Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 01-03-2017
Executado por Windows 7 (administrador) em WINDOWS7-PC (02-03-2017 10:29:00)
Executando a partir de C:\Users\Windows 7\Downloads
Perfis Carregados: Windows 7 (Perfis Disponíveis: Windows 7)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(HP) C:\Windows\System32\HPSIsvc.exe
() C:\Windows\SysWOW64\srvany.exe
() C:\Windows\KMService.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe
(Akamai Technologies, Inc.) C:\Users\Windows 7\AppData\Local\Akamai\netsession_win.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
(Akamai Technologies, Inc.) C:\Users\Windows 7\AppData\Local\Akamai\netsession_win.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe
(Spotify Ltd) C:\Users\Windows 7\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(© 2015 Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
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
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{64FE4B2E-1DCC-411D-948C-165A3FA3F090}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{984179C4-AC5F-4FED-9DFE-6879E697F454}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{C84A7670-7438-4FD7-B409-2E0D0B484A8E}: [DhcpNameServer] 192.168.20.17 192.168.20.17
Internet Explorer:
==================
HKU\S-1-5-21-3507118068-1555550674-2950128393-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2016-01-11] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-11] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
DPF: HKLM-x32 {E0186C22-E62C-4247-897F-BDA400A8C350} hxxp://138.121.93.9:9091/webrec.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 436q0tyo.default
FF ProfilePath: C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\436q0tyo.default [2017-02-13]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\436q0tyo.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\436q0tyo.default -> Bing
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\436q0tyo.default -> Bing
FF Keyword.URL: Mozilla\Firefox\Profiles\436q0tyo.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Homepage: Mozilla\Firefox\Profiles\436q0tyo.default -> hxxp://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=pt-br
FF Extension: (Bing Search) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\436q0tyo.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-02-13]
FF SearchPlugin: C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\436q0tyo.default\searchplugins\bing-.xml [2017-02-13]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: (ESET Smart Security Extension) - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2016-01-11] [não assinado]
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-11] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=pt-br
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://search.mysearch.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> http://search.mysearch.com
CHR DefaultSuggestURL: Default -> hxxp://search.mysearch.com/ss?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default [2017-03-02]
CHR Extension: (Google Docs) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-11]
CHR Extension: (Google Drive) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-11]
CHR Extension: (YouTube) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-11]
CHR Extension: (FunTabsTV) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\cadlmgejfbjhkjohcnplnamifhoiembm [2016-10-13]
CHR Extension: (Google Search) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-11]
CHR Extension: (eSave) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpicpnpejfeiflaflnkihmjgbmffjgfn [2016-07-28]
CHR Extension: (MySearch) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddlcemdflelhjfgbagkjodaiflobiikn [2016-07-07]
CHR Extension: (Planilhas do Google) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-30]
CHR Extension: (Seen On Screen) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjkfefdgadfcfkoobcmmoflhejjmlhnp [2016-07-07]
CHR Extension: (VideoDownloadConverter) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikgjglmlehllifdekcggaapkaplbdpje [2016-10-03]
CHR Extension: (TV Hero) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkemnjaclcilgedggedkjieejilnnpa [2016-07-07]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-22]
CHR Extension: (Seen On Screen) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\obihhgkihfdfpjoeaeleieiphbpingca [2016-11-02]
CHR Extension: (SendFilesFree) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\omieoobkfmambmdflgddccllkncclabm [2016-07-07]
CHR Extension: (Gmail) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-11]
CHR Extension: (Chrome Media Router) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKU\S-1-5-21-3507118068-1555550674-2950128393-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [974944 2011-08-09] (ESET)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2016-01-11] () [Arquivo não assinado]
R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [853288 2007-09-20] (Nero AG)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-10-23] (Nero AG)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [33080 2016-01-04] (The OpenVPN Project)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7757040 2017-02-02] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [137144 2011-08-04] (ESET)
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [19968 2012-11-08] (Marvell Semiconductor, Inc.)
