cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 21-08-2016 01
Executado por robert (administrador) em ROBERT-PC (21-08-2016 17:37:07)
Executando a partir de C:\Users\robert\Downloads
Perfis Carregados: robert & UpdatusUser (Perfis Disponíveis: robert & UpdatusUser)
Platform: Windows 7 Professional (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimServiceFactory.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Slimware Utilities Holdings, Inc.) C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Users\robert\AppData\Local\Temp\DEL84A9.tmp
(Microsoft Corporation) C:\Users\robert\AppData\Local\Temp\DEL84A9.tmp


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKU\S-1-5-21-1513492479-3622155124-1827538387-1001\...\Run: [SlimCleaner Plus] => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe [26201280 2016-07-25] (Slimware Utilities Holdings, Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BB4895BA-332D-4859-A74B-285A896BCF1D}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-08-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-08-21] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-21]
CHR Extension: (Google Docs) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-21]
CHR Extension: (Google Drive) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-21]
CHR Extension: (YouTube) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-21]
CHR Extension: (Planilhas do Google) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-21]
CHR Extension: (Documentos Google off-line) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-21]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-21]
CHR Extension: (Gmail) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-21]
CHR Extension: (Chrome Media Router) - C:\Users\robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-21]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 SlimService; C:\Program Files\SlimService\SlimServiceFactory.exe [252096 2016-07-25] (SlimWare Utilities, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2016-08-21] (SlimWare Utilities, Inc.)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-21 20:47 - 2016-08-21 15:58 - 00000000 ____D C:\Windows\Panther
2016-08-21 17:37 - 2016-08-21 17:37 - 00006459 _____ C:\Users\robert\Downloads\FRST.txt
2016-08-21 17:36 - 2016-08-21 17:37 - 00000000 ____D C:\FRST
2016-08-21 17:36 - 2016-08-21 17:36 - 02396672 _____ (Farbar) C:\Users\robert\Downloads\FRST64.exe
2016-08-21 17:33 - 2016-08-21 17:33 - 01034556 _____ C:\Users\robert\Downloads\Windows6.1-KB2999226-x64.msu
2016-08-21 17:31 - 2016-08-21 17:31 - 02933472 _____ (Microsoft Corporation) C:\Users\robert\Downloads\Baixaki_visual-studio-express-2015-for-windows-desktop.exe
2016-08-21 17:31 - 2016-08-21 17:31 - 00000000 ____D C:\Users\Todos os Usuários\VsTelemetry
2016-08-21 17:31 - 2016-08-21 17:31 - 00000000 ____D C:\ProgramData\VsTelemetry
2016-08-21 17:30 - 2016-08-21 17:30 - 01631936 _____ (Internet ) C:\Users\robert\Downloads\Baixaki_visual-studio-express-2015-for-windows-desktop_0074277221.exe
2016-08-21 17:23 - 2012-06-02 19:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-21 17:23 - 2012-06-02 19:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-21 17:23 - 2012-06-02 19:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-08-21 17:23 - 2012-06-02 19:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-08-21 17:22 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-08-21 17:22 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-08-21 17:11 - 1999-12-31 21:00 - 00758272 _____ (NVIDIA Corporation) C:\Windows\system32\cohelper.dll
2016-08-21 17:11 - 1999-12-31 21:00 - 00010084 _____ C:\Windows\system32\Drivers\nvphy.bin
2016-08-21 17:06 - 1999-12-31 21:00 - 00953344 _____ (NVIDIA Corporation) C:\Windows\system32\fdco2.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00403560 _____ (NVIDIA Corporation) C:\Windows\system32\nvraiins.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00403560 _____ (NVIDIA Corporation) C:\Windows\system32\nvraidco.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00349416 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvmf6264.sys
2016-08-21 17:06 - 1999-12-31 21:00 - 00244328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor64.sys
2016-08-21 17:06 - 1999-12-31 21:00 - 00229480 _____ (NVIDIA Corporation) C:\Windows\system32\nvconrm.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00019048 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoPtb.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00019048 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoIt.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00019048 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoFr.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00019048 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoEsm.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00019048 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoEs.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00019048 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoDe.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018536 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoSv.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018536 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoRu.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018536 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoNo.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018536 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoNl.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018536 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoFi.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018536 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoDa.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018024 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoENU.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00018024 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoEng.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00016488 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoKo.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00016488 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoJa.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00015976 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoZht.dll
2016-08-21 17:06 - 1999-12-31 21:00 - 00015976 _____ (NVIDIA Corporation) C:\Windows\system32\NvRCoZhc.dll
2016-08-21 17:05 - 2016-08-21 17:16 - 00000368 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - robert).job
2016-08-21 17:05 - 2016-08-21 17:05 - 00003032 _____ C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - robert)
2016-08-21 17:05 - 2016-08-21 16:01 - 00001877 _____ C:\Users\robert\Desktop\Kodi.lnk
2016-08-21 16:58 - 2016-08-21 17:16 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-08-21 16:58 - 2016-08-21 17:16 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-21 16:58 - 2016-08-21 17:00 - 00000000 ____D C:\Users\UpdatusUser
2016-08-21 16:58 - 2016-08-21 16:58 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Modelos
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Meus documentos
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Menu Iniciar
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Minhas músicas
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Minhas imagens
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Meus vídeos
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Dados de aplicativos
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Configurações locais
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Histórico
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Dados de aplicativos
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Ambiente de rede
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 _SHDL C:\Users\UpdatusUser\Ambiente de impressão
2016-08-21 16:58 - 2016-08-21 16:58 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-08-21 16:58 - 2009-07-14 04:45 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Media Center Programs
2016-08-21 16:57 - 2015-01-30 21:57 - 06223680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-08-21 16:57 - 2015-01-30 21:57 - 03299472 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-08-21 16:57 - 2015-01-30 21:57 - 02558272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-08-21 16:57 - 2015-01-30 21:57 - 00878400 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-08-21 16:57 - 2015-01-30 21:57 - 00117392 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-08-21 16:57 - 2015-01-30 21:57 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-08-21 16:55 - 2016-08-21 16:55 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-08-21 16:55 - 2016-08-21 16:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-21 16:55 - 2015-01-30 23:52 - 00060048 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-08-21 16:55 - 2015-01-30 23:52 - 00052040 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 26341704 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 25255568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 19916432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 17559184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 15373568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 13585736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-08-21 16:51 - 2015-01-30 23:52 - 09185504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 07755632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 07639952 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 06295288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 02753952 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 02748232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 02576200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 02447000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 02220176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 01868104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 01801544 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6430908.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 01510728 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6430908.dll
2016-08-21 16:51 - 2015-01-30 23:52 - 00017616 _____ C:\Windows\system32\nvinfo.pb
2016-08-21 16:46 - 2016-08-21 17:11 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-08-21 16:45 - 2016-08-21 16:46 - 14749120 _____ (Microsoft Corporation) C:\Users\robert\Downloads\vc_redist.x64.exe
2016-08-21 16:44 - 2016-08-21 16:44 - 00000000 ____D C:\NVIDIA
2016-08-21 16:35 - 2016-08-21 16:35 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-21 16:35 - 2016-08-21 16:35 - 00002257 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-21 16:31 - 2016-08-21 17:36 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-21 16:31 - 2016-08-21 17:17 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-21 16:31 - 2016-08-21 16:35 - 00000000 ____D C:\Users\robert\AppData\Local\Google
2016-08-21 16:31 - 2016-08-21 16:33 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-21 16:31 - 2016-08-21 16:31 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-21 16:31 - 2016-08-21 16:31 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-21 16:18 - 2016-07-26 14:24 - 00504488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-08-21 16:06 - 2016-08-21 16:31 - 00000000 ____D C:\Users\robert\AppData\Local\Deployment
2016-08-21 16:06 - 2016-08-21 16:06 - 00057560 _____ C:\Users\robert\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-21 16:06 - 2016-08-21 16:06 - 00000000 ____D C:\Users\robert\AppData\Local\Apps\2.0
2016-08-21 16:03 - 2016-08-21 16:03 - 00000000 ____D C:\Users\Todos os Usuários\SlimWare Utilities, Inc
2016-08-21 16:03 - 2016-08-21 16:03 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2016-08-21 16:02 - 2016-08-21 17:36 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-08-21 16:02 - 2016-08-21 17:36 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-21 16:01 - 2016-08-21 17:17 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2016-08-21 16:01 - 2016-08-21 17:17 - 00002840 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2016-08-21 16:01 - 2016-08-21 17:17 - 00000412 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2016-08-21 16:01 - 2016-08-21 17:04 - 00000000 ____D C:\Users\robert\AppData\Local\SlimWare Utilities Inc
2016-08-21 16:01 - 2016-08-21 16:01 - 00000000 ____D C:\Users\robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2016-08-21 16:00 - 2016-08-21 16:01 - 00000000 ____D C:\Program Files (x86)\Kodi
2016-08-21 16:00 - 2016-08-21 16:00 - 00002483 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2016-08-21 16:00 - 2016-08-21 16:00 - 00002465 _____ C:\Users\Public\Desktop\SlimCleaner Plus.lnk
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\Users\Todos os Usuários\SlimWare Utilities Inc
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\Users\robert\AppData\Local\Downloaded Installers
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\ProgramData\SlimWare Utilities Inc
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\Program Files\SlimService
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\Program Files\SlimCleaner Plus
2016-08-21 16:00 - 2016-08-21 16:00 - 00000000 ____D C:\Program Files (x86)\SlimDrivers
2016-08-21 15:59 - 2016-08-21 15:59 - 00001423 _____ C:\Users\robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-08-21 15:59 - 2016-08-21 15:59 - 00001389 _____ C:\Users\robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-08-21 15:58 - 2016-08-21 15:59 - 00000000 ____D C:\Users\robert
2016-08-21 15:58 - 2016-08-21 15:58 - 00000020 ___SH C:\Users\robert\ntuser.ini
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Modelos
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Meus documentos
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Menu Iniciar
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Documents\Minhas músicas
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Documents\Minhas imagens
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Documents\Meus vídeos
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Dados de aplicativos
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Configurações locais
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\AppData\Local\Histórico
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\AppData\Local\Dados de aplicativos
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Ambiente de rede
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 _SHDL C:\Users\robert\Ambiente de impressão
2016-08-21 15:58 - 2016-08-21 15:58 - 00000000 ____D C:\Users\robert\AppData\Local\VirtualStore
2016-08-21 15:58 - 2009-07-14 04:45 - 00000000 ____D C:\Users\robert\AppData\Roaming\Media Center Programs
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Modelos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\ProgramData\Modelos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\ProgramData\Documentos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-08-21 15:57 - 2016-08-21 15:57 - 00000000 _SHDL C:\Arquivos de Programas
2016-08-21 15:53 - 2016-08-21 15:53 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-08-21 15:53 - 2016-08-21 15:53 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-08-21 15:51 - 2016-08-21 15:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-21 20:47 - 2009-07-14 02:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-08-21 17:21 - 2009-07-29 12:58 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2016-08-21 17:21 - 2009-07-29 12:58 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2016-08-21 17:21 - 2009-07-14 02:13 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-21 17:21 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-08-21 17:16 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-21 17:15 - 2009-07-14 01:45 - 00009600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-21 17:15 - 2009-07-14 01:45 - 00009600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-21 16:56 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\Help
2016-08-21 16:02 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache
2016-08-21 15:58 - 2009-07-14 00:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-21 15:57 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Windows NT
2016-08-21 15:54 - 2009-07-14 01:45 - 00274824 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-21 15:52 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-08-21 15:50 - 2009-07-14 04:46 - 00000000 ____D C:\Windows\CSC

Alguns arquivos em TEMP:
====================
C:\Users\robert\AppData\Local\Temp\scp712A.tmp.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-08-21 15:49

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité