Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17-12-2017 Executado por pc (administrador) em PC-PC (22-12-2017 14:24:36) Executando a partir de C:\Users\pc\Desktop Perfis Carregados: pc (Perfis Disponíveis: pc) Platform: Windows 7 Home Premium (X64) Idioma: Português (Brasil) Internet Explorer Versão 8 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\OEM\ControlAP II 1.3.5\ControlAP II.exe (OEM) C:\Program Files (x86)\OEM\iBrightness 1.0.1\iBrightness.exe () C:\Program Files (x86)\OEM\AIO IPM 1.9.4\IPM.exe () C:\Program Files (x86)\OEM\OSD 1.15.11\SunflowerOSD.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-1717954071-391292689-155083303-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-06] (Google Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ControlAP II.lnk [2017-11-23] ShortcutTarget: ControlAP II.lnk -> C:\Windows\Installer\{A75A2559-40B0-4C25-A7ED-19D593F2A6E9}\_204AFFB5E8C01B0AB2204A.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iBrightness.lnk [2017-11-23] ShortcutTarget: iBrightness.lnk -> C:\Windows\Installer\{B351A468-173F-43D8-B6E6-5A6E9A0125A8}\_5CA7EB0450877D7F6842BB.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\IPM.lnk [2017-11-23] ShortcutTarget: IPM.lnk -> C:\Windows\Installer\{AADF4228-0772-4D43-92EB-B245E3A17B00}\_10500911F14C3D8BD0CDF9.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OSD.lnk [2017-11-23] ShortcutTarget: OSD.lnk -> C:\Windows\Installer\{5A9C96FE-1376-45E1-8556-C81255F0B5A7}\_5BE33937B1D2F3478A2BFD.exe () ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{DA56B1F8-0296-4355-A471-62556B22C463}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-1717954071-391292689-155083303-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: tlwxyui8.default FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\wtq8ga74.dev-edition-default [2017-12-04] FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\tlwxyui8.default [2017-11-10] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems) StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe Chrome: ======= CHR HomePage: Default -> hxxp://google.com/ CHR StartupUrls: Default -> "hxxp://google.com/" CHR NewTab: Default -> Active:"chrome-extension://nkhjnpgcnmdpeikbeegmibjcfjpamjnp/home.html" CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2017-12-22] CHR Extension: (Apresentações) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-10] CHR Extension: (Documentos) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-10] CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-10] CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-10] CHR Extension: (Honey) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2017-12-21] CHR Extension: (Listen Video - Youtube™ Music Player) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbiapabbjlfcbfoedilflhnifandagoh [2017-11-27] CHR Extension: (Planilhas) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-10] CHR Extension: (Documentos Google off-line) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-10] CHR Extension: (DotVPN — a better way to VPN) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2017-12-21] CHR Extension: (Piktab) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkhjnpgcnmdpeikbeegmibjcfjpamjnp [2017-11-10] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-10] CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-10] CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-15] ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129488 2012-12-19] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165328 2012-12-19] (Intel Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation) R2 SoilIO; C:\Windows\System32\Drivers\SoilIO.sys [17912 2010-08-19] () R3 soilkbc; C:\Windows\System32\Drivers\soilkbc.sys [13816 2009-12-03] (Systems Internals) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um Mês Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-12-22 14:24 - 2017-12-22 14:24 - 002392064 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe 2017-12-22 14:24 - 2017-12-22 14:24 - 001752576 _____ (Farbar