Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 23-11-2016
Executado por DaN (administrador) em DAN-PC (27-11-2016 14:40:02)
Executando a partir de C:\Users\DaN\Downloads
Perfis Carregados: DaN (Perfis Disponíveis: DaN)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 10 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\99e90b00ebf3ea5e1f2f258db3337c29\e11d2a176d5c954efffee141c4705626.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2015-07-16] (AVAST Software)
HKU\S-1-5-21-3298757169-3355094578-1718341526-1000\...\MountPoints2: F - F:\LaunchU3.exe -a
HKU\S-1-5-21-3298757169-3355094578-1718341526-1000\...\MountPoints2: {881f24fc-2c01-11e5-af77-f30e32faec0c} - F:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-16] (AVAST Software)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 168.90.148.10 8.8.8.8
Tcpip\..\Interfaces\{C609AB45-B612-4852-93BB-0EED2E3FB10D}: [DhcpNameServer] 168.90.148.10 8.8.8.8
Internet Explorer:
==================
HKU\S-1-5-21-3298757169-3355094578-1718341526-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-11-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-16] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-15] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-11-27] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-27] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-11-27] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-16] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-15] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-11-27] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-11-27] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-15] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-15] (Google Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 07j572iz.default
FF ProfilePath: C:\Users\DaN\AppData\Roaming\Mozilla\Firefox\Profiles\07j572iz.default [2016-11-19]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-07-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-07-16]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-11-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-27] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/","hxxps://www.facebook.com/?stype=lo&jlou=AfejhIeh6ZfWvpd7rt1BDaGKKSJqWdKVKiZAyK_UAbwHR9DPhtVKI54XGToEII5ir-ziJkaXW6r5rRIUHVLBhUZ92kiVgAuY8ZBTo5PZsz08Lw&smuh=46892&lh=Ac93dcibqeG-5bz9","hxxp://www.google.com/"
CHR Profile: C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default [2016-11-27]
CHR Extension: (Google Apresentações) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-15]
CHR Extension: (Google Docs) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-15]
CHR Extension: (Google Drive) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-15]
CHR Extension: (YouTube) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-15]
CHR Extension: (Avast SafePrice) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Planilhas do Google) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-15]
CHR Extension: (Documentos Google off-line) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-16]
CHR Extension: (TVPlusNewtab) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbnbngfommjgbgbhnkhepfckckedcpn [2016-11-19]
CHR Extension: (Avast Online Security) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-15]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-15]
CHR Extension: (Gmail) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-15]
CHR Extension: (Chrome Media Router) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 99e90b00ebf3ea5e1f2f258db3337c29; C:\Program Files\99e90b00ebf3ea5e1f2f258db3337c29\e11d2a176d5c954efffee141c4705626.exe [5576704 2016-11-15] () [Arquivo não assinado] <==== ATENÇÃO
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2015-07-16] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2946320 2016-10-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-07-26] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 249ce0c0d07757939e70a5d66ef4d0e8; C:\Windows\system32\drivers\249ce0c0d07757939e70a5d66ef4d0e8.sys [57432 2016-11-15] (LOIFW0) <==== ATENÇÃO
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2015-07-16] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2015-07-16] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2015-07-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2015-07-16] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2015-07-16] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2015-07-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2015-07-16] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2015-07-16] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2015-07-16] (AVAST Software)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-11-27 14:37 - 2016-11-27 14:38 - 00021341 _____ C:\Users\DaN\Downloads\Addition.txt
2016-11-27 14:36 - 2016-11-27 14:40 - 00012241 _____ C:\Users\DaN\Downloads\FRST.txt
2016-11-27 14:36 - 2016-11-27 14:40 - 00000000 ____D C:\FRST
2016-11-27 14:36 - 2016-11-27 14:36 - 02412032 _____ (Farbar) C:\Users\DaN\Downloads\FRST64.exe
2016-11-27 12:46 - 2016-11-27 12:46 - 00000000 ____D C:\3be9763042739b23766415df
2016-11-27 12:42 - 2016-11-27 12:42 - 00002158 _____ C:\Users\DaN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00002110 _____ C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00002110 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00002110 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00000000 ___RD C:\Users\DaN\OneDrive
2016-11-27 12:42 - 2016-11-27 12:42 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-11-27 12:41 - 2016-11-27 12:41 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2016-11-27 12:41 - 2016-11-27 12:41 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-11-27 12:41 - 2016-11-27 12:41 - 00000000 ____D C:\73e1d08a39dc6e0574fe47a6
2016-11-27 12:30 - 2016-11-27 12:30 - 00000000 ____D C:\fa183cfbc57dfd3ce5066c
2016-11-27 12:30 - 2016-10-12 10:09 - 00001983 _____ C:\Users\DaN\Downloads\README.txt
2016-11-27 12:30 - 2016-08-10 17:27 - 00007680 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-27 12:29 - 2016-11-27 12:29 - 00003630 _____ C:\Users\DaN\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-11-27 12:28 - 2016-11-27 12:28 - 01034556 _____ C:\Users\DaN\Downloads\Windows6.1-KB2999226-x64.msu
2016-11-27 12:03 - 2016-11-27 12:03 - 00002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002380 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-11-27 11:57 - 2016-11-27 12:41 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-11-27 11:57 - 2016-11-27 12:41 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-27 11:55 - 2016-11-27 11:55 - 265799051 _____ C:\Windows\MEMORY.DMP
2016-11-27 11:55 - 2016-11-27 11:55 - 00279952 _____ C:\Windows\Minidump\112716-27612-01.dmp
2016-11-27 11:55 - 2016-11-27 11:55 - 00000000 ____D C:\Windows\Minidump
2016-11-27 10:32 - 2016-11-27 10:32 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-11-27 10:30 - 2016-11-27 10:30 - 03738928 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\Setup.X86.pt-br_O365ProPlusRetail_07e3ff42-add0-4f41-a52f-51e65e241475_TX_PR_b_64_.exe
2016-11-24 22:54 - 2016-11-27 11:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-24 22:54 - 2016-11-24 22:54 - 00000000 ____D C:\Program Files (x86)\MSECache
2016-11-24 22:53 - 2016-11-24 22:53 - 39035640 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\FileFormatConverters.exe
2016-11-24 22:51 - 2016-11-24 22:51 - 02869264 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\dotNetFx35setup.exe
2016-11-24 22:45 - 2016-11-24 22:45 - 14572000 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\vc_redist.x64.exe
2016-11-24 22:45 - 2016-11-24 22:45 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-11-24 22:45 - 2016-11-24 22:45 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-24 22:35 - 2016-11-24 22:35 - 00407784 _____ (TweakBit) C:\Users\DaN\Downloads\fix_mfc120u.dll-setup.exe
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\Users\DaN\AppData\Roaming\DLL-files.com
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\Users\DaN\AppData\Roaming\DFXCT
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\Program Files (x86)\DLL-Files.com Client
2016-11-21 14:58 - 2016-11-26 12:20 - 00000000 ____D C:\Users\DaN\AppData\Local\Microsoft Games
2016-11-20 15:04 - 2016-11-20 15:22 - 00000132 _____ C:\Users\DaN\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-11-20 15:04 - 2016-11-20 15:04 - 00000132 _____ C:\Users\DaN\AppData\Roaming\Preferências do Filtro IllExport do Adobe CS6
2016-11-20 14:36 - 2016-11-20 14:36 - 00000000 ____D C:\Users\DaN\Desktop\CorelDRAW X7.4 EN Portable 1
2016-11-20 14:19 - 2016-11-20 14:19 - 00000040 ____H C:\B439DFD7E403
2016-11-20 14:16 - 2016-11-20 14:16 - 00001524 _____ C:\Users\DaN\Desktop\AppNee.com.CorelDRAW.X7.v17.4.Portable - Atalho.lnk
2016-11-20 14:16 - 2016-11-20 14:16 - 00000000 ____D C:\Users\DaN\Desktop\Photoshop CS6 Portable
2016-11-20 14:15 - 2016-11-20 14:16 - 00000000 ____D C:\Users\DaN\Desktop\CorelDRAW X7.4 EN Portable
2016-11-19 21:35 - 2016-11-19 21:35 - 02539067 _____ C:\Users\DaN\Downloads\AtvdR W7 By PH Downs.rar
2016-11-19 21:23 - 2016-11-26 12:37 - 00000000 ____D C:\Windows\system32\SSL
2016-11-19 21:23 - 2016-11-19 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Socia2Sear Browser Enhancer
2016-11-19 21:23 - 2016-11-19 21:23 - 00000000 ____D C:\Program Files\99e90b00ebf3ea5e1f2f258db3337c29
2016-11-18 13:30 - 2016-11-18 13:46 - 00000000 ____D C:\Users\DaN\Desktop\windows
2016-11-16 00:15 - 2016-11-16 00:15 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-11-16 00:14 - 2016-11-19 22:09 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-11-16 00:14 - 2016-11-16 00:14 - 00000000 ____D C:\Users\DaN\AppData\Local\Microsoft Help
2016-11-16 00:13 - 2016-11-16 00:13 - 00000000 ____D C:\Users\DaN\Downloads\Office 2010
2016-11-15 21:32 - 2014-05-14 14:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-15 21:32 - 2014-05-14 14:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-15 21:32 - 2014-05-14 14:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-15 21:32 - 2014-05-14 14:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-15 21:32 - 2014-05-14 14:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-15 21:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-15 21:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-15 21:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-15 21:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-15 21:03 - 2016-11-15 21:03 - 00000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Users\DaN\AppData\Roaming\Mozilla
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Users\DaN\AppData\LocalLow\Adobe
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Users\DaN\AppData\Local\Mozilla
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-15 21:01 - 2016-11-27 12:07 - 00002229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-15 21:01 - 2016-11-27 12:06 - 00002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-15 21:00 - 2016-11-27 14:12 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-15 21:00 - 2016-11-27 11:55 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-15 21:00 - 2016-11-16 11:37 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-15 21:00 - 2016-11-15 22:15 - 00000000 ____D C:\Users\DaN\AppData\Local\Google
2016-11-15 21:00 - 2016-11-15 21:07 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-15 21:00 - 2016-11-15 21:07 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-15 21:00 - 2016-11-15 21:01 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-15 21:00 - 2016-11-15 21:00 - 00000000 ____D C:\Users\Todos os Usuários\Google
2016-11-15 21:00 - 2016-11-15 21:00 - 00000000 ____D C:\ProgramData\Google
2016-11-15 21:00 - 2016-11-15 21:00 - 00000000 ____D C:\Program Files\Google
2016-11-15 20:59 - 2016-11-16 11:38 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-15 20:59 - 2016-11-16 11:36 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-11-15 20:59 - 2016-11-16 11:36 - 00000000 ____D C:\ProgramData\Adobe
2016-11-15 20:59 - 2016-11-15 20:59 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-11-15 16:55 - 2016-11-15 16:55 - 02120886 _____ C:\Windows\7697c51de0614d53753480d156cc3195.exe
2016-11-15 16:50 - 2016-11-15 16:50 - 00057432 _____ (LOIFW0) C:\Windows\system32\Drivers\249ce0c0d07757939e70a5d66ef4d0e8.sys
2016-10-03 11:14 - 2016-10-03 11:14 - 00439536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2016-10-03 11:14 - 2016-10-03 11:14 - 00267016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2016-10-03 11:14 - 2016-10-03 11:14 - 00243480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2016-10-03 11:14 - 2016-10-03 11:14 - 00085232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-11-27 14:36 - 2009-07-14 02:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-27 14:36 - 2009-07-14 02:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-27 12:42 - 2015-07-16 19:15 - 00000000 ____D C:\Users\DaN
2016-11-27 12:40 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2016-11-27 12:02 - 2010-11-21 07:37 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2016-11-27 12:02 - 2010-11-21 07:37 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2016-11-27 12:02 - 2009-07-14 03:13 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-27 11:57 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-11-27 11:55 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-27 11:55 - 2009-07-14 02:45 - 00434096 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-26 10:22 - 2015-07-16 20:33 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-20 14:19 - 2015-07-16 19:15 - 00058016 _____ C:\Users\DaN\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-19 22:09 - 2010-11-21 07:47 - 00000000 ____D C:\Windows\ShellNew
2016-11-19 22:09 - 2009-07-14 00:34 - 00000387 _____ C:\Windows\win.ini
2016-11-19 22:08 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-16 11:25 - 2009-07-14 03:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-11-15 21:04 - 2015-07-16 20:45 - 00003892 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1437086708
2016-11-15 21:04 - 2015-07-16 20:31 - 00000000 ____D C:\Users\DaN\AppData\Local\Adobe
2016-11-15 21:03 - 2015-07-16 19:23 - 00000000 ____D C:\Users\DaN\AppData\Roaming\Adobe
==================== Arquivos na raiz de alguns diretórios =======
2016-11-20 15:04 - 2016-11-20 15:04 - 0000132 _____ () C:\Users\DaN\AppData\Roaming\Preferências do Filtro IllExport do Adobe CS6
2016-11-20 15:04 - 2016-11-20 15:22 - 0000132 _____ () C:\Users\DaN\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
Alguns arquivos em TEMP:
====================
C:\Users\DaN\AppData\Local\Temp\2AC02BED-480E-4564-9122-78206DF1326C_fixmypc_setup.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2015-07-16 19:09
==================== Fim de FRST.txt ============================
Executado por DaN (administrador) em DAN-PC (27-11-2016 14:40:02)
Executando a partir de C:\Users\DaN\Downloads
Perfis Carregados: DaN (Perfis Disponíveis: DaN)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 10 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\99e90b00ebf3ea5e1f2f258db3337c29\e11d2a176d5c954efffee141c4705626.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2015-07-16] (AVAST Software)
HKU\S-1-5-21-3298757169-3355094578-1718341526-1000\...\MountPoints2: F - F:\LaunchU3.exe -a
HKU\S-1-5-21-3298757169-3355094578-1718341526-1000\...\MountPoints2: {881f24fc-2c01-11e5-af77-f30e32faec0c} - F:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-16] (AVAST Software)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 168.90.148.10 8.8.8.8
Tcpip\..\Interfaces\{C609AB45-B612-4852-93BB-0EED2E3FB10D}: [DhcpNameServer] 168.90.148.10 8.8.8.8
Internet Explorer:
==================
HKU\S-1-5-21-3298757169-3355094578-1718341526-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-11-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-16] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-15] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-11-27] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-27] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-11-27] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-16] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-15] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-11-27] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-11-27] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-11-15] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-11-15] (Google Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-11-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 07j572iz.default
FF ProfilePath: C:\Users\DaN\AppData\Roaming\Mozilla\Firefox\Profiles\07j572iz.default [2016-11-19]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-07-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-07-16]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-11-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-11-27] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/","hxxps://www.facebook.com/?stype=lo&jlou=AfejhIeh6ZfWvpd7rt1BDaGKKSJqWdKVKiZAyK_UAbwHR9DPhtVKI54XGToEII5ir-ziJkaXW6r5rRIUHVLBhUZ92kiVgAuY8ZBTo5PZsz08Lw&smuh=46892&lh=Ac93dcibqeG-5bz9","hxxp://www.google.com/"
CHR Profile: C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default [2016-11-27]
CHR Extension: (Google Apresentações) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-15]
CHR Extension: (Google Docs) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-15]
CHR Extension: (Google Drive) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-15]
CHR Extension: (YouTube) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-15]
CHR Extension: (Avast SafePrice) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Planilhas do Google) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-15]
CHR Extension: (Documentos Google off-line) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-16]
CHR Extension: (TVPlusNewtab) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbnbngfommjgbgbhnkhepfckckedcpn [2016-11-19]
CHR Extension: (Avast Online Security) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-15]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-15]
CHR Extension: (Gmail) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-15]
CHR Extension: (Chrome Media Router) - C:\Users\DaN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 99e90b00ebf3ea5e1f2f258db3337c29; C:\Program Files\99e90b00ebf3ea5e1f2f258db3337c29\e11d2a176d5c954efffee141c4705626.exe [5576704 2016-11-15] () [Arquivo não assinado] <==== ATENÇÃO
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2015-07-16] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2946320 2016-10-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-07-26] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 249ce0c0d07757939e70a5d66ef4d0e8; C:\Windows\system32\drivers\249ce0c0d07757939e70a5d66ef4d0e8.sys [57432 2016-11-15] (LOIFW0) <==== ATENÇÃO
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2015-07-16] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2015-07-16] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2015-07-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2015-07-16] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2015-07-16] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2015-07-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2015-07-16] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2015-07-16] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2015-07-16] (AVAST Software)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-11-27 14:37 - 2016-11-27 14:38 - 00021341 _____ C:\Users\DaN\Downloads\Addition.txt
2016-11-27 14:36 - 2016-11-27 14:40 - 00012241 _____ C:\Users\DaN\Downloads\FRST.txt
2016-11-27 14:36 - 2016-11-27 14:40 - 00000000 ____D C:\FRST
2016-11-27 14:36 - 2016-11-27 14:36 - 02412032 _____ (Farbar) C:\Users\DaN\Downloads\FRST64.exe
2016-11-27 12:46 - 2016-11-27 12:46 - 00000000 ____D C:\3be9763042739b23766415df
2016-11-27 12:42 - 2016-11-27 12:42 - 00002158 _____ C:\Users\DaN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00002110 _____ C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00002110 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00002110 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-11-27 12:42 - 2016-11-27 12:42 - 00000000 ___RD C:\Users\DaN\OneDrive
2016-11-27 12:42 - 2016-11-27 12:42 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-11-27 12:41 - 2016-11-27 12:41 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2016-11-27 12:41 - 2016-11-27 12:41 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-11-27 12:41 - 2016-11-27 12:41 - 00000000 ____D C:\73e1d08a39dc6e0574fe47a6
2016-11-27 12:30 - 2016-11-27 12:30 - 00000000 ____D C:\fa183cfbc57dfd3ce5066c
2016-11-27 12:30 - 2016-10-12 10:09 - 00001983 _____ C:\Users\DaN\Downloads\README.txt
2016-11-27 12:30 - 2016-08-10 17:27 - 00007680 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-27 12:29 - 2016-11-27 12:29 - 00003630 _____ C:\Users\DaN\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-11-27 12:28 - 2016-11-27 12:28 - 01034556 _____ C:\Users\DaN\Downloads\Windows6.1-KB2999226-x64.msu
2016-11-27 12:03 - 2016-11-27 12:03 - 00002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002380 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-11-27 12:03 - 2016-11-27 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-11-27 11:57 - 2016-11-27 12:41 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-11-27 11:57 - 2016-11-27 12:41 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-27 11:55 - 2016-11-27 11:55 - 265799051 _____ C:\Windows\MEMORY.DMP
2016-11-27 11:55 - 2016-11-27 11:55 - 00279952 _____ C:\Windows\Minidump\112716-27612-01.dmp
2016-11-27 11:55 - 2016-11-27 11:55 - 00000000 ____D C:\Windows\Minidump
2016-11-27 10:32 - 2016-11-27 10:32 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-11-27 10:30 - 2016-11-27 10:30 - 03738928 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\Setup.X86.pt-br_O365ProPlusRetail_07e3ff42-add0-4f41-a52f-51e65e241475_TX_PR_b_64_.exe
2016-11-24 22:54 - 2016-11-27 11:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-24 22:54 - 2016-11-24 22:54 - 00000000 ____D C:\Program Files (x86)\MSECache
2016-11-24 22:53 - 2016-11-24 22:53 - 39035640 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\FileFormatConverters.exe
2016-11-24 22:51 - 2016-11-24 22:51 - 02869264 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\dotNetFx35setup.exe
2016-11-24 22:45 - 2016-11-24 22:45 - 14572000 _____ (Microsoft Corporation) C:\Users\DaN\Downloads\vc_redist.x64.exe
2016-11-24 22:45 - 2016-11-24 22:45 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-11-24 22:45 - 2016-11-24 22:45 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-24 22:35 - 2016-11-24 22:35 - 00407784 _____ (TweakBit) C:\Users\DaN\Downloads\fix_mfc120u.dll-setup.exe
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\Users\DaN\AppData\Roaming\DLL-files.com
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\Users\DaN\AppData\Roaming\DFXCT
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client
2016-11-24 22:26 - 2016-11-24 22:26 - 00000000 ____D C:\Program Files (x86)\DLL-Files.com Client
2016-11-21 14:58 - 2016-11-26 12:20 - 00000000 ____D C:\Users\DaN\AppData\Local\Microsoft Games
2016-11-20 15:04 - 2016-11-20 15:22 - 00000132 _____ C:\Users\DaN\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-11-20 15:04 - 2016-11-20 15:04 - 00000132 _____ C:\Users\DaN\AppData\Roaming\Preferências do Filtro IllExport do Adobe CS6
2016-11-20 14:36 - 2016-11-20 14:36 - 00000000 ____D C:\Users\DaN\Desktop\CorelDRAW X7.4 EN Portable 1
2016-11-20 14:19 - 2016-11-20 14:19 - 00000040 ____H C:\B439DFD7E403
2016-11-20 14:16 - 2016-11-20 14:16 - 00001524 _____ C:\Users\DaN\Desktop\AppNee.com.CorelDRAW.X7.v17.4.Portable - Atalho.lnk
2016-11-20 14:16 - 2016-11-20 14:16 - 00000000 ____D C:\Users\DaN\Desktop\Photoshop CS6 Portable
2016-11-20 14:15 - 2016-11-20 14:16 - 00000000 ____D C:\Users\DaN\Desktop\CorelDRAW X7.4 EN Portable
2016-11-19 21:35 - 2016-11-19 21:35 - 02539067 _____ C:\Users\DaN\Downloads\AtvdR W7 By PH Downs.rar
2016-11-19 21:23 - 2016-11-26 12:37 - 00000000 ____D C:\Windows\system32\SSL
2016-11-19 21:23 - 2016-11-19 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Socia2Sear Browser Enhancer
2016-11-19 21:23 - 2016-11-19 21:23 - 00000000 ____D C:\Program Files\99e90b00ebf3ea5e1f2f258db3337c29
2016-11-18 13:30 - 2016-11-18 13:46 - 00000000 ____D C:\Users\DaN\Desktop\windows
2016-11-16 00:15 - 2016-11-16 00:15 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-11-16 00:14 - 2016-11-19 22:09 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-11-16 00:14 - 2016-11-16 00:14 - 00000000 ____D C:\Users\DaN\AppData\Local\Microsoft Help
2016-11-16 00:13 - 2016-11-16 00:13 - 00000000 ____D C:\Users\DaN\Downloads\Office 2010
2016-11-15 21:32 - 2014-05-14 14:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-15 21:32 - 2014-05-14 14:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-15 21:32 - 2014-05-14 14:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-15 21:32 - 2014-05-14 14:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-15 21:32 - 2014-05-14 14:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-15 21:32 - 2014-05-14 14:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-15 21:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-15 21:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-15 21:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-15 21:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-15 21:03 - 2016-11-15 21:03 - 00000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Users\DaN\AppData\Roaming\Mozilla
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Users\DaN\AppData\LocalLow\Adobe
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Users\DaN\AppData\Local\Mozilla
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-11-15 21:03 - 2016-11-15 21:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-15 21:01 - 2016-11-27 12:07 - 00002229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-15 21:01 - 2016-11-27 12:06 - 00002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-15 21:00 - 2016-11-27 14:12 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-15 21:00 - 2016-11-27 11:55 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-15 21:00 - 2016-11-16 11:37 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-15 21:00 - 2016-11-15 22:15 - 00000000 ____D C:\Users\DaN\AppData\Local\Google
2016-11-15 21:00 - 2016-11-15 21:07 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-15 21:00 - 2016-11-15 21:07 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-15 21:00 - 2016-11-15 21:01 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-15 21:00 - 2016-11-15 21:00 - 00000000 ____D C:\Users\Todos os Usuários\Google
2016-11-15 21:00 - 2016-11-15 21:00 - 00000000 ____D C:\ProgramData\Google
2016-11-15 21:00 - 2016-11-15 21:00 - 00000000 ____D C:\Program Files\Google
2016-11-15 20:59 - 2016-11-16 11:38 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-15 20:59 - 2016-11-16 11:36 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-11-15 20:59 - 2016-11-16 11:36 - 00000000 ____D C:\ProgramData\Adobe
2016-11-15 20:59 - 2016-11-15 20:59 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-11-15 16:55 - 2016-11-15 16:55 - 02120886 _____ C:\Windows\7697c51de0614d53753480d156cc3195.exe
2016-11-15 16:50 - 2016-11-15 16:50 - 00057432 _____ (LOIFW0) C:\Windows\system32\Drivers\249ce0c0d07757939e70a5d66ef4d0e8.sys
2016-10-03 11:14 - 2016-10-03 11:14 - 00439536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2016-10-03 11:14 - 2016-10-03 11:14 - 00267016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2016-10-03 11:14 - 2016-10-03 11:14 - 00243480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2016-10-03 11:14 - 2016-10-03 11:14 - 00085232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-11-27 14:36 - 2009-07-14 02:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-27 14:36 - 2009-07-14 02:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-27 12:42 - 2015-07-16 19:15 - 00000000 ____D C:\Users\DaN
2016-11-27 12:40 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2016-11-27 12:02 - 2010-11-21 07:37 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2016-11-27 12:02 - 2010-11-21 07:37 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2016-11-27 12:02 - 2009-07-14 03:13 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-27 11:57 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-11-27 11:55 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-27 11:55 - 2009-07-14 02:45 - 00434096 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-26 10:22 - 2015-07-16 20:33 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-20 14:19 - 2015-07-16 19:15 - 00058016 _____ C:\Users\DaN\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-19 22:09 - 2010-11-21 07:47 - 00000000 ____D C:\Windows\ShellNew
2016-11-19 22:09 - 2009-07-14 00:34 - 00000387 _____ C:\Windows\win.ini
2016-11-19 22:08 - 2009-07-14 03:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-16 11:25 - 2009-07-14 03:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-11-15 21:04 - 2015-07-16 20:45 - 00003892 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1437086708
2016-11-15 21:04 - 2015-07-16 20:31 - 00000000 ____D C:\Users\DaN\AppData\Local\Adobe
2016-11-15 21:03 - 2015-07-16 19:23 - 00000000 ____D C:\Users\DaN\AppData\Roaming\Adobe
==================== Arquivos na raiz de alguns diretórios =======
2016-11-20 15:04 - 2016-11-20 15:04 - 0000132 _____ () C:\Users\DaN\AppData\Roaming\Preferências do Filtro IllExport do Adobe CS6
2016-11-20 15:04 - 2016-11-20 15:22 - 0000132 _____ () C:\Users\DaN\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
Alguns arquivos em TEMP:
====================
C:\Users\DaN\AppData\Local\Temp\2AC02BED-480E-4564-9122-78206DF1326C_fixmypc_setup.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2015-07-16 19:09
==================== Fim de FRST.txt ============================