Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 29-01-2017 Executado por - STI - (administrador) em -STI--PC (04-02-2017 12:48:06) Executando a partir de C:\Users\- STI -\Downloads\Programs Perfis Carregados: - STI - (Perfis Disponíveis: - STI -) Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil) Internet Explorer Versão 8 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE.EXE (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Nitro PDF Software) C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe (Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704 2016-01-13] (Realtek Semiconductor) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [346008 2012-07-19] (Alps Electric Co., Ltd.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2428656 2013-05-22] (Synaptics Incorporated) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software) HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\Run: [Google Update] => C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-18] (Google Inc.) HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4015216 2016-12-15] (Tonec Inc.) HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\MountPoints2: {19420da1-e8c4-11e6-b159-4487fc22a5e2} - F:\LGAutoRun.exe HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\MountPoints2: {faefdea2-42e9-11e6-ad56-4487fc22a5e2} - F:\Startme.exe HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-10-03] (AVAST Software) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{064E61E7-E3CE-4EE9-B6A0-CC22BC429B34}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9B22FB09-A6B1-4399-9AAD-12171F3ECE78}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-1303078136-853971651-2996688823-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-25] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) Toolbar: HKU\S-1-5-21-1303078136-853971651-2996688823-1000 -> Sem Nome - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Nenhum Arquivo FireFox: ======== FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-03] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-03] FF HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\- STI -\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\- STI -\AppData\Roaming\IDM\idmmzcc5 [2017-02-04] [não assinado] FF HKU\S-1-5-21-1303078136-853971651-2996688823-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16] FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin: NitroPDF -> C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll [2011-06-21] ( ) FF Plugin HKU\S-1-5-21-1303078136-853971651-2996688823-1000: @tools.google.com/Google Update;version=3 -> C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.) FF Plugin HKU\S-1-5-21-1303078136-853971651-2996688823-1000: @tools.google.com/Google Update;version=9 -> C:\Users\- STI -\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal CHR StartupUrls: Default -> "hxxp://www.google.com.br/","hxxps://www.google.com/" CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default [2017-02-04] CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-23] CHR Extension: (Google Drive) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-23] CHR Extension: (YouTube) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-23] CHR Extension: (Pesquisa do Google) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-06-18] CHR Extension: (Adobe Acrobat) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-01] CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-16] CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-18] CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-02-01] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01] CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-23] CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-01] CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-01-19] CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-12-10] CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-29] CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-29] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-29] CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-29] CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-01-19] CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-16] CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-16] CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-16] CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-16] CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-01-16] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19] CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-10] CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-19] CHR Profile: C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-02-04] CHR Extension: (Google Apresentações) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-16] CHR Extension: (Google Docs) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-16] CHR Extension: (Google Drive) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-16] CHR Extension: (YouTube) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-16] CHR Extension: (Adobe Acrobat) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-01] CHR Extension: (Avast SafePrice) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-01-16] CHR Extension: (Planilhas do Google) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-16] CHR Extension: (Documentos Google off-line) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-16] CHR Extension: (Avast Online Security) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-01-16] CHR Extension: (IDM Integration Module) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-01-16] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19] CHR Extension: (Gmail) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-16] CHR Extension: (Chrome Media Router) - C:\Users\- STI -\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-16] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-12-15] StartMenuInternet: Google Chrome.4SA7XPKJYGGPPAJTBMUGQBICZY - C:\Users\- STI -\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-03] (AVAST Software) R2 NitroReaderDriverReadSpool2; C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe [196912 2011-06-21] (Nitro PDF Software) R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado] R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [268032 2016-01-13] (Realtek Semiconductor) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2012-07-03] (Google Inc) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34008 2016-10-03] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2016-10-03] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [92256 2016-10-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-10-03] (AVAST Software) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [60424 2016-10-03] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [735488 2016-10-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433768 2016-10-03] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [118664 2016-10-03] (AVAST Software) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [224752 2016-10-14] (AVAST Software) S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [28392 2015-07-27] (ELAN Microelectronic Corp.) R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [503048 2015-05-29] (Intel Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-05-29] (Intel Corporation) R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [42496 2009-09-09] (Intel Corporation) R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [305408 2015-11-12] (Realsil Semiconductor Corporation) R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [1565400 2015-01-13] (Realtek Semiconductor Corp.) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2015-09-22] (Synaptics Incorporated) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três Meses Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-02-04 12:46 - 2017-02-04 12:48 - 00000000 ____D C:\FRST 2017-02-01 22:53 - 2017-02-01 22:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_lgandnetadb_01005.Wdf 2017-02-01 22:49 - 2017-02-01 22:49 - 00000000 ____D C:\Program Files\LG Electronics 2017-02-01 22:20 - 2017-02-01 22:34 - 00000000 ____D C:\Users\- STI -\Desktop\EDIVAN 2017-02-01 17:06 - 2017-02-01 17:06 - 00007601 _____ C:\Users\- STI -\AppData\Local\Resmon.ResmonCfg 2017-02-01 15:44 - 2017-02-02 11:17 - 00000000 ____D C:\Users\- STI -\Desktop\Nova pasta 2017-01-28 13:24 - 2017-01-28 13:24 - 00000000 ____D C:\Users\- STI -\AppData\Local\ElevatedDiagnostics 2017-01-28 13:24 - 2017-01-28 13:24 - 00000000 _____ C:\Users\- 2017-01-24 13:37 - 2017-01-24 13:37 - 00083677 _____ C:\Users\- STI -\Desktop\wesley.pdf 2017-01-23 14:55 - 2017-01-23 14:55 - 00047988 _____ C:\Users\- STI -\Desktop\rde.pdf 2017-01-18 11:20 - 2017-01-18 11:20 - 00092126 _____ C:\Users\- STI -\Downloads\re.pdf 2017-01-16 21:07 - 2017-01-16 21:07 - 00000000 ____D C:\Users\- STI -\Downloads\Um Amor à Altura 2016 WWW.BLUDV.COM 2017-01-16 16:42 - 2017-01-20 08:46 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-01-16 16:42 - 2017-01-16 16:42 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2017-01-16 16:41 - 2017-01-16 16:41 - 00000000 ____D C:\Program Files\Adobe 2017-01-10 21:50 - 2017-01-10 21:50 - 00000000 ____D C:\Users\- STI -\Downloads\Festa da Salsicha 720p (2016) Dual Áudio BluRay -- By - Lucas Firmo 2016-12-26 17:11 - 2017-01-10 21:57 - 00000000 ____D C:\Users\- STI -\Downloads\Os Caça-Noivas 2016 WWW.BLUDV.COM 2016-12-18 10:01 - 2017-02-04 12:48 - 00000000 ____D C:\Users\- STI -\Downloads\Programs 2016-12-18 10:01 - 2017-02-04 12:35 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\DMCache 2016-12-18 10:01 - 2017-02-04 12:26 - 00000000 ____D C:\Users\- STI -\Downloads\Video 2016-12-18 10:01 - 2017-02-04 07:57 - 00000000 ____D C:\Users\- STI -\Downloads\Documents 2016-12-18 10:01 - 2017-02-02 13:09 - 00000000 ____D C:\Users\- STI -\Downloads\Compressed 2016-12-18 10:01 - 2017-02-01 17:48 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\IDM 2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\Todos os Usuários\IDM 2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\- STI -\Downloads\Music 2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\ProgramData\IDM 2016-12-18 10:01 - 2016-12-18 10:01 - 00000000 ____D C:\Program Files\Internet Download Manager 2016-12-15 07:51 - 2016-10-17 11:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys 2016-12-13 20:58 - 2016-12-13 20:58 - 00541134 _____ C:\Users\- STI -\Documents\Apresentação1.pptx 2016-12-10 10:27 - 2016-12-10 10:27 - 00000000 ____D C:\Users\- STI -\Downloads\Cegonhas A História que Não te Contaram 2016 Bluray 720p Dublado - TPF 2016-12-10 10:17 - 2016-12-10 10:17 - 00000000 ____D C:\Users\- STI -\Downloads\Esquadrão Suicida (2016) Dual Áudio 720p 5.1 CH [WEB-DL] By-LuanHarper 2016-12-10 10:16 - 2017-02-03 00:47 - 00000000 ____D C:\Users\- STI -\AppData\LocalLow\uTorrent 2016-12-10 10:14 - 2017-01-25 13:35 - 00000000 ___SD C:\Users\- STI -\AppData\LocalLow\Temp 2016-12-10 10:14 - 2016-12-10 10:14 - 00000833 _____ C:\Users\- STI -\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2016-12-10 10:09 - 2017-02-03 00:47 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\uTorrent 2016-12-08 16:45 - 2016-12-08 16:45 - 00053127 _____ C:\Users\- STI -\Desktop\Gazin - Área do Cliente - Extrato.pdf 2016-12-04 18:03 - 2017-02-03 00:30 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\vlc 2016-12-04 18:02 - 2016-12-04 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-12-04 18:02 - 2016-12-04 18:02 - 00000000 ____D C:\Program Files\VideoLAN 2016-11-30 19:56 - 2016-11-30 19:56 - 00000000 ____D C:\Users\Todos os Usuários\Motorola 2016-11-30 19:56 - 2016-11-30 19:56 - 00000000 ____D C:\ProgramData\Motorola 2016-11-30 16:08 - 2016-11-30 16:08 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (3).pdf 2016-11-30 16:05 - 2016-11-30 16:05 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (2).pdf 2016-11-30 16:05 - 2016-11-30 16:05 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245 (1).pdf 2016-11-30 16:01 - 2016-11-30 16:03 - 00113583 _____ C:\Users\- STI -\Downloads\Proposta80632440133245.pdf 2016-11-29 21:06 - 2016-11-29 22:10 - 00000094 _____ C:\Users\- STI -\Downloads\COMANDOS.txt 2016-11-29 20:13 - 2016-11-29 20:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf 2016-11-29 19:42 - 2016-11-30 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager 2016-11-29 19:42 - 2016-11-29 19:43 - 00000000 ____D C:\Program Files\Motorola Mobility 2016-11-29 19:42 - 2016-11-29 19:42 - 00000000 ____D C:\Program Files\Motorola 2016-11-29 19:42 - 2016-11-29 19:42 - 00000000 ____D C:\Program Files\Common Files\MSSoap 2016-11-29 19:41 - 2016-11-29 19:41 - 00000000 ____D C:\Program Files\MSXML 4.0 2016-11-29 19:40 - 2016-11-29 19:40 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2016-11-29 19:40 - 2016-11-29 19:40 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared 2016-11-29 19:37 - 2016-11-29 19:37 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Motorola 2016-11-25 10:58 - 2016-11-25 10:58 - 00116372 _____ C:\Users\- STI -\Downloads\fael 12.pdf 2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD.pptx 2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD (2).pptx 2016-11-22 09:49 - 2016-11-22 09:49 - 00386269 _____ C:\Users\- STI -\Downloads\Apresentação - CPA 2016_Alunos_EAD (1).pptx 2016-11-20 11:28 - 2016-11-20 11:28 - 00000000 ____D C:\Windows\system32\appmgmt 2016-11-18 16:32 - 2016-11-18 16:32 - 00000162 ____H C:\Users\- STI -\Documents\~$aliação Discursiva Onlin1.docx 2016-11-17 20:31 - 2016-11-19 17:23 - 00020922 _____ C:\Users\- STI -\Documents\Avaliação Discursiva Onlin1.docx 2016-11-17 15:20 - 2016-11-17 15:21 - 05114883 _____ C:\Users\- STI -\Downloads\Livro da Disciplina.pdf 2016-11-17 13:19 - 2016-11-17 13:24 - 20935700 _____ C:\Users\- STI -\Downloads\slither-io-1-4-8.apk 2016-11-16 20:29 - 2016-11-16 20:29 - 00314063 _____ C:\Users\- STI -\Downloads\Nova Avaliação Discursiva Calouros (7).pdf 2016-11-16 20:29 - 2016-11-16 20:29 - 00314063 _____ C:\Users\- STI -\Downloads\Nova Avaliação Discursiva Calouros (6).pdf 2016-11-15 12:15 - 2016-11-15 12:15 - 00015365 _____ C:\Users\- STI -\Documents\d1.docx 2016-11-15 10:57 - 2016-11-15 11:17 - 07446666 _____ C:\Users\- STI -\Downloads\Livro_legislacao_ (2).pdf 2016-11-15 10:41 - 2016-11-15 10:41 - 00116363 _____ C:\Users\- STI -\Downloads\11.16.pdf 2016-11-14 14:43 - 2016-11-14 14:43 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\MPC-HC 2016-11-06 12:31 - 2016-11-06 12:31 - 00000000 ____D C:\Users\- STI -\AppData\Roaming\Nero ==================== Três Meses Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-02-04 12:45 - 2009-07-14 00:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-02-04 12:45 - 2009-07-14 00:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-02-04 12:38 - 2016-06-18 17:31 - 00000294 _____ C:\Windows\Tasks\AutoKMS.job 2017-02-04 12:38 - 2016-06-18 17:30 - 00151552 _____ C:\Windows\KMSEmulator.exe 2017-02-04 12:37 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-02-03 00:25 - 2016-06-18 16:01 - 00713932 _____ C:\Windows\system32\PerfStringBackup.INI 2017-02-03 00:25 - 2009-07-14 04:31 - 00004284 _____ C:\Windows\system32\prfh0416.dat 2017-02-03 00:25 - 2009-07-14 04:31 - 00004092 _____ C:\Windows\system32\prfc0416.dat 2017-02-03 00:25 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\inf 2017-02-02 11:26 - 2016-06-18 16:06 - 00000000 ____D C:\Users\- STI - 2017-01-29 01:09 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\NDF 2017-01-16 16:46 - 2016-06-30 21:27 - 00000000 ____D C:\Users\- STI -\AppData\Local\Adobe 2017-01-16 16:41 - 2016-06-30 21:18 - 00000000 ____D C:\Program Files\Common Files\Adobe ==================== Arquivos na raiz de alguns diretórios ======= 2017-02-01 17:06 - 2017-02-01 17:06 - 0007601 _____ () C:\Users\- STI -\AppData\Local\Resmon.ResmonCfg Alguns arquivos em TEMP: ==================== 2017-01-28 12:58 - 2010-06-06 09:22 - 0020480 _____ () C:\Users\- STI -\AppData\Local\Temp\namebench.exe 2017-01-28 12:58 - 2010-05-09 11:34 - 2292736 _____ (Python Software Foundation) C:\Users\- STI -\AppData\Local\Temp\python27.dll 2017-01-28 12:58 - 2008-11-06 21:29 - 0867328 _____ (ActiveState Corporation) C:\Users\- STI -\AppData\Local\Temp\tcl85.dll 2017-01-28 12:58 - 2008-11-06 21:37 - 1319936 _____ (ActiveState Corporation) C:\Users\- STI -\AppData\Local\Temp\tk85.dll ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2017-01-15 12:56 ==================== Fim de FRST.txt ============================