Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17-12-2017
Executado por pc (administrador) em PC-PC (22-12-2017 14:24:36)
Executando a partir de C:\Users\pc\Desktop
Perfis Carregados: pc (Perfis Disponíveis: pc)
Platform: Windows 7 Home Premium (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\OEM\ControlAP II 1.3.5\ControlAP II.exe
(OEM) C:\Program Files (x86)\OEM\iBrightness 1.0.1\iBrightness.exe
() C:\Program Files (x86)\OEM\AIO IPM 1.9.4\IPM.exe
() C:\Program Files (x86)\OEM\OSD 1.15.11\SunflowerOSD.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1717954071-391292689-155083303-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-06] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ControlAP II.lnk [2017-11-23]
ShortcutTarget: ControlAP II.lnk -> C:\Windows\Installer\{A75A2559-40B0-4C25-A7ED-19D593F2A6E9}\_204AFFB5E8C01B0AB2204A.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iBrightness.lnk [2017-11-23]
ShortcutTarget: iBrightness.lnk -> C:\Windows\Installer\{B351A468-173F-43D8-B6E6-5A6E9A0125A8}\_5CA7EB0450877D7F6842BB.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\IPM.lnk [2017-11-23]
ShortcutTarget: IPM.lnk -> C:\Windows\Installer\{AADF4228-0772-4D43-92EB-B245E3A17B00}\_10500911F14C3D8BD0CDF9.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OSD.lnk [2017-11-23]
ShortcutTarget: OSD.lnk -> C:\Windows\Installer\{5A9C96FE-1376-45E1-8556-C81255F0B5A7}\_5BE33937B1D2F3478A2BFD.exe ()
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{DA56B1F8-0296-4355-A471-62556B22C463}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-1717954071-391292689-155083303-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: tlwxyui8.default
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\wtq8ga74.dev-edition-default [2017-12-04]
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\tlwxyui8.default [2017-11-10]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR NewTab: Default -> Active:"chrome-extension://nkhjnpgcnmdpeikbeegmibjcfjpamjnp/home.html"
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2017-12-22]
CHR Extension: (Apresentações) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-10]
CHR Extension: (Documentos) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-10]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-10]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-10]
CHR Extension: (Honey) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2017-12-21]
CHR Extension: (Listen Video - Youtube™ Music Player) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbiapabbjlfcbfoedilflhnifandagoh [2017-11-27]
CHR Extension: (Planilhas) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-10]
CHR Extension: (Documentos Google off-line) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-10]
CHR Extension: (DotVPN — a better way to VPN) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2017-12-21]
CHR Extension: (Piktab) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkhjnpgcnmdpeikbeegmibjcfjpamjnp [2017-11-10]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-10]
CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-10]
CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-15]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129488 2012-12-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165328 2012-12-19] (Intel Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R2 SoilIO; C:\Windows\System32\Drivers\SoilIO.sys [17912 2010-08-19] ()
R3 soilkbc; C:\Windows\System32\Drivers\soilkbc.sys [13816 2009-12-03] (Systems Internals)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-12-22 14:24 - 2017-12-22 14:24 - 002392064 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2017-12-22 14:24 - 2017-12-22 14:24 - 001752576 _____ (Farbar) C:\Users\pc\Desktop\FRST.exe
2017-12-22 14:24 - 2017-12-22 14:24 - 000010868 _____ C:\Users\pc\Desktop\FRST.txt
2017-12-22 14:24 - 2017-12-22 14:24 - 000000000 ____D C:\FRST
2017-12-22 14:23 - 2017-12-22 14:23 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64 (2).msu
2017-12-22 14:16 - 2017-03-14 14:23 - 000023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-12-22 14:15 - 2017-12-22 14:15 - 000013187 _____ C:\Users\pc\Desktop\api-ms-win-crt-runtime-l1-1-0.zip
2017-12-22 14:15 - 2017-12-22 14:15 - 000000000 ____D C:\Users\pc\Desktop\api-ms-win-crt-runtime-l1-1-0
2017-12-22 13:53 - 2009-11-25 11:47 - 001942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 001130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-12-22 13:53 - 2009-11-25 11:47 - 000297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2017-12-22 13:53 - 2009-11-25 11:47 - 000109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-12-22 13:43 - 2017-12-22 13:43 - 001005568 _____ (Microsoft Corporation) C:\Users\pc\Desktop\dotNetFx45_Full_setup.exe
2017-12-22 13:37 - 2017-12-22 13:38 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64 (1).msu
2017-12-22 13:28 - 2017-12-22 13:28 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64.msu
2017-12-22 13:24 - 2017-12-22 13:24 - 000001341 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk
2017-12-22 13:23 - 2017-12-22 13:24 - 000000000 ____D C:\Users\pc\Desktop\geodeo_v108
2017-12-22 13:20 - 2017-12-22 13:23 - 017170374 _____ C:\Users\pc\Desktop\geodeo_v108.rar
2017-12-22 13:15 - 2017-12-22 13:15 - 000001530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-12-22 12:55 - 2017-12-22 12:55 - 000000000 ____D C:\Users\pc\Desktop\app-smart-descontos
2017-12-22 12:54 - 2017-12-22 12:55 - 018564141 _____ C:\Users\pc\Desktop\bazaar_v102.rar
2017-12-22 12:48 - 2017-12-22 12:49 - 000000000 ____D C:\Users\pc\Desktop\Materia Promocional
2017-12-22 12:44 - 2017-12-22 12:44 - 000000000 ____D C:\Users\pc\Desktop\AtvdR W7 By PH Downs
2017-12-22 11:15 - 2017-12-22 11:29 - 000000000 ____D C:\Users\pc\Downloads\Adobe Illustrator CC 17.0.0 Final Multilanguage [ChingLiu]
2017-12-21 23:45 - 2017-12-21 23:45 - 000020256 _____ C:\Users\pc\Desktop\woocommerce-google-analytics-integration.1.4.3.zip
2017-12-21 23:40 - 2017-12-21 23:40 - 000067900 _____ C:\Users\pc\Desktop\facebook-for-woocommerce.zip
2017-12-21 16:52 - 2017-12-21 16:52 - 000183484 _____ C:\Users\pc\Documents\logo-smart.psd
2017-12-21 16:36 - 2017-12-21 16:36 - 000000000 ____D C:\Users\pc\Desktop\Creative-cyber-monday-badges
2017-12-21 14:32 - 2017-12-21 15:52 - 000000000 ____D C:\Users\pc\Downloads\Illustrator.CC.2017
2017-12-21 14:12 - 2017-12-21 14:12 - 000751208 _____ C:\Users\pc\Desktop\Creative-cyber-monday-badges.zip
2017-12-17 09:53 - 2017-12-17 11:40 - 000000000 ____D C:\Users\pc\Desktop\redmi-5a
2017-12-17 09:04 - 2017-11-30 22:06 - 000000000 ____D C:\Users\pc\Desktop\redmi-5
2017-12-17 01:12 - 2017-11-15 20:17 - 000000000 ____D C:\Users\pc\Desktop\mi-5x
2017-12-17 00:20 - 2017-12-14 19:44 - 000000000 ____D C:\Users\pc\Desktop\mi-band2
2017-12-16 15:13 - 2017-12-16 15:13 - 000002348 _____ C:\Users\pc\web-fonts-control.css
2017-12-16 15:08 - 2017-12-21 18:19 - 000000000 ____D C:\Users\pc\AppData\Roaming\FileZilla
2017-12-16 15:08 - 2017-12-18 00:05 - 000000000 ____D C:\Users\pc\AppData\Local\FileZilla
2017-12-16 15:08 - 2017-12-16 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-12-16 15:08 - 2017-12-16 15:08 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2017-12-16 00:03 - 2017-12-16 00:43 - 000000000 ____D C:\Users\pc\AppData\Local\Sublime Text 3
2017-12-16 00:03 - 2017-12-16 00:03 - 000000886 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2017-12-16 00:03 - 2017-12-16 00:03 - 000000000 ____D C:\Users\pc\AppData\Roaming\Sublime Text 3
2017-12-16 00:03 - 2017-12-16 00:03 - 000000000 ____D C:\Program Files\Sublime Text 3
2017-12-14 13:19 - 2017-12-14 13:19 - 038639142 _____ C:\Users\pc\Documents\GCam5.1.014-Arnova8G2-v10.1.apk
2017-12-14 12:46 - 2017-12-14 12:46 - 002351011 _____ C:\Users\pc\Documents\com.google.android.apps.nexuslauncher_8.1.0-4429924-401_minAPI21(nodpi)_apkmirror.com.apk
2017-12-14 12:40 - 2017-12-14 12:40 - 029103779 _____ C:\Users\pc\Documents\com.google.android.inputmethod.latin_6.8.8.178714143-release-armeabi-v7a-26680809_minAPI17(armeabi-v7a)(nodpi)_apkmirror.com.apk
2017-12-13 13:34 - 2017-12-13 13:34 - 000079345 _____ C:\Users\pc\Documents\You-Can-Now-Preorder-Apps-on-Apple-App-Store.jpeg
2017-12-13 01:50 - 2017-12-13 01:50 - 000949721 _____ C:\Users\pc\Documents\24794533_1851676495123948_3689072123499773952_n.mp4
2017-12-13 01:43 - 2017-12-13 01:43 - 000000000 ____D C:\Users\pc\Documents\Engine_v1.8]
2017-12-13 01:41 - 2017-12-13 01:41 - 040782865 _____ C:\Users\pc\Documents\Engine_v1.8].rar
2017-12-08 13:45 - 2017-12-08 13:45 - 000324427 _____ C:\Users\pc\Documents\MOSAICO-IURD-DOMINGO.psd
2017-12-07 19:16 - 2017-12-07 19:16 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Temp
2017-12-06 09:12 - 2017-12-06 09:14 - 000000000 ____D C:\7234eabd35e8ebce0ef4ca
2017-11-27 21:36 - 2017-11-27 21:36 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
2017-11-27 01:16 - 2017-11-27 01:16 - 003946831 _____ C:\Users\pc\Documents\Novo modelo post.psd
2017-11-26 15:58 - 2017-11-26 15:58 - 000000000 ____D C:\Users\pc\AppData\Roaming\Poedit
2017-11-26 15:56 - 2017-11-26 15:56 - 000001033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poedit.lnk
2017-11-26 15:56 - 2017-11-26 15:56 - 000000000 ____D C:\Program Files (x86)\Poedit
2017-11-23 23:12 - 2017-12-22 13:57 - 001601574 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-11-23 23:12 - 2017-11-23 23:12 - 000000000 ____D C:\Users\pc\AppData\Roaming\Intel Corporation
2017-11-23 23:06 - 2017-11-23 23:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OSD
2017-11-23 23:05 - 2017-11-23 23:05 - 000003932 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2017-11-23 23:05 - 2017-11-23 23:05 - 000003684 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2017-11-23 23:05 - 2017-11-23 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPM
2017-11-23 23:05 - 2012-10-19 10:42 - 000008192 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2017-11-23 23:04 - 2017-11-23 23:04 - 000000000 ____D C:\Program Files\Intel
2017-11-23 23:03 - 2017-11-23 23:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-11-23 23:03 - 2012-09-01 18:01 - 000647736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2017-11-23 23:03 - 2012-09-01 18:01 - 000028216 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2017-11-23 23:02 - 2017-11-23 23:06 - 019493888 _____ (OEM) C:\Users\Todos os Usuários\E1010.tmp
2017-11-23 23:02 - 2017-11-23 23:06 - 019493888 _____ (OEM) C:\ProgramData\E1010.tmp
2017-11-23 23:02 - 2017-11-23 23:06 - 000000000 ____D C:\Program Files (x86)\OEM
2017-11-23 23:02 - 2017-11-23 23:02 - 000002607 _____ C:\Users\Public\Desktop\ControlAP II.lnk
2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iBrightness
2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Control AP II
2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\Program Files\OEM
2017-11-23 23:01 - 2017-11-23 23:01 - 000507904 _____ C:\Users\Todos os Usuários\Dri10.tmp
2017-11-23 23:01 - 2017-11-23 23:01 - 000507904 _____ C:\ProgramData\Dri10.tmp
2017-11-23 23:01 - 2012-07-12 18:56 - 000062784 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2017-11-23 22:58 - 2017-11-23 22:58 - 000000000 ____D C:\Windows\SysWOW64\SDA
2017-11-23 22:57 - 2012-07-31 11:05 - 000175928 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
2017-11-23 22:57 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
2017-11-23 22:57 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
2017-11-23 01:05 - 2017-11-23 01:05 - 000653617 _____ C:\Users\pc\Documents\Modelo Post.psd
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-12-22 14:19 - 2009-07-14 02:45 - 000014208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-22 14:19 - 2009-07-14 02:45 - 000014208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-22 14:05 - 2009-07-29 13:49 - 000706108 _____ C:\Windows\system32\prfh0416.dat
2017-12-22 14:05 - 2009-07-29 13:49 - 000147446 _____ C:\Windows\system32\prfc0416.dat
2017-12-22 14:05 - 2009-07-14 03:13 - 001636956 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-22 14:05 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\inf
2017-12-22 14:00 - 2009-07-14 03:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-22 13:47 - 2017-11-17 13:59 - 000000382 _____ C:\Windows\Tasks\update-S-1-5-21-1717954071-391292689-155083303-1000.job
2017-12-22 13:24 - 2017-11-10 06:54 - 000000000 ____D C:\Program Files\Common Files\Adobe
2017-12-22 13:21 - 2017-11-10 06:56 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-12-22 13:21 - 2017-11-10 06:56 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-22 13:17 - 2017-11-10 06:55 - 000000000 ____D C:\Program Files\Adobe
2017-12-22 13:17 - 2017-11-10 00:32 - 000000000 ____D C:\Users\pc\AppData\Roaming\Adobe
2017-12-22 12:45 - 2017-11-10 01:08 - 000000000 ____D C:\Users\pc\AppData\Roaming\uTorrent
2017-12-22 12:14 - 2017-11-10 10:43 - 000001456 _____ C:\Users\pc\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-12-22 11:14 - 2017-11-10 01:10 - 000000000 ____D C:\Users\pc\AppData\LocalLow\uTorrent
2017-12-21 22:37 - 2017-11-17 13:59 - 000000382 _____ C:\Windows\Tasks\update-sys.job
2017-12-21 22:14 - 2017-11-17 14:14 - 000000000 ____D C:\Users\pc\Documents\Lightshot
2017-12-21 14:07 - 2009-07-14 02:45 - 006188808 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-18 16:01 - 2017-11-10 01:08 - 000406472 _____ C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-18 14:19 - 2017-11-20 13:23 - 000000989 _____ C:\Users\pc\Desktop\Adobe Premiere Pro CC.lnk
2017-12-16 15:13 - 2017-11-09 16:52 - 000000000 ____D C:\Users\pc
2017-12-14 00:43 - 2017-11-10 00:28 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 00:43 - 2017-11-10 00:28 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-05 07:41 - 2017-11-10 00:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-04 20:15 - 2017-11-10 00:33 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla
2017-12-04 19:09 - 2017-11-10 00:33 - 000000000 ____D C:\Program Files\Firefox Developer Edition
2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\Users\Todos os Usuários\Intel
2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\ProgramData\Intel
2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\Program Files (x86)\Intel
2017-11-23 23:03 - 2017-11-09 23:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-23 23:01 - 2017-11-10 00:30 - 000000000 ____D C:\temp
2017-11-23 22:58 - 2017-11-10 00:31 - 000000000 ____D C:\Program Files (x86)\JMicron
==================== Arquivos na raiz de alguns diretórios =======
2017-11-10 10:43 - 2017-12-22 12:14 - 000001456 _____ () C:\Users\pc\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-11-13 16:02 - 2017-11-13 16:02 - 000000038 _____ () C:\Users\pc\AppData\Local\cloudready_installer_uuid
2017-11-17 13:59 - 2017-11-17 13:59 - 000000003 _____ () C:\Users\pc\AppData\Local\updater.log
2017-11-17 13:59 - 2017-11-17 13:59 - 000000425 _____ () C:\Users\pc\AppData\Local\UserProducts.xml
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
ATENÇÃO: ==> Não foi possível acessar BCD.
LastRegBack: 2017-12-09 11:24
==================== Fim de FRST.txt ============================
Executado por pc (administrador) em PC-PC (22-12-2017 14:24:36)
Executando a partir de C:\Users\pc\Desktop
Perfis Carregados: pc (Perfis Disponíveis: pc)
Platform: Windows 7 Home Premium (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\OEM\ControlAP II 1.3.5\ControlAP II.exe
(OEM) C:\Program Files (x86)\OEM\iBrightness 1.0.1\iBrightness.exe
() C:\Program Files (x86)\OEM\AIO IPM 1.9.4\IPM.exe
() C:\Program Files (x86)\OEM\OSD 1.15.11\SunflowerOSD.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1717954071-391292689-155083303-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-06] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ControlAP II.lnk [2017-11-23]
ShortcutTarget: ControlAP II.lnk -> C:\Windows\Installer\{A75A2559-40B0-4C25-A7ED-19D593F2A6E9}\_204AFFB5E8C01B0AB2204A.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iBrightness.lnk [2017-11-23]
ShortcutTarget: iBrightness.lnk -> C:\Windows\Installer\{B351A468-173F-43D8-B6E6-5A6E9A0125A8}\_5CA7EB0450877D7F6842BB.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\IPM.lnk [2017-11-23]
ShortcutTarget: IPM.lnk -> C:\Windows\Installer\{AADF4228-0772-4D43-92EB-B245E3A17B00}\_10500911F14C3D8BD0CDF9.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OSD.lnk [2017-11-23]
ShortcutTarget: OSD.lnk -> C:\Windows\Installer\{5A9C96FE-1376-45E1-8556-C81255F0B5A7}\_5BE33937B1D2F3478A2BFD.exe ()
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{DA56B1F8-0296-4355-A471-62556B22C463}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-1717954071-391292689-155083303-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: tlwxyui8.default
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\wtq8ga74.dev-edition-default [2017-12-04]
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\tlwxyui8.default [2017-11-10]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR NewTab: Default -> Active:"chrome-extension://nkhjnpgcnmdpeikbeegmibjcfjpamjnp/home.html"
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2017-12-22]
CHR Extension: (Apresentações) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-10]
CHR Extension: (Documentos) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-10]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-10]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-10]
CHR Extension: (Honey) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2017-12-21]
CHR Extension: (Listen Video - Youtube™ Music Player) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbiapabbjlfcbfoedilflhnifandagoh [2017-11-27]
CHR Extension: (Planilhas) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-10]
CHR Extension: (Documentos Google off-line) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-10]
CHR Extension: (DotVPN — a better way to VPN) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2017-12-21]
CHR Extension: (Piktab) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkhjnpgcnmdpeikbeegmibjcfjpamjnp [2017-11-10]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-10]
CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-10]
CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-15]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129488 2012-12-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165328 2012-12-19] (Intel Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R2 SoilIO; C:\Windows\System32\Drivers\SoilIO.sys [17912 2010-08-19] ()
R3 soilkbc; C:\Windows\System32\Drivers\soilkbc.sys [13816 2009-12-03] (Systems Internals)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-12-22 14:24 - 2017-12-22 14:24 - 002392064 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2017-12-22 14:24 - 2017-12-22 14:24 - 001752576 _____ (Farbar) C:\Users\pc\Desktop\FRST.exe
2017-12-22 14:24 - 2017-12-22 14:24 - 000010868 _____ C:\Users\pc\Desktop\FRST.txt
2017-12-22 14:24 - 2017-12-22 14:24 - 000000000 ____D C:\FRST
2017-12-22 14:23 - 2017-12-22 14:23 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64 (2).msu
2017-12-22 14:16 - 2017-03-14 14:23 - 000023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-12-22 14:15 - 2017-12-22 14:15 - 000013187 _____ C:\Users\pc\Desktop\api-ms-win-crt-runtime-l1-1-0.zip
2017-12-22 14:15 - 2017-12-22 14:15 - 000000000 ____D C:\Users\pc\Desktop\api-ms-win-crt-runtime-l1-1-0
2017-12-22 13:53 - 2009-11-25 11:47 - 001942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 001130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-12-22 13:53 - 2009-11-25 11:47 - 000297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2017-12-22 13:53 - 2009-11-25 11:47 - 000109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2017-12-22 13:53 - 2009-11-25 11:47 - 000048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-12-22 13:43 - 2017-12-22 13:43 - 001005568 _____ (Microsoft Corporation) C:\Users\pc\Desktop\dotNetFx45_Full_setup.exe
2017-12-22 13:37 - 2017-12-22 13:38 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64 (1).msu
2017-12-22 13:28 - 2017-12-22 13:28 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64.msu
2017-12-22 13:24 - 2017-12-22 13:24 - 000001341 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk
2017-12-22 13:23 - 2017-12-22 13:24 - 000000000 ____D C:\Users\pc\Desktop\geodeo_v108
2017-12-22 13:20 - 2017-12-22 13:23 - 017170374 _____ C:\Users\pc\Desktop\geodeo_v108.rar
2017-12-22 13:15 - 2017-12-22 13:15 - 000001530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-12-22 12:55 - 2017-12-22 12:55 - 000000000 ____D C:\Users\pc\Desktop\app-smart-descontos
2017-12-22 12:54 - 2017-12-22 12:55 - 018564141 _____ C:\Users\pc\Desktop\bazaar_v102.rar
2017-12-22 12:48 - 2017-12-22 12:49 - 000000000 ____D C:\Users\pc\Desktop\Materia Promocional
2017-12-22 12:44 - 2017-12-22 12:44 - 000000000 ____D C:\Users\pc\Desktop\AtvdR W7 By PH Downs
2017-12-22 11:15 - 2017-12-22 11:29 - 000000000 ____D C:\Users\pc\Downloads\Adobe Illustrator CC 17.0.0 Final Multilanguage [ChingLiu]
2017-12-21 23:45 - 2017-12-21 23:45 - 000020256 _____ C:\Users\pc\Desktop\woocommerce-google-analytics-integration.1.4.3.zip
2017-12-21 23:40 - 2017-12-21 23:40 - 000067900 _____ C:\Users\pc\Desktop\facebook-for-woocommerce.zip
2017-12-21 16:52 - 2017-12-21 16:52 - 000183484 _____ C:\Users\pc\Documents\logo-smart.psd
2017-12-21 16:36 - 2017-12-21 16:36 - 000000000 ____D C:\Users\pc\Desktop\Creative-cyber-monday-badges
2017-12-21 14:32 - 2017-12-21 15:52 - 000000000 ____D C:\Users\pc\Downloads\Illustrator.CC.2017
2017-12-21 14:12 - 2017-12-21 14:12 - 000751208 _____ C:\Users\pc\Desktop\Creative-cyber-monday-badges.zip
2017-12-17 09:53 - 2017-12-17 11:40 - 000000000 ____D C:\Users\pc\Desktop\redmi-5a
2017-12-17 09:04 - 2017-11-30 22:06 - 000000000 ____D C:\Users\pc\Desktop\redmi-5
2017-12-17 01:12 - 2017-11-15 20:17 - 000000000 ____D C:\Users\pc\Desktop\mi-5x
2017-12-17 00:20 - 2017-12-14 19:44 - 000000000 ____D C:\Users\pc\Desktop\mi-band2
2017-12-16 15:13 - 2017-12-16 15:13 - 000002348 _____ C:\Users\pc\web-fonts-control.css
2017-12-16 15:08 - 2017-12-21 18:19 - 000000000 ____D C:\Users\pc\AppData\Roaming\FileZilla
2017-12-16 15:08 - 2017-12-18 00:05 - 000000000 ____D C:\Users\pc\AppData\Local\FileZilla
2017-12-16 15:08 - 2017-12-16 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-12-16 15:08 - 2017-12-16 15:08 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2017-12-16 00:03 - 2017-12-16 00:43 - 000000000 ____D C:\Users\pc\AppData\Local\Sublime Text 3
2017-12-16 00:03 - 2017-12-16 00:03 - 000000886 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2017-12-16 00:03 - 2017-12-16 00:03 - 000000000 ____D C:\Users\pc\AppData\Roaming\Sublime Text 3
2017-12-16 00:03 - 2017-12-16 00:03 - 000000000 ____D C:\Program Files\Sublime Text 3
2017-12-14 13:19 - 2017-12-14 13:19 - 038639142 _____ C:\Users\pc\Documents\GCam5.1.014-Arnova8G2-v10.1.apk
2017-12-14 12:46 - 2017-12-14 12:46 - 002351011 _____ C:\Users\pc\Documents\com.google.android.apps.nexuslauncher_8.1.0-4429924-401_minAPI21(nodpi)_apkmirror.com.apk
2017-12-14 12:40 - 2017-12-14 12:40 - 029103779 _____ C:\Users\pc\Documents\com.google.android.inputmethod.latin_6.8.8.178714143-release-armeabi-v7a-26680809_minAPI17(armeabi-v7a)(nodpi)_apkmirror.com.apk
2017-12-13 13:34 - 2017-12-13 13:34 - 000079345 _____ C:\Users\pc\Documents\You-Can-Now-Preorder-Apps-on-Apple-App-Store.jpeg
2017-12-13 01:50 - 2017-12-13 01:50 - 000949721 _____ C:\Users\pc\Documents\24794533_1851676495123948_3689072123499773952_n.mp4
2017-12-13 01:43 - 2017-12-13 01:43 - 000000000 ____D C:\Users\pc\Documents\Engine_v1.8]
2017-12-13 01:41 - 2017-12-13 01:41 - 040782865 _____ C:\Users\pc\Documents\Engine_v1.8].rar
2017-12-08 13:45 - 2017-12-08 13:45 - 000324427 _____ C:\Users\pc\Documents\MOSAICO-IURD-DOMINGO.psd
2017-12-07 19:16 - 2017-12-07 19:16 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Temp
2017-12-06 09:12 - 2017-12-06 09:14 - 000000000 ____D C:\7234eabd35e8ebce0ef4ca
2017-11-27 21:36 - 2017-11-27 21:36 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
2017-11-27 01:16 - 2017-11-27 01:16 - 003946831 _____ C:\Users\pc\Documents\Novo modelo post.psd
2017-11-26 15:58 - 2017-11-26 15:58 - 000000000 ____D C:\Users\pc\AppData\Roaming\Poedit
2017-11-26 15:56 - 2017-11-26 15:56 - 000001033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poedit.lnk
2017-11-26 15:56 - 2017-11-26 15:56 - 000000000 ____D C:\Program Files (x86)\Poedit
2017-11-23 23:12 - 2017-12-22 13:57 - 001601574 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-11-23 23:12 - 2017-11-23 23:12 - 000000000 ____D C:\Users\pc\AppData\Roaming\Intel Corporation
2017-11-23 23:06 - 2017-11-23 23:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OSD
2017-11-23 23:05 - 2017-11-23 23:05 - 000003932 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2017-11-23 23:05 - 2017-11-23 23:05 - 000003684 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2017-11-23 23:05 - 2017-11-23 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPM
2017-11-23 23:05 - 2012-10-19 10:42 - 000008192 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2017-11-23 23:04 - 2017-11-23 23:04 - 000000000 ____D C:\Program Files\Intel
2017-11-23 23:03 - 2017-11-23 23:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-11-23 23:03 - 2012-09-01 18:01 - 000647736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2017-11-23 23:03 - 2012-09-01 18:01 - 000028216 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2017-11-23 23:02 - 2017-11-23 23:06 - 019493888 _____ (OEM) C:\Users\Todos os Usuários\E1010.tmp
2017-11-23 23:02 - 2017-11-23 23:06 - 019493888 _____ (OEM) C:\ProgramData\E1010.tmp
2017-11-23 23:02 - 2017-11-23 23:06 - 000000000 ____D C:\Program Files (x86)\OEM
2017-11-23 23:02 - 2017-11-23 23:02 - 000002607 _____ C:\Users\Public\Desktop\ControlAP II.lnk
2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iBrightness
2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Control AP II
2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\Program Files\OEM
2017-11-23 23:01 - 2017-11-23 23:01 - 000507904 _____ C:\Users\Todos os Usuários\Dri10.tmp
2017-11-23 23:01 - 2017-11-23 23:01 - 000507904 _____ C:\ProgramData\Dri10.tmp
2017-11-23 23:01 - 2012-07-12 18:56 - 000062784 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2017-11-23 22:58 - 2017-11-23 22:58 - 000000000 ____D C:\Windows\SysWOW64\SDA
2017-11-23 22:57 - 2012-07-31 11:05 - 000175928 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
2017-11-23 22:57 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
2017-11-23 22:57 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
2017-11-23 01:05 - 2017-11-23 01:05 - 000653617 _____ C:\Users\pc\Documents\Modelo Post.psd
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-12-22 14:19 - 2009-07-14 02:45 - 000014208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-22 14:19 - 2009-07-14 02:45 - 000014208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-22 14:05 - 2009-07-29 13:49 - 000706108 _____ C:\Windows\system32\prfh0416.dat
2017-12-22 14:05 - 2009-07-29 13:49 - 000147446 _____ C:\Windows\system32\prfc0416.dat
2017-12-22 14:05 - 2009-07-14 03:13 - 001636956 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-22 14:05 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\inf
2017-12-22 14:00 - 2009-07-14 03:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-22 13:47 - 2017-11-17 13:59 - 000000382 _____ C:\Windows\Tasks\update-S-1-5-21-1717954071-391292689-155083303-1000.job
2017-12-22 13:24 - 2017-11-10 06:54 - 000000000 ____D C:\Program Files\Common Files\Adobe
2017-12-22 13:21 - 2017-11-10 06:56 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-12-22 13:21 - 2017-11-10 06:56 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-22 13:17 - 2017-11-10 06:55 - 000000000 ____D C:\Program Files\Adobe
2017-12-22 13:17 - 2017-11-10 00:32 - 000000000 ____D C:\Users\pc\AppData\Roaming\Adobe
2017-12-22 12:45 - 2017-11-10 01:08 - 000000000 ____D C:\Users\pc\AppData\Roaming\uTorrent
2017-12-22 12:14 - 2017-11-10 10:43 - 000001456 _____ C:\Users\pc\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-12-22 11:14 - 2017-11-10 01:10 - 000000000 ____D C:\Users\pc\AppData\LocalLow\uTorrent
2017-12-21 22:37 - 2017-11-17 13:59 - 000000382 _____ C:\Windows\Tasks\update-sys.job
2017-12-21 22:14 - 2017-11-17 14:14 - 000000000 ____D C:\Users\pc\Documents\Lightshot
2017-12-21 14:07 - 2009-07-14 02:45 - 006188808 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-18 16:01 - 2017-11-10 01:08 - 000406472 _____ C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-18 14:19 - 2017-11-20 13:23 - 000000989 _____ C:\Users\pc\Desktop\Adobe Premiere Pro CC.lnk
2017-12-16 15:13 - 2017-11-09 16:52 - 000000000 ____D C:\Users\pc
2017-12-14 00:43 - 2017-11-10 00:28 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 00:43 - 2017-11-10 00:28 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-05 07:41 - 2017-11-10 00:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-04 20:15 - 2017-11-10 00:33 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla
2017-12-04 19:09 - 2017-11-10 00:33 - 000000000 ____D C:\Program Files\Firefox Developer Edition
2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\Users\Todos os Usuários\Intel
2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\ProgramData\Intel
2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\Program Files (x86)\Intel
2017-11-23 23:03 - 2017-11-09 23:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-23 23:01 - 2017-11-10 00:30 - 000000000 ____D C:\temp
2017-11-23 22:58 - 2017-11-10 00:31 - 000000000 ____D C:\Program Files (x86)\JMicron
==================== Arquivos na raiz de alguns diretórios =======
2017-11-10 10:43 - 2017-12-22 12:14 - 000001456 _____ () C:\Users\pc\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-11-13 16:02 - 2017-11-13 16:02 - 000000038 _____ () C:\Users\pc\AppData\Local\cloudready_installer_uuid
2017-11-17 13:59 - 2017-11-17 13:59 - 000000003 _____ () C:\Users\pc\AppData\Local\updater.log
2017-11-17 13:59 - 2017-11-17 13:59 - 000000425 _____ () C:\Users\pc\AppData\Local\UserProducts.xml
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
ATENÇÃO: ==> Não foi possível acessar BCD.
LastRegBack: 2017-12-09 11:24
==================== Fim de FRST.txt ============================