cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 30-11-2017
Executado por Notebook (administrador) em NOTEBOOK-PC (01-12-2017 14:49:49)
Executando a partir de C:\Users\Notebook\Downloads
Perfis Carregados: Notebook (Perfis Disponíveis: Notebook & postgres)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
() C:\Windows\System32\kms.exe
(Mediatek Inc.) C:\Program Files\MediatekWiFi\Common\RaRegistry.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(the sz development) C:\Program Files\DoroPDFWriter\DoroServer.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\PAC7302\Monitor.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Mediatek Inc.) C:\Program Files\MediatekWiFi\Common\RaUI.exe
() C:\xampp\xampp-control.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgui.exe
(Scopus Soluções em TI Ltda) C:\Program Files\scpbrad\scpbradserv.exe
(Scopus Soluções em TI Ltda) C:\Program Files\scpbrad\scpbradguard.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
() C:\xampp\mysql\bin\mysqld.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(HP) C:\Program Files\HP\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [DoroServer] => C:\Program Files\DoroPDFWriter\DoroServer.exe [208896 2016-12-23] (the sz development)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220288 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [302744 2017-10-14] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [336992 2012-08-17] (Power Software Ltd)
HKLM\...\Run: [CorelDRAW Graphics Suite 11b] => C:\Program Files\Corel\Corel Graphics 12\Languages\EN\Programs\registration.exe [729088 2003-11-25] (Corel Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-2573370015-4225598317-3340642684-1000\...\Run: [uTorrent] => C:\Users\Notebook\AppData\Roaming\uTorrent\updates\3.5.0_44294.exe [1981624 2017-11-30] (BitTorrent Inc.)
HKU\S-1-5-21-2573370015-4225598317-3340642684-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7814600 2017-11-08] (Piriform Ltd)
HKU\S-1-5-21-2573370015-4225598317-3340642684-1000\...\MountPoints2: {0b7c6b4b-8f6d-11e7-9d4a-806e6f6e6963} - F:\setup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-11-29]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2017-09-02]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files\MediatekWiFi\Common\RaUI.exe (Mediatek Inc.)
Startup: C:\Users\Notebook\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\XAMPP Control Panel.lnk [2017-09-01]
ShortcutTarget: XAMPP Control Panel.lnk -> C:\xampp\xampp-control.exe ()
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: 127.0.0.1 geo.dev
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4B0D90CB-DBA9-412B-AAB6-AABBA34C46AF}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9CD61A92-94C8-40E1-B9BB-9DE5E381DFE5}: [DhcpNameServer] 208.67.222.222 208.67.220.220 0.0.0.0

Internet Explorer:
==================
HKU\S-1-5-21-2573370015-4225598317-3340642684-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2010-05-28] (Hewlett-Packard Co.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-03] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-03] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-04-07] (HP Inc.)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2010-05-28] (Hewlett-Packard Co.)

FireFox:
========
FF ProfilePath: C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\qj0p7hg8.default [2017-12-01]
FF Homepage: Mozilla\Firefox\Profiles\qj0p7hg8.default -> hxxps://www.google.com.br/
FF Extension: (Disable Media WMF NV12 format) - C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\qj0p7hg8.default\features\{b41838c6-77bf-42dd-ade6-e8d5a9fe2125}\disable-media-wmf-nv12@mozilla.org.xpi [2017-11-23] [Lagacy]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-11-29] [Lagacy] [não assinado]
FF HKU\S-1-5-21-2573370015-4225598317-3340642684-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [2007-11-20] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-03] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-17] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://meucomputador.business.site/","hxxp://www.google.com.br/"
CHR Profile: C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default [2017-12-01]
CHR Extension: (Apresentações) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Documentos) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Google Drive) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-02]
CHR Extension: (YouTube) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-02]
CHR Extension: (Intelbras Cloud) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpipjkaekmamhbmhdgaedapkmbmnaggc [2017-09-02]
CHR Extension: (Adobe Acrobat) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-27]
CHR Extension: (Planilhas) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Documentos Google off-line) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-08]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-02]
CHR Extension: (Gmail) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-02]
CHR Extension: (Chrome Media Router) - C:\Users\Notebook\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-15]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [282536 2017-10-14] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [5879472 2017-10-14] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [1189720 2017-10-31] (AVG Technologies CZ, s.r.o.)
R3 hpqcaslwmiex; C:\Program Files\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 KMSServerService; C:\Windows\system32\kms.exe [32256 2013-04-15] () [Arquivo não assinado]
R2 MediatekRegistryWriter; C:\Program Files\MediatekWiFi\Common\RaRegistry.exe [401040 2014-07-31] (Mediatek Inc.)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45272 2005-10-14] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [Arquivo não assinado]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [Arquivo não assinado]
R2 postgresql-9.6; C:\Program Files\PostgreSQL\9.6\bin\pg_ctl.exe [80896 2017-08-29] (PostgreSQL Global Development Group) [Arquivo não assinado]
S3 PrintNotify; C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll [2473472 2016-06-07] (Microsoft Corporation) [Arquivo não assinado]
S2 RaMediaServer; C:\Program Files\MediatekWiFi\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [Arquivo não assinado]
R2 scpbradserv; C:\Program Files\scpbrad\scpbradserv.exe [1997792 2017-09-15] (Scopus Soluções em TI Ltda)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [4448016 2017-11-15] (AVG Technologies CZ, s.r.o.)
S3 Visual Studio Analyzer RPC bridge; C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe [34036 1998-06-06] (Microsoft Corporation) [Arquivo não assinado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 avgbdisk; C:\Windows\system32\drivers\avgbdiskx.sys [135872 2017-10-14] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdriverx.sys [249232 2017-10-14] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidshx.sys [151024 2017-10-14] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgblogx.sys [270344 2017-10-14] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbunivx.sys [43992 2017-10-14] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [35264 2017-10-14] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [117368 2017-10-14] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [91976 2017-10-14] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [63280 2017-10-14] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [776064 2017-10-26] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [491976 2017-10-14] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [142240 2017-10-14] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [290264 2017-10-14] (AVG Technologies CZ, s.r.o.)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1702032 2014-07-04] (MediaTek Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [458752 2007-11-08] (PixArt Imaging Inc.)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113104 2012-08-17] (Power Software Ltd)
S3 smsbda; C:\Windows\System32\drivers\smsbda.sys [52128 2010-06-21] (Siano)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [31792 2017-11-15] (AVG Netherlands B.V.)
S3 ZTEusbdvbh; C:\Windows\System32\DRIVERS\ZTEusbdvbh.sys [105216 2009-10-28] (ZTE Incorporated)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-12-01 14:49 - 2017-12-01 14:50 - 000018613 _____ C:\Users\Notebook\Downloads\FRST.txt
2017-12-01 14:49 - 2017-12-01 14:49 - 000000000 ____D C:\FRST
2017-12-01 14:48 - 2017-12-01 14:48 - 001752064 _____ (Farbar) C:\Users\Notebook\Downloads\FRST.exe
2017-12-01 14:42 - 2017-12-01 14:42 - 000629006 _____ C:\Users\Notebook\Downloads\Windows6.1-KB2999226-x86 (3).msu
2017-12-01 14:30 - 2017-12-01 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostGIS Bundle 2.4 for PostgreSQL x32 9.6
2017-12-01 14:24 - 2017-12-01 14:26 - 026851645 _____ C:\Users\Notebook\postgis_2_4_pg96.exe
2017-12-01 14:12 - 2017-12-01 14:12 - 001026830 _____ C:\Users\Notebook\Downloads\osm2pgrouting-pg96-binaries-2.3.2-developw64gcc48.zip
2017-12-01 14:07 - 2017-12-01 14:08 - 023195976 _____ (Solvusoft Corporation) C:\Users\Notebook\Downloads\Setup_WinThruster_2017.exe
2017-12-01 08:13 - 2017-12-01 08:13 - 000554545 _____ C:\Users\Notebook\Desktop\formatar_imagem_php.pdf
2017-11-30 22:09 - 2017-12-01 14:18 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\pgAdmin
2017-11-30 22:03 - 2017-11-30 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.6
2017-11-30 17:09 - 2017-11-30 17:24 - 160737768 _____ (PostgreSQL Global Development Group) C:\Users\Notebook\Downloads\postgresql-10.1-1-windows.exe
2017-11-30 17:07 - 2017-11-30 17:25 - 168689992 _____ (PostgreSQL Global Development Group) C:\Users\Notebook\Downloads\postgresql-9.6.5-1-windows.exe
2017-11-30 14:59 - 2017-11-30 15:00 - 013767776 _____ (Microsoft Corporation) C:\Users\Notebook\Downloads\vc_redist.x86.exe
2017-11-30 14:43 - 2017-11-30 14:43 - 000629006 _____ C:\Users\Notebook\Downloads\Windows6.1-KB2999226-x86 (2).msu
2017-11-30 13:33 - 2017-11-30 13:33 - 000629006 _____ C:\Users\Notebook\Downloads\Windows6.1-KB2999226-x86 (1).msu
2017-11-30 13:28 - 2016-09-30 11:50 - 000023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-30 13:24 - 2017-11-30 13:25 - 002786824 _____ (DLL-Files.com Client ) C:\Users\Notebook\Downloads\clientsetup_d-0.exe
2017-11-30 13:18 - 2017-11-30 13:19 - 000000000 ____D C:\Users\Notebook\.designer
2017-11-30 13:14 - 2017-11-30 13:15 - 000117018 _____ C:\Users\Notebook\Documents\cc_20171130_131444.reg
2017-11-30 13:09 - 2017-11-30 13:09 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-11-30 13:09 - 2017-11-30 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-11-30 13:09 - 2017-11-30 13:09 - 000000000 ____D C:\Program Files\CCleaner
2017-11-30 13:08 - 2017-11-30 13:08 - 010848760 _____ (Piriform Ltd) C:\Users\Notebook\Downloads\ccsetup537pro.exe
2017-11-30 12:53 - 2017-11-30 12:53 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\GRASS7
2017-11-30 12:50 - 2017-11-30 12:50 - 000000000 ____D C:\Users\Public\Desktop\QGIS 2.18
2017-11-30 12:46 - 2017-11-30 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QGIS 2.18
2017-11-30 12:46 - 2017-11-30 12:46 - 000001985 _____ C:\Users\Public\Desktop\GRASS GIS 7.2.2.lnk
2017-11-30 12:41 - 2017-11-30 12:50 - 000000000 ____D C:\Program Files\QGIS 2.18
2017-11-30 12:41 - 2017-11-30 12:41 - 000000000 ____D C:\Users\Notebook\Documents\GIS DataBase
2017-11-30 12:21 - 2017-11-30 12:21 - 000000000 ____D C:\Users\Todos os Usuários\Caphyon
2017-11-30 12:21 - 2017-11-30 12:21 - 000000000 ____D C:\ProgramData\Caphyon
2017-11-30 12:21 - 2017-11-30 12:21 - 000000000 ____D C:\Program Files\Spectral Core
2017-11-30 12:20 - 2017-11-30 12:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full Convert
2017-11-30 12:16 - 2017-11-30 12:22 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\Spectral Core
2017-11-30 12:16 - 2017-11-30 12:16 - 000000000 ____D C:\Users\Notebook\AppData\Local\AdvinstAnalytics
2017-11-30 11:46 - 2017-11-30 11:46 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\postgresql
2017-11-29 20:42 - 2017-11-29 20:42 - 000221624 _____ C:\Users\Notebook\Downloads\AREA_RISCO_FINANCEIIRO_SIMONECopy (2).zip
2017-11-29 20:39 - 2017-11-29 20:39 - 000250714 _____ C:\Users\Notebook\Downloads\Limite_Comunidade_FO (1).zip
2017-11-29 15:07 - 2017-11-29 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Developer Network
2017-11-29 15:01 - 2017-11-29 15:01 - 000000000 ____D C:\Program Files\MSDN
2017-11-29 14:49 - 2017-11-29 14:49 - 000000000 ____D C:\Windows\system32\js
2017-11-29 14:49 - 2017-11-29 14:49 - 000000000 ____D C:\Windows\system32\images
2017-11-29 14:49 - 2017-11-29 14:49 - 000000000 ____D C:\Windows\system32\html
2017-11-29 14:49 - 2017-11-29 14:49 - 000000000 ____D C:\Windows\system32\css
2017-11-29 14:49 - 2017-11-29 14:49 - 000000000 ____D C:\Program Files\Business Objects
2017-11-29 14:47 - 2017-11-29 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A
2017-11-29 14:46 - 2017-11-29 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005
2017-11-29 14:43 - 2017-11-29 14:47 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2017-11-29 14:43 - 2017-11-29 14:43 - 000000000 ____D C:\Program Files\Microsoft Device Emulator
2017-11-29 14:41 - 2017-11-29 14:42 - 000000000 ____D C:\Program Files\Windows Mobile 5.0 SDK R2
2017-11-29 14:26 - 2017-11-30 21:45 - 000000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2017-11-29 14:26 - 2017-11-29 14:26 - 000000000 ____D C:\Program Files\Microsoft SDKs
2017-11-29 14:24 - 2017-11-29 14:24 - 000000000 ____D C:\Program Files\Microsoft Web Designer Tools
2017-11-29 14:22 - 2017-11-29 15:26 - 000000000 ____D C:\Users\Notebook\Documents\Visual Studio 2008
2017-11-29 13:28 - 2017-11-29 13:28 - 000002976 _____ C:\Users\Notebook\Downloads\intro-popuptemplate.html
2017-11-29 13:27 - 2017-11-29 13:27 - 000001985 _____ C:\Users\Notebook\Downloads\layers-mapimagelayer.html
2017-11-29 13:14 - 2017-11-29 13:14 - 000003784 _____ C:\Users\Notebook\Downloads\graphics-basic-3d.html
2017-11-29 13:12 - 2017-11-29 13:12 - 000005013 _____ C:\Users\Notebook\Downloads\layers-dynamicdatalayer-query-table.html
2017-11-29 12:59 - 2017-11-29 12:59 - 000006479 _____ C:\Users\Notebook\Downloads\layers-mapimagelayer-dynamic-labels.html
2017-11-29 12:51 - 2017-11-29 12:51 - 000005830 _____ C:\Users\Notebook\Downloads\layers-mapimagelayer-sublayers.html
2017-11-29 12:48 - 2017-11-29 12:48 - 000002526 _____ C:\Users\Notebook\Downloads\layers-scenelayer-points (1).html
2017-11-29 12:47 - 2017-11-29 12:47 - 000002526 _____ C:\Users\Notebook\Downloads\layers-scenelayer-points.html
2017-11-29 12:30 - 2017-11-29 12:30 - 000001450 _____ C:\Users\Notebook\Downloads\layers-featurelayer.html
2017-11-29 12:14 - 2017-11-29 20:32 - 000000000 ____D C:\Users\Notebook\AppData\LocalLow\HPAppData
2017-11-29 12:14 - 2017-11-29 12:14 - 000000897 _____ C:\Users\Notebook\Downloads\rss-sample.xml
2017-11-29 10:51 - 2017-11-29 13:43 - 000000000 ____D C:\Users\Notebook\Documents\Minhas digitalizações
2017-11-29 10:46 - 2017-11-29 10:46 - 000000000 ____D C:\Users\Todos os Usuários\WEBREG
2017-11-29 10:46 - 2017-11-29 10:46 - 000000000 ____D C:\ProgramData\WEBREG
2017-11-29 10:45 - 2017-11-29 10:45 - 000000000 ____D C:\Users\Notebook\AppData\Local\HP
2017-11-29 10:42 - 2017-11-29 10:42 - 000001338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2017-11-29 10:42 - 2017-11-29 10:42 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2017-11-29 10:40 - 2017-11-29 10:40 - 000001327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Central de Soluções HP.lnk
2017-11-29 10:40 - 2017-11-29 10:40 - 000001321 _____ C:\Users\Public\Desktop\Central de Soluções HP.lnk
2017-11-29 10:40 - 2017-11-29 10:40 - 000001020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registro OCR I.R.I.S..lnk
2017-11-29 10:40 - 2017-11-29 10:40 - 000000000 ____D C:\Users\Todos os Usuários\HP Product Assistant
2017-11-29 10:40 - 2017-11-29 10:40 - 000000000 ____D C:\ProgramData\HP Product Assistant
2017-11-29 10:39 - 2017-11-29 10:39 - 000000000 ____D C:\Program Files\Common Files\HP
2017-11-29 10:34 - 2017-11-29 10:45 - 000196277 _____ C:\Windows\hpwins16.dat
2017-11-29 10:34 - 2010-07-28 17:35 - 000000602 ____N C:\Windows\hpwmdl16.dat
2017-11-29 09:51 - 2017-11-29 10:46 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\HP
2017-11-29 09:47 - 2010-07-28 17:35 - 000000602 ____N C:\Windows\hpwmdl16.dat.temp
2017-11-29 09:10 - 2017-11-29 09:59 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\HpUpdate
2017-11-29 09:10 - 2017-11-29 09:10 - 001203478 _____ C:\Users\Notebook\Desktop\CSharp - Usando o Google Maps.pdf
2017-11-29 09:10 - 2017-11-29 09:10 - 000024898 _____ C:\Users\Notebook\Downloads\UsandoGoogleMaps.zip
2017-11-29 09:08 - 2017-11-29 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-11-29 09:08 - 2017-11-29 09:08 - 000000000 ____D C:\Program Files\Common Files\Hewlett-Packard
2017-11-29 09:07 - 2006-12-30 15:49 - 000117760 _____ (Hewlett-Packard Company) C:\Windows\system32\hpzll4v2.dll
2017-11-29 09:04 - 2017-11-29 10:45 - 000000000 ____D C:\Users\Todos os Usuários\HP
2017-11-29 09:04 - 2017-11-29 10:45 - 000000000 ____D C:\ProgramData\HP
2017-11-29 09:04 - 2010-02-10 04:59 - 000675840 _____ (Hewlett-Packard) C:\Windows\system32\hpowiax4.dll
2017-11-29 09:04 - 2010-02-10 04:59 - 000569344 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpotscl4.dll
2017-11-29 09:04 - 2010-02-10 04:59 - 000364544 _____ (Hewlett-Packard) C:\Windows\system32\hppldcoi.dll
2017-11-29 09:04 - 2010-02-10 04:59 - 000294912 _____ (Hewlett-Packard Co.) C:\Windows\system32\hpovst11.dll
2017-11-29 09:04 - 2010-02-10 04:59 - 000258048 _____ (Hewlett-Packard) C:\Windows\system32\hpzids01.dll
2017-11-29 08:50 - 2017-11-29 08:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2017-11-29 08:47 - 2017-11-29 09:01 - 251026464 _____ C:\Users\Notebook\Downloads\OJJ3600_Full_14.exe
2017-11-29 08:37 - 2017-11-29 08:37 - 000279735 _____ C:\Users\Notebook\Downloads\Empresa - Koala cartuchos-20171129T103712Z-001.zip
2017-11-28 22:57 - 2017-11-28 22:57 - 000035890 _____ C:\Users\Notebook\Downloads\shape_viewer.zip
2017-11-28 22:50 - 2017-11-28 22:50 - 000084500 _____ C:\Users\Notebook\Downloads\WhatsApp Image 2017-11-27 at 10.00.45 (2).jpeg
2017-11-28 22:49 - 2017-11-28 22:49 - 000084500 _____ C:\Users\Notebook\Downloads\WhatsApp Image 2017-11-27 at 10.00.45 (1).jpeg
2017-11-28 22:49 - 2017-11-28 22:49 - 000002538 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2017-11-28 22:49 - 2017-11-28 22:49 - 000002526 _____ C:\Users\Public\Desktop\AVG PC TuneUp.lnk
2017-11-28 22:49 - 2017-11-28 22:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp
2017-11-28 22:49 - 2017-11-15 08:59 - 000049936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\TURegOpt.exe
2017-11-28 22:49 - 2017-11-15 08:56 - 000042256 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\authuitu.dll
2017-11-28 22:37 - 2017-11-28 22:37 - 000173616 _____ C:\Users\Notebook\Downloads\DC ultimos 12 meses.xlsx
2017-11-28 09:13 - 2017-11-28 09:13 - 000214055 _____ C:\Users\Notebook\Downloads\Alerta.pdf
2017-11-28 09:09 - 2017-11-28 09:09 - 000006445 _____ C:\Users\Notebook\Downloads\Bradesco_28112017_090925.pdf
2017-11-27 16:23 - 2017-11-27 16:23 - 005077784 _____ C:\Users\Notebook\Downloads\banco (1).csv
2017-11-27 10:02 - 2017-11-27 10:02 - 000084500 _____ C:\Users\Notebook\Downloads\WhatsApp Image 2017-11-27 at 10.00.45.jpeg
2017-11-23 14:20 - 2017-11-23 14:22 - 013298040 _____ C:\Users\Notebook\Downloads\jpgraph-4.1.0.tar.gz
2017-11-23 14:15 - 2017-11-23 14:15 - 001020525 _____ C:\Users\Notebook\Desktop\classe JPGraph com MySQL.pdf
2017-11-22 11:28 - 2017-11-22 11:40 - 000000000 ____D C:\Users\Notebook\Desktop\FOTOS REBECA
2017-11-21 16:22 - 2017-11-21 16:23 - 005077784 _____ C:\Users\Notebook\Downloads\banco.csv
2017-11-21 16:21 - 2017-11-21 16:21 - 000250714 _____ C:\Users\Notebook\Downloads\Limite_Comunidade_FO.zip
2017-11-20 20:19 - 2017-11-20 20:19 - 000000000 ____D C:\Users\Notebook\Downloads\AREA_RISCO_FINANCEIIRO_SIMONECopy (1)
2017-11-20 20:18 - 2017-11-20 20:18 - 000221624 _____ C:\Users\Notebook\Downloads\AREA_RISCO_FINANCEIIRO_SIMONECopy (1).zip
2017-11-20 20:01 - 2017-11-20 20:01 - 000809331 _____ C:\Users\Notebook\Desktop\Requisitos Georeferência - Sabesp Casa Verde - Formulários Google.pdf
2017-11-20 19:49 - 2017-11-20 19:49 - 000221624 _____ C:\Users\Notebook\Downloads\AREA_RISCO_FINANCEIIRO_SIMONECopy.zip
2017-11-20 15:04 - 2017-11-20 15:04 - 000940096 _____ C:\Users\Notebook\Desktop\ Blog.pdf
2017-11-20 11:41 - 2017-11-20 11:41 - 000089634 _____ C:\Users\Notebook\Desktop\Submarino112017.pdf
2017-11-19 08:45 - 2017-11-19 08:45 - 005030115 _____ C:\Users\Notebook\Downloads\postgis-2.3 (1).pdf
2017-11-18 12:10 - 2017-11-18 12:12 - 035142736 _____ (EnterpriseDB) C:\Users\Notebook\apachehttpd.exe
2017-11-18 12:07 - 2017-11-30 13:09 - 000000000 ____D C:\Users\postgres
2017-11-18 12:07 - 2017-11-18 12:07 - 000000020 ___SH C:\Users\postgres\ntuser.ini
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Modelos
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Meus documentos
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Menu Iniciar
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Documents\Minhas músicas
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Documents\Minhas imagens
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Documents\Meus vídeos
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Dados de aplicativos
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Configurações locais
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\AppData\Local\Histórico
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\AppData\Local\Dados de aplicativos
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Ambiente de rede
2017-11-18 12:07 - 2017-11-18 12:07 - 000000000 _SHDL C:\Users\postgres\Ambiente de impressão
2017-11-18 12:07 - 2009-07-14 06:52 - 000000000 ____D C:\Users\postgres\AppData\Roaming\Media Center Programs
2017-11-18 12:06 - 2017-11-18 12:06 - 005030115 _____ C:\Users\Notebook\Downloads\postgis-2.3.pdf
2017-11-18 12:05 - 2017-11-30 21:57 - 000000000 ____D C:\Program Files\PostgreSQL
2017-11-18 00:15 - 2017-11-18 00:15 - 008928791 _____ C:\Users\Notebook\Downloads\HINOLOGIA CCB - by Anderson Amorim.pdf
2017-11-16 09:08 - 2017-11-16 09:08 - 000000113 _____ C:\Users\Notebook\Desktop\Cooperseg.url
2017-11-16 06:31 - 2017-11-16 06:31 - 000000000 ____D C:\Users\Notebook\Downloads\Sublime Text Build 3143
2017-11-16 06:30 - 2017-11-16 06:30 - 009787798 _____ C:\Users\Notebook\Downloads\Sublime Text Build 3143.zip
2017-11-15 18:01 - 2017-11-15 18:01 - 000000822 _____ C:\Users\Notebook\Downloads\8670637-94252b5aa9e383dae1d6d9b41869ca85052bfa59.zip
2017-11-15 15:19 - 2017-11-15 15:19 - 000053146 _____ C:\Users\Notebook\Desktop\JMFSoftware Geolocalização - Google Maps.pdf
2017-11-15 11:30 - 2017-11-15 11:30 - 003900943 _____ C:\Users\Notebook\Downloads\Gerar_pdf_com_imagem.zip
2017-11-13 17:35 - 2008-07-19 15:04 - 000001339 _____ C:\Users\Notebook\Downloads\fpdf.css
2017-11-13 16:42 - 2017-11-13 16:42 - 000039240 _____ C:\Users\Notebook\Downloads\doc181-html-pt_BR (1).zip
2017-11-13 16:38 - 2017-11-13 16:39 - 000036676 _____ C:\Users\Notebook\Downloads\doc151-html-pl.zip
2017-11-13 13:57 - 2011-12-20 05:54 - 000013824 _____ (Generic) C:\Windows\system32\SzCcid.dll
2017-11-13 13:56 - 2017-11-13 13:56 - 000000000 ____D C:\Users\Todos os Usuários\SZCCID
2017-11-13 13:56 - 2017-11-13 13:56 - 000000000 ____D C:\ProgramData\SZCCID
2017-11-13 13:56 - 2017-11-13 13:56 - 000000000 ____D C:\Program Files\AlcorMicroData
2017-11-13 13:56 - 2017-11-13 13:56 - 000000000 ____D C:\Program Files\AlcorMicro
2017-11-12 14:38 - 2017-11-12 14:38 - 000039240 _____ C:\Users\Notebook\Downloads\doc181-html-pt_BR.zip
2017-11-12 09:31 - 2017-11-12 10:55 - 000021622 _____ C:\Users\Notebook\Documents\Cópia_de_segurança_de_estrelas.cdr
2017-11-12 09:27 - 2017-11-12 11:02 - 000021614 _____ C:\Users\Notebook\Documents\estrelas.cdr
2017-11-11 11:15 - 2017-11-11 11:15 - 000001675 _____ C:\Users\Notebook\Downloads\Relatorio geral (1).pdf
2017-11-11 10:32 - 2017-11-11 10:32 - 000003033 _____ C:\Users\Notebook\Downloads\Relatorio geral.pdf
2017-11-10 17:33 - 2017-11-10 17:36 - 032691824 _____ (EaseUS ) C:\Users\Notebook\Downloads\drw_trial.exe
2017-11-10 16:57 - 2017-11-10 16:57 - 000330919 _____ C:\Users\Notebook\Desktop\Serial windows 7 Ultimate até 2040 oTudo.pdf
2017-11-10 07:59 - 2017-11-10 08:00 - 003793993 _____ C:\Users\Notebook\Downloads\dompdf-master.zip
2017-11-10 02:35 - 2017-11-10 02:35 - 000722130 _____ C:\Windows\unins000.exe
2017-11-10 02:29 - 2017-11-12 11:23 - 000000000 ____D C:\viva
2017-11-10 02:28 - 2017-11-10 02:35 - 000001792 _____ C:\Windows\unins000.dat
2017-11-10 02:18 - 2017-11-10 02:18 - 000000000 ____D C:\Users\Notebook\Downloads\Recuva Professional 1.52.1086 + Crack [KaranPC]
2017-11-10 02:07 - 2017-11-10 02:08 - 005562976 _____ (Piriform Ltd) C:\Users\Notebook\Downloads\rcsetup153.exe
2017-11-10 02:02 - 2017-11-10 02:02 - 000986848 _____ C:\Users\Notebook\Downloads\data-recovery_setup_full1592.exe
2017-11-10 01:19 - 2017-11-10 01:19 - 000000741 _____ C:\Users\Notebook\Downloads\mysql.bat
2017-11-09 19:41 - 2017-11-09 19:41 - 001225728 _____ C:\Users\Notebook\Downloads\MicrosoftEasyFix50302.msi
2017-11-09 17:57 - 2017-11-09 17:57 - 000011709 _____ C:\Users\Notebook\Downloads\Windows 7 Home Basic SP1 (32 Bit).iso.torrent
2017-11-09 09:02 - 2017-11-09 09:04 - 000000000 ____D C:\Users\Notebook\Documents\Licenças Windows_Aquaplus
2017-11-08 19:46 - 2017-11-08 19:46 - 000172195 _____ C:\Users\Notebook\Downloads\fullcalendar-listar-dados.zip
2017-11-08 19:14 - 2017-11-08 19:14 - 000274110 _____ C:\Users\Notebook\Desktop\10 Boas Práticas de Programação.pdf
2017-11-08 06:29 - 2017-11-03 13:07 - 000270912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2017-11-08 06:29 - 2017-11-03 13:07 - 000191552 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2017-11-08 06:29 - 2017-11-03 13:07 - 000191040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2017-11-03 17:48 - 2017-11-03 17:54 - 010991524 _____ C:\Users\Notebook\Downloads\RebootRestoreRx22.zip
2017-11-03 17:46 - 2017-11-03 17:48 - 006075368 _____ C:\Users\Notebook\Downloads\11092428_REDE_WIN7_X32_00.exe
2017-11-03 17:36 - 2017-11-03 17:42 - 002974800 _____ C:\Users\Notebook\Downloads\freepcaudit.exe
2017-11-03 16:41 - 2017-11-03 16:41 - 000764262 _____ C:\Users\Notebook\Downloads\Ligações Tarifa Social.txt
2017-11-03 16:41 - 2017-11-03 16:41 - 000042155 _____ C:\Users\Notebook\Downloads\Ligações Favela.txt
2017-11-03 13:08 - 2017-11-03 13:08 - 000000000 ____D C:\Program Files\Common Files\Java
2017-11-01 19:31 - 2017-11-01 19:31 - 000007192 _____ C:\Users\Notebook\Downloads\mx9Uck6uB63VIKFYnEMXrRJtnKITppOI_IvcXXDNrsc.woff2
2017-11-01 18:49 - 2017-11-29 12:43 - 000000000 ____D C:\Users\Notebook\Desktop\import
2017-11-01 08:37 - 2017-11-01 08:37 - 000000000 ____D C:\Program Files\MSXML 4.0

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-12-01 14:49 - 2017-09-15 21:55 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\vlc
2017-12-01 14:33 - 2017-09-29 16:26 - 000000000 ____D C:\Users\Notebook\AppData\LocalLow\Mozilla
2017-12-01 14:24 - 2017-09-01 21:33 - 000000000 ____D C:\Users\Notebook
2017-12-01 10:46 - 2017-08-31 01:14 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-12-01 10:46 - 2017-08-31 01:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-12-01 07:48 - 2017-09-01 22:24 - 000113552 _____ C:\Users\Notebook\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-30 21:45 - 2017-08-31 00:49 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-11-30 21:45 - 2009-07-14 00:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-11-30 21:44 - 2017-08-31 00:49 - 000000000 ____D C:\Program Files\Microsoft Office
2017-11-30 21:43 - 2009-07-14 02:52 - 000000000 ____D C:\Program Files\MSBuild
2017-11-30 21:30 - 2017-10-26 10:00 - 000000000 ____D C:\Users\Notebook\.ireport
2017-11-30 21:29 - 2017-10-26 09:48 - 000000000 ____D C:\Program Files\Jaspersoft
2017-11-30 16:50 - 2017-09-25 21:17 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\uTorrent
2017-11-30 16:48 - 2017-08-31 00:59 - 000000216 _____ C:\Windows\Tasks\AutoKMS.job
2017-11-30 16:46 - 2009-07-14 02:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-30 13:11 - 2017-09-02 10:21 - 000000000 ____D C:\Windows\Minidump
2017-11-30 13:11 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\ModemLogs
2017-11-30 13:11 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\inf
2017-11-30 13:01 - 2009-07-14 02:33 - 000417512 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-30 12:50 - 2017-10-14 18:02 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-11-30 12:50 - 2017-10-14 18:02 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-30 12:18 - 2017-09-29 11:17 - 000000000 ____D C:\Users\Notebook\AppData\Local\ElevatedDiagnostics
2017-11-30 11:32 - 2009-07-14 02:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-30 11:32 - 2009-07-14 02:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-30 10:07 - 2017-09-25 21:18 - 000000000 ___SD C:\Users\Notebook\AppData\LocalLow\Temp
2017-11-30 09:40 - 2017-08-31 00:55 - 001772780 _____ C:\Windows\system32\PerfStringBackup.INI
2017-11-30 09:40 - 2009-07-14 06:31 - 000754880 _____ C:\Windows\system32\prfh0416.dat
2017-11-30 09:40 - 2009-07-14 06:31 - 000165594 _____ C:\Windows\system32\prfc0416.dat
2017-11-29 22:01 - 2017-09-27 11:48 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 14:49 - 2017-09-01 21:39 - 000000928 _____ C:\Windows\ODBC.INI
2017-11-29 14:44 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\registration
2017-11-29 10:45 - 2009-07-14 00:04 - 000000513 _____ C:\Windows\win.ini
2017-11-29 10:41 - 2017-09-02 09:40 - 000000000 ____D C:\Program Files\HP
2017-11-29 10:29 - 2017-09-02 08:59 - 000000000 ____D C:\Users\Todos os Usuários\Hewlett-Packard
2017-11-29 10:29 - 2017-09-02 08:59 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2017-11-29 08:50 - 2017-09-01 21:57 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2017-11-29 08:50 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\Help
2017-11-29 08:46 - 2017-09-02 09:03 - 000000000 ____D C:\Users\Notebook\AppData\Local\Hewlett-Packard
2017-11-29 08:46 - 2017-09-02 08:57 - 000000000 ____D C:\Program Files\Hewlett-Packard
2017-11-29 08:43 - 2017-09-02 08:58 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\hpqLog
2017-11-28 23:02 - 2017-10-31 16:26 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\TeamViewer
2017-11-28 23:02 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\system32\sysprep
2017-11-28 22:49 - 2017-09-02 09:49 - 000000000 ____D C:\Program Files\AVG
2017-11-28 22:49 - 2017-09-02 09:47 - 000000000 ____D C:\Users\Notebook\AppData\Local\Avg
2017-11-28 22:48 - 2017-09-02 09:47 - 000000000 ____D C:\Users\Todos os Usuários\Avg
2017-11-28 22:48 - 2017-09-02 09:47 - 000000000 ____D C:\Users\Notebook\AppData\Local\AvgSetupLog
2017-11-28 22:48 - 2017-09-02 09:47 - 000000000 ____D C:\ProgramData\Avg
2017-11-22 11:55 - 2017-09-01 21:48 - 000000093 _____ C:\Windows\vbaddin.ini
2017-11-20 20:32 - 2009-07-13 21:40 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2017-11-20 20:32 - 2009-07-13 21:36 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2017-11-20 20:32 - 2009-07-13 21:24 - 000811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-11-18 07:50 - 2017-09-02 09:05 - 000000000 ____D C:\Windows\system32\MRT
2017-11-18 07:41 - 2017-10-12 07:43 - 124282896 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-11-18 07:40 - 2017-09-02 09:05 - 124282896 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-11-17 12:16 - 2017-09-29 13:17 - 000043008 _____ C:\Windows\system32\MSMAPI32.oca
2017-11-17 12:16 - 2017-09-01 23:20 - 000029184 _____ C:\Windows\system32\MSINET.oca
2017-11-17 09:23 - 2017-09-17 11:48 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\Mozilla
2017-11-14 19:30 - 2017-10-17 08:18 - 000000000 ____D C:\Users\Notebook\Documents\geo
2017-11-13 19:10 - 2017-09-02 00:04 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-13 19:10 - 2017-09-02 00:04 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-08 06:32 - 2017-10-13 13:33 - 000000000 ____D C:\Users\Todos os Usuários\Oracle
2017-11-08 06:32 - 2017-10-13 13:33 - 000000000 ____D C:\ProgramData\Oracle
2017-11-08 06:28 - 2017-10-13 13:33 - 000000000 ____D C:\Program Files\Java
2017-11-07 12:25 - 2017-10-30 08:38 - 000014962 _____ C:\Users\Notebook\Documents\assinatura digital jmfsoftware.cdr
2017-11-07 12:24 - 2017-10-30 08:57 - 000014944 _____ C:\Users\Notebook\Documents\Cópia_de_segurança_de_assinatura digital jmfsoftware.cdr
2017-11-06 17:39 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\system32\NDF
2017-11-06 13:01 - 2017-09-02 09:53 - 000000978 _____ C:\Users\Public\Desktop\AVG.lnk
2017-11-06 13:01 - 2017-09-02 09:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-11-03 14:35 - 2017-10-27 11:21 - 000000000 ____D C:\Users\Notebook\AppData\Roaming\.minecraft
2017-11-03 13:09 - 2017-10-27 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-11-03 13:07 - 2017-10-27 11:07 - 000095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll

==================== Arquivos na raiz de alguns diretórios =======

2017-11-18 12:10 - 2017-11-18 12:12 - 035142736 _____ (EnterpriseDB) C:\Users\Notebook\apachehttpd.exe
2017-12-01 14:24 - 2017-12-01 14:26 - 026851645 _____ () C:\Users\Notebook\postgis_2_4_pg96.exe
2017-09-15 21:55 - 2017-09-15 21:55 - 000003584 _____ () C:\Users\Notebook\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Alguns arquivos em TEMP:
====================
2017-11-30 13:16 - 2010-05-04 15:46 - 000353112 _____ (Microsoft Corporation) C:\Users\Notebook\AppData\Local\Temp\MSN9A4B.exe

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => MD5 é legítimo
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-11-29 08:18

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité