cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 02.01.2018
Executado por Cliente (administrador) em CLIENTE-PC (03-01-2018 15:21:52)
Executando a partir de C:\Users\Cliente\Downloads
Perfis Carregados: Cliente (Perfis Disponíveis: Cliente)
Platform: Microsoft Windows 7 Home Basic (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Baidu, Inc.) C:\Program Files\Baidu Security\Baidu Antivirus\BavSvc.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Baidu, Inc.) C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe
(BitTorrent Inc.) C:\Users\Cliente\AppData\Roaming\uTorrent\uTorrent.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Baidu, Inc.) C:\Program Files\Baidu Security\Baidu Antivirus\BHipsSvc.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFenceService.exe
(BitTorrent Inc.) C:\Users\Cliente\AppData\Roaming\uTorrent\updates\3.5.1_44332\utorrentie.exe
(BitTorrent Inc.) C:\Users\Cliente\AppData\Roaming\uTorrent\updates\3.5.1_44332\utorrentie.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
() C:\Program Files\WeatherTool\2.0.1.5000183\WeatherService.exe
(ShenZhen Enode Techology co,.Ltd) C:\Program Files\WeatherTool\2.0.1.5000183\weather_lite.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFence.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
() C:\Program Files\ByteFence\rsLggr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2017-07-20] (AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM\...\Run: [Baidu Antivirus] => C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe [1856032 2015-03-19] (Baidu, Inc.)
HKU\S-1-5-21-4234568225-3134326288-983330367-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5282584 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-4234568225-3134326288-983330367-1000\...\Run: [uTorrent] => C:\Users\Cliente\AppData\Roaming\uTorrent\uTorrent.exe [1981624 2017-12-28] (BitTorrent Inc.)
HKU\S-1-5-21-4234568225-3134326288-983330367-1000\...\MountPoints2: {99fa12c8-84e7-11e7-8fed-002511dace88} - G:\autorun.exe

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{FC058369-7997-4259-B1A4-F3B1C49BA98E}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp:www.fidonav.com
HKU\S-1-5-21-4234568225-3134326288-983330367-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp:www.fidonav.com
HKU\S-1-5-21-4234568225-3134326288-983330367-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-4234568225-3134326288-983330367-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-20] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 47i2tw1r.default
FF ProfilePath: C:\Users\Cliente\AppData\Roaming\Mozilla\Firefox\Profiles\47i2tw1r.default [2018-01-03]
FF Homepage: Mozilla\Firefox\Profiles\47i2tw1r.default -> hxxp:www.fidonav.com
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (avast! Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-12-19] [Legacy] [não assinado]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxp:www.fidonav.com
CHR StartupUrls: Default -> "hxxp://www.google.com.br/"
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default [2018-01-03]
CHR Extension: (Avast Online Security) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-12]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2017-07-20]
CHR HKLM\...\Chrome\Extension: [ijahobfejgeblmkpcmgpelfibgnnjpil] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4234568225-3134326288-983330367-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ijahobfejgeblmkpcmgpelfibgnnjpil] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2017-07-20] (AVAST Software)
R2 BavSvc; C:\Program Files\Baidu Security\Baidu Antivirus\BavSvc.exe [2317544 2015-03-19] (Baidu, Inc.)
R2 BHipsSvc; C:\Program Files\Baidu Security\Baidu Antivirus\BHipsSvc.exe [428368 2015-03-19] (Baidu, Inc.)
R2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [145888 2017-07-20] (Byte Technologies LLC)
R2 PSI_SVC_2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [302920 2017-08-22] ()
R2 WeatherLiteService; C:\Program Files\WeatherTool\2.0.1.5000183\WeatherService.exe [149136 2017-03-31] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
S3 BdSandboxSrv; C:\Program Files\Baidu Security\Baidu Antivirus\BdSandboxSrv.exe [X]

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2017-07-20] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2017-07-20] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2017-07-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2017-07-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2017-07-20] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2017-07-20] ()
R3 Atc002; C:\Windows\System32\DRIVERS\l260x86.sys [29184 2009-07-13] (Atheros Communications, Inc.)
U3 BdApiUtil; C:\Program Files\Baidu Security\Baidu Antivirus\BdApiUtil.sys [101496 2015-03-19] (Baidu, Inc.)
U3 BdCameraProtect; C:\Program Files\Baidu Security\Baidu Antivirus\BdCameraProtect.sys [21432 2015-03-19] (Baidu, Inc.)
S3 BdSandbox; C:\Windows\System32\drivers\BdSandbox.sys [186360 2015-03-19] (Baidu, Inc.)
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [49144 2015-03-19] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [29688 2015-03-19] (Baidu, Inc.)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [73368 2015-03-19] (Baidu, Inc.)
R3 BHipsEx; C:\Windows\System32\drivers\BHipsEx.sys [137208 2015-03-19] (Baidu, Inc.)
R1 Bnbase; C:\Windows\System32\drivers\bnbasex.sys [70328 2015-03-19] (Baidu, Inc.)
R1 Bndef; C:\Windows\System32\drivers\bndef.sys [459800 2015-03-19] (Baidu, Inc.)
R3 BNmon; C:\Program Files\Baidu Security\Baidu Antivirus\BNmon.sys [57848 2015-03-19] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [185336 2015-03-19] (Baidu, Inc.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13368 2017-07-20] (SlimWare Utilities, Inc.)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-01-03 15:21 - 2018-01-03 15:22 - 000012397 _____ C:\Users\Cliente\Downloads\FRST.txt
2018-01-03 15:21 - 2018-01-03 15:21 - 000000000 ____D C:\FRST
2018-01-03 15:18 - 2018-01-03 15:20 - 001753600 _____ (Farbar) C:\Users\Cliente\Downloads\FRST.exe
2018-01-03 15:10 - 2016-10-12 10:09 - 000001983 _____ C:\Windows\system32\README.txt
2018-01-03 15:10 - 2016-09-30 11:50 - 000023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-01-03 15:09 - 2016-10-12 10:09 - 000001983 _____ C:\Users\Cliente\Desktop\README.txt
2018-01-03 15:09 - 2016-09-30 11:50 - 000023232 _____ (Microsoft Corporation) C:\Users\Cliente\Desktop\api-ms-win-crt-runtime-l1-1-0.dll
2018-01-03 15:08 - 2018-01-03 15:08 - 000013250 _____ C:\Users\Cliente\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2018-01-03 15:06 - 2018-01-03 15:06 - 000047609 _____ C:\Users\Cliente\Downloads\vcruntime140.zip
2018-01-03 15:00 - 2018-01-03 15:09 - 000000000 ____D C:\Users\Cliente\Desktop\The Binding of Isaac Rebirth
2018-01-02 23:53 - 2018-01-02 23:53 - 000000000 __RSH C:\MSDOS.SYS
2018-01-02 23:53 - 2018-01-02 23:53 - 000000000 __RSH C:\IO.SYS
2018-01-02 23:21 - 2018-01-02 23:21 - 000001119 _____ C:\Users\Cliente\Desktop\Call Of Duty.lnk
2018-01-02 23:21 - 2018-01-02 23:21 - 000000000 ____D C:\Program Files\Activision
2018-01-02 23:16 - 2014-03-01 14:55 - 000000000 ____D C:\Users\Cliente\Desktop\Call Of Duty 2003 - Highly Compressed - By AllTypeHacks
2018-01-02 21:02 - 2018-01-03 10:59 - 000000000 ____D C:\Users\Cliente\Downloads\Portal v1.0.0.0
2018-01-02 20:54 - 2018-01-03 10:59 - 2535143785 _____ C:\Users\Cliente\Downloads\Combatarms_VER_BR_1709.01.exe
2018-01-02 20:54 - 2018-01-03 10:58 - 000000000 ____D C:\Users\Cliente\Downloads\3DMGAME-The.Binding.of.Isaac.Afterbirth.Plus.With.Update.21.Cracked-3DM
2018-01-02 20:53 - 2018-01-02 20:53 - 000012821 _____ C:\Users\Cliente\Downloads\Combatarms_VER_BR_1709.01.exe.torrent
2018-01-02 20:35 - 2018-01-02 23:11 - 441901257 _____ C:\Users\Cliente\Downloads\ATH - Call Of Duty 2003 - Highly Compressed.rar
2018-01-02 15:25 - 2018-01-02 18:57 - 000000000 ____D C:\Users\Cliente\Downloads\Star Wars - O Despertar da Força 2016 WWW.BLUDV.COM
2018-01-01 19:41 - 2018-01-01 19:41 - 000000000 ____D C:\Users\Todos os Usuários\Baidu Security
2018-01-01 19:41 - 2018-01-01 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Antivirus
2018-01-01 19:41 - 2018-01-01 19:41 - 000000000 ____D C:\ProgramData\Baidu Security
2018-01-01 19:41 - 2018-01-01 19:41 - 000000000 ____D C:\Program Files\Baidu Security
2018-01-01 19:41 - 2015-03-19 01:03 - 000459800 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\bndef.sys
2018-01-01 19:41 - 2015-03-19 01:03 - 000186360 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\BdSandbox.sys
2018-01-01 19:41 - 2015-03-19 01:03 - 000137208 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\BHipsEx.sys
2018-01-01 19:41 - 2015-03-19 01:03 - 000070328 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\bnbasex.sys
2018-01-01 19:41 - 2015-03-19 01:02 - 000185336 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bprotect.sys
2018-01-01 19:41 - 2015-03-19 01:02 - 000073368 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bhbase.sys
2018-01-01 19:41 - 2015-03-19 01:02 - 000049144 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2018-01-01 19:41 - 2015-03-19 01:02 - 000029688 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2018-01-01 19:35 - 2018-01-01 19:41 - 000000000 ____D C:\Users\Todos os Usuários\Baidu
2018-01-01 19:35 - 2018-01-01 19:41 - 000000000 ____D C:\ProgramData\Baidu
2018-01-01 19:35 - 2018-01-01 19:35 - 000000000 ____D C:\Users\Public\Documents\Baidu
2018-01-01 19:35 - 2018-01-01 19:35 - 000000000 ____D C:\FFOutput
2018-01-01 19:34 - 2018-01-01 19:34 - 000001156 _____ C:\Users\Cliente\Desktop\Format Factory.lnk
2018-01-01 19:34 - 2018-01-01 19:34 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2018-01-01 19:34 - 2018-01-01 19:34 - 000000000 ____D C:\Program Files\FreeTime
2018-01-01 19:18 - 2018-01-01 19:18 - 000000000 ____D C:\Users\Cliente\Desktop\TRABALHOS
2018-01-01 19:18 - 2018-01-01 19:18 - 000000000 ____D C:\Users\Cliente\Desktop\CAMISA SING ALONG
2018-01-01 19:11 - 2018-01-01 19:20 - 054561512 _____ (Free Time) C:\Users\Cliente\Downloads\formatfactory-3-6-0-0-multi-win.exe
2017-12-30 23:27 - 2017-12-30 23:40 - 057548672 _____ C:\Users\Cliente\Downloads\Scott Pilgrim Vol 01 - Vidinha Preciosa (Vertigem).cbr
2017-12-30 23:25 - 2017-12-30 23:25 - 000000043 _____ C:\Users\Cliente\Downloads\hbpix (3)
2017-12-29 14:58 - 2017-12-29 14:58 - 000114737 _____ C:\Users\Cliente\Downloads\star wars uma nova esperança-legendafilmes.com.br.srt
2017-12-28 11:55 - 2018-01-03 10:57 - 000000000 ____D C:\Users\Cliente\AppData\LocalLow\uTorrent
2017-12-25 16:27 - 2018-01-03 15:03 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\vlc
2017-12-25 16:27 - 2017-12-25 16:27 - 000001024 _____ C:\Users\Public\Desktop\VLC.lnk
2017-12-25 16:27 - 2017-12-25 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-12-25 16:26 - 2017-12-25 16:26 - 000000000 ____D C:\Program Files\VideoLAN
2017-12-25 15:56 - 2017-12-25 16:23 - 030950664 _____ C:\Users\Cliente\Downloads\vlc-media-player-2-2-6.exe
2017-12-22 19:28 - 2017-12-22 19:29 - 000000000 ____D C:\Users\Cliente\Gigante de Ferro
2017-12-22 15:47 - 2017-12-22 15:47 - 061954570 _____ C:\Users\Cliente\Downloads\Batman - Ano Um - Abril.cbr
2017-12-22 15:19 - 2006-11-16 19:59 - 000000000 ____D C:\Users\Cliente\Downloads\_pdf2cbr_pt-br
2017-12-22 15:17 - 2017-12-22 15:19 - 000556225 _____ C:\Users\Cliente\Downloads\_pdf2cbr_pt-br.rar
2017-12-22 15:01 - 2017-12-22 15:50 - 021739506 _____ C:\Users\Cliente\Downloads\Batman - ano um.cbr.crdownload
2017-12-22 14:44 - 2017-12-22 14:44 - 073354094 _____ C:\Users\Cliente\Downloads\V de Vingança.CBR
2017-12-21 21:42 - 2017-12-21 21:45 - 001125690 _____ C:\Users\Cliente\Downloads\Clube da Luta - Chuck Palahnuik.pdf
2017-12-21 18:50 - 2017-12-22 15:20 - 000000000 ____D C:\Users\Cliente\AppData\LocalLow\Mozilla
2017-12-16 19:16 - 2017-12-16 19:16 - 014307943 _____ C:\Users\Cliente\Downloads\PPSSPP Gold - v1.0.zip
2017-12-16 19:03 - 2017-12-19 17:36 - 000000000 ____D C:\Users\Cliente\Downloads\ppsspp
2017-12-16 18:44 - 2017-12-16 18:46 - 003735803 _____ C:\Users\Cliente\Downloads\¡Error Solucionado! - Roskr (2).zip
2017-12-16 18:38 - 2017-12-16 18:46 - 008594606 _____ C:\Users\Cliente\Downloads\PPSSPP 0.9.5 [x64].7z
2017-12-16 18:29 - 2017-12-16 18:31 - 008244766 _____ C:\Users\Cliente\Downloads\PPSSPP 0.9.5 [x86].7z
2017-12-16 16:41 - 2017-12-16 16:41 - 000014155 _____ C:\Users\Cliente\Downloads\godofwar.zip
2017-12-16 15:32 - 2017-12-17 13:43 - 000000000 ____D C:\Users\Cliente\Desktop\GAMES SNES
2017-12-16 15:03 - 2017-12-17 13:23 - 000000245 _____ C:\Users\Cliente\rominfo.txt
2017-12-16 15:03 - 2017-12-16 15:04 - 000131072 _____ C:\Users\Cliente\Downloads\DK3-DK.srm
2017-12-16 15:02 - 2017-12-17 13:23 - 000002480 _____ C:\Users\Cliente\zmovie.cfg
2017-12-16 15:02 - 2017-12-16 15:02 - 000008952 _____ C:\Users\Cliente\zfont.txt
2017-12-16 14:59 - 2017-12-16 14:59 - 003127673 _____ C:\Users\Cliente\Downloads\DK3-DK.rar
2017-12-16 14:58 - 2017-12-16 14:58 - 000000000 ____D C:\Users\Cliente\docs
2017-12-16 14:57 - 2017-12-16 14:58 - 000867785 _____ C:\Users\Cliente\Downloads\zsnes-1.51.zip
2017-12-13 11:27 - 2017-12-22 11:46 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-12-12 16:26 - 2017-12-14 16:26 - 000000068 _____ C:\Users\Cliente\AppData\Local\fxPbtLXjBN
2017-12-06 11:45 - 2017-12-06 11:45 - 000000000 ____D C:\Program Files\Common Files\avast software
2017-12-04 12:34 - 2017-12-04 12:34 - 000050412 _____ C:\Users\Cliente\Downloads\blood_lust.zip
2017-12-02 18:21 - 2017-12-16 15:31 - 000000000 ____D C:\Users\Cliente\Desktop\Facebook_files
2017-11-30 23:50 - 2017-11-30 23:50 - 000212715 _____ C:\Users\Cliente\Downloads\friday13.zip
2017-11-30 23:46 - 2017-11-30 23:46 - 000030442 _____ C:\Users\Cliente\Downloads\heart_breaking_bad.zip
2017-11-30 23:46 - 2017-11-30 23:46 - 000007316 _____ C:\Users\Cliente\Downloads\breaking_b.zip
2017-11-30 23:43 - 2017-11-30 23:43 - 000154554 _____ C:\Users\Cliente\Downloads\musicals.zip
2017-11-28 21:03 - 2017-11-28 21:03 - 000000000 ____D C:\Users\Cliente\Documents\My Palettes
2017-11-28 21:01 - 2017-11-28 21:01 - 000000000 ____D C:\Users\Cliente\Documents\Corel
2017-11-28 20:40 - 2017-11-28 21:01 - 000000000 ____D C:\Users\Todos os Usuários\Protexis
2017-11-28 20:40 - 2017-11-28 21:01 - 000000000 ____D C:\ProgramData\Protexis
2017-11-28 20:40 - 2017-11-28 20:40 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Corel
2017-11-28 20:40 - 2017-11-28 20:36 - 000002771 _____ C:\Users\Public\Desktop\CorelDRAW X7.lnk
2017-11-28 20:39 - 2017-11-28 20:39 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-11-28 20:39 - 2017-11-28 20:39 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-28 20:38 - 2017-11-28 20:38 - 000000000 ____D C:\Program Files\Common Files\Protexis
2017-11-28 20:38 - 2017-11-28 20:38 - 000000000 ____D C:\Program Files\Common Files\Corel
2017-11-28 20:37 - 2017-11-28 20:37 - 000000000 ____D C:\Users\Public\Documents\Corel
2017-11-28 20:36 - 2017-11-28 20:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7
2017-11-28 20:35 - 2017-11-28 21:01 - 000000000 ____D C:\Users\Todos os Usuários\Corel
2017-11-28 20:35 - 2017-11-28 21:01 - 000000000 ____D C:\ProgramData\Corel
2017-11-28 20:35 - 2017-11-28 20:36 - 000000000 ____D C:\Program Files\Corel
2017-11-28 20:34 - 2017-11-28 20:40 - 000000000 ____D C:\Users\Todos os Usuários\CorelDRAW Graphics Suite X7
2017-11-28 20:34 - 2017-11-28 20:40 - 000000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7
2017-11-24 11:00 - 2017-11-24 11:00 - 000000043 _____ C:\Users\Cliente\Downloads\hbpix (2)
2017-11-22 12:14 - 2017-11-22 12:14 - 000149847 _____ C:\Users\Cliente\Downloads\the_walking_dead (1).zip
2017-11-22 12:13 - 2017-11-22 12:13 - 000017370 _____ C:\Users\Cliente\Downloads\dead_font_walking.zip
2017-11-22 12:12 - 2017-11-22 12:12 - 000287501 _____ C:\Users\Cliente\Downloads\the_walking_dead.zip
2017-11-22 11:53 - 2017-11-22 11:53 - 000340163 _____ C:\Users\Cliente\Downloads\a_space.zip
2017-11-21 11:10 - 2017-11-21 11:10 - 000000000 _____ C:\Users\Cliente\AppData\Local\{54FB0F8A-D4AB-45F0-A609-D81EDFDE9FBA}
2017-11-19 17:10 - 2017-11-19 17:10 - 000460102 _____ C:\Users\Cliente\Downloads\cf_halloween.zip
2017-11-19 17:10 - 2017-11-19 17:10 - 000056346 _____ C:\Users\Cliente\Downloads\halloween_too.zip
2017-11-12 20:44 - 2017-11-12 20:44 - 000113321 _____ C:\Users\Cliente\Downloads\propostas.pdf
2017-11-10 09:45 - 2017-11-10 09:46 - 000043642 _____ C:\Users\Cliente\Downloads\declaracao_matricula_20171ALIM0182_2017-11-10-08-45-57.pdf
2017-11-05 18:25 - 2017-11-05 18:25 - 000130826 _____ C:\Users\Cliente\Downloads\portoeditora_peavieira_sermpeixes.pdf
2017-10-27 10:46 - 2017-10-27 10:46 - 000715925 _____ C:\Users\Cliente\Downloads\003_PROEN_REIT.pdf
2017-10-26 20:44 - 2017-12-20 12:59 - 000000000 ____D C:\Users\Cliente\Desktop\Fami
2017-10-25 13:38 - 2017-10-25 13:39 - 000280940 _____ C:\Users\Cliente\Downloads\a_bit_sketchy.zip
2017-10-25 13:38 - 2017-10-25 13:38 - 000167639 _____ C:\Users\Cliente\Downloads\a_cuchillada.zip
2017-10-24 18:45 - 2017-10-24 21:06 - 295507769 _____ C:\Users\Cliente\Downloads\DAY6 COVERS VOL. 1.rar
2017-10-24 18:45 - 2017-10-24 20:57 - 236258973 _____ C:\Users\Cliente\Downloads\DAY6 COVERS VOL.2.rar
2017-10-24 18:45 - 2017-10-24 19:37 - 078212319 _____ C:\Users\Cliente\Downloads\DAY6 UNRELEASED SONGS.rar
2017-10-23 10:10 - 2017-10-23 10:20 - 059257438 _____ C:\Users\Cliente\Downloads\Rap do The Last Of Us - Tauz RapGame 13.mp4
2017-10-08 15:31 - 2013-12-01 14:08 - 003159033 _____ (Adobe Systems, Inc.) C:\Users\Cliente\Desktop\230_extra_jogo.exe
2017-10-05 12:55 - 2017-10-05 12:55 - 000000043 _____ C:\Users\Cliente\Downloads\hbpix (1)

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-01-03 15:23 - 2017-07-22 14:34 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\uTorrent
2018-01-03 15:21 - 2017-07-28 10:25 - 000000000 ____D C:\Program Files\ByteFence
2018-01-03 11:41 - 2017-07-28 10:23 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\WeatherTool
2018-01-03 11:27 - 2017-07-28 09:59 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2018-01-03 11:06 - 2009-07-14 02:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-03 11:06 - 2009-07-14 02:34 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-03 11:05 - 2017-07-20 17:23 - 001633534 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-03 11:05 - 2009-07-29 16:24 - 000705070 _____ C:\Windows\system32\prfh0416.dat
2018-01-03 11:05 - 2009-07-29 16:24 - 000146910 _____ C:\Windows\system32\prfc0416.dat
2018-01-03 11:05 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\inf
2018-01-03 10:57 - 2009-07-14 02:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-02 20:26 - 2017-07-28 10:26 - 000000000 ____D C:\Users\Todos os Usuários\{1D4BD828-9709-52EE-11CF-CCAC8B8D4762}
2018-01-02 20:26 - 2017-07-28 10:26 - 000000000 ____D C:\ProgramData\{1D4BD828-9709-52EE-11CF-CCAC8B8D4762}
2018-01-01 20:02 - 2009-07-14 00:37 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-12-29 22:15 - 2017-07-20 17:17 - 000000000 ____D C:\Users\Cliente
2017-12-28 20:34 - 2009-07-14 02:53 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-24 00:21 - 2017-07-26 17:53 - 000000000 ____D C:\Users\Cliente\Desktop\Família
2017-12-22 11:47 - 2017-07-20 17:21 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-12-21 18:50 - 2017-07-20 17:21 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Mozilla
2017-12-19 17:36 - 2017-09-18 10:47 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\PhotoScape
2017-12-19 17:36 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\registration
2017-12-19 17:36 - 2009-07-14 00:37 - 000000000 ____D C:\Windows\AppCompat
2017-12-19 11:43 - 2017-07-20 17:22 - 000002047 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2017-12-19 11:37 - 2017-07-20 17:20 - 000113552 _____ C:\Users\Cliente\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-17 08:08 - 2017-07-31 10:17 - 000000000 ___SD C:\Users\Cliente\AppData\LocalLow\Temp
2017-12-16 18:31 - 2017-07-28 10:35 - 000000000 ____D C:\Users\Cliente\Documents\Max Payne 2 Savegames
2017-12-16 17:05 - 2017-09-18 11:09 - 000000000 ____D C:\Users\Cliente\Desktop\Originals
2017-12-16 15:32 - 2017-08-08 22:00 - 000000000 ____D C:\Users\Cliente\Desktop\ESCOLA
2017-12-11 21:58 - 2017-07-20 17:23 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-11 21:58 - 2017-07-20 17:23 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-08 14:04 - 2017-07-26 17:53 - 000000000 ____D C:\Users\Cliente\Desktop\Camera FM
2017-12-06 22:37 - 2017-07-20 17:25 - 000000000 ____D C:\Users\Cliente\AppData\Local\Microsoft Help
2017-12-05 11:10 - 2009-07-14 02:33 - 000418040 _____ C:\Windows\system32\FNTCACHE.DAT

==================== Arquivos na raiz de alguns diretórios =======

2017-12-12 16:26 - 2017-12-14 16:26 - 000000068 _____ () C:\Users\Cliente\AppData\Local\fxPbtLXjBN
2017-11-21 11:10 - 2017-11-21 11:10 - 000000000 _____ () C:\Users\Cliente\AppData\Local\{54FB0F8A-D4AB-45F0-A609-D81EDFDE9FBA}

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-12-29 14:02

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité