Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 01-03-2017 01
Executado por Conquiste (administrador) em CONQUISTE-PC (03-03-2017 08:25:18)
Executando a partir de C:\Users\Conquiste\Downloads
Perfis Carregados: Conquiste (Perfis Disponíveis: Conquiste)
Platform: Microsoft Windows 7 Ultimate  (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATII4E.EXE
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-09-24] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-28] (AVAST Software)
HKU\S-1-5-21-3414426272-3699676975-3157769835-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATII4E.EXE [249440 2012-02-27] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3414426272-3699676975-3157769835-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27545056 2017-02-14] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-02-28] (AVAST Software)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4594A1F0-67FE-4623-A3E4-830B18E5EBF4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8E3A0A97-7C8A-4841-BF56-43B8F1BAD3DF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3414426272-3699676975-3157769835-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-28] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)

FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-28] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default [2017-03-03]
CHR Extension: (Google Apresentações) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-28]
CHR Extension: (Google Docs) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-28]
CHR Extension: (Google Drive) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-28]
CHR Extension: (YouTube) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-28]
CHR Extension: (Avast SafePrice) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-01]
CHR Extension: (Planilhas do Google) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-28]
CHR Extension: (Avast Online Security) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-03-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-28]
CHR Extension: (Achei Margem) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogpelmclcmcccbnekkajcaecliedpnln [2017-03-01]
CHR Extension: (Gmail) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-28]
CHR Extension: (Chrome Media Router) - C:\Users\Conquiste\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-28]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5545144 2017-02-28] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-28] (AVAST Software)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [290224 2015-08-27] (Intel Corporation)
R2 EpsonCustomerParticipation; C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [539744 2012-05-10] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [122000 2011-12-12] (Seiko Epson Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [283568 2015-08-27] (Intel Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [257288 2017-02-28] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [148720 2017-02-28] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [267016 2017-02-28] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [41176 2017-02-28] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34136 2017-02-28] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [31064 2017-02-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [106392 2017-02-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [90336 2017-02-28] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [62152 2017-02-28] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [756200 2017-02-28] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463936 2017-02-28] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [118288 2017-02-28] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [278776 2017-02-28] (AVAST Software)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1714320 2014-12-08] (MediaTek Inc.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13368 2017-02-28] (SlimWare Utilities, Inc.)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-03-03 08:25 - 2017-03-03 08:25 - 00010335 _____ C:\Users\Conquiste\Downloads\FRST.txt
2017-03-03 08:23 - 2017-03-03 08:25 - 00000000 ____D C:\FRST
2017-03-03 08:23 - 2017-03-03 08:23 - 01765888 _____ (Farbar) C:\Users\Conquiste\Downloads\FRST.exe
2017-03-03 08:21 - 2017-03-03 08:21 - 01631200 _____ (Skype Technologies S.A.) C:\Users\Conquiste\Downloads\SkypeSetup (2).exe
2017-03-03 08:21 - 2017-03-03 08:21 - 00002687 _____ C:\Users\Public\Desktop\Skype.lnk
2017-03-03 08:21 - 2017-03-03 08:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-03 08:21 - 2017-03-03 08:21 - 00000000 ____D C:\Program Files\Common Files\Skype
2017-03-03 08:19 - 2017-03-03 08:19 - 01631200 _____ (Skype Technologies S.A.) C:\Users\Conquiste\Downloads\SkypeSetup (1).exe
2017-03-03 08:19 - 2017-03-03 08:19 - 00000000 ____D C:\Users\Todos os Usuários\SWCUTemp
2017-03-03 08:19 - 2017-03-03 08:19 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-03-02 17:19 - 2017-03-02 17:19 - 00000287 _____ C:\Users\Conquiste\Downloads\COMO SOLICITAR O SALDO BCSUL (1).txt
2017-03-02 17:18 - 2017-03-02 17:18 - 00026332 _____ C:\Users\Conquiste\Downloads\CARTA SOLICITAÇÃO SALDO BCO CRUZEIRO.pdf
2017-03-02 17:18 - 2017-03-02 17:18 - 00000287 _____ C:\Users\Conquiste\Downloads\COMO SOLICITAR O SALDO BCSUL.txt
2017-03-02 14:51 - 2017-03-02 14:51 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-03-02 14:51 - 2017-03-02 14:51 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-28 17:24 - 2017-02-28 17:24 - 00000000 _____ C:\Windows\EEventManager.INI
2017-02-28 17:06 - 2017-03-03 08:14 - 00000000 __SHD C:\Users\Conquiste\IntelGraphicsProfiles
2017-02-28 17:06 - 2017-02-28 17:06 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Epson
2017-02-28 16:50 - 2017-02-28 16:50 - 00000000 ____D C:\Program Files\Intel
2017-02-28 16:50 - 2017-02-28 16:50 - 00000000 ____D C:\Program Files\Common Files\Intel
2017-02-28 16:50 - 2017-02-28 16:50 - 00000000 ____D C:\Intel
2017-02-28 16:50 - 2015-08-27 18:20 - 00070632 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2017-02-28 16:47 - 2017-02-28 16:48 - 00000000 ____D C:\Windows\system32\MRT
2017-02-28 16:47 - 2017-02-28 16:47 - 135086848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-02-28 16:39 - 2016-06-25 12:43 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2017-02-28 16:39 - 2014-09-14 21:42 - 02377216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-02-28 16:39 - 2011-04-09 02:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-02-28 16:39 - 2010-12-18 02:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-02-28 16:38 - 2017-02-28 16:38 - 00001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-02-28 16:38 - 2015-03-18 23:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-02-28 16:38 - 2015-03-18 23:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-02-28 16:38 - 2013-03-19 01:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-02-28 16:38 - 2013-03-18 23:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-02-28 16:37 - 2017-02-28 16:37 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-28 16:36 - 2017-02-28 16:36 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-02-28 16:35 - 2017-02-28 16:35 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\AVAST Software
2017-02-28 16:35 - 2017-02-28 16:35 - 00000000 ____D C:\Users\Conquiste\AppData\Local\CEF
2017-02-28 16:34 - 2017-02-28 16:34 - 00921280 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2017-02-28 16:34 - 2017-02-28 16:34 - 00463936 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00328208 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-02-28 16:34 - 2017-02-28 16:34 - 00278776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00118288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00106392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-02-28 16:34 - 2017-02-28 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-02-28 16:34 - 2017-02-28 16:33 - 00756200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-02-28 16:34 - 2017-02-28 16:32 - 00267016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-02-28 16:34 - 2017-02-28 16:32 - 00257288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-02-28 16:34 - 2017-02-28 16:32 - 00148720 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-02-28 16:34 - 2017-02-28 16:32 - 00041176 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-02-28 16:32 - 2017-02-28 16:32 - 00000042 _____ C:\Windows\L355.ini
2017-02-28 16:32 - 2017-02-28 16:32 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Leadertech
2017-02-28 16:32 - 2012-06-02 19:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-02-28 16:32 - 2012-06-02 19:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-02-28 16:32 - 2012-06-02 19:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-02-28 16:32 - 2012-06-02 19:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-02-28 16:32 - 2012-06-02 19:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-02-28 16:32 - 2012-06-02 19:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-02-28 16:32 - 2012-06-02 19:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-02-28 16:32 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-02-28 16:32 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-02-28 16:31 - 2017-02-28 16:36 - 00000000 ____D C:\Program Files\AVAST Software
2017-02-28 16:29 - 2017-02-28 16:29 - 00000000 ____D C:\Windows\system32\appmgmt
2017-02-28 16:28 - 2017-03-01 11:23 - 00000000 ____D C:\Users\Todos os Usuários\AVAST Software
2017-02-28 16:28 - 2017-03-01 11:23 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-28 16:28 - 2017-02-28 16:28 - 06654960 _____ (AVAST Software) C:\Users\Conquiste\Downloads\avast_free_antivirus_setup_online_cnet2.exe
2017-02-28 16:27 - 2017-02-28 16:32 - 00000000 ____D C:\Users\Todos os Usuários\EPSON
2017-02-28 16:27 - 2017-02-28 16:32 - 00000000 ____D C:\ProgramData\EPSON
2017-02-28 16:27 - 2017-02-28 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2017-02-28 16:27 - 2017-02-28 16:31 - 00000000 ____D C:\Program Files\Common Files\EPSON
2017-02-28 16:27 - 2017-02-28 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2017-02-28 16:27 - 2017-02-28 16:28 - 00000000 ____D C:\Program Files\EPSON Software
2017-02-28 16:27 - 2017-02-28 16:28 - 00000000 ____D C:\Program Files\EPSON
2017-02-28 16:27 - 2017-02-28 16:27 - 00000934 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2017-02-28 16:27 - 2017-02-28 16:27 - 00000000 ____D C:\Program Files\EpsonNet
2017-02-28 16:27 - 2012-07-24 00:00 - 00342016 _____ (Seiko Epson Corporation) C:\Windows\system32\esw2ud.dll
2017-02-28 16:27 - 2011-12-12 00:00 - 00122000 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc.exe
2017-02-28 16:27 - 2011-08-30 13:39 - 00457780 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2017-02-28 16:27 - 2011-08-30 13:39 - 00457780 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2017-02-28 16:27 - 2011-08-30 13:38 - 00475496 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2017-02-28 16:27 - 2011-08-30 13:38 - 00475496 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2017-02-28 16:27 - 2011-08-01 18:24 - 00251392 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2017-02-28 16:27 - 2011-08-01 18:24 - 00251392 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2017-02-28 16:27 - 2011-04-19 03:03 - 00095232 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TLBI4E.DLL
2017-02-28 16:27 - 2011-03-14 03:03 - 00081408 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_TD4BI4E.DLL
2017-02-28 16:27 - 2007-04-10 01:06 - 00008192 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_DCINST.DLL
2017-02-28 16:26 - 2017-03-03 08:21 - 00000000 ____D C:\Users\Todos os Usuários\Skype
2017-02-28 16:26 - 2017-03-03 08:21 - 00000000 ____D C:\ProgramData\Skype
2017-02-28 16:26 - 2017-03-02 14:51 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Skype
2017-02-28 16:26 - 2017-02-28 16:26 - 00000000 ____D C:\Users\Conquiste\Tracing
2017-02-28 16:24 - 2017-02-28 16:26 - 132032800 _____ C:\Users\Conquiste\Downloads\L355_Lite_Installer_Win_3.0ASP_GM.exe
2017-02-28 16:24 - 2017-02-28 16:25 - 01629144 _____ (Skype Technologies S.A.) C:\Users\Conquiste\Downloads\SkypeSetup.exe
2017-02-28 16:22 - 2017-02-28 16:22 - 00000000 ____D C:\Users\Todos os Usuários\Mediatek Driver
2017-02-28 16:22 - 2017-02-28 16:22 - 00000000 ____D C:\ProgramData\Mediatek Driver
2017-02-28 16:22 - 2014-12-08 11:26 - 01714320 _____ (MediaTek Inc.) C:\Windows\system32\Drivers\netr28u.sys
2017-02-28 16:22 - 2014-11-28 18:06 - 00079216 _____ C:\Windows\system32\Drivers\FW_7662.bin
2017-02-28 16:22 - 2014-08-06 18:17 - 00241296 _____ (Mediatek Inc.) C:\Windows\system32\RaCoInst.dll
2017-02-28 16:22 - 2014-08-06 18:17 - 00016103 _____ C:\Windows\system32\RaCoInst.dat
2017-02-28 16:22 - 2014-07-24 11:08 - 00020626 _____ C:\Windows\system32\Drivers\Patch_7662.bin
2017-02-28 16:22 - 2014-05-07 10:15 - 00080524 _____ C:\Windows\system32\Drivers\FW_7610.bin
2017-02-28 16:22 - 2014-05-07 10:15 - 00047032 _____ C:\Windows\system32\Drivers\FW_7601.bin
2017-02-28 16:22 - 2014-05-07 10:15 - 00008192 _____ C:\Windows\system32\Drivers\FW_2870.bin
2017-02-28 16:22 - 2014-05-07 10:15 - 00004096 _____ C:\Windows\system32\Drivers\FW_3573.bin
2017-02-28 15:44 - 2017-02-28 15:44 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\WinRAR
2017-02-28 15:37 - 2017-02-28 15:37 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Adobe
2017-02-28 15:37 - 2017-02-28 15:37 - 00000000 ____D C:\Users\Conquiste\AppData\LocalLow\Adobe
2017-02-28 15:37 - 2017-02-28 15:37 - 00000000 ____D C:\Users\Conquiste\AppData\Local\Adobe
2017-02-28 15:30 - 2017-02-28 16:31 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2017-02-28 15:30 - 2017-02-28 15:30 - 00000000 ____D C:\Program Files\D-Link
2017-02-28 14:59 - 2017-02-28 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-02-28 14:59 - 2006-10-26 19:56 - 00032592 _____ (Microsoft Corporation) C:\Windows\system32\msonpmon.dll
2017-02-28 14:58 - 2017-02-28 14:58 - 00000000 ____D C:\Windows\PCHEALTH
2017-02-28 14:58 - 2017-02-28 14:58 - 00000000 ____D C:\Program Files\Microsoft Works
2017-02-28 14:58 - 2017-02-28 14:58 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2017-02-28 14:58 - 2017-02-28 14:58 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-02-28 14:57 - 2017-02-28 14:59 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-02-28 14:57 - 2017-02-28 14:58 - 00000000 ____D C:\Program Files\Microsoft Office
2017-02-28 14:57 - 2017-02-28 14:57 - 00000000 __RHD C:\MSOCache
2017-02-28 14:57 - 2017-02-28 14:57 - 00000000 ____D C:\Users\Conquiste\AppData\Local\Microsoft Help
2017-02-28 14:57 - 2017-02-28 14:57 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8
2017-02-28 14:56 - 2017-03-03 08:21 - 00000000 ___RD C:\Program Files\Skype
2017-02-28 14:48 - 2017-02-28 14:48 - 00000000 ____D C:\Users\Conquiste\AppData\Local\ElevatedDiagnostics
2017-02-28 14:44 - 2017-02-28 14:44 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Easeware
2017-02-28 14:43 - 2009-11-25 12:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-02-28 14:43 - 2009-11-25 12:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-02-28 14:43 - 2009-11-25 12:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-02-28 14:43 - 2009-11-25 12:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-02-28 14:43 - 2009-11-25 12:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-02-28 14:42 - 2017-02-28 14:42 - 00000000 ____D C:\784553e82b74b719a2
2017-02-28 14:41 - 2017-02-28 17:23 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2017-02-28 14:41 - 2017-02-28 15:32 - 00013368 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2017-02-28 14:41 - 2017-02-28 14:55 - 00000000 ____D C:\Program Files\Adobe
2017-02-28 14:41 - 2017-02-28 14:41 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2017-02-28 14:41 - 2017-02-28 14:41 - 00000000 ____D C:\Users\Conquiste\AppData\Local\SlimWare Utilities Inc
2017-02-28 14:41 - 2017-02-28 14:41 - 00000000 ____D C:\ProgramData\Adobe
2017-02-28 14:41 - 2017-02-28 14:41 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-02-28 14:40 - 2017-02-28 17:21 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-28 14:40 - 2017-02-28 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-28 14:40 - 2017-02-28 17:21 - 00000000 ____D C:\Program Files\WinRAR
2017-02-28 14:39 - 2017-02-28 14:39 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2017-02-28 14:38 - 2017-02-28 14:39 - 01076800 _____ (Slimware Utilities Holdings, Inc.) C:\Users\Conquiste\Downloads\SlimDrivers-setup.exe
2017-02-28 14:37 - 2017-02-28 14:37 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-28 14:36 - 2017-02-28 16:30 - 00000000 ____D C:\Users\Conquiste\AppData\Local\Google
2017-02-28 14:36 - 2017-02-28 15:44 - 00108824 _____ C:\Users\Conquiste\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-28 14:36 - 2017-02-28 14:37 - 00000000 ____D C:\Program Files\Google
2017-02-28 14:36 - 2017-02-28 14:36 - 00000000 ____D C:\Users\Conquiste\AppData\Local\Deployment
2017-02-28 14:36 - 2017-02-28 14:36 - 00000000 ____D C:\Users\Conquiste\AppData\Local\Apps\2.0
2017-02-28 14:32 - 2017-03-03 08:20 - 01628224 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-28 14:29 - 2017-02-28 14:29 - 00001393 _____ C:\Users\Conquiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-02-28 14:28 - 2017-02-28 17:06 - 00000000 ____D C:\Users\Conquiste
2017-02-28 14:28 - 2017-02-28 14:28 - 00000020 ___SH C:\Users\Conquiste\ntuser.ini
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Modelos
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Meus documentos
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Menu Iniciar
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Documents\Minhas músicas
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Documents\Minhas imagens
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Documents\Meus vídeos
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Dados de aplicativos
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Configurações locais
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\AppData\Local\Histórico
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\AppData\Local\Dados de aplicativos
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Ambiente de rede
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 _SHDL C:\Users\Conquiste\Ambiente de impressão
2017-02-28 14:28 - 2017-02-28 14:28 - 00000000 ____D C:\Users\Conquiste\AppData\Local\VirtualStore
2017-02-28 14:28 - 2009-07-14 05:52 - 00000000 ____D C:\Users\Conquiste\AppData\Roaming\Media Center Programs
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Usuário Padrão
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Todos os Usuários
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Modelos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Meus documentos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Configurações locais
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\ProgramData\Modelos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\ProgramData\Favoritos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\ProgramData\Documentos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2017-02-28 14:27 - 2017-02-28 14:27 - 00000000 _SHDL C:\Arquivos de Programas
2017-02-28 14:24 - 2017-02-28 14:24 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-02-28 14:24 - 2017-02-28 14:24 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-02-28 14:23 - 2017-02-28 14:23 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-02-28 14:21 - 2017-02-28 14:28 - 00000000 ____D C:\Windows\Panther
2017-02-28 14:04 - 2016-12-21 17:47 - 00102696 _____ C:\Users\Conquiste\Documents\daniel honorio.pdf
2017-01-25 08:55 - 2017-02-28 15:46 - 00000000 ____D C:\Users\Conquiste\Desktop\Trabalhos de Jefferson

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-03-03 08:21 - 2009-07-14 01:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-03 08:21 - 2009-07-14 01:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-03 08:20 - 2009-07-14 05:31 - 00703370 _____ C:\Windows\system32\prfh0416.dat
2017-03-03 08:20 - 2009-07-14 05:31 - 00146156 _____ C:\Windows\system32\prfc0416.dat
2017-03-03 08:20 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2017-03-03 08:14 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-01 12:30 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\rescache
2017-02-28 17:05 - 2009-07-14 01:33 - 00409640 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-28 16:32 - 2009-07-14 01:52 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-02-28 15:00 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\NDF
2017-02-28 14:58 - 2009-07-14 05:53 - 00000000 ____D C:\Windows\ShellNew
2017-02-28 14:58 - 2009-07-14 01:52 - 00000000 ____D C:\Program Files\MSBuild
2017-02-28 14:58 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-02-28 14:57 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\System
2017-02-28 14:57 - 2009-07-13 23:04 - 00000478 _____ C:\Windows\win.ini
2017-02-28 14:53 - 2009-07-14 01:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-02-28 14:34 - 2009-07-13 23:37 - 00000000 __RHD C:\Users\Public\Libraries
2017-02-28 14:27 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Windows NT
2017-02-28 14:24 - 2009-07-14 01:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-02-28 14:24 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\sysprep
2017-02-28 14:22 - 2009-07-14 05:53 - 00000000 ____D C:\Windows\CSC
2017-02-28 14:21 - 2009-07-14 01:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2017-02-28 14:20 - 2009-07-14 01:34 - 00000000 ____D C:\Windows\Setup

Alguns arquivos em TEMP:
====================
2017-03-02 14:51 - 2017-03-03 08:20 - 14456872 _____ (Microsoft Corporation) C:\Users\Conquiste\AppData\Local\Temp\vc_redist.x86.exe

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-03-01 09:31

==================== Fim de FRST.txt ============================