S3 ptun0901; C:\Windows\System32\DRIVERS\ptun0901.sys [27136 2015-11-10] (The OpenVPN Project)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2016-01-11] (Synaptics Incorporated)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2016-01-11] ()
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-02 10:29 - 2017-03-02 10:29 - 00029064 _____ C:\Users\Windows 7\Downloads\FRST.txt
2017-03-02 10:28 - 2017-03-02 10:29 - 00000000 ____D C:\FRST
2017-03-02 10:28 - 2017-03-02 10:28 - 02423808 _____ (Farbar) C:\Users\Windows 7\Downloads\FRST64.exe
2017-03-02 10:24 - 2017-03-02 10:24 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2017-03-02 10:24 - 2017-03-02 10:24 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-02 10:24 - 2017-03-02 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-02 10:14 - 2017-03-02 10:14 - 01631200 _____ (Skype Technologies S.A.) C:\Users\Windows 7\Downloads\SkypeSetup (1).exe
2017-03-02 09:25 - 2017-03-02 09:25 - 01631200 _____ (Skype Technologies S.A.) C:\Users\Windows 7\Downloads\SkypeSetup.exe
2017-03-02 09:06 - 2017-03-02 09:06 - 00000000 ____D C:\Windows\system32\appmgmt
2017-02-28 09:58 - 2017-02-28 10:04 - 00000000 ____D C:\Users\Windows 7\Downloads\BOB MARLEY
2017-02-27 15:36 - 2017-02-28 10:03 - 00000000 ____D C:\Users\Windows 7\Downloads\ROCK INTERNACIONAL
2017-02-27 15:32 - 2017-02-27 15:32 - 00000000 ____D C:\Users\Windows 7\Documents\ROCK
2017-02-22 07:37 - 2017-02-22 07:37 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2017-02-22 07:37 - 2017-02-22 07:37 - 00000959 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2017-01-13 08:15 - 2017-01-13 08:18 - 00000000 ____D C:\Users\Windows 7\Downloads\BIA
2017-01-13 07:32 - 2017-03-02 08:54 - 00000000 ____D C:\Users\Windows 7\AppData\Local\Spotify
2017-01-13 07:32 - 2017-01-13 07:32 - 00001828 _____ C:\Users\Windows 7\Desktop\Spotify.lnk
2017-01-13 07:32 - 2017-01-13 07:32 - 00001814 _____ C:\Users\Windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-01-13 07:32 - 2017-01-13 07:32 - 00000000 ____D C:\Users\Windows 7\AppData\Local\CEF
2017-01-13 07:27 - 2017-03-02 08:54 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Spotify
2017-01-13 07:27 - 2017-01-13 07:27 - 00353488 _____ (Spotify Ltd) C:\Users\Windows 7\Downloads\SpotifySetup.exe
2017-01-12 12:30 - 2017-01-21 02:21 - 00000000 ____D C:\Users\Windows 7\Downloads\SERTANEJO
2017-01-12 12:11 - 2017-01-12 14:03 - 00000000 ____D C:\Users\Windows 7\Downloads\REGGAE
2017-01-12 11:14 - 2017-01-12 11:15 - 00000000 ____D C:\Users\Windows 7\Downloads\GAUCHAS
2017-01-11 13:39 - 2017-01-11 13:53 - 00000000 ____D C:\Users\Windows 7\Downloads\ROCK
2017-01-10 09:37 - 2017-01-10 09:37 - 00002075 _____ C:\Users\Windows 7\Desktop\NavSincro Lite.lnk
2017-01-10 09:37 - 2017-01-10 09:37 - 00002055 _____ C:\Users\Windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\NavSincro Lite.lnk
2017-01-10 09:37 - 2017-01-10 09:37 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\NavCity
2017-01-10 09:37 - 2017-01-10 09:37 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NavSincro Lite
2017-01-10 09:34 - 2017-01-10 09:34 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Macromedia
2017-01-02 09:13 - 2017-01-02 09:14 - 00000000 ____D C:\Users\Windows 7\Desktop\paulo
2017-01-02 09:13 - 2017-01-02 09:09 - 00004064 _____ C:\Users\Windows 7\Desktop\paulo.zip
2017-01-02 09:10 - 2017-01-02 09:10 - 00000000 ____D C:\Users\Todos os Usuários\AMMYY
2017-01-02 09:10 - 2017-01-02 09:10 - 00000000 ____D C:\ProgramData\AMMYY
2016-12-22 12:53 - 2017-01-03 07:04 - 00000000 ____D C:\Users\Windows 7\Downloads\DANCE
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-02 10:24 - 2016-01-11 14:43 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-03-02 10:24 - 2016-01-11 14:43 - 00000000 ____D C:\ProgramData\Skype
2017-03-02 09:29 - 2016-07-26 15:23 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-03-02 09:29 - 2016-07-26 15:23 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-02 09:02 - 2016-01-11 14:48 - 00000000 ____D C:\Users\Windows 7\AppData\Local\ManyCam
2017-03-02 09:00 - 2016-01-11 14:45 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Skype
2017-03-02 08:58 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-02 08:58 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-02 08:53 - 2016-01-11 15:05 - 00000000 __SHD C:\Users\Windows 7\IntelGraphicsProfiles
2017-03-02 08:51 - 2016-01-11 14:43 - 00000354 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2017-03-02 08:50 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-02 08:42 - 2016-01-13 08:31 - 00000000 ____D C:\Users\Windows 7\Documents\Arquivos do Outlook
2017-03-02 06:45 - 2016-07-26 14:51 - 00000000 ____D C:\Users\Windows 7\AppData\Local\Akamai
2017-03-01 10:27 - 2016-01-12 07:42 - 00003350 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2017-02-24 15:46 - 2016-06-28 12:26 - 00000000 ____D C:\Users\Windows 7\Desktop\DOCUMENTOS
2017-02-24 10:48 - 2009-07-14 14:55 - 00703080 _____ C:\Windows\system32\prfh0416.dat
2017-02-24 10:48 - 2009-07-14 14:55 - 00145866 _____ C:\Windows\system32\prfc0416.dat
2017-02-24 10:48 - 2009-07-14 02:13 - 01626900 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-24 10:48 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2017-02-24 07:00 - 2009-07-14 02:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-02-23 10:55 - 2009-07-14 01:45 - 00416288 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-22 07:59 - 2016-01-11 14:48 - 00108840 _____ C:\Users\Windows 7\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-22 07:57 - 2016-01-13 06:30 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\TeamViewer
2017-02-22 07:38 - 2016-01-13 06:30 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-02-07 17:09 - 2016-01-11 14:39 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-07 17:09 - 2016-01-11 14:39 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-06 17:29 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
Alguns arquivos em TEMP:
====================
2017-02-13 06:08 - 2017-02-13 06:08 - 1118360 _____ (© 2015 Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Temp\BSvcProcessor.exe
2017-02-13 06:08 - 2017-02-13 06:08 - 0170128 _____ (© 2015 Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Temp\BSvcUpdater.exe
2017-02-08 14:51 - 2017-03-02 09:00 - 0585728 _____ () C:\Users\Windows 7\AppData\Local\Temp\SkypeSetup.exe
2017-03-02 09:27 - 2017-03-02 10:19 - 14456872 _____ (Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Temp\vc_redist.x86.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-02-22 08:56
==================== Fim de FRST.txt ============================
Executado por Windows 7 (administrador) em WINDOWS7-PC (02-03-2017 10:29:00)
Executando a partir de C:\Users\Windows 7\Downloads
Perfis Carregados: Windows 7 (Perfis Disponíveis: Windows 7)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(HP) C:\Windows\System32\HPSIsvc.exe
() C:\Windows\SysWOW64\srvany.exe
() C:\Windows\KMService.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe
(Akamai Technologies, Inc.) C:\Users\Windows 7\AppData\Local\Akamai\netsession_win.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
(Akamai Technologies, Inc.) C:\Users\Windows 7\AppData\Local\Akamai\netsession_win.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe
(Spotify Ltd) C:\Users\Windows 7\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(© 2015 Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
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
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{64FE4B2E-1DCC-411D-948C-165A3FA3F090}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{984179C4-AC5F-4FED-9DFE-6879E697F454}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{C84A7670-7438-4FD7-B409-2E0D0B484A8E}: [DhcpNameServer] 192.168.20.17 192.168.20.17
Internet Explorer:
==================
HKU\S-1-5-21-3507118068-1555550674-2950128393-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2016-01-11] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-11] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
DPF: HKLM-x32 {E0186C22-E62C-4247-897F-BDA400A8C350} hxxp://138.121.93.9:9091/webrec.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 436q0tyo.default
FF ProfilePath: C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\436q0tyo.default [2017-02-13]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\436q0tyo.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\436q0tyo.default -> Bing
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\436q0tyo.default -> Bing
FF Keyword.URL: Mozilla\Firefox\Profiles\436q0tyo.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Homepage: Mozilla\Firefox\Profiles\436q0tyo.default -> hxxp://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=pt-br
FF Extension: (Bing Search) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\436q0tyo.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-02-13]
FF SearchPlugin: C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\436q0tyo.default\searchplugins\bing-.xml [2017-02-13]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: (ESET Smart Security Extension) - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2016-01-11] [não assinado]
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-11] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=pt-br
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://search.mysearch.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> http://search.mysearch.com
CHR DefaultSuggestURL: Default -> hxxp://search.mysearch.com/ss?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default [2017-03-02]
CHR Extension: (Google Docs) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-11]
CHR Extension: (Google Drive) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-11]
CHR Extension: (YouTube) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-11]
CHR Extension: (FunTabsTV) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\cadlmgejfbjhkjohcnplnamifhoiembm [2016-10-13]
CHR Extension: (Google Search) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-11]
CHR Extension: (eSave) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpicpnpejfeiflaflnkihmjgbmffjgfn [2016-07-28]
CHR Extension: (MySearch) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddlcemdflelhjfgbagkjodaiflobiikn [2016-07-07]
CHR Extension: (Planilhas do Google) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-30]
CHR Extension: (Seen On Screen) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjkfefdgadfcfkoobcmmoflhejjmlhnp [2016-07-07]
CHR Extension: (VideoDownloadConverter) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikgjglmlehllifdekcggaapkaplbdpje [2016-10-03]
CHR Extension: (TV Hero) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkemnjaclcilgedggedkjieejilnnpa [2016-07-07]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-22]
CHR Extension: (Seen On Screen) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\obihhgkihfdfpjoeaeleieiphbpingca [2016-11-02]
CHR Extension: (SendFilesFree) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\omieoobkfmambmdflgddccllkncclabm [2016-07-07]
CHR Extension: (Gmail) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-11]
CHR Extension: (Chrome Media Router) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKU\S-1-5-21-3507118068-1555550674-2950128393-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [974944 2011-08-09] (ESET)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2016-01-11] () [Arquivo não assinado]
R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [853288 2007-09-20] (Nero AG)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-10-23] (Nero AG)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [33080 2016-01-04] (The OpenVPN Project)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7757040 2017-02-02] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [137144 2011-08-04] (ESET)
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [19968 2012-11-08] (Marvell Semiconductor, Inc.)
S3 ptun0901; C:\Windows\System32\DRIVERS\ptun0901.sys [27136 2015-11-10] (The OpenVPN Project)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2016-01-11] (Synaptics Incorporated)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2016-01-11] ()
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-02 10:29 - 2017-03-02 10:29 - 00029064 _____ C:\Users\Windows 7\Downloads\FRST.txt
2017-03-02 10:28 - 2017-03-02 10:29 - 00000000 ____D C:\FRST
2017-03-02 10:28 - 2017-03-02 10:28 - 02423808 _____ (Farbar) C:\Users\Windows 7\Downloads\FRST64.exe
2017-03-02 10:24 - 2017-03-02 10:24 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2017-03-02 10:24 - 2017-03-02 10:24 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-02 10:24 - 2017-03-02 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-02 10:14 - 2017-03-02 10:14 - 01631200 _____ (Skype Technologies S.A.) C:\Users\Windows 7\Downloads\SkypeSetup (1).exe
2017-03-02 09:25 - 2017-03-02 09:25 - 01631200 _____ (Skype Technologies S.A.) C:\Users\Windows 7\Downloads\SkypeSetup.exe
2017-03-02 09:06 - 2017-03-02 09:06 - 00000000 ____D C:\Windows\system32\appmgmt
2017-02-28 09:58 - 2017-02-28 10:04 - 00000000 ____D C:\Users\Windows 7\Downloads\BOB MARLEY
2017-02-27 15:36 - 2017-02-28 10:03 - 00000000 ____D C:\Users\Windows 7\Downloads\ROCK INTERNACIONAL
2017-02-27 15:32 - 2017-02-27 15:32 - 00000000 ____D C:\Users\Windows 7\Documents\ROCK
2017-02-22 07:37 - 2017-02-22 07:37 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2017-02-22 07:37 - 2017-02-22 07:37 - 00000959 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2017-01-13 08:15 - 2017-01-13 08:18 - 00000000 ____D C:\Users\Windows 7\Downloads\BIA
2017-01-13 07:32 - 2017-03-02 08:54 - 00000000 ____D C:\Users\Windows 7\AppData\Local\Spotify
2017-01-13 07:32 - 2017-01-13 07:32 - 00001828 _____ C:\Users\Windows 7\Desktop\Spotify.lnk
2017-01-13 07:32 - 2017-01-13 07:32 - 00001814 _____ C:\Users\Windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-01-13 07:32 - 2017-01-13 07:32 - 00000000 ____D C:\Users\Windows 7\AppData\Local\CEF
2017-01-13 07:27 - 2017-03-02 08:54 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Spotify
2017-01-13 07:27 - 2017-01-13 07:27 - 00353488 _____ (Spotify Ltd) C:\Users\Windows 7\Downloads\SpotifySetup.exe
2017-01-12 12:30 - 2017-01-21 02:21 - 00000000 ____D C:\Users\Windows 7\Downloads\SERTANEJO
2017-01-12 12:11 - 2017-01-12 14:03 - 00000000 ____D C:\Users\Windows 7\Downloads\REGGAE
2017-01-12 11:14 - 2017-01-12 11:15 - 00000000 ____D C:\Users\Windows 7\Downloads\GAUCHAS
2017-01-11 13:39 - 2017-01-11 13:53 - 00000000 ____D C:\Users\Windows 7\Downloads\ROCK
2017-01-10 09:37 - 2017-01-10 09:37 - 00002075 _____ C:\Users\Windows 7\Desktop\NavSincro Lite.lnk
2017-01-10 09:37 - 2017-01-10 09:37 - 00002055 _____ C:\Users\Windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\NavSincro Lite.lnk
2017-01-10 09:37 - 2017-01-10 09:37 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\NavCity
2017-01-10 09:37 - 2017-01-10 09:37 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NavSincro Lite
2017-01-10 09:34 - 2017-01-10 09:34 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Macromedia
2017-01-02 09:13 - 2017-01-02 09:14 - 00000000 ____D C:\Users\Windows 7\Desktop\paulo
2017-01-02 09:13 - 2017-01-02 09:09 - 00004064 _____ C:\Users\Windows 7\Desktop\paulo.zip
2017-01-02 09:10 - 2017-01-02 09:10 - 00000000 ____D C:\Users\Todos os Usuários\AMMYY
2017-01-02 09:10 - 2017-01-02 09:10 - 00000000 ____D C:\ProgramData\AMMYY
2016-12-22 12:53 - 2017-01-03 07:04 - 00000000 ____D C:\Users\Windows 7\Downloads\DANCE
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-03-02 10:24 - 2016-01-11 14:43 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-03-02 10:24 - 2016-01-11 14:43 - 00000000 ____D C:\ProgramData\Skype
2017-03-02 09:29 - 2016-07-26 15:23 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-03-02 09:29 - 2016-07-26 15:23 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-02 09:02 - 2016-01-11 14:48 - 00000000 ____D C:\Users\Windows 7\AppData\Local\ManyCam
2017-03-02 09:00 - 2016-01-11 14:45 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\Skype
2017-03-02 08:58 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-02 08:58 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-02 08:53 - 2016-01-11 15:05 - 00000000 __SHD C:\Users\Windows 7\IntelGraphicsProfiles
2017-03-02 08:51 - 2016-01-11 14:43 - 00000354 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2017-03-02 08:50 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-02 08:42 - 2016-01-13 08:31 - 00000000 ____D C:\Users\Windows 7\Documents\Arquivos do Outlook
2017-03-02 06:45 - 2016-07-26 14:51 - 00000000 ____D C:\Users\Windows 7\AppData\Local\Akamai
2017-03-01 10:27 - 2016-01-12 07:42 - 00003350 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2017-02-24 15:46 - 2016-06-28 12:26 - 00000000 ____D C:\Users\Windows 7\Desktop\DOCUMENTOS
2017-02-24 10:48 - 2009-07-14 14:55 - 00703080 _____ C:\Windows\system32\prfh0416.dat
2017-02-24 10:48 - 2009-07-14 14:55 - 00145866 _____ C:\Windows\system32\prfc0416.dat
2017-02-24 10:48 - 2009-07-14 02:13 - 01626900 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-24 10:48 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2017-02-24 07:00 - 2009-07-14 02:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-02-23 10:55 - 2009-07-14 01:45 - 00416288 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-22 07:59 - 2016-01-11 14:48 - 00108840 _____ C:\Users\Windows 7\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-22 07:57 - 2016-01-13 06:30 - 00000000 ____D C:\Users\Windows 7\AppData\Roaming\TeamViewer
2017-02-22 07:38 - 2016-01-13 06:30 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-02-07 17:09 - 2016-01-11 14:39 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-07 17:09 - 2016-01-11 14:39 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-06 17:29 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
Alguns arquivos em TEMP:
====================
2017-02-13 06:08 - 2017-02-13 06:08 - 1118360 _____ (© 2015 Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Temp\BSvcProcessor.exe
2017-02-13 06:08 - 2017-02-13 06:08 - 0170128 _____ (© 2015 Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Temp\BSvcUpdater.exe
2017-02-08 14:51 - 2017-03-02 09:00 - 0585728 _____ () C:\Users\Windows 7\AppData\Local\Temp\SkypeSetup.exe
2017-03-02 09:27 - 2017-03-02 10:19 - 14456872 _____ (Microsoft Corporation) C:\Users\Windows 7\AppData\Local\Temp\vc_redist.x86.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-02-22 08:56
==================== Fim de FRST.txt ============================