cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:18-04-2016
Executado por BOLA (administrador) em ELSON-CCE (01-08-2017 04:38:53)
Executando a partir de C:\Documents and Settings\BOLA\Meus documentos\Downloads
Perfis Carregados: BOLA (Perfis Disponíveis: BOLA)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 6 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Microsoft Corporation) C:\WINDOWS\system32\inetsrv\inetinfo.exe
(Microsoft Corporation) C:\WINDOWS\system32\WgaTray.exe
(Motorola Inc.) C:\Arquivos de programas\Motorola\SMSERIAL\sm56hlpr.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Realtek Semiconductor Corp.) C:\Arquivos de programas\REALTEK RTL8187 Wireless LAN Driver and Utility\RtWLan.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
() C:\Arquivos de programas\WinRAR\WinRAR.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(UCWeb Inc.) C:\Arquivos de programas\UCBrowser\Application\UCBrowser.exe
(Farbar) C:\Documents and Settings\BOLA\Meus documentos\Downloads\FRST-.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SMSERIAL] => C:\Arquivos de programas\Motorola\SMSERIAL\sm56hlpr.exe [1454080 2008-06-11] (Motorola Inc.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18790432 2010-02-09] (Realtek Semiconductor Corp.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
Winlogon\Notify\LMIinit: C:\WINDOWS\system32\LMIinit.dll [2011-01-21] (LogMeIn, Inc.)
HKU\S-1-5-21-1644491937-448539723-839522115-1009\...\MountPoints2: {1c0b0e2e-2fb5-11e0-98af-00225fc22457} - setupSNK.exe
HKU\S-1-5-18\...\RunOnce: [DeleteEngineAfterUpdate] => reg DELETE HKCU\Software\ConduitEngine /f
HKU\S-1-5-18\...\RunOnce: [tscuninstall] => C:\WINDOWS\system32\tscupgrd.exe [44544 2004-08-04] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 nwprovau
ShellExecuteHooks: - {F552DDE6-2090-4bf4-B924-6141E87789A5} - Nenhum Arquivo [ ]
ShellIconOverlayIdentifiers: [4sharedSyncOverlay1] -> {2012DE06-50C0-48BD-ACDE-88F95D4CAD1F} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [4sharedSyncOverlay2] -> {C72C6188-BEF2-46E5-A89A-52F0ED75219E} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [4sharedSyncOverlay3] -> {C92F6BC2-AF61-4C0E-80E0-939B8282DDB7} => Nenhum Arquivo
Startup: C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar\REALTEK RTL8187 Wireless LAN Utility.lnk [2017-01-30]
ShortcutTarget: REALTEK RTL8187 Wireless LAN Utility.lnk -> C:\Arquivos de programas\REALTEK RTL8187 Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.)
BootExecute: autocheck autochk * sprestrtPartizan

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{0501DDD6-E566-4E30-A1FB-CC88F01F1028}: [DhcpNameServer] 192.168.15.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1644491937-448539723-839522115-1009\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1644491937-448539723-839522115-1009\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1644491937-448539723-839522115-1009\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
URLSearchHook: [S-1-5-21-1644491937-448539723-839522115-1009] ATENÇÃO => A URLSearchHook Padrão está ausente
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATENÇÃO
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {46C09E2D-AF9C-45B1-A518-8CF2556AB70A} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=pt_BR&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^BR&apn_uid=68ed55b0-0a11-4f14-a583-4e4371dce289&apn_sauid=D667E1C6-1DA5-48B4-8D05-428AA48A27B9
SearchScopes: HKU\S-1-5-21-1644491937-448539723-839522115-1009 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\.DEFAULT -> Sem Nome - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - Nenhum Arquivo
Toolbar: HKU\.DEFAULT -> Sem Nome - {472734EA-242A-422B-ADF8-83D1E48CC825} - Nenhum Arquivo
Toolbar: HKU\.DEFAULT -> Sem Nome - {D4027C7F-154A-4066-A1AD-4243D8127440} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-1644491937-448539723-839522115-1009 -> Sem Nome - {FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-1644491937-448539723-839522115-1009 -> Sem Nome - {472734EA-242A-422B-ADF8-83D1E48CC825} - Nenhum Arquivo
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Arquivos de programas\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Help\hxds.dll [2006-10-26] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL [2006-10-26] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Arquivos de programas\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Arquivos de programas\Arquivos comuns\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\BOLA\Dados de aplicativos\Mozilla\Firefox\Profiles\3pdoxuns.default-1510881731843
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll [2013-06-22] ()
FF Plugin: @checkpoint.com/FFApi -> C:\Arquivos de programas\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Arquivos de programas\Microsoft Silverlight\5.1.20125.0\npctrl.dll [2013-01-24] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Arquivos de programas\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Arquivos de programas\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => não encontrado (a)
FF HKLM\...\Firefox\Extensions: [{cb84136f-9c44-433a-9048-c5cd9df1dc16}] - C:\Arquivos de programas\PC Tools Security\BDT\Firefox => não encontrado (a)
FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Arquivos de programas\CheckPoint\ZAForceField\TrustChecker => não encontrado (a)

Chrome:
=======
CHR Profile: C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\oalifdbckgeckmcjidkfgiikhpcdbdah [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-26]
CHR Extension: (Sem Nome) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\Temp(2) [2017-06-26]
CHR Profile: C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Profile 1
CHR Extension: (Lyrics On) - C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Profile 1\Extensions\oalifdbckgeckmcjidkfgiikhpcdbdah [2017-07-18]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100352 2008-04-14] (Microsoft Corporation)
S4 HWDeviceService.exe; C:\Documents and Settings\All Users\Dados de aplicativos\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 IISADMIN; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)
S4 MDM; C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Arquivo não assinado]
S3 MozillaMaintenance; C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe [174024 2017-06-30] (Mozilla Foundation)
S3 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [Arquivo não assinado]
S3 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
S3 NwSapAgent; C:\WINDOWS\System32\ipxsap.dll [66560 2008-04-14] (Microsoft Corporation)
S4 odserv; C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S4 ose; C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [Arquivo não assinado]
S3 SerialKeys; C:\WINDOWS\system32\skeys.exe [26112 2008-04-14] (Microsoft Corporation)
S4 SkypeUpdate; C:\Arquivos de programas\Skype\Updater\Updater.exe [162408 2013-06-03] (Skype Technologies)
S3 SMTPSVC; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)
S3 UCBrowserSvc; C:\Arquivos de programas\UCBrowser\Application\UCService.exe [628496 2017-06-27] ()
R2 W3SVC; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)
S3 APNMCP; "C:\Arquivos de programas\AskPartnerNetwork\Toolbar\apnmcp.exe" [X]
S3 Browser Defender Update Service; "C:\Arquivos de programas\PC Tools Security\BDT\BDTUpdateService.exe" [X]
S3 hpqcxs08; C:\Arquivos de programas\HP\Digital Imaging\bin\hpqcxs08.dll [X]
S3 hpqddsvc; C:\Arquivos de programas\HP\Digital Imaging\bin\hpqddsvc.dll [X]
S4 IswSvc; "C:\Arquivos de programas\CheckPoint\ZAForceField\IswSvc.exe" [X]
S4 RalinkRegistryWriter; C:\Arquivos de programas\TP-LINK\TL-WN727N\COMMON\TPLINKRegistryWriter.exe [X]
S4 vsmon; C:\Arquivos de programas\CheckPoint\ZoneAlarm\vsmon.exe -service [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2013-11-30] (Cisco Systems, Inc.) [Arquivo não assinado]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-17] (Creative)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 fspad_xp32; C:\WINDOWS\System32\DRIVERS\fspad_xp32.sys [41856 2010-01-17] (Sentelic Corporation)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-28] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-28] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-28] (HP)
S3 HssDrv; C:\WINDOWS\System32\DRIVERS\HssDrv.sys [37376 2012-01-04] (AnchorFree Inc.)
S3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [96000 2012-12-21] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [70272 2012-12-21] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [27520 2012-12-21] (Huawei Technologies Co., Ltd.)
S3 i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [161020 2008-04-13] (Intel(R) Corporation)
R0 KL1; C:\WINDOWS\System32\DRIVERS\kl1.sys [136024 2012-11-15] (Kaspersky Lab ZAO)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [586584 2013-02-21] (Kaspersky Lab)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-17] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 nm; C:\WINDOWS\System32\DRIVERS\NMnt.sys [40320 2008-04-14] (Microsoft Corporation)
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-14] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2008-04-14] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2008-04-14] (Microsoft Corporation)
S3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-14] (Microsoft Corporation)
S3 Qualcommusbmdm6k; C:\WINDOWS\System32\DRIVERS\Qualcommusbmdm6k.sys [107520 2012-05-11] (ZTE Incorporated) [Arquivo não assinado]
S3 Qualcommusbnet; C:\WINDOWS\System32\DRIVERS\Qualcommusbnet.sys [134144 2012-05-11] (ZTE Corporation) [Arquivo não assinado]
S3 Qualcommusbnmea; C:\WINDOWS\System32\DRIVERS\Qualcommusbnmea.sys [107520 2012-05-11] (ZTE Incorporated) [Arquivo não assinado]
S3 Qualcommusbser6k; C:\WINDOWS\System32\DRIVERS\Qualcommusbser6k.sys [107520 2012-05-11] (ZTE Incorporated) [Arquivo não assinado]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R3 rtl8187Se; C:\WINDOWS\System32\DRIVERS\rtl8187Se.sys [314880 2009-10-28] (Realtek Semiconductor Corporation )
S3 RTLE8023xp; C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys [117888 2008-10-30] (Realtek Semiconductor Corporation ) [Arquivo não assinado]
S3 SiS300i; C:\WINDOWS\System32\DRIVERS\sis300ip.sys [101760 2001-08-17] (Silicon Integrated Systems Corporation)
S3 SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [104064 2001-08-17] (Silicon Integrated Systems Corporation)
S3 SiSGbeXP; C:\WINDOWS\System32\DRIVERS\SiSGbeXP.sys [43392 2008-03-03] (Silicon Integrated Systems Corp.)
S3 SiSV6306; C:\WINDOWS\System32\DRIVERS\SiS6306p.sys [68608 2001-08-17] (Silicon Integrated Systems Corporation)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-01-04] (AnchorFree Inc)
R1 Tcpip; C:\WINDOWS\System32\DRIVERS\tcpip.sys [361344 2008-07-03] (Microsoft Corporation) [Arquivo não assinado]
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [225664 2008-04-14] (Microsoft Corporation)
R1 Vsdatant; C:\WINDOWS\System32\vsdatant.sys [527848 2013-03-27] (Check Point Software Technologies LTD)
R0 360HookOem; system32\drivers\360HookOEM.sys [X]
R1 360RegOem; \??\C:\WINDOWS\system32\drivers\360RegOem.sys [X]
R1 360SpOEM; system32\drivers\360SpOEM.sys [X]
S1 Bfilter; \??\C:\WINDOWS\System32\drivers\Bfilter.sys [X]
S1 Bfmon; \??\C:\WINDOWS\System32\drivers\Bfmon.sys [X]
S0 Bhbase; System32\drivers\Bhbase.sys [X]
S1 Bprotect; \??\C:\WINDOWS\System32\drivers\Bprotect.sys [X]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [249472 2012-12-21] (Huawei Technologies Co., Ltd.)
S4 IntelIde; não ImagePath
S2 ISWKL; \??\C:\Arquivos de programas\CheckPoint\ZAForceField\ISWKL.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74584 2013-02-21] (Kaspersky Lab)
S2 LMIInfo; \??\C:\Arquivos de programas\LogMeIn\x86\RaInfo.sys [X]
S4 LMIRfsClientNP; não ImagePath
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 RegGuard; \??\C:\WINDOWS\system32\Drivers\regguard.sys [X]
S3 rtl8029; system32\DRIVERS\RTL8029.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 SiSPort; \??\F:\JCVideo\AGPPack\USB\Win2K_XP\WinXPUSB\SiSPort.sys [X]
U5 SiSV; C:\WINDOWS\System32\DRIVERS\SiSV.sys [50432 2001-08-17] (Silicon Integrated Systems Corporation)
S4 smserial; system32\DRIVERS\smserial.sys [X]
S3 __FOX__UNI_DRIVER__; \??\C:\DOCUME~1\BOLA\CONFIG~1\Temp\FoxG1Driver.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-11-17 01:27 - 2017-07-29 03:43 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\360Quarant
2017-11-16 23:46 - 2017-07-20 01:02 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\RegRun
2017-11-16 23:41 - 2017-11-17 03:28 - 00065536 _____ C:\WINDOWS\system32\config\Doctor Web.evt
2017-11-16 23:37 - 2017-11-16 23:37 - 00000002 RSHOT C:\WINDOWS\winstart.bat
2017-11-16 23:37 - 2017-11-16 23:37 - 00000000 ___HD C:\Documents and Settings\BOLA\Menu Iniciar\Programas\Disabled Startup Items
2017-11-16 23:37 - 2017-11-16 23:37 - 00000000 ___HD C:\Documents and Settings\All Users\Menu Iniciar\Programas\Disabled Startup Items
2017-11-16 23:33 - 2017-11-16 23:33 - 00000000 ____D C:\Arquivos de programas\Greatis
2017-11-16 23:33 - 2017-07-20 01:03 - 00045812 _____ C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\ShLog.txt
2017-11-16 23:33 - 2003-09-06 14:55 - 00057556 _____ C:\WINDOWS\guard.bmp
2017-08-01 04:38 - 2017-08-01 04:38 - 00000000 ___DC C:\FRST
2017-08-01 04:03 - 2017-08-01 04:03 - 00000000 ____D C:\Documents and Settings\BOLA\Menu Iniciar\Programas\WinRAR
2017-08-01 03:06 - 2017-08-01 03:37 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Avg
2017-08-01 03:06 - 2017-08-01 03:36 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\AvgSetupLog
2017-08-01 03:06 - 2017-08-01 03:06 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Avg
2017-08-01 02:53 - 2017-08-01 03:24 - 00002148 _____ C:\WINDOWS\system32\wpa.dbl
2017-08-01 02:53 - 2017-08-01 03:04 - 00060396 _____ C:\WINDOWS\ntbtlog.txt
2017-08-01 02:53 - 2017-08-01 02:53 - 03548248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-31 06:40 - 2006-10-18 02:53 - 00147456 _____ () C:\WINDOWS\system32\RtlCPAPI.dll
2017-07-31 06:39 - 2017-07-31 06:39 - 00000000 ____D C:\Arquivos de programas\Realtek AC97
2017-07-31 05:08 - 2017-08-01 02:52 - 00005758 _____ C:\WINDOWS\SchedLgU.Txt
2017-07-31 02:51 - 2017-07-31 02:51 - 00065536 _____ C:\WINDOWS\Minidump\Mini073117-03.dmp
2017-07-31 02:49 - 2017-07-31 02:49 - 00065536 _____ C:\WINDOWS\Minidump\Mini073117-02.dmp
2017-07-31 02:07 - 2017-07-31 02:07 - 00065536 _____ C:\WINDOWS\Minidump\Mini073117-01.dmp
2017-07-31 02:05 - 2017-07-31 02:05 - 00000000 ____D C:\Arquivos de programas\msn gaming zone
2017-07-31 00:07 - 2017-08-01 03:27 - 00000294 _____ C:\WINDOWS\Tasks\UCBrowserUpdaterCore.job
2017-07-30 19:01 - 2017-07-30 19:01 - 00000000 ____D C:\Documents and Settings\BOLA\Desktop\boleta
2017-07-30 18:58 - 2017-07-30 18:58 - 00000000 ____D C:\Documents and Settings\BOLA\Desktop\Elson
2017-07-30 18:01 - 2017-07-30 18:01 - 00000000 ____D C:\Arquivos de programas\FSP
2017-07-30 16:56 - 2017-07-30 16:56 - 00065536 _____ C:\WINDOWS\Minidump\Mini073017-01.dmp
2017-07-30 04:17 - 2017-07-30 04:17 - 00000000 ____D C:\Documents and Settings\LocalService\Configurações locais\Dados de aplicativos\Google
2017-07-30 04:07 - 2017-07-30 17:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2017-07-30 03:47 - 2017-07-30 03:59 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Package Cache
2017-07-30 03:26 - 2017-07-30 03:26 - 00045904 _____ C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\GDIPFONTCACHEV1.DAT
2017-07-30 00:55 - 2017-07-31 04:20 - 00000000 ___SD C:\Documents and Settings\BOLA\UserData
2017-07-29 23:48 - 2017-07-29 23:48 - 00000793 _____ C:\Documents and Settings\BOLA\Desktop\Mozilla Firefox.lnk
2017-07-29 05:00 - 2017-07-29 05:00 - 00065536 _____ C:\WINDOWS\Minidump\Mini072917-01.dmp
2017-07-28 05:20 - 2017-07-28 06:56 - 00000000 ____D C:\Arquivos de programas\Auslogics
2017-07-24 01:25 - 2017-07-24 02:17 - 00000000 ____D C:\Arquivos de programas\Kodi
2017-07-22 19:41 - 2017-07-22 19:41 - 00001013 _____ C:\Documents and Settings\BOLA\Desktop\Media Player Classic.lnk
2017-07-22 14:15 - 2017-07-22 14:15 - 00000000 ____D C:\Documents and Settings\LocalService\Menu Iniciar\Programas\Inicializar
2017-07-22 00:10 - 2017-07-27 22:19 - 00000000 ____D C:\WINDOWS\Tasks\360Disabled
2017-07-22 00:10 - 2017-07-22 00:10 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\CEF
2017-07-21 23:44 - 2017-07-21 23:44 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Thunder Network
2017-07-18 05:40 - 2017-07-29 03:43 - 00000000 _SHDC C:\$360Section
2017-07-14 21:29 - 2017-07-14 21:29 - 00000578 _____ C:\Documents and Settings\BOLA\Desktop\Atalho para WNetWatcher.lnk
2017-07-13 03:55 - 2017-07-24 04:52 - 00002841 _____ C:\Documents and Settings\BOLA\Meus documentos\WNetWatcher.cfg
2017-07-13 03:55 - 2017-05-11 07:49 - 00845520 _____ (NirSoft) C:\Documents and Settings\BOLA\Meus documentos\WNetWatcher.exe
2017-07-13 03:55 - 2017-05-11 07:49 - 00018962 _____ C:\Documents and Settings\BOLA\Meus documentos\WNetWatcher.chm
2017-07-13 03:55 - 2017-05-11 07:49 - 00018844 _____ C:\Documents and Settings\BOLA\Meus documentos\readme.txt
2017-07-13 03:39 - 2017-07-13 03:39 - 00003584 _____ C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-06 04:22 - 2017-07-06 04:22 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais
2017-07-06 03:45 - 2017-07-06 03:45 - 00001331 _____ C:\Documents and Settings\All Users\Menu Iniciar\Programas\UC Browser.lnk
2017-07-06 03:45 - 2017-07-06 03:45 - 00001325 _____ C:\Documents and Settings\All Users\Desktop\UC Browser.lnk
2017-07-06 03:45 - 2017-07-06 03:45 - 00000000 ____D C:\Documents and Settings\All Users\Menu Iniciar\Programas\UC Browser
2017-07-06 03:43 - 2017-07-11 04:18 - 00000000 ____D C:\Arquivos de programas\UCBrowser
2017-07-06 03:38 - 2017-07-06 03:45 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\UCBrowser
2017-07-06 03:19 - 2017-07-06 03:25 - 00000000 ____D C:\Documents and Settings\BOLA\Dados de aplicativos\SlimBrowser
2017-07-04 06:07 - 2017-07-30 00:58 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Adobe
2017-07-01 02:52 - 2017-07-01 02:52 - 00000945 _____ C:\Documents and Settings\All Users\Desktop\Revo Uninstaller.lnk
2017-06-30 04:19 - 2017-06-30 04:19 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Baidu Security
2017-06-30 04:17 - 2017-06-30 04:17 - 00000000 ____D C:\Documents and Settings\All Users\Menu Iniciar\Programas\Adobe
2017-06-30 04:17 - 2017-06-30 04:17 - 00000000 ____D C:\Arquivos de programas\Adobe Media Player
2017-06-29 05:15 - 2017-06-29 05:15 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Fighters(2)
2017-06-29 04:04 - 2017-06-30 04:18 - 00000000 ____D C:\Arquivos de programas\Fighters(2)
2017-06-29 03:46 - 2017-07-18 05:40 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-06-29 02:34 - 2017-06-30 04:19 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\clp
2017-06-29 02:34 - 2017-06-29 02:35 - 00000000 ____D C:\Documents and Settings\BOLA\Dados de aplicativos\Fighters
2017-06-29 02:21 - 2017-06-29 02:34 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Fighters
2017-06-29 02:21 - 2017-06-29 02:21 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Common Toolkit Suite
2017-06-29 01:10 - 2017-06-29 03:53 - 00140576 _____ C:\Documents and Settings\All Users\Dados de aplicativos\SMRResults501.dat
2017-06-29 00:39 - 2017-06-30 04:20 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\NPE
2017-06-29 00:39 - 2017-06-30 04:20 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Norton
2017-06-28 02:30 - 2017-07-31 04:14 - 00000000 ___RD C:\Documents and Settings\BOLA\Meus documentos\Meus vídeos
2017-06-27 02:59 - 2017-06-27 04:08 - 00006719 _____ C:\Documents and Settings\BOLA\Meus documentos\timmmmmm.txt
2017-06-27 01:31 - 2017-06-27 01:31 - 00000000 ____D C:\Documents and Settings\BOLA\Dados de aplicativos\Media Player Classic
2017-06-26 23:59 - 2017-07-08 05:14 - 00000000 ____D C:\Documents and Settings\BOLA\Dados de aplicativos\Adobe
2017-06-26 22:44 - 2017-06-30 13:21 - 00000000 ____D C:\Arquivos de programas\Mozilla Firefox
2017-06-26 22:44 - 2017-06-26 22:44 - 00000793 _____ C:\Documents and Settings\All Users\Menu Iniciar\Programas\Mozilla Firefox.lnk
2017-06-26 22:36 - 2017-06-26 22:37 - 00000814 _____ C:\Documents and Settings\BOLA\Menu Iniciar\Programas\Internet Explorer.lnk
2017-06-26 22:36 - 2017-06-26 22:37 - 00000785 _____ C:\Documents and Settings\BOLA\Menu Iniciar\Programas\Outlook Express.lnk
2017-06-26 20:34 - 2017-06-26 20:34 - 00000000 ____D C:\Documents and Settings\Elson\Menu Iniciar\Programas\Aplicativos do Google Chrome
2017-06-26 05:16 - 2017-06-30 13:21 - 00000000 ____D C:\Arquivos de programas\Mozilla Maintenance Service
2017-06-26 05:16 - 2017-06-26 22:45 - 00000000 ____D C:\Documents and Settings\BOLA\Dados de aplicativos\Mozilla
2017-06-26 05:16 - 2017-06-26 05:16 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Mozilla
2017-06-26 05:15 - 2017-06-26 20:19 - 00000000 ____D C:\Arquivos de programas\Mozilla Firefox(2)
2017-06-26 05:13 - 2017-06-26 05:14 - 45346552 _____ (Mozilla) C:\Documents and Settings\BOLA\Meus documentos\Firefox Setup 52.2.0esr.exe
2017-06-26 01:38 - 2017-07-01 02:52 - 00000000 ____D C:\Documents and Settings\All Users\Menu Iniciar\Programas\Revo Uninstaller
2017-06-26 01:38 - 2017-06-26 01:38 - 00000000 ____D C:\Arquivos de programas\VS Revo Group
2017-06-26 01:37 - 2017-06-26 01:37 - 07178424 _____ (VS Revo Group ) C:\Documents and Settings\BOLA\Meus documentos\revosetup.exe
2017-06-25 23:26 - 2017-06-25 23:26 - 00000000 ____D C:\Documents and Settings\BOLA\PrivacIE
2017-06-25 23:26 - 2017-06-25 23:26 - 00000000 ____D C:\Documents and Settings\BOLA\IECompatCache
2017-06-24 05:28 - 2017-06-24 05:28 - 00000000 ____D C:\Documents and Settings\BOLA\Dados de aplicativos\Opera
2017-06-24 05:28 - 2017-06-24 05:28 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Opera
2017-06-23 03:38 - 2017-07-31 02:05 - 00000000 ____D C:\Arquivos de programas\Google
2017-06-21 03:28 - 2017-06-26 20:35 - 00000000 ____D C:\Arquivos de programas\Opera
2017-06-21 01:06 - 2008-04-13 09:35 - 00020992 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8139.sys
2017-06-20 01:22 - 2008-04-13 09:35 - 00020992 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RTL8139.sys

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-11-17 03:03 - 2011-01-20 00:30 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Iniciar
2017-11-16 23:23 - 2011-06-20 20:59 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\TEMP
2017-08-01 04:39 - 2017-01-31 04:35 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Temp
2017-08-01 04:03 - 2017-03-05 03:33 - 00000000 ___RD C:\Documents and Settings\BOLA\Menu Iniciar\Programas
2017-08-01 03:37 - 2011-01-20 00:30 - 00000000 ___RD C:\Arquivos de programas
2017-08-01 03:35 - 2011-01-20 00:30 - 00000000 ____D C:\Documents and Settings\All Users\Menu Iniciar\Programas
2017-08-01 03:26 - 2011-01-19 23:55 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-08-01 03:24 - 2011-04-21 05:15 - 00000433 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2017-08-01 03:24 - 2011-01-20 02:44 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-01 03:23 - 2017-01-31 04:35 - 00000210 ___SH C:\Documents and Settings\BOLA\ntuser.ini
2017-08-01 03:06 - 2017-01-31 04:35 - 00000000 ___HD C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos
2017-08-01 01:27 - 2011-06-17 21:28 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\Panda Security
2017-07-31 04:30 - 2011-01-20 00:29 - 00000000 ____D C:\Documents and Settings\All Users
2017-07-31 04:29 - 2011-01-20 00:30 - 00000000 ___RD C:\Documents and Settings\All Users\Documentos
2017-07-31 04:16 - 2017-01-31 04:35 - 00000000 ____D C:\Documents and Settings\BOLA
2017-07-31 03:59 - 2011-01-20 02:50 - 00000000 ___HD C:\Arquivos de programas\InstallShield Installation Information
2017-07-31 03:56 - 2017-01-31 04:35 - 00000000 __RHD C:\Documents and Settings\BOLA\Dados de aplicativos
2017-07-31 03:56 - 2011-06-20 21:01 - 00000000 ____D C:\Documents and Settings\All Users\Dados de aplicativos\AVAST Software
2017-07-31 02:04 - 2011-01-19 23:55 - 00000000 ___HD C:\WINDOWS\inf
2017-07-31 01:28 - 2011-01-20 02:35 - 00000000 ____D C:\WINDOWS\Registration
2017-07-31 01:24 - 2011-01-20 00:29 - 00000000 __RHD C:\Documents and Settings\All Users\Dados de aplicativos
2017-07-30 22:24 - 2017-01-31 04:56 - 00000000 ____D C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\Google
2017-07-30 21:11 - 2017-02-25 04:00 - 00000000 __SHD C:\WINDOWS\CSC
2017-07-30 19:16 - 2011-02-18 11:30 - 00000000 ____D C:\Documents and Settings\Elson\Configurações locais\Dados de aplicativos\Google
2017-07-30 19:16 - 2011-01-20 02:44 - 00000000 ___HD C:\Documents and Settings\Elson\Configurações locais\Dados de aplicativos
2017-07-30 19:16 - 2011-01-20 02:44 - 00000000 ___HD C:\Documents and Settings\Elson\Configurações locais
2017-07-30 19:16 - 2011-01-20 02:44 - 00000000 ____D C:\Documents and Settings\Elson
2017-07-30 19:01 - 2011-01-20 00:29 - 00000000 ____D C:\Documents and Settings
2017-07-30 18:54 - 2011-01-20 00:29 - 00000212 _RSHC C:\boot.ini
2017-07-30 04:17 - 2011-01-20 02:44 - 00000000 ___HD C:\Documents and Settings\LocalService\Configurações locais\Dados de aplicativos
2017-07-29 05:00 - 2013-06-27 04:24 - 00000000 ____D C:\WINDOWS\Minidump
2017-07-29 03:15 - 2011-01-21 12:39 - 00000000 ____D C:\Arquivos de programas\Windows Live
2017-07-29 03:13 - 2011-01-20 00:30 - 00000000 ___RD C:\Documents and Settings\Default User\Menu Iniciar\Programas
2017-07-28 07:23 - 2017-01-31 04:35 - 00000000 ___RD C:\Documents and Settings\BOLA\Meus documentos
2017-07-28 04:39 - 2013-12-30 05:59 - 00000000 ____D C:\Documents and Settings\Elson\Dados de aplicativos\newnext.me
2017-07-26 21:37 - 2011-01-20 02:44 - 00000000 __SHD C:\Documents and Settings\LocalService
2017-07-26 21:37 - 2011-01-20 02:43 - 00000000 __SHD C:\Documents and Settings\NetworkService
2017-07-22 14:15 - 2013-06-20 00:50 - 00000000 ____D C:\Documents and Settings\LocalService\Menu Iniciar\Programas
2017-07-21 22:26 - 2011-01-19 23:55 - 00000000 ____D C:\WINDOWS\system32\ias
2017-07-18 05:40 - 2013-06-01 08:46 - 00000000 ____D C:\Documents and Settings\LocalService\Dados de aplicativos\360Safe
2017-07-13 03:25 - 2013-06-27 04:38 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2017-07-06 03:19 - 2017-01-31 04:35 - 00000000 ___RD C:\Documents and Settings\BOLA\Favoritos
2017-07-03 15:02 - 2011-01-19 23:55 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2017-07-02 20:19 - 2011-01-19 23:55 - 00000000 ____D C:\WINDOWS\Help

==================== Arquivos na raiz de alguns diretórios =======

2017-03-18 02:21 - 2017-03-18 02:21 - 0000288 _____ () C:\Arquivos de programas\Atalho para Sistema (C).lnk
2011-02-15 22:51 - 2011-06-29 10:13 - 2959376 ____C (Microsoft Corporation) C:\Arquivos de programas\dotnetfx35setup.exe
2013-05-30 15:26 - 2013-05-30 15:26 - 4096000 ____C () C:\Arquivos de programas\GUT31.tmp
2017-07-13 03:39 - 2017-07-13 03:39 - 0003584 _____ () C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-11-16 23:33 - 2017-07-20 01:03 - 0045812 _____ () C:\Documents and Settings\BOLA\Configurações locais\Dados de aplicativos\ShLog.txt
2011-05-28 20:02 - 2017-01-30 23:53 - 0010565 ____N () C:\Documents and Settings\All Users\Dados de aplicativos\hpzinstall.log
2017-06-29 01:10 - 2017-06-29 03:53 - 0140576 _____ () C:\Documents and Settings\All Users\Dados de aplicativos\SMRResults501.dat

Alguns arquivos em TEMP:
====================
C:\Documents and Settings\BOLA\Configurações locais\Temp\{6D479D02-B941-4D83-A068-9394C024CCD8}.exe
C:\Documents and Settings\BOLA\Configurações locais\Temp\{E5BE2D0D-C463-4B95-BBA2-B41E0DD5084E}.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité