Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 29-01-2017
Executado por - STI - (administrador) em -STI--PC (04-02-2017 12:48:06)
Executando a partir de C:\Users\- STI -\Downloads\Programs
Perfis Carregados: - STI - (Perfis Disponíveis: - STI -)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Nitro PDF Software) C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704 2016-01-13] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [346008 2012-07-19] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2428656 2013-05-22] (Synaptics Incorporated)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software)
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\Run: [Google Update] => C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-18] (Google Inc.)
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4015216 2016-12-15] (Tonec Inc.)
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\MountPoints2: {19420da1-e8c4-11e6-b159-4487fc22a5e2} - F:\LGAutoRun.exe
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\MountPoints2: {faefdea2-42e9-11e6-ad56-4487fc22a5e2} - F:\Startme.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-10-03] (AVAST Software)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{064E61E7-E3CE-4EE9-B6A0-CC22BC429B34}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9B22FB09-A6B1-4399-9AAD-12171F3ECE78}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-25] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1303078136-853971651-2996688823-1000 -> Sem Nome - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Nenhum Arquivo
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-03]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-03]
FF HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\- STI -\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\- STI -\AppData\Roaming\IDM\idmmzcc5 [2017-02-04] [não assinado]
FF HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin: NitroPDF -> C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll [2011-06-21] ( )
FF Plugin HKU\S-1-5-21-1303078136-853971651-2996688823-1000: @tools.google.com/Google Update;version=3 -> C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-1303078136-853971651-2996688823-1000: @tools.google.com/Google Update;version=9 -> C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
CHR StartupUrls: Default -> "hxxp://www.google.com.br/","hxxps://www.google.com/"
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default [2017-02-04]
CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-23]
CHR Extension: (Google Drive) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-23]
CHR Extension: (YouTube) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-23]
CHR Extension: (Pesquisa do Google) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-06-18]
CHR Extension: (Adobe Acrobat) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-01]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-16]
CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-18]
CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-02-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01]
CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-23]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-01]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-01-19]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-12-10]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-29]
CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-29]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-01-19]
CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-16]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-16]
CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-16]
CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-16]
CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-01-16]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-10]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-19]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-02-04]
CHR Extension: (Google Apresentações) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-16]
CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-16]
CHR Extension: (Google Drive) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-16]
CHR Extension: (YouTube) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-16]
CHR Extension: (Adobe Acrobat) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-01]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-16]
CHR Extension: (Planilhas do Google) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-16]
CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-16]
CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-16]
CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-01-16]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-16]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-16]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-12-15]
StartMenuInternet: Google Chrome.4SA7XPKJYGGPPAJTBMUGQBICZY - C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-03] (AVAST Software)
R2 NitroReaderDriverReadSpool2; C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe [196912 2011-06-21] (Nitro PDF Software)
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [268032 2016-01-13] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2012-07-03] (Google Inc)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34008 2016-10-03] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2016-10-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [92256 2016-10-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-10-03] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [60424 2016-10-03] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [735488 2016-10-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433768 2016-10-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [118664 2016-10-03] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [224752 2016-10-14] (AVAST Software)
S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [28392 2015-07-27] (ELAN Microelectronic Corp.)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [503048 2015-05-29] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-05-29] (Intel Corporation)
R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [42496 2009-09-09] (Intel Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [305408 2015-11-12] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [1565400 2015-01-13] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2015-09-22] (Synaptics Incorporated)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-04 12:46 - 2017-02-04 12:48 - 00000000 ____D C:\FRST
2017-02-01 22:53 - 2017-02-01 22:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_lgandnetadb_01005.Wdf
2017-02-01 22:49 - 2017-02-01 22:49 - 00000000 ____D C:\Program Files\LG Electronics
2017-02-01 22:20 - 2017-02-01 22:34 - 00000000 ____D C:\Users\- STI -\Desktop\EDIVAN
2017-02-01 17:06 - 2017-02-01 17:06 - 00007601 _____ C:\Users\- STI -\AppData\Local\Resmon.ResmonCfg
2017-02-01 15:44 - 2017-02-02 11:17 - 00000000 ____D C:\Users\- STI -\Desktop\Nova pasta
2017-01-28 13:24 - 2017-01-28 13:24 - 00000000 ____D C:\Users\- STI -\AppData\Local\ElevatedDiagnostics
2017-01-28 13:24 - 2017-01-28 13:24 - 00000000 _____ C:\Users\-
2017-01-24 13:37 - 2017-01-24 13:37 - 00083677 _____ C:\Users\- STI -\Desktop\wesley.pdf
2017-01-23 14:55 - 2017-01-23 14:55 - 00047988 _____ C:\Users\- STI -\Desktop\rde.pdf
2017-01-18 11:20 - 2017-01-18 11:20 - 00092126 _____ C:\Users\- STI -\Downloads\re.pdf
2017-01-16 21:07 - 2017-01-16 21:07 - 00000000 ____D C:\Users\- STI -\Downloads\Um Amor à Altura 2016 WWW.BLUDV.COM
2017-01-16 16:42 - 2017-01-20 08:46 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-16 16:42 - 2017-01-16 16:42 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-01-16 16:41 - 2017-01-16 16:41 - 00000000 ____D C:\Program Files\Adobe
2017-01-10 21:50 - 2017-01-10 21:50 - 00000000 ____D C:\Users\- STI -\Downloads\Festa da Salsicha 720p (2016) Dual Áudio BluRay -- By - Lucas Firmo
2016-12-26 17:11 - 2017-01-10 21:57 - 00000000 ____D C:\Users\- STI -\Downloads\Os Caça-Noivas 2016 WWW.BLUDV.COM
2016-12-18 10:01 - 2017-02-04 12:48 - 00000000 ____D C:\Users\- STI -\Downloads\Programs
2016-12-18 10:01 - 2017-02-04 12:35 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\DMCache
2016-12-18 10:01 - 2017-02-04 12:26 - 00000000 ____D C:\Users\- STI -\Downloads\Video
2016-12-18 10:01 - 2017-02-04 07:57 - 00000000 ____D C:\Users\- STI -\Downloads\Documents
2016-12-18 10:01 - 2017-02-02 13:09 - 00000000 ____D C:\Users\- STI -\Downloads\Compressed
