - 00000297 _____ C:\Users\RONNA\Desktop\fixlist.txt
2016-04-28 23:39 - 2016-04-28 23:40 - 00338320 _____ (Autodesk Inc.) C:\Users\RONNA\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup_webinstall (3).exe
2016-04-28 23:17 - 2015-12-09 15:11 - 00016224 ____N (Microsoft Corporation) C:\Users\RONNA\Downloads\api-ms-win-crt-runtime-l1-1-0.dll
2016-04-28 23:17 - 2015-07-16 13:48 - 00001925 ____N C:\Users\RONNA\Downloads\README.txt
2016-04-28 23:13 - 2016-04-28 23:13 - 00338320 _____ (Autodesk Inc.) C:\Users\RONNA\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup_webinstall (2).exe
2016-04-28 23:09 - 2016-04-28 23:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2016-04-28 23:09 - 2016-04-28 23:09 - 00000000 ____D C:\Program Files\KMSpico
2016-04-28 23:07 - 2016-04-28 23:07 - 00008998 _____ C:\Users\RONNA\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-04-28 23:07 - 2015-07-16 13:48 - 00001925 ____N C:\Users\RONNA\Desktop\README.txt
2016-04-28 19:13 - 2016-04-28 19:13 - 00000927 _____ C:\Users\Public\Desktop\LMTOOLS Utility.lnk
2016-04-28 19:02 - 2016-04-28 19:02 - 00338320 _____ (Autodesk Inc.) C:\Users\RONNA\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup_webinstall (1).exe
2016-04-28 19:00 - 2016-04-28 19:00 - 00000000 ____D C:\Users\RONNA\Documents\AdAppMgrSvcInstProxy
2016-04-28 18:48 - 2016-04-28 18:50 - 00000000 ____D C:\Users\Public\Downloads\260FD116-7539-4221-BD72-3775DD831EB5
2016-04-28 18:32 - 2016-04-28 18:32 - 00001431 _____ C:\Users\Public\Desktop\Autodesk Desktop App.lnk
2016-04-28 18:11 - 2016-04-28 18:11 - 00002019 _____ C:\Users\Public\Desktop\A360 Desktop.lnk
2016-04-28 17:48 - 2016-04-28 17:48 - 00002116 _____ C:\Users\Public\Desktop\AutoCAD 2017 - Português - Brasil (Brazilian Portuguese).lnk
2016-04-28 17:48 - 2016-04-28 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2017 - Português - Brasil (Brazilian Portuguese)
2016-04-28 17:47 - 2016-04-28 18:59 - 00000000 ____D C:\Users\RONNA\AppData\Local\Autodesk
2016-04-28 17:47 - 2016-04-28 17:47 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2016-04-28 17:45 - 2016-04-28 17:45 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2016-04-28 17:40 - 2016-04-28 23:15 - 00000000 ____D C:\Program Files\Autodesk
2016-04-28 16:30 - 2016-04-28 19:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2016-04-28 16:30 - 2016-04-28 17:45 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2016-04-28 16:10 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-04-28 16:10 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-04-28 16:10 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-04-28 16:10 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-04-28 16:10 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-04-28 16:10 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-04-28 16:10 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-04-28 16:10 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-04-28 16:10 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-04-28 16:10 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-04-28 16:10 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-04-28 16:10 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-04-28 16:07 - 2016-04-28 16:09 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-28 16:07 - 2016-04-28 16:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-28 13:09 - 2016-04-28 18:59 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Autodesk
2016-04-28 13:09 - 2016-04-28 18:32 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2016-04-28 13:09 - 2016-04-28 18:32 - 00000000 ____D C:\ProgramData\Autodesk
2016-04-28 12:58 - 2016-04-28 19:13 - 00000000 ____D C:\Autodesk
2016-04-28 12:58 - 2016-04-28 13:00 - 00000000 ____D C:\Users\RONNA\AppData\Local\Akamai
2016-04-28 12:56 - 2016-04-28 23:14 - 18685488 _____ C:\Users\RONNA\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup.exe
2016-04-28 12:26 - 2016-04-28 12:26 - 00338320 _____ (Autodesk Inc.) C:\Users\RONNA\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup_webinstall.exe
2016-04-28 00:00 - 2016-04-28 00:00 - 00000000 ____D C:\Users\RONNA\Downloads\AtvDR Win 8.1 - PHDOWNS
2016-04-28 00:00 - 2016-04-28 00:00 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\WinRAR
2016-04-27 23:53 - 2016-04-27 23:53 - 02906269 _____ C:\Users\RONNA\Downloads\AtvDR Win 8.1 - PHDOWNS.rar
2016-04-27 23:51 - 2016-04-27 23:51 - 00000000 ____D C:\Program Files\Common Files\AV
2016-04-27 23:49 - 2016-04-28 23:26 - 00000000 ____D C:\Users\Todos os Usuários\AVAST Software
2016-04-27 23:49 - 2016-04-28 23:26 - 00000000 ____D C:\ProgramData\AVAST Software
2016-04-27 23:49 - 2016-04-27 23:49 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Macromedia
2016-04-27 23:47 - 2016-04-27 23:47 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Foxit Software
2016-04-27 23:47 - 2016-04-27 23:47 - 00000000 ____D C:\Users\Public\Foxit Software
2016-04-27 23:46 - 2016-04-27 23:46 - 00002111 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2016-04-27 23:46 - 2016-04-27 23:46 - 00000000 ____D C:\Users\Todos os Usuários\Foxit ContentPlatform
2016-04-27 23:46 - 2016-04-27 23:46 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Foxit AgentInformation
2016-04-27 23:46 - 2016-04-27 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-04-27 23:46 - 2016-04-27 23:46 - 00000000 ____D C:\ProgramData\Foxit ContentPlatform
2016-04-27 23:46 - 2016-04-27 23:46 - 00000000 ____D C:\Program Files\Foxit Software
2016-04-27 23:45 - 2016-04-27 23:45 - 00001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-27 23:45 - 2016-04-27 23:45 - 00001121 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-04-27 23:45 - 2016-04-27 23:45 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-04-27 23:45 - 2016-04-27 23:45 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-04-27 23:44 - 2016-04-28 18:12 - 00002159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-27 23:44 - 2016-04-28 18:12 - 00002147 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-27 23:43 - 2016-04-28 23:48 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-27 23:43 - 2016-04-28 23:48 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-27 23:43 - 2016-04-27 23:44 - 00000000 ____D C:\Program Files\Google
2016-04-27 23:43 - 2016-04-27 23:43 - 00987728 _____ (Google Inc.) C:\Users\RONNA\Downloads\ChromeSetup.exe
2016-04-27 23:42 - 2016-04-27 23:42 - 00307200 _____ (Secure By Design Inc.) C:\Users\RONNA\Downloads\Ninite Avast Firefox Foxit Reader OneDrive Installer.exe
2016-04-27 23:42 - 2016-04-27 23:42 - 00000000 ____D C:\Program Files\Intel
2016-04-27 23:42 - 2016-04-27 23:42 - 00000000 ____D C:\Intel
2016-04-27 23:41 - 2016-04-27 23:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2016-04-27 23:39 - 2016-04-28 12:49 - 00002390 _____ C:\Users\RONNA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-27 23:39 - 2016-04-28 00:02 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-04-27 23:39 - 2016-04-27 23:39 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-27 23:39 - 2016-04-27 23:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-27 23:39 - 2016-04-27 23:39 - 00000000 ____D C:\Program Files\WinRAR
2016-04-27 23:38 - 2016-04-28 23:48 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3332443456-3493485007-4152111455-1001UA.job
2016-04-27 23:38 - 2016-04-28 23:48 - 00001046 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3332443456-3493485007-4152111455-1001Core.job
2016-04-27 23:38 - 2016-04-28 13:09 - 00000000 ____D C:\Users\RONNA\AppData\Local\Google
2016-04-27 23:30 - 2016-04-27 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-04-27 23:30 - 2016-04-27 23:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-04-27 23:29 - 2016-04-27 23:29 - 00000000 ____D C:\Windows\PCHEALTH
2016-04-27 23:29 - 2016-04-27 23:29 - 00000000 ____D C:\Program Files\MSBuild
2016-04-27 23:29 - 2016-04-27 23:29 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2016-04-27 23:29 - 2016-04-27 23:29 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-04-27 23:28 - 2016-04-27 23:28 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8
2016-04-27 23:27 - 2016-04-27 23:31 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-04-27 23:27 - 2016-04-27 23:29 - 00000000 ____D C:\Program Files\Microsoft Office
2016-04-27 23:27 - 2016-04-27 23:27 - 00000000 __RHD C:\MSOCache
2016-04-27 23:27 - 2016-04-27 23:27 - 00000000 ____D C:\Users\RONNA\AppData\Local\Microsoft Help
2016-04-27 23:27 - 2016-04-27 23:27 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-04-27 23:26 - 2016-04-27 23:26 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-04-27 23:19 - 2016-04-28 23:31 - 01707228 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-27 23:15 - 2016-04-27 23:17 - 00000000 ____D C:\Users\RONNA\AppData\Local\Packages
2016-04-27 23:15 - 2016-04-27 23:15 - 00001422 _____ C:\Users\RONNA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-04-27 23:15 - 2016-04-27 23:15 - 00000020 ___SH C:\Users\RONNA\ntuser.ini
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Modelos
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Meus Documentos
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Menu Iniciar
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Documents\Minhas Músicas
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Documents\Minhas Imagens
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Documents\Meus Vídeos
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Dados de Aplicativos
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Configurações Locais
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\AppData\Local\Histórico
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\AppData\Local\Dados de Aplicativos
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Ambiente de Rede
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 _SHDL C:\Users\RONNA\Ambiente de Impressão
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 ____D C:\Windows\CSC
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 ____D C:\Users\RONNA\AppData\Roaming\Adobe
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 ____D C:\Users\RONNA\AppData\Local\VirtualStore
2016-04-27 23:15 - 2016-04-27 23:15 - 00000000 ____D C:\Users\RONNA
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de Aplicativos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Public\Documents\Minhas Músicas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Public\Documents\Minhas Imagens
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Public\Documents\Meus Vídeos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Modelos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Meus Documentos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Dados de Aplicativos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Configurações Locais
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Ambiente de Rede
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default\Ambiente de Impressão
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Músicas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Imagens
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default User\Documents\Meus Vídeos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de Aplicativos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\ProgramData\Modelos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\ProgramData\Documentos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\ProgramData\Dados de Aplicativos
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-04-27 23:14 - 2016-04-27 23:14 - 00000000 _SHDL C:\Arquivos de Programas
2016-04-27 23:10 - 2016-04-27 23:15 - 00000000 ____D C:\Windows\Panther
2016-02-19 07:21 - 2016-02-19 07:21 - 01924816 _____ (Autodesk, Inc.) C:\Windows\system32\styleman.cpl
2016-02-19 07:21 - 2016-02-19 07:21 - 01924816 _____ (Autodesk, Inc.) C:\Windows\system32\plotman.cpl
2016-02-19 07:19 - 2016-02-19 07:19 - 00024784 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignExtRes.dll
2016-02-07 01:28 - 2016-02-07 01:28 - 00435168 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignOpt.exe
2016-02-07 01:28 - 2016-02-07 01:28 - 00048608 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignIcon.dll
2016-02-07 01:28 - 2016-02-07 01:28 - 00034784 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignExt.dll

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-28 23:31 - 2013-08-22 11:12 - 00738078 _____ C:\Windows\system32\prfh0416.dat
2016-04-28 23:31 - 2013-08-22 11:12 - 00150714 _____ C:\Windows\system32\prfc0416.dat
2016-04-28 23:31 - 2013-08-22 03:21 - 00000000 ____D C:\Windows\inf
2016-04-28 23:26 - 2013-08-22 04:23 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-28 23:10 - 2013-08-22 03:13 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-04-28 18:36 - 2013-08-22 04:22 - 00546168 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-28 17:44 - 2013-08-22 05:17 - 00000000 ___SD C:\Windows\Downloaded Program Files
2016-04-28 16:12 - 2013-08-22 05:17 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-28 16:06 - 2013-08-22 05:17 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-27 23:29 - 2013-08-22 11:16 - 00000000 ____D C:\Windows\ShellNew
2016-04-27 23:28 - 2013-08-22 05:17 - 00000000 ____D C:\Program Files\Common Files\System
2016-04-27 23:28 - 2013-08-22 03:13 - 00000167 _____ C:\Windows\win.ini
2016-04-27 23:22 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\AppReadiness
2016-04-27 23:15 - 2013-08-22 05:17 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-04-27 23:15 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\WinStore
2016-04-27 23:15 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\rescache
2016-04-27 23:15 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\FileManager
2016-04-27 23:15 - 2013-08-22 05:17 - 00000000 ____D C:\Windows\Camera
2016-04-27 23:14 - 2013-08-22 05:17 - 00000000 ____D C:\Program Files\Windows NT
2016-04-27 23:10 - 2013-08-22 05:17 - 00262144 _____ C:\Windows\system32\config\BCD-Template

Alguns arquivos em TEMP:
====================
C:\Users\RONNA\AppData\Local\Temp\AcDeltree.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-04-27 23:11

==================== Fim de FRST.txt ============================