Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 18-06-2017 01
Executado por User (administrador) em USER-PC (19-06-2017 13:49:22)
Executando a partir de C:\Users\User\Downloads
Perfis Carregados: User (Perfis Disponíveis: User)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(DLL-files.com) C:\Program Files (x86)\DLL-Files.com Client\DLLFilesClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5021296 2011-12-06] (VIA)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-889683978-2520764672-4136029304-1000\...\Run: [uTorrent] => C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-05-24] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
GroupPolicy: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 189.6.0.183 189.6.0.175
Tcpip\..\Interfaces\{11481E50-4C5D-4D47-AAA4-9D3B6DC32F3F}: [DhcpNameServer] 189.6.0.183 189.6.0.175
Internet Explorer:
==================
HKU\S-1-5-21-889683978-2520764672-4136029304-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-889683978-2520764672-4136029304-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-05] (AVAST Software)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2017-01-03] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-05] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2017-01-03] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2017-01-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2017-01-03] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2017-06-19]
CHR Extension: (Google Apresentações) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-03]
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-03]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-03]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-03]
CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-03]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-21]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-13] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-10] (AVAST Software)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-19 13:48 - 2017-06-19 13:48 - 08932000 _____ (Solvusoft Corporation ) C:\Users\User\Downloads\Setup_WinThruster_2016.exe
2017-06-19 13:42 - 2017-06-19 13:42 - 00001125 _____ C:\Users\Public\Desktop\DLL-Files.com Client.lnk
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\Users\User\AppData\Roaming\DLL-files.com
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\Users\User\AppData\Roaming\DFXCT
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\Program Files (x86)\DLL-Files.com Client
2017-06-19 13:41 - 2017-06-19 13:41 - 02786824 _____ (DLL-Files.com Client ) C:\Users\User\Downloads\clientsetup_d-0 (1).exe
2017-06-19 13:39 - 2017-06-19 13:40 - 00019599 _____ C:\Users\User\Downloads\Addition.txt
2017-06-19 13:38 - 2017-06-19 13:49 - 00010475 _____ C:\Users\User\Downloads\FRST.txt
2017-06-19 13:38 - 2017-06-19 13:49 - 00000000 ____D C:\FRST
2017-06-19 13:38 - 2017-06-19 13:38 - 02439680 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2017-06-19 13:38 - 2017-06-19 13:38 - 00000000 ____D C:\Users\Todos os Usuários\SWCUTemp
2017-06-19 13:38 - 2017-06-19 13:38 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-06-18 17:29 - 2017-06-18 17:29 - 00000000 ____D C:\Windows\system32\SPReview
2017-06-18 16:37 - 2017-06-18 16:37 - 00001233 _____ C:\Users\Public\Desktop\Waves Central.lnk
2017-06-18 16:37 - 2017-06-18 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves
2017-06-18 16:37 - 2016-05-26 17:07 - 00875472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2017-06-18 16:37 - 2016-05-26 17:07 - 00535008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2017-06-18 16:31 - 2017-06-18 16:31 - 00000000 ____D C:\Users\User\AppData\Local\Apps\2.0
2017-06-18 16:27 - 2017-06-18 16:27 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64 (3).msu
2017-06-18 16:26 - 2017-06-18 16:26 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64 (2).msu
2017-06-18 16:13 - 2017-06-19 13:36 - 00000000 ____D C:\Users\User\AppData\LocalLow\uTorrent
2017-06-17 16:07 - 2017-06-17 16:07 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64 (1).msu
2017-06-17 16:07 - 2017-06-17 16:07 - 00629006 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x86.msu
2017-06-17 16:06 - 2017-06-17 16:06 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64.msu
2017-06-17 15:36 - 2017-06-17 15:36 - 00004035 ____T C:\Users\User\Desktop\Hat Basic.wav.asd
2017-06-17 15:31 - 2017-05-02 14:58 - 00133473 _____ C:\Users\User\Desktop\kcbeatz - dark side of klebin.flp
2017-06-17 15:31 - 2017-04-02 01:12 - 05644924 _____ C:\Users\User\Desktop\RS1_Dented_Stem_Pitched_Vox_01_Dm_90.wav
2017-06-17 15:31 - 2017-04-02 00:36 - 11290756 _____ C:\Users\User\Desktop\LONNIES_ECHOES_PERC_90_Ab.wav
2017-06-17 15:31 - 2017-04-02 00:36 - 05645956 _____ C:\Users\User\Desktop\MINNIE_LINGERS_ON_Percussions_90_Dm.wav
2017-06-17 15:31 - 2017-04-01 23:03 - 05644844 _____ C:\Users\User\Desktop\SMT_SloMo_03_1982_90_Em.wav
2017-06-17 15:31 - 2017-04-01 23:02 - 05644844 _____ C:\Users\User\Desktop\SMT_SloMo_06_GoodPrice_90_Dm.wav
2017-06-17 15:31 - 2017-04-01 23:02 - 02822444 _____ C:\Users\User\Desktop\SMT_Keys_09_Serf_90_Em.wav
2017-06-17 15:31 - 2017-03-27 16:43 - 01881650 _____ C:\Users\User\Desktop\90_E_Bank_Bass.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00081098 _____ C:\Users\User\Desktop\Clap Basic.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00040194 _____ C:\Users\User\Desktop\Kick Basic.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00029632 _____ C:\Users\User\Desktop\Snare Basic.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00022562 _____ C:\Users\User\Desktop\Hat Basic.wav
2017-06-17 15:31 - 2015-03-11 06:46 - 00020018 _____ C:\Users\User\Desktop\808 Kick.wav
2017-06-17 15:31 - 2015-03-11 06:46 - 00010496 _____ C:\Users\User\Desktop\Ring Snare.wav
2017-06-17 15:31 - 2015-03-11 06:46 - 00005560 _____ C:\Users\User\Desktop\808 CH.wav
2017-06-17 15:31 - 2008-11-19 21:25 - 00913292 _____ C:\Users\User\Desktop\Reverse Crash 1.wav
2017-06-17 15:31 - 2007-12-13 15:40 - 00020842 _____ C:\Users\User\Desktop\Trapaholic Hihat (26).wav
2017-06-17 15:26 - 2017-06-17 15:26 - 14749120 _____ (Microsoft Corporation) C:\Users\User\Downloads\vc_redist.x64.exe
2017-06-17 14:52 - 2017-06-17 14:52 - 02786824 _____ (DLL-Files.com Client ) C:\Users\User\Downloads\clientsetup_d-0.exe
2017-06-17 14:46 - 2017-06-17 14:46 - 00000000 ____D C:\Users\Todos os Usuários\Waves Audio
2017-06-17 14:46 - 2017-06-17 14:46 - 00000000 ____D C:\ProgramData\Waves Audio
2017-06-17 14:44 - 2017-06-17 14:44 - 00002747 _____ C:\Users\Public\Desktop\Tracks Live.lnk
2017-06-17 14:44 - 2017-06-17 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves Audio
2017-06-17 14:44 - 2017-06-17 14:44 - 00000000 ____D C:\Program Files\Waves Audio
2017-06-17 14:41 - 2017-06-17 14:54 - 1014005664 _____ (Waves, Inc. ) C:\Users\User\Downloads\Waves_for_DiGiCo_r4.5.exe
2017-06-17 14:34 - 2017-06-17 14:34 - 00000000 ____D C:\Users\User\AppData\Local\Downloaded Installations
2017-06-17 14:33 - 2017-06-17 14:33 - 36787690 _____ (Waves Audio) C:\Users\User\Downloads\Tracks-Live-Install-1.3.0-6.exe
2017-06-17 14:31 - 2016-10-12 09:09 - 00001983 _____ C:\Users\User\Desktop\README.txt
2017-06-17 14:30 - 2017-06-17 14:30 - 00204075 _____ C:\Users\User\Downloads\msvcp140.zip
2017-06-17 14:30 - 2017-06-17 14:30 - 00000000 ____D C:\Users\User\Downloads\msvcp140
2017-06-17 14:28 - 2017-06-17 14:28 - 00039824 _____ C:\Users\User\Downloads\AR Invoice.pdf
2017-06-17 14:24 - 2017-06-18 16:55 - 00000000 ____D C:\Program Files (x86)\Waves Central
2017-06-17 14:24 - 2017-06-18 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves Central
2017-06-17 14:24 - 2017-06-17 14:24 - 00000000 ____D C:\Users\Public\Waves Audio
2017-06-17 14:24 - 2015-03-11 06:47 - 01435256 _____ (Propellerhead Software AB) C:\Windows\SysWOW64\ReWire.dll
2017-06-17 14:24 - 2014-12-29 17:41 - 02189312 _____ (Propellerhead Software AB) C:\Windows\system32\ReWire.dll
2017-06-17 14:07 - 2017-06-17 14:07 - 34689343 _____ C:\Users\User\Downloads\oklebin - dark side of klebin.zip
2017-06-17 14:00 - 2017-06-17 14:02 - 159689384 _____ (Waves, Inc. ) C:\Users\User\Downloads\Install_Waves_Central.exe
2017-06-17 10:01 - 2017-06-17 10:01 - 00000000 ____D C:\Users\User\Desktop\TRACKS WAV
2017-06-17 09:55 - 2017-06-17 09:59 - 310811733 _____ C:\Users\User\Downloads\TRACKS WAV.zip
2017-06-15 21:21 - 2017-06-15 21:21 - 17726070 _____ C:\Users\User\Downloads\travisjacob (1).wav
2017-06-14 08:04 - 2017-06-08 22:42 - 00000000 ____D C:\Users\User\Desktop\WAV
2017-06-14 07:47 - 2017-06-14 07:48 - 94522121 _____ C:\Users\User\Downloads\WAV.rar
2017-06-14 00:43 - 2017-06-14 00:43 - 44915596 ____T C:\Users\User\Desktop\camisa de força pre mix.wav
2017-06-14 00:43 - 2017-06-14 00:43 - 00777903 ____T C:\Users\User\Desktop\camisa de força pre mix.wav.asd
2017-06-13 21:05 - 2017-06-13 21:05 - 48998828 ____T C:\Users\User\Desktop\camisa de força pre mix e master.wav
2017-06-13 21:05 - 2017-06-13 21:05 - 00843577 ____T C:\Users\User\Desktop\camisa de força pre mix e master.wav.asd
2017-06-13 13:48 - 2017-06-13 13:48 - 36691244 ____T C:\Users\User\Desktop\maravilhoso vagabundo beat pre master.wav
2017-06-13 13:48 - 2017-06-13 13:48 - 00633735 ____T C:\Users\User\Desktop\maravilhoso vagabundo beat pre master.wav.asd
2017-06-03 15:05 - 2017-06-03 15:05 - 00981557 ____T C:\Users\User\Downloads\kcbeatz - dark side of klebin.wav.asd
2017-05-31 17:58 - 2017-05-31 20:53 - 23357840 _____ C:\Users\User\Desktop\Telefonema.wav
2017-05-31 17:58 - 2017-05-31 20:53 - 21850892 _____ C:\Users\User\Desktop\Colateral.wav
2017-05-31 17:58 - 2017-05-31 20:53 - 07969180 _____ C:\Users\User\Desktop\Inesperado.wav
2017-05-31 17:53 - 2017-05-31 17:54 - 53178327 _____ C:\Users\User\Downloads\wetransfer-3c85c7.zip
2017-05-27 18:27 - 2017-05-24 16:05 - 00000000 ____D C:\Users\User\Desktop\Som Jacob 127 BPM
2017-05-27 18:26 - 2017-05-27 18:26 - 00000000 ____D C:\Users\User\Desktop\jacob
2017-05-27 18:07 - 2017-05-27 18:17 - 340274448 _____ C:\Users\User\Downloads\jacob.zip
2017-05-27 18:06 - 2017-05-27 18:24 - 941009395 _____ C:\Users\User\Downloads\Som Jacob 127 BPM.rar
2017-05-24 14:22 - 2017-05-24 14:22 - 56931962 _____ C:\Users\User\Downloads\kcbeatz - dark side of klebin.wav
2017-05-20 18:15 - 2017-05-20 18:15 - 27139814 _____ C:\Users\User\Downloads\jacob cd beat antrax pre mix master.wav
2017-05-20 17:57 - 2017-05-20 17:57 - 00000000 ____D C:\Users\User\AppData\Roaming\Google
2017-05-10 17:56 - 2017-05-10 17:56 - 00400456 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-08 16:27 - 2017-05-08 16:28 - 00000000 ____D C:\Users\User\Desktop\DIAS S DIAS N
2017-05-08 16:19 - 2017-05-08 16:26 - 541003429 _____ C:\Users\User\Downloads\DIAS S DIAS N.zip
2017-05-02 11:57 - 2017-05-02 11:57 - 10106564 _____ C:\Users\User\Downloads\Ensaios_de_Sociologia_-_Max_Weber.pdf
2017-04-29 13:10 - 2017-04-29 13:15 - 318174408 _____ C:\Users\User\Desktop\fREDDIE HOUDNRA BOOMBAP Project.zip
2017-04-28 14:39 - 2017-04-28 14:39 - 04339250 _____ C:\Users\User\Downloads\28.04.2017 - Jacob 02 Project.rar
2017-04-27 14:14 - 2017-04-27 14:14 - 37507226 _____ C:\Users\User\Downloads\lado ruim wave.wav
2017-04-26 16:48 - 2017-04-26 16:51 - 220396703 _____ C:\Users\User\Downloads\PROJETO ABERTO.zip
2017-04-23 14:15 - 2017-04-23 14:15 - 00965608 _____ C:\Users\User\Downloads\jacob formato capa (1).ai
2017-04-23 13:47 - 2017-04-23 13:47 - 01064560 _____ C:\Users\User\Downloads\cara jacob formato fb.ai
2017-04-23 13:47 - 2017-04-23 13:47 - 00965608 _____ C:\Users\User\Downloads\jacob formato capa.ai
2017-04-17 17:20 - 2017-04-17 17:20 - 06735481 _____ C:\Users\User\Downloads\WhatsApp Audio 2017-03-03 at 6.25.22 PM.mpeg
2017-04-17 17:14 - 2017-04-17 17:16 - 174142769 _____ C:\Users\User\Downloads\wetransfer-b22d97.zip
2017-04-05 21:59 - 2017-04-05 21:59 - 13898772 _____ C:\Users\User\Downloads\WhatsApp Audio 2017-04-05 at 8.37.13 PM.mpeg
2017-04-05 20:52 - 2017-04-05 20:52 - 17726070 _____ C:\Users\User\Downloads\travisjacob.wav
2017-04-05 20:44 - 2017-04-05 20:44 - 00000000 _____ C:\Windows\SysWOW64\last.dump
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-19 13:48 - 2017-01-09 17:22 - 00000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2017-06-19 13:36 - 2017-01-03 15:47 - 00000000 ___SD C:\Users\User\AppData\LocalLow\Temp
2017-06-19 13:35 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-18 16:53 - 2009-07-14 15:11 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-06-18 16:37 - 2017-01-03 13:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-06-18 16:13 - 2009-07-14 01:45 - 00266736 _____ C:\Windows\system32\FNTCACHE.DAT
2017-06-17 16:26 - 2017-01-13 18:34 - 00000000 ____D C:\Users\Todos os Usuários\Ableton
2017-06-17 16:26 - 2017-01-13 18:34 - 00000000 ____D C:\ProgramData\Ableton
2017-06-17 16:01 - 2017-01-21 23:05 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-06-17 16:01 - 2017-01-21 23:05 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-17 14:53 - 2017-01-03 13:43 - 00058032 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2017-06-16 21:30 - 2017-01-26 21:24 - 00000000 ____D C:\Users\User\Desktop\bkp projeto arthur
2017-06-15 20:14 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-06-12 17:01 - 2009-07-14 01:45 - 00013584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-12 17:01 - 2009-07-14 01:45 - 00013584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-31 17:28 - 2017-01-03 15:46 - 00003896 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1483469196
Alguns arquivos em TEMP:
====================
2017-01-13 18:43 - 2016-11-17 02:47 - 4076488 _____ () C:\Users\User\AppData\Local\Temp\Ableton Swapper.exe
2017-01-26 22:13 - 2017-01-26 22:13 - 0851176 _____ (Microsoft Corporation) C:\Users\User\AppData\Local\Temp\winusbcoinstaller2.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll
[2009-07-13 20:38] - [2017-01-03 15:48] - 1008640 _____ (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79
C:\Windows\SysWOW64\User32.dll
[2009-07-13 20:24] - [2017-01-03 15:48] - 0833024 _____ (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-01-03 12:51
==================== Fim de FRST.txt ============================
Executado por User (administrador) em USER-PC (19-06-2017 13:49:22)
Executando a partir de C:\Users\User\Downloads
Perfis Carregados: User (Perfis Disponíveis: User)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe
(BitTorrent Inc.) C:\Users\User\AppData\Roaming\uTorrent\updates\3.5.0_43804\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(DLL-files.com) C:\Program Files (x86)\DLL-Files.com Client\DLLFilesClient.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5021296 2011-12-06] (VIA)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-889683978-2520764672-4136029304-1000\...\Run: [uTorrent] => C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-05-24] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
GroupPolicy: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 189.6.0.183 189.6.0.175
Tcpip\..\Interfaces\{11481E50-4C5D-4D47-AAA4-9D3B6DC32F3F}: [DhcpNameServer] 189.6.0.183 189.6.0.175
Internet Explorer:
==================
HKU\S-1-5-21-889683978-2520764672-4136029304-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-889683978-2520764672-4136029304-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-05] (AVAST Software)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2017-01-03] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-05] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2017-01-03] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2017-01-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2017-01-03] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-02] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2017-06-19]
CHR Extension: (Google Apresentações) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-03]
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-03]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-03]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-03]
CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-03]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-21]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-13] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-10] (AVAST Software)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-19 13:48 - 2017-06-19 13:48 - 08932000 _____ (Solvusoft Corporation ) C:\Users\User\Downloads\Setup_WinThruster_2016.exe
2017-06-19 13:42 - 2017-06-19 13:42 - 00001125 _____ C:\Users\Public\Desktop\DLL-Files.com Client.lnk
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\Users\User\AppData\Roaming\DLL-files.com
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\Users\User\AppData\Roaming\DFXCT
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL-Files.com Client
2017-06-19 13:42 - 2017-06-19 13:42 - 00000000 ____D C:\Program Files (x86)\DLL-Files.com Client
2017-06-19 13:41 - 2017-06-19 13:41 - 02786824 _____ (DLL-Files.com Client ) C:\Users\User\Downloads\clientsetup_d-0 (1).exe
2017-06-19 13:39 - 2017-06-19 13:40 - 00019599 _____ C:\Users\User\Downloads\Addition.txt
2017-06-19 13:38 - 2017-06-19 13:49 - 00010475 _____ C:\Users\User\Downloads\FRST.txt
2017-06-19 13:38 - 2017-06-19 13:49 - 00000000 ____D C:\FRST
2017-06-19 13:38 - 2017-06-19 13:38 - 02439680 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2017-06-19 13:38 - 2017-06-19 13:38 - 00000000 ____D C:\Users\Todos os Usuários\SWCUTemp
2017-06-19 13:38 - 2017-06-19 13:38 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-06-18 17:29 - 2017-06-18 17:29 - 00000000 ____D C:\Windows\system32\SPReview
2017-06-18 16:37 - 2017-06-18 16:37 - 00001233 _____ C:\Users\Public\Desktop\Waves Central.lnk
2017-06-18 16:37 - 2017-06-18 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves
2017-06-18 16:37 - 2016-05-26 17:07 - 00875472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2017-06-18 16:37 - 2016-05-26 17:07 - 00535008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2017-06-18 16:31 - 2017-06-18 16:31 - 00000000 ____D C:\Users\User\AppData\Local\Apps\2.0
2017-06-18 16:27 - 2017-06-18 16:27 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64 (3).msu
2017-06-18 16:26 - 2017-06-18 16:26 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64 (2).msu
2017-06-18 16:13 - 2017-06-19 13:36 - 00000000 ____D C:\Users\User\AppData\LocalLow\uTorrent
2017-06-17 16:07 - 2017-06-17 16:07 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64 (1).msu
2017-06-17 16:07 - 2017-06-17 16:07 - 00629006 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x86.msu
2017-06-17 16:06 - 2017-06-17 16:06 - 01034556 _____ C:\Users\User\Downloads\Windows6.1-KB2999226-x64.msu
2017-06-17 15:36 - 2017-06-17 15:36 - 00004035 ____T C:\Users\User\Desktop\Hat Basic.wav.asd
2017-06-17 15:31 - 2017-05-02 14:58 - 00133473 _____ C:\Users\User\Desktop\kcbeatz - dark side of klebin.flp
2017-06-17 15:31 - 2017-04-02 01:12 - 05644924 _____ C:\Users\User\Desktop\RS1_Dented_Stem_Pitched_Vox_01_Dm_90.wav
2017-06-17 15:31 - 2017-04-02 00:36 - 11290756 _____ C:\Users\User\Desktop\LONNIES_ECHOES_PERC_90_Ab.wav
2017-06-17 15:31 - 2017-04-02 00:36 - 05645956 _____ C:\Users\User\Desktop\MINNIE_LINGERS_ON_Percussions_90_Dm.wav
2017-06-17 15:31 - 2017-04-01 23:03 - 05644844 _____ C:\Users\User\Desktop\SMT_SloMo_03_1982_90_Em.wav
2017-06-17 15:31 - 2017-04-01 23:02 - 05644844 _____ C:\Users\User\Desktop\SMT_SloMo_06_GoodPrice_90_Dm.wav
2017-06-17 15:31 - 2017-04-01 23:02 - 02822444 _____ C:\Users\User\Desktop\SMT_Keys_09_Serf_90_Em.wav
2017-06-17 15:31 - 2017-03-27 16:43 - 01881650 _____ C:\Users\User\Desktop\90_E_Bank_Bass.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00081098 _____ C:\Users\User\Desktop\Clap Basic.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00040194 _____ C:\Users\User\Desktop\Kick Basic.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00029632 _____ C:\Users\User\Desktop\Snare Basic.wav
2017-06-17 15:31 - 2015-03-11 06:47 - 00022562 _____ C:\Users\User\Desktop\Hat Basic.wav
2017-06-17 15:31 - 2015-03-11 06:46 - 00020018 _____ C:\Users\User\Desktop\808 Kick.wav
2017-06-17 15:31 - 2015-03-11 06:46 - 00010496 _____ C:\Users\User\Desktop\Ring Snare.wav
2017-06-17 15:31 - 2015-03-11 06:46 - 00005560 _____ C:\Users\User\Desktop\808 CH.wav
2017-06-17 15:31 - 2008-11-19 21:25 - 00913292 _____ C:\Users\User\Desktop\Reverse Crash 1.wav
2017-06-17 15:31 - 2007-12-13 15:40 - 00020842 _____ C:\Users\User\Desktop\Trapaholic Hihat (26).wav
2017-06-17 15:26 - 2017-06-17 15:26 - 14749120 _____ (Microsoft Corporation) C:\Users\User\Downloads\vc_redist.x64.exe
2017-06-17 14:52 - 2017-06-17 14:52 - 02786824 _____ (DLL-Files.com Client ) C:\Users\User\Downloads\clientsetup_d-0.exe
2017-06-17 14:46 - 2017-06-17 14:46 - 00000000 ____D C:\Users\Todos os Usuários\Waves Audio
2017-06-17 14:46 - 2017-06-17 14:46 - 00000000 ____D C:\ProgramData\Waves Audio
2017-06-17 14:44 - 2017-06-17 14:44 - 00002747 _____ C:\Users\Public\Desktop\Tracks Live.lnk
2017-06-17 14:44 - 2017-06-17 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves Audio
2017-06-17 14:44 - 2017-06-17 14:44 - 00000000 ____D C:\Program Files\Waves Audio
2017-06-17 14:41 - 2017-06-17 14:54 - 1014005664 _____ (Waves, Inc. ) C:\Users\User\Downloads\Waves_for_DiGiCo_r4.5.exe
2017-06-17 14:34 - 2017-06-17 14:34 - 00000000 ____D C:\Users\User\AppData\Local\Downloaded Installations
2017-06-17 14:33 - 2017-06-17 14:33 - 36787690 _____ (Waves Audio) C:\Users\User\Downloads\Tracks-Live-Install-1.3.0-6.exe
2017-06-17 14:31 - 2016-10-12 09:09 - 00001983 _____ C:\Users\User\Desktop\README.txt
2017-06-17 14:30 - 2017-06-17 14:30 - 00204075 _____ C:\Users\User\Downloads\msvcp140.zip
2017-06-17 14:30 - 2017-06-17 14:30 - 00000000 ____D C:\Users\User\Downloads\msvcp140
2017-06-17 14:28 - 2017-06-17 14:28 - 00039824 _____ C:\Users\User\Downloads\AR Invoice.pdf
2017-06-17 14:24 - 2017-06-18 16:55 - 00000000 ____D C:\Program Files (x86)\Waves Central
2017-06-17 14:24 - 2017-06-18 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves Central
2017-06-17 14:24 - 2017-06-17 14:24 - 00000000 ____D C:\Users\Public\Waves Audio
2017-06-17 14:24 - 2015-03-11 06:47 - 01435256 _____ (Propellerhead Software AB) C:\Windows\SysWOW64\ReWire.dll
2017-06-17 14:24 - 2014-12-29 17:41 - 02189312 _____ (Propellerhead Software AB) C:\Windows\system32\ReWire.dll
2017-06-17 14:07 - 2017-06-17 14:07 - 34689343 _____ C:\Users\User\Downloads\oklebin - dark side of klebin.zip
2017-06-17 14:00 - 2017-06-17 14:02 - 159689384 _____ (Waves, Inc. ) C:\Users\User\Downloads\Install_Waves_Central.exe
2017-06-17 10:01 - 2017-06-17 10:01 - 00000000 ____D C:\Users\User\Desktop\TRACKS WAV
2017-06-17 09:55 - 2017-06-17 09:59 - 310811733 _____ C:\Users\User\Downloads\TRACKS WAV.zip
2017-06-15 21:21 - 2017-06-15 21:21 - 17726070 _____ C:\Users\User\Downloads\travisjacob (1).wav
2017-06-14 08:04 - 2017-06-08 22:42 - 00000000 ____D C:\Users\User\Desktop\WAV
2017-06-14 07:47 - 2017-06-14 07:48 - 94522121 _____ C:\Users\User\Downloads\WAV.rar
2017-06-14 00:43 - 2017-06-14 00:43 - 44915596 ____T C:\Users\User\Desktop\camisa de força pre mix.wav
2017-06-14 00:43 - 2017-06-14 00:43 - 00777903 ____T C:\Users\User\Desktop\camisa de força pre mix.wav.asd
2017-06-13 21:05 - 2017-06-13 21:05 - 48998828 ____T C:\Users\User\Desktop\camisa de força pre mix e master.wav
2017-06-13 21:05 - 2017-06-13 21:05 - 00843577 ____T C:\Users\User\Desktop\camisa de força pre mix e master.wav.asd
2017-06-13 13:48 - 2017-06-13 13:48 - 36691244 ____T C:\Users\User\Desktop\maravilhoso vagabundo beat pre master.wav
2017-06-13 13:48 - 2017-06-13 13:48 - 00633735 ____T C:\Users\User\Desktop\maravilhoso vagabundo beat pre master.wav.asd
2017-06-03 15:05 - 2017-06-03 15:05 - 00981557 ____T C:\Users\User\Downloads\kcbeatz - dark side of klebin.wav.asd
2017-05-31 17:58 - 2017-05-31 20:53 - 23357840 _____ C:\Users\User\Desktop\Telefonema.wav
2017-05-31 17:58 - 2017-05-31 20:53 - 21850892 _____ C:\Users\User\Desktop\Colateral.wav
2017-05-31 17:58 - 2017-05-31 20:53 - 07969180 _____ C:\Users\User\Desktop\Inesperado.wav
2017-05-31 17:53 - 2017-05-31 17:54 - 53178327 _____ C:\Users\User\Downloads\wetransfer-3c85c7.zip
2017-05-27 18:27 - 2017-05-24 16:05 - 00000000 ____D C:\Users\User\Desktop\Som Jacob 127 BPM
2017-05-27 18:26 - 2017-05-27 18:26 - 00000000 ____D C:\Users\User\Desktop\jacob
2017-05-27 18:07 - 2017-05-27 18:17 - 340274448 _____ C:\Users\User\Downloads\jacob.zip
2017-05-27 18:06 - 2017-05-27 18:24 - 941009395 _____ C:\Users\User\Downloads\Som Jacob 127 BPM.rar
2017-05-24 14:22 - 2017-05-24 14:22 - 56931962 _____ C:\Users\User\Downloads\kcbeatz - dark side of klebin.wav
2017-05-20 18:15 - 2017-05-20 18:15 - 27139814 _____ C:\Users\User\Downloads\jacob cd beat antrax pre mix master.wav
2017-05-20 17:57 - 2017-05-20 17:57 - 00000000 ____D C:\Users\User\AppData\Roaming\Google
2017-05-10 17:56 - 2017-05-10 17:56 - 00400456 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-08 16:27 - 2017-05-08 16:28 - 00000000 ____D C:\Users\User\Desktop\DIAS S DIAS N
2017-05-08 16:19 - 2017-05-08 16:26 - 541003429 _____ C:\Users\User\Downloads\DIAS S DIAS N.zip
2017-05-02 11:57 - 2017-05-02 11:57 - 10106564 _____ C:\Users\User\Downloads\Ensaios_de_Sociologia_-_Max_Weber.pdf
2017-04-29 13:10 - 2017-04-29 13:15 - 318174408 _____ C:\Users\User\Desktop\fREDDIE HOUDNRA BOOMBAP Project.zip
2017-04-28 14:39 - 2017-04-28 14:39 - 04339250 _____ C:\Users\User\Downloads\28.04.2017 - Jacob 02 Project.rar
2017-04-27 14:14 - 2017-04-27 14:14 - 37507226 _____ C:\Users\User\Downloads\lado ruim wave.wav
2017-04-26 16:48 - 2017-04-26 16:51 - 220396703 _____ C:\Users\User\Downloads\PROJETO ABERTO.zip
2017-04-23 14:15 - 2017-04-23 14:15 - 00965608 _____ C:\Users\User\Downloads\jacob formato capa (1).ai
2017-04-23 13:47 - 2017-04-23 13:47 - 01064560 _____ C:\Users\User\Downloads\cara jacob formato fb.ai
2017-04-23 13:47 - 2017-04-23 13:47 - 00965608 _____ C:\Users\User\Downloads\jacob formato capa.ai
2017-04-17 17:20 - 2017-04-17 17:20 - 06735481 _____ C:\Users\User\Downloads\WhatsApp Audio 2017-03-03 at 6.25.22 PM.mpeg
2017-04-17 17:14 - 2017-04-17 17:16 - 174142769 _____ C:\Users\User\Downloads\wetransfer-b22d97.zip
2017-04-05 21:59 - 2017-04-05 21:59 - 13898772 _____ C:\Users\User\Downloads\WhatsApp Audio 2017-04-05 at 8.37.13 PM.mpeg
2017-04-05 20:52 - 2017-04-05 20:52 - 17726070 _____ C:\Users\User\Downloads\travisjacob.wav
2017-04-05 20:44 - 2017-04-05 20:44 - 00000000 _____ C:\Windows\SysWOW64\last.dump
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-06-19 13:48 - 2017-01-09 17:22 - 00000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2017-06-19 13:36 - 2017-01-03 15:47 - 00000000 ___SD C:\Users\User\AppData\LocalLow\Temp
2017-06-19 13:35 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-18 16:53 - 2009-07-14 15:11 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-06-18 16:37 - 2017-01-03 13:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-06-18 16:13 - 2009-07-14 01:45 - 00266736 _____ C:\Windows\system32\FNTCACHE.DAT
2017-06-17 16:26 - 2017-01-13 18:34 - 00000000 ____D C:\Users\Todos os Usuários\Ableton
2017-06-17 16:26 - 2017-01-13 18:34 - 00000000 ____D C:\ProgramData\Ableton
2017-06-17 16:01 - 2017-01-21 23:05 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-06-17 16:01 - 2017-01-21 23:05 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-17 14:53 - 2017-01-03 13:43 - 00058032 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2017-06-16 21:30 - 2017-01-26 21:24 - 00000000 ____D C:\Users\User\Desktop\bkp projeto arthur
2017-06-15 20:14 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-06-12 17:01 - 2009-07-14 01:45 - 00013584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-12 17:01 - 2009-07-14 01:45 - 00013584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-31 17:28 - 2017-01-03 15:46 - 00003896 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1483469196
Alguns arquivos em TEMP:
====================
2017-01-13 18:43 - 2016-11-17 02:47 - 4076488 _____ () C:\Users\User\AppData\Local\Temp\Ableton Swapper.exe
2017-01-26 22:13 - 2017-01-26 22:13 - 0851176 _____ (Microsoft Corporation) C:\Users\User\AppData\Local\Temp\winusbcoinstaller2.dll
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll
[2009-07-13 20:38] - [2017-01-03 15:48] - 1008640 _____ (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79
C:\Windows\SysWOW64\User32.dll
[2009-07-13 20:24] - [2017-01-03 15:48] - 0833024 _____ (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-01-03 12:51
==================== Fim de FRST.txt ============================