2016-12-18 10:01 - 2017-02-01 17:48 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\IDM
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\Todos os Usuários\IDM
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\- STI -\Downloads\Music
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\ProgramData\IDM
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-12-15 07:51 - 2016-10-17 11:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2016-12-13 20:58 - 2016-12-13 20:58 - 00541134 _____ C:\Users\- STI -\Documents\Apresentação1.pptx
2016-12-10 10:27 - 2016-12-10 10:27 - 00000000 ____D C:\Users\- STI -\Downloads\Cegonhas A História que Não te Contaram 2016 Bluray 720p Dublado - TPF
2016-12-10 10:17 - 2016-12-10 10:17 - 00000000 ____D C:\Users\- STI -\Downloads\Esquadrão Suicida (2016) Dual Áudio 720p 5.1 CH [WEB-DL] By-LuanHarper
2016-12-10 10:16 - 2017-02-03 00:47 - 00000000 ____D C:\Users\- STI -\AppData\LocalLow\uTorrent
2016-12-10 10:14 - 2017-01-25 13:35 - 00000000 ___SD C:\Users\- STI -\AppData\LocalLow\Temp
2016-12-10 10:14 - 2016-12-10 10:14 - 00000833 _____ C:\Users\- STI -\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-12-10 10:09 - 2017-02-03 00:47 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\uTorrent
2016-12-08 16:45 - 2016-12-08 16:45 - 00053127 _____ C:\Users\- STI -\Desktop\Gazin - Área do Cliente - Extrato.pdf
2016-12-04 18:03 - 2017-02-03 00:30 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\vlc
2016-12-04 18:02 - 2016-12-04 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-12-04 18:02 - 2016-12-04 18:02 - 00000000 ____D C:\Program Files\VideoLAN
2016-11-30 19:56 - 2016-11-30 19:56 - 00000000 ____D C:\Users\Todos os Usuários\Motorola
2016-11-30 19:56 - 2016-11-30 19:56 - 00000000 ____D C:\ProgramData\Motorola
2016-11-30 16:08 - 2016-11-30 16:08 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (3).pdf
2016-11-30 16:05 - 2016-11-30 16:05 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (2).pdf
2016-11-30 16:05 - 2016-11-30 16:05 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (1).pdf
2016-11-30 16:01 - 2016-11-30 16:03 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245.pdf
2016-11-29 21:06 - 2016-11-29 22:10 - 00000094 _____ C:\Users\- STI -\Downloads\COMANDOS.txt
2016-11-29 20:13 - 2016-11-29 20:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2016-11-29 19:42 - 2016-11-30 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2016-11-29 19:42 - 2016-11-29 19:43 - 00000000 ____D C:\Program Files\Motorola Mobility
2016-11-29 19:42 - 2016-11-29 19:42 - 00000000 ____D C:\Program Files\Motorola
2016-11-29 19:42 - 2016-11-29 19:42 - 00000000 ____D C:\Program Files\Common Files\MSSoap
2016-11-29 19:41 - 2016-11-29 19:41 - 00000000 ____D C:\Program Files\MSXML 4.0
2016-11-29 19:40 - 2016-11-29 19:40 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-11-29 19:40 - 2016-11-29 19:40 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2016-11-29 19:37 - 2016-11-29 19:37 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Motorola
2016-11-25 10:58 - 2016-11-25 10:58 - 00116372 _____ C:\Users\- STI -\Downloads\fael 12.pdf
2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD.pptx
2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD (2).pptx
2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD (1).pptx
2016-11-20 11:28 - 2016-11-20 11:28 - 00000000 ____D C:\Windows\system32\appmgmt
2016-11-18 16:32 - 2016-11-18 16:32 - 00000162 ____H C:\Users\- STI -\Documents\~$aliação Discursiva Onlin1.docx
2016-11-17 20:31 - 2016-11-19 17:23 - 00020922 _____ C:\Users\- STI -\Documents\Avaliação Discursiva Onlin1.docx
2016-11-17 15:20 - 2016-11-17 15:21 - 05114883 _____ C:\Users\- STI -\Downloads\Livro da Disciplina.pdf
2016-11-17 13:19 - 2016-11-17 13:24 - 20935700 _____ C:\Users\- STI -\Downloads\slither-io-1-4-8.apk
2016-11-16 20:29 - 2016-11-16 20:29 - 00314063 _____ C:\Users\- STI -\Downloads\Nova Avaliação Discursiva Calouros (7).pdf
2016-11-16 20:29 - 2016-11-16 20:29 - 00314063 _____ C:\Users\- STI -\Downloads\Nova Avaliação Discursiva Calouros (6).pdf
2016-11-15 12:15 - 2016-11-15 12:15 - 00015365 _____ C:\Users\- STI -\Documents\d1.docx
2016-11-15 10:57 - 2016-11-15 11:17 - 07446666 _____ C:\Users\- STI -\Downloads\Livro_legislacao_ (2).pdf
2016-11-15 10:41 - 2016-11-15 10:41 - 00116363 _____ C:\Users\- STI -\Downloads\11.16.pdf
2016-11-14 14:43 - 2016-11-14 14:43 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\MPC-HC
2016-11-06 12:31 - 2016-11-06 12:31 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Nero
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-04 12:45 - 2009-07-14 00:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-04 12:45 - 2009-07-14 00:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-04 12:38 - 2016-06-18 17:31 - 00000294 _____ C:\Windows\Tasks\AutoKMS.job
2017-02-04 12:38 - 2016-06-18 17:30 - 00151552 _____ C:\Windows\KMSEmulator.exe
2017-02-04 12:37 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-03 00:25 - 2016-06-18 16:01 - 00713932 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-03 00:25 - 2009-07-14 04:31 - 00004284 _____ C:\Windows\system32\prfh0416.dat
2017-02-03 00:25 - 2009-07-14 04:31 - 00004092 _____ C:\Windows\system32\prfc0416.dat
2017-02-03 00:25 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\inf
2017-02-02 11:26 - 2016-06-18 16:06 - 00000000 ____D C:\Users\- STI -
2017-01-29 01:09 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\NDF
2017-01-16 16:46 - 2016-06-30 21:27 - 00000000 ____D C:\Users\- STI -\AppData\Local\Adobe
2017-01-16 16:41 - 2016-06-30 21:18 - 00000000 ____D C:\Program Files\Common Files\Adobe
==================== Arquivos na raiz de alguns diretórios =======
2017-02-01 17:06 - 2017-02-01 17:06 - 0007601 _____ () C:\Users\- STI -\AppData\Local\Resmon.ResmonCfg
Alguns arquivos em TEMP:
====================
2017-01-28 12:58 - 2010-06-06 09:22 - 0020480 _____ () C:\Users\- STI -\AppData\Local\Temp\namebench.exe
2017-01-28 12:58 - 2010-05-09 11:34 - 2292736 _____ (Python Software Foundation) C:\Users\- STI -\AppData\Local\Temp\python27.dll
2017-01-28 12:58 - 2008-11-06 21:29 - 0867328 _____ (ActiveState Corporation) C:\Users\- STI -\AppData\Local\Temp\tcl85.dll
2017-01-28 12:58 - 2008-11-06 21:37 - 1319936 _____ (ActiveState Corporation) C:\Users\- STI -\AppData\Local\Temp\tk85.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-01-15 12:56
==================== Fim de FRST.txt ============================
Executado por - STI - (administrador) em -STI--PC (04-02-2017 12:48:06)
Executando a partir de C:\Users\- STI -\Downloads\Programs
Perfis Carregados: - STI - (Perfis Disponíveis: - STI -)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Nitro PDF Software) C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704 2016-01-13] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [346008 2012-07-19] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2428656 2013-05-22] (Synaptics Incorporated)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software)
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\Run: [Google Update] => C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-18] (Google Inc.)
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4015216 2016-12-15] (Tonec Inc.)
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\MountPoints2: {19420da1-e8c4-11e6-b159-4487fc22a5e2} - F:\LGAutoRun.exe
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\MountPoints2: {faefdea2-42e9-11e6-ad56-4487fc22a5e2} - F:\Startme.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-10-03] (AVAST Software)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{064E61E7-E3CE-4EE9-B6A0-CC22BC429B34}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9B22FB09-A6B1-4399-9AAD-12171F3ECE78}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1303078136-853971651-2996688823-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-25] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1303078136-853971651-2996688823-1000 -> Sem Nome - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Nenhum Arquivo
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-03]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-03]
FF HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\- STI -\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\- STI -\AppData\Roaming\IDM\idmmzcc5 [2017-02-04] [não assinado]
FF HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin: NitroPDF -> C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll [2011-06-21] ( )
FF Plugin HKU\S-1-5-21-1303078136-853971651-2996688823-1000: @tools.google.com/Google Update;version=3 -> C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin HKU\S-1-5-21-1303078136-853971651-2996688823-1000: @tools.google.com/Google Update;version=9 -> C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal
CHR StartupUrls: Default -> "hxxp://www.google.com.br/","hxxps://www.google.com/"
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default [2017-02-04]
CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-23]
CHR Extension: (Google Drive) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-23]
CHR Extension: (YouTube) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-23]
CHR Extension: (Pesquisa do Google) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-06-18]
CHR Extension: (Adobe Acrobat) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-01]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-16]
CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-18]
CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-02-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01]
CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-23]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-01]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-01-19]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-12-10]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-29]
CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-29]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-01-19]
CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-16]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-16]
CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-16]
CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-16]
CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-01-16]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-10]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-19]
CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-02-04]
CHR Extension: (Google Apresentações) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-16]
CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-16]
CHR Extension: (Google Drive) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-16]
CHR Extension: (YouTube) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-16]
CHR Extension: (Adobe Acrobat) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-01]
CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-16]
CHR Extension: (Planilhas do Google) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-16]
CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-16]
CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-16]
CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-01-16]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-16]
CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-16]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-12-15]
StartMenuInternet: Google Chrome.4SA7XPKJYGGPPAJTBMUGQBICZY - C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-03] (AVAST Software)
R2 NitroReaderDriverReadSpool2; C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe [196912 2011-06-21] (Nitro PDF Software)
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [268032 2016-01-13] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2012-07-03] (Google Inc)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34008 2016-10-03] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2016-10-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [92256 2016-10-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-10-03] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [60424 2016-10-03] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [735488 2016-10-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433768 2016-10-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [118664 2016-10-03] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [224752 2016-10-14] (AVAST Software)
S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [28392 2015-07-27] (ELAN Microelectronic Corp.)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [503048 2015-05-29] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-05-29] (Intel Corporation)
R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [42496 2009-09-09] (Intel Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [305408 2015-11-12] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [1565400 2015-01-13] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2015-09-22] (Synaptics Incorporated)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-04 12:46 - 2017-02-04 12:48 - 00000000 ____D C:\FRST
2017-02-01 22:53 - 2017-02-01 22:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_lgandnetadb_01005.Wdf
2017-02-01 22:49 - 2017-02-01 22:49 - 00000000 ____D C:\Program Files\LG Electronics
2017-02-01 22:20 - 2017-02-01 22:34 - 00000000 ____D C:\Users\- STI -\Desktop\EDIVAN
2017-02-01 17:06 - 2017-02-01 17:06 - 00007601 _____ C:\Users\- STI -\AppData\Local\Resmon.ResmonCfg
2017-02-01 15:44 - 2017-02-02 11:17 - 00000000 ____D C:\Users\- STI -\Desktop\Nova pasta
2017-01-28 13:24 - 2017-01-28 13:24 - 00000000 ____D C:\Users\- STI -\AppData\Local\ElevatedDiagnostics
2017-01-28 13:24 - 2017-01-28 13:24 - 00000000 _____ C:\Users\-
2017-01-24 13:37 - 2017-01-24 13:37 - 00083677 _____ C:\Users\- STI -\Desktop\wesley.pdf
2017-01-23 14:55 - 2017-01-23 14:55 - 00047988 _____ C:\Users\- STI -\Desktop\rde.pdf
2017-01-18 11:20 - 2017-01-18 11:20 - 00092126 _____ C:\Users\- STI -\Downloads\re.pdf
2017-01-16 21:07 - 2017-01-16 21:07 - 00000000 ____D C:\Users\- STI -\Downloads\Um Amor à Altura 2016 WWW.BLUDV.COM
2017-01-16 16:42 - 2017-01-20 08:46 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-16 16:42 - 2017-01-16 16:42 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-01-16 16:41 - 2017-01-16 16:41 - 00000000 ____D C:\Program Files\Adobe
2017-01-10 21:50 - 2017-01-10 21:50 - 00000000 ____D C:\Users\- STI -\Downloads\Festa da Salsicha 720p (2016) Dual Áudio BluRay -- By - Lucas Firmo
2016-12-26 17:11 - 2017-01-10 21:57 - 00000000 ____D C:\Users\- STI -\Downloads\Os Caça-Noivas 2016 WWW.BLUDV.COM
2016-12-18 10:01 - 2017-02-04 12:48 - 00000000 ____D C:\Users\- STI -\Downloads\Programs
2016-12-18 10:01 - 2017-02-04 12:35 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\DMCache
2016-12-18 10:01 - 2017-02-04 12:26 - 00000000 ____D C:\Users\- STI -\Downloads\Video
2016-12-18 10:01 - 2017-02-04 07:57 - 00000000 ____D C:\Users\- STI -\Downloads\Documents
2016-12-18 10:01 - 2017-02-02 13:09 - 00000000 ____D C:\Users\- STI -\Downloads\Compressed
2016-12-18 10:01 - 2017-02-01 17:48 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\IDM
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\Todos os Usuários\IDM
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\- STI -\Downloads\Music
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\ProgramData\IDM
2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-12-15 07:51 - 2016-10-17 11:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2016-12-13 20:58 - 2016-12-13 20:58 - 00541134 _____ C:\Users\- STI -\Documents\Apresentação1.pptx
2016-12-10 10:27 - 2016-12-10 10:27 - 00000000 ____D C:\Users\- STI -\Downloads\Cegonhas A História que Não te Contaram 2016 Bluray 720p Dublado - TPF
2016-12-10 10:17 - 2016-12-10 10:17 - 00000000 ____D C:\Users\- STI -\Downloads\Esquadrão Suicida (2016) Dual Áudio 720p 5.1 CH [WEB-DL] By-LuanHarper
2016-12-10 10:16 - 2017-02-03 00:47 - 00000000 ____D C:\Users\- STI -\AppData\LocalLow\uTorrent
2016-12-10 10:14 - 2017-01-25 13:35 - 00000000 ___SD C:\Users\- STI -\AppData\LocalLow\Temp
2016-12-10 10:14 - 2016-12-10 10:14 - 00000833 _____ C:\Users\- STI -\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-12-10 10:09 - 2017-02-03 00:47 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\uTorrent
2016-12-08 16:45 - 2016-12-08 16:45 - 00053127 _____ C:\Users\- STI -\Desktop\Gazin - Área do Cliente - Extrato.pdf
2016-12-04 18:03 - 2017-02-03 00:30 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\vlc
2016-12-04 18:02 - 2016-12-04 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-12-04 18:02 - 2016-12-04 18:02 - 00000000 ____D C:\Program Files\VideoLAN
2016-11-30 19:56 - 2016-11-30 19:56 - 00000000 ____D C:\Users\Todos os Usuários\Motorola
2016-11-30 19:56 - 2016-11-30 19:56 - 00000000 ____D C:\ProgramData\Motorola
2016-11-30 16:08 - 2016-11-30 16:08 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (3).pdf
2016-11-30 16:05 - 2016-11-30 16:05 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (2).pdf
2016-11-30 16:05 - 2016-11-30 16:05 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (1).pdf
2016-11-30 16:01 - 2016-11-30 16:03 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245.pdf
2016-11-29 21:06 - 2016-11-29 22:10 - 00000094 _____ C:\Users\- STI -\Downloads\COMANDOS.txt
2016-11-29 20:13 - 2016-11-29 20:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2016-11-29 19:42 - 2016-11-30 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2016-11-29 19:42 - 2016-11-29 19:43 - 00000000 ____D C:\Program Files\Motorola Mobility
2016-11-29 19:42 - 2016-11-29 19:42 - 00000000 ____D C:\Program Files\Motorola
2016-11-29 19:42 - 2016-11-29 19:42 - 00000000 ____D C:\Program Files\Common Files\MSSoap
2016-11-29 19:41 - 2016-11-29 19:41 - 00000000 ____D C:\Program Files\MSXML 4.0
2016-11-29 19:40 - 2016-11-29 19:40 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-11-29 19:40 - 2016-11-29 19:40 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2016-11-29 19:37 - 2016-11-29 19:37 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Motorola
2016-11-25 10:58 - 2016-11-25 10:58 - 00116372 _____ C:\Users\- STI -\Downloads\fael 12.pdf
2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD.pptx
2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD (2).pptx
2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD (1).pptx
2016-11-20 11:28 - 2016-11-20 11:28 - 00000000 ____D C:\Windows\system32\appmgmt
2016-11-18 16:32 - 2016-11-18 16:32 - 00000162 ____H C:\Users\- STI -\Documents\~$aliação Discursiva Onlin1.docx
2016-11-17 20:31 - 2016-11-19 17:23 - 00020922 _____ C:\Users\- STI -\Documents\Avaliação Discursiva Onlin1.docx
2016-11-17 15:20 - 2016-11-17 15:21 - 05114883 _____ C:\Users\- STI -\Downloads\Livro da Disciplina.pdf
2016-11-17 13:19 - 2016-11-17 13:24 - 20935700 _____ C:\Users\- STI -\Downloads\slither-io-1-4-8.apk
2016-11-16 20:29 - 2016-11-16 20:29 - 00314063 _____ C:\Users\- STI -\Downloads\Nova Avaliação Discursiva Calouros (7).pdf
2016-11-16 20:29 - 2016-11-16 20:29 - 00314063 _____ C:\Users\- STI -\Downloads\Nova Avaliação Discursiva Calouros (6).pdf
2016-11-15 12:15 - 2016-11-15 12:15 - 00015365 _____ C:\Users\- STI -\Documents\d1.docx
2016-11-15 10:57 - 2016-11-15 11:17 - 07446666 _____ C:\Users\- STI -\Downloads\Livro_legislacao_ (2).pdf
2016-11-15 10:41 - 2016-11-15 10:41 - 00116363 _____ C:\Users\- STI -\Downloads\11.16.pdf
2016-11-14 14:43 - 2016-11-14 14:43 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\MPC-HC
2016-11-06 12:31 - 2016-11-06 12:31 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Nero
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-02-04 12:45 - 2009-07-14 00:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-04 12:45 - 2009-07-14 00:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-04 12:38 - 2016-06-18 17:31 - 00000294 _____ C:\Windows\Tasks\AutoKMS.job
2017-02-04 12:38 - 2016-06-18 17:30 - 00151552 _____ C:\Windows\KMSEmulator.exe
2017-02-04 12:37 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-03 00:25 - 2016-06-18 16:01 - 00713932 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-03 00:25 - 2009-07-14 04:31 - 00004284 _____ C:\Windows\system32\prfh0416.dat
2017-02-03 00:25 - 2009-07-14 04:31 - 00004092 _____ C:\Windows\system32\prfc0416.dat
2017-02-03 00:25 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\inf
2017-02-02 11:26 - 2016-06-18 16:06 - 00000000 ____D C:\Users\- STI -
2017-01-29 01:09 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\NDF
2017-01-16 16:46 - 2016-06-30 21:27 - 00000000 ____D C:\Users\- STI -\AppData\Local\Adobe
2017-01-16 16:41 - 2016-06-30 21:18 - 00000000 ____D C:\Program Files\Common Files\Adobe
==================== Arquivos na raiz de alguns diretórios =======
2017-02-01 17:06 - 2017-02-01 17:06 - 0007601 _____ () C:\Users\- STI -\AppData\Local\Resmon.ResmonCfg
Alguns arquivos em TEMP:
====================
2017-01-28 12:58 - 2010-06-06 09:22 - 0020480 _____ () C:\Users\- STI -\AppData\Local\Temp\namebench.exe
2017-01-28 12:58 - 2010-05-09 11:34 - 2292736 _____ (Python Software Foundation) C:\Users\- STI -\AppData\Local\Temp\python27.dll
2017-01-28 12:58 - 2008-11-06 21:29 - 0867328 _____ (ActiveState Corporation) C:\Users\- STI -\AppData\Local\Temp\tcl85.dll
2017-01-28 12:58 - 2008-11-06 21:37 - 1319936 _____ (ActiveState Corporation) C:\Users\- STI -\AppData\Local\Temp\tk85.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-01-15 12:56
==================== Fim de FRST.txt ============================