cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 27-07-2016
Executado por MarcelloBass (administrador) em MARCELLOBASS-PC (31-07-2016 23:25:31)
Executando a partir de C:\Users\MarcelloBass\Desktop\Nova pasta (4)
Perfis Carregados: MarcelloBass (Perfis Disponíveis: MarcelloBass)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Faronics Corporation) C:\Program Files (x86)\Faronics\Deep Freeze\Install C-0\DFServ.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Riot Games\LolScreenSaver\service\service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Faronics Corporation) C:\Windows\Temp\DFLocker64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM-x32\...\Run: [Arc] => C:\Program Files (x86)\Arc\ArcLauncher.exe /autorun
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3312556268-1707034933-116517458-1000\...\Run: [Spotify Web Helper] => C:\Users\MarcelloBass\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-07-15] (Spotify Ltd)
HKU\S-1-5-21-3312556268-1707034933-116517458-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5585136 2015-03-31] (Disc Soft Ltd)
HKU\S-1-5-21-3312556268-1707034933-116517458-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-3312556268-1707034933-116517458-1000\...\MountPoints2: {8b3e2dae-f3c4-11e4-991f-74d4355ed10c} - F:\Setup.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellExecuteHooks: - {98C066AB-D735-4339-9E52-A34875141B56} - C:\Users\MarcelloBass\AppData\Roaming\Microsoft\Windows\Cookies\bahuent.dll [376032 2016-07-31] ()
BootExecute: autocheck autochk /k:C /k:E *
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 186.208.216.243 186.208.216.203
Tcpip\..\Interfaces\{AFB235A8-6F3F-4CF4-B4FA-9C7753684080}: [DhcpNameServer] 186.208.216.243 186.208.216.203

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
URLSearchHook: HKU\S-1-5-21-3312556268-1707034933-116517458-1000 - (Sem Nome) - {D8278076-BC68-4484-9233-6E7F1628B56C} - Nenhum Arquivo
SearchScopes: HKU\S-1-5-21-3312556268-1707034933-116517458-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-06] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll => Nenhum Arquivo
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-06] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\MarcelloBass\AppData\Roaming\Profiles\2vfvydy3.default
FF NewTab: hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHErA30lBHYsBE..&v=20160727&uid=0BE058DBC6AFADBEB4E0D549B4715B8B&ptid=amz&mode=loadm
FF DefaultSearchEngine: hohosearch
FF SelectedSearchEngine: hohosearch
FF Homepage: hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHErA30lBHYsBE..&v=20160727&uid=0BE058DBC6AFADBEB4E0D549B4715B8B&ptid=amz&mode=loadm
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-06] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3312556268-1707034933-116517458-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\MarcelloBass\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-10] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\MarcelloBass\AppData\Roaming\Profiles\2vfvydy3.default\searchplugins\ndci5ox4.xml [2016-07-31]
FF Extension: GsearchFinder - C:\Users\MarcelloBass\AppData\Roaming\Profiles\2vfvydy3.default\Extensions\@A3592ADB-854A-443A-854E-EB92130D470D.xpi [2016-07-31]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-05-06] [não assinado]
FF HKU\S-1-5-21-3312556268-1707034933-116517458-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR Profile: C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Extension: (Google Apresentações) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-31]
CHR Extension: (Google Docs) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-31]
CHR Extension: (Google Drive) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-31]
CHR Extension: (YouTube) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-31]
CHR Extension: (Planilhas do Google) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-31]
CHR Extension: (Documentos Google off-line) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-31]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-31]
CHR Extension: (Gmail) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-31]
CHR Profile: C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Flash Video Downloader) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-07-28]
CHR Extension: (HD for YouTube™) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2016-05-10]
CHR Extension: (Google Drive) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\MarcelloBass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-06]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-09-11] (Advanced Micro Devices, Inc.) [Arquivo não assinado]
R2 DFServ; C:\Program Files (x86)\Faronics\Deep Freeze\Install C-0\DFServ.exe [1398136 2015-05-06] (Faronics Corporation) [Arquivo não assinado]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1277680 2015-03-31] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Arquivo não assinado]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Arquivo não assinado]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-20] (Hewlett-Packard Co.) [Arquivo não assinado]
R2 LolScreenSaverService; C:\Riot Games\LolScreenSaver\service\service.exe [707072 2016-03-30] () [Arquivo não assinado]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Arquivo não assinado]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Arquivo não assinado]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2015-05-06] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
S3 ArcService; C:\Program Files (x86)\Arc\ArcService.exe [X]
S2 hhtRenewsrv; "C:\Program Files (x86)\Hohetherpljecult\hhtRenewsrv.html5" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2015-05-06] (Advanced Micro Devices Inc.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [42240 2013-07-31] (Advanced Micro Devices)
R0 DeepFrz; C:\Windows\System32\Drivers\DeepFrz.sys [218384 2014-09-05] (Faronics Corporation)
R0 DfDiskLo; C:\Windows\System32\Drivers\DfDiskLo.sys [38672 2014-09-05] (Faronics Corporation)
R1 DFFilter; C:\Windows\System32\Drivers\DFFilter.sys [42768 2014-09-05] (Faronics Corporation)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30352 2015-05-06] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 FarDisk; C:\Windows\System32\Drivers\FarDisk.sys [31504 2014-09-05] (Faronics Corporation)
R0 FarSpace; C:\Windows\System32\Drivers\FarSpace.sys [118032 2014-09-05] (Faronics Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-06] (REALiX(tm))
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
S3 vvftav; C:\Windows\System32\drivers\vvftav.sys [300800 2007-08-31] (Vimicro Corporation) [Arquivo não assinado]
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [296960 2015-05-06] (VIA Technologies, Inc.)
S3 ZSMC30x; C:\Windows\System32\Drivers\ZS211.sys [1556480 2007-12-05] (ZSMC.Corporation) [Arquivo não assinado]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-31 23:25 - 2016-07-31 23:25 - 00000000 ____D C:\Users\MarcelloBass\Desktop\Nova pasta (4)
2016-07-31 23:16 - 2016-07-31 23:20 - 00000319 _____ C:\Users\MarcelloBass\Downloads\Search.txt
2016-07-31 23:15 - 2016-07-31 23:16 - 00043932 _____ C:\Users\MarcelloBass\Downloads\Addition.txt
2016-07-31 23:14 - 2016-07-31 23:25 - 00000000 ____D C:\FRST
2016-07-31 23:06 - 2016-07-31 23:06 - 14572000 _____ (Microsoft Corporation) C:\Users\MarcelloBass\Downloads\vc_redist.x64 (1).exe
2016-07-31 23:01 - 2016-07-31 23:01 - 00031622 _____ C:\Users\MarcelloBass\Downloads\DLL Files Fixer Activator.rar
2016-07-31 22:58 - 2016-07-31 22:58 - 03785560 _____ (DLL-Files.com Client ) C:\Users\MarcelloBass\Downloads\clientsetup_d-0.exe
2016-07-31 22:47 - 2016-07-31 22:47 - 00009000 _____ C:\Windows\System32\Tasks\Hohetherpljecult Renew
2016-07-31 22:47 - 2016-07-31 22:47 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\ssn
2016-07-31 22:46 - 2016-07-31 22:47 - 00000000 ____D C:\Users\MarcelloBass\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-07-31 22:46 - 2016-07-31 22:47 - 00000000 ____D C:\Program Files (x86)\Prmlenement
2016-07-31 22:46 - 2016-07-31 22:47 - 00000000 ____D C:\Program Files (x86)\Ndeied
2016-07-31 22:46 - 2016-07-31 22:47 - 00000000 ____D C:\Program Files (x86)\Hohetherpljecult
2016-07-31 22:45 - 2016-07-31 22:45 - 02259274 _____ C:\Users\MarcelloBass\Downloads\Keygen_3.1.ace
2016-07-31 22:38 - 2016-07-31 22:38 - 00000000 ____D C:\Users\Todos os Usuários\KSafe
2016-07-31 22:38 - 2016-07-31 22:38 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\KSafe
2016-07-31 22:38 - 2016-07-31 22:38 - 00000000 ____D C:\ProgramData\KSafe
2016-07-31 22:37 - 2016-07-31 22:38 - 08508752 _____ ( ) C:\Users\MarcelloBass\Downloads\DllTool.exe
2016-07-31 22:28 - 2016-07-31 22:29 - 00000000 ____D C:\Users\MarcelloBass\Downloads\vcruntime140
2016-07-31 22:26 - 2016-07-31 22:26 - 00047223 _____ C:\Users\MarcelloBass\Downloads\vcruntime140.zip
2016-07-31 22:15 - 2016-07-31 22:15 - 01034556 _____ C:\Users\MarcelloBass\Downloads\Windows6.1-KB2999226-x64 (2).msu
2016-07-31 22:04 - 2016-07-31 22:05 - 14749120 _____ (Microsoft Corporation) C:\Users\MarcelloBass\Downloads\vc_redist.x64.exe
2016-07-31 22:00 - 2016-07-31 22:00 - 01034556 _____ C:\Users\MarcelloBass\Downloads\Windows6.1-KB2999226-x64.msu
2016-07-31 22:00 - 2016-07-31 22:00 - 01034556 _____ C:\Users\MarcelloBass\Downloads\Windows6.1-KB2999226-x64 (1).msu
2016-07-29 15:34 - 2016-07-29 15:34 - 00698336 _____ C:\Users\MarcelloBass\Downloads\download (1).htm
2016-07-29 15:34 - 2016-07-29 15:34 - 00697278 _____ C:\Users\MarcelloBass\Downloads\download (3).htm
2016-07-29 15:34 - 2016-07-29 15:34 - 00691599 _____ C:\Users\MarcelloBass\Downloads\download (2).htm
2016-07-29 15:34 - 2016-07-29 15:34 - 00644881 _____ C:\Users\MarcelloBass\Downloads\download (4).htm
2016-07-29 15:34 - 2016-07-29 15:34 - 00410647 _____ C:\Users\MarcelloBass\Downloads\descealetra.htm
2016-07-29 15:33 - 2016-07-29 15:34 - 00668157 _____ C:\Users\MarcelloBass\Downloads\download.htm
2016-07-28 06:43 - 2016-07-28 06:43 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portugalações
2016-07-28 06:43 - 2016-07-28 06:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Portugalações
2016-07-28 06:39 - 2016-07-28 06:39 - 00503778 _____ C:\Users\MarcelloBass\Downloads\traducao pt worms4m.zip
2016-07-28 06:39 - 2016-07-28 06:39 - 00503778 _____ C:\Users\MarcelloBass\Downloads\traducao pt worms4m (1).zip
2016-07-27 02:14 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-07-27 02:14 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-07-27 02:14 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-07-27 02:14 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-07-27 02:14 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-07-27 02:14 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-07-27 02:14 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-07-27 02:14 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-07-27 02:14 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-07-27 02:14 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-07-27 02:14 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-07-27 02:14 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-07-27 02:14 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-07-27 02:14 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-07-27 02:14 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-07-27 02:14 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-07-27 02:14 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-07-27 02:14 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-07-27 02:14 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-07-27 02:14 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-07-27 02:14 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-07-27 02:14 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-07-27 02:14 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-07-27 02:14 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-07-27 02:14 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-07-27 02:14 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-07-27 02:14 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-07-27 02:14 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-07-27 02:14 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-07-27 02:14 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-07-27 02:14 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-07-27 02:14 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-07-27 02:14 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-07-27 02:14 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-07-27 02:14 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-07-27 02:14 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-07-27 02:14 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-07-27 02:14 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-07-27 02:14 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-07-27 02:14 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-07-27 02:14 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-07-27 02:14 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-07-27 02:14 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-07-27 02:14 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-07-27 02:14 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-07-27 02:14 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-07-27 02:14 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-07-27 02:14 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-07-27 02:14 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-07-27 02:14 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-07-27 02:14 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-07-27 02:14 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-07-27 02:14 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-07-27 02:14 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-07-27 02:14 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-07-27 02:14 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-07-27 02:14 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-07-27 02:14 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-07-27 02:14 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-07-27 02:14 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-07-27 02:14 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-07-27 02:14 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-07-27 02:14 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-07-27 02:14 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-07-27 02:14 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-07-27 02:14 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-07-27 02:14 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-07-27 02:14 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-07-27 02:14 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-07-27 02:14 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-07-27 02:14 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-07-27 02:14 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-07-27 02:14 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-07-27 02:14 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-07-27 02:14 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-07-27 02:14 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-07-27 02:14 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-07-27 02:14 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-07-27 02:14 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-07-27 02:14 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-07-27 02:14 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-07-27 02:13 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-07-27 02:13 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-07-27 02:13 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-07-27 02:13 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-07-27 02:13 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-07-27 02:13 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-07-27 02:13 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-07-27 02:13 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-07-26 17:59 - 2016-07-26 17:59 - 00003109 _____ C:\Users\MarcelloBass\Desktop\Hextech Repair Tool.lnk
2016-07-26 17:59 - 2016-07-26 17:59 - 00000000 ____D C:\Program Files (x86)\Hextech Repair Tool
2016-07-26 17:44 - 2016-07-26 17:57 - 49008640 _____ C:\Users\MarcelloBass\Downloads\Hextech Repair Tool.msi
2016-07-24 18:05 - 2016-07-24 18:05 - 00000000 ____D C:\Users\MarcelloBass\Documents\My Spore Creations
2016-07-24 18:05 - 2016-07-24 18:05 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\Spore
2016-07-24 18:05 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-07-17 13:20 - 2016-07-17 13:20 - 00000000 _____ C:\Users\MarcelloBass\Desktop\Novo Documento de Texto (2).txt
2016-07-17 12:44 - 2016-07-17 12:44 - 00000000 ____D C:\Users\MarcelloBass\Tracing
2016-07-17 12:43 - 2016-07-31 22:32 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\Skype
2016-07-17 12:43 - 2016-07-17 12:44 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2016-07-17 12:43 - 2016-07-17 12:44 - 00000000 ____D C:\ProgramData\Skype
2016-07-17 12:43 - 2016-07-17 12:43 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2016-07-17 12:43 - 2016-07-17 12:43 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-17 12:43 - 2016-07-17 12:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-07-17 12:41 - 2016-07-17 12:42 - 01463416 _____ (Skype Technologies S.A.) C:\Users\MarcelloBass\Downloads\SkypeSetup.exe
2016-07-15 21:42 - 2016-07-15 18:50 - 40068980 _____ C:\Users\MarcelloBass\Desktop\4x4 insta.mp4
2016-07-14 19:45 - 2016-07-14 19:46 - 00005161 _____ C:\Users\MarcelloBass\Downloads\br-833216763.bat

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-31 23:12 - 2016-06-19 20:22 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-31 22:44 - 2015-05-06 03:53 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-31 22:38 - 2009-07-14 01:45 - 00017136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-31 22:38 - 2009-07-14 01:45 - 00017136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-31 22:36 - 2015-06-08 01:03 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-31 22:31 - 2015-05-06 03:53 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-31 22:31 - 2015-05-06 02:10 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-07-31 22:31 - 2015-05-06 02:10 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-31 22:31 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-31 20:14 - 2015-05-20 22:47 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-31 20:14 - 2015-05-20 22:47 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-31 07:28 - 2015-05-11 00:59 - 00000000 ____D C:\Users\MarcelloBass\AppData\Local\ElevatedDiagnostics
2016-07-31 00:38 - 2015-05-06 11:25 - 00000000 ____D C:\LOL
2016-07-30 16:39 - 2015-05-13 11:04 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\Spotify
2016-07-29 12:55 - 2015-05-13 11:07 - 00000000 ____D C:\Users\MarcelloBass\AppData\Local\Spotify
2016-07-28 16:39 - 2015-05-06 03:53 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-28 16:39 - 2015-05-06 03:53 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-26 14:24 - 2015-05-06 02:06 - 00504488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-07-25 02:51 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-07-20 15:43 - 2015-05-06 04:01 - 00002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-18 00:53 - 2015-05-06 04:34 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\Curse Client
2016-07-17 12:44 - 2015-05-06 01:40 - 00000000 ____D C:\Users\MarcelloBass
2016-07-15 21:44 - 2009-07-14 14:55 - 00707632 _____ C:\Windows\system32\prfh0416.dat
2016-07-15 21:44 - 2009-07-14 14:55 - 00147878 _____ C:\Windows\system32\prfc0416.dat
2016-07-15 21:44 - 2009-07-14 02:13 - 01640434 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-15 21:44 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-14 23:12 - 2016-06-19 20:22 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-14 23:12 - 2016-05-27 22:31 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-14 23:12 - 2016-05-27 22:31 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-14 19:52 - 2016-03-21 06:29 - 00000013 _____ C:\Users\MarcelloBass\Teemo-lol-locator.txt
2016-07-13 22:39 - 2015-08-25 20:56 - 00000000 ____D C:\Users\MarcelloBass\AppData\Roaming\uTorrent
2016-07-13 22:35 - 2016-02-11 19:49 - 00000000 ___SD C:\Users\MarcelloBass\AppData\LocalLow\Temp
2016-07-12 22:09 - 2015-10-16 15:31 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-12 22:09 - 2015-10-16 15:30 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-12 19:12 - 2016-05-27 22:31 - 00000000 ____D C:\Windows\system32\Macromed
2016-07-12 19:12 - 2015-05-06 05:59 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-07-03 23:03 - 2015-06-07 23:54 - 00000000 ____D C:\Users\MarcelloBass\Desktop\ju escola

==================== Arquivos na raiz de alguns diretórios =======

2016-03-22 19:05 - 2016-03-22 19:06 - 0001266 _____ () C:\Users\MarcelloBass\AppData\Roaming\Bubble Dock.boostrap.log
2016-03-22 19:05 - 2016-03-22 19:06 - 0005754 _____ () C:\Users\MarcelloBass\AppData\Roaming\Bubble Dock.installation.log
2016-03-22 19:06 - 2016-03-22 19:06 - 0000078 _____ () C:\Users\MarcelloBass\AppData\Roaming\Selection Tools.installation.log
2016-03-22 19:05 - 2016-03-22 19:05 - 0000097 _____ () C:\Users\MarcelloBass\AppData\Roaming\WindApp.boostrap.log
2016-03-22 19:06 - 2016-03-22 19:06 - 0000078 _____ () C:\Users\MarcelloBass\AppData\Roaming\WindApp.installation.log
2016-05-09 22:30 - 2016-05-09 23:01 - 0003584 _____ () C:\Users\MarcelloBass\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-06 05:58 - 2015-07-07 00:51 - 0002269 _____ () C:\ProgramData\hpzinstall.log

Alguns arquivos em TEMP:
====================
C:\Users\MarcelloBass\AppData\Local\Temp\5aa245fd93806b7e476a0f49f7857d05.exe
C:\Users\MarcelloBass\AppData\Local\Temp\CC54.exe
C:\Users\MarcelloBass\AppData\Local\Temp\DeepFreeze_C.exe
C:\Users\MarcelloBass\AppData\Local\Temp\Font__19312_il16730.exe
C:\Users\MarcelloBass\AppData\Local\Temp\FP_AX_MSI_INSTALLER.exe
C:\Users\MarcelloBass\AppData\Local\Temp\install.exe
C:\Users\MarcelloBass\AppData\Local\Temp\kernel32.dll
C:\Users\MarcelloBass\AppData\Local\Temp\MouseKeyboardCenterx64_1046.exe
C:\Users\MarcelloBass\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\MarcelloBass\AppData\Local\Temp\nvStInst.exe
C:\Users\MarcelloBass\AppData\Local\Temp\Opera_NI_stable.exe
C:\Users\MarcelloBass\AppData\Local\Temp\ose00000.exe
C:\Users\MarcelloBass\AppData\Local\Temp\ose00002.exe
C:\Users\MarcelloBass\AppData\Local\Temp\p21920.exe
C:\Users\MarcelloBass\AppData\Local\Temp\p21955.exe
C:\Users\MarcelloBass\AppData\Local\Temp\UpdInstaller.exe
C:\Users\MarcelloBass\AppData\Local\Temp\vcredist2012.exe
C:\Users\MarcelloBass\AppData\Local\Temp\_is6B50.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-07-28 11:10

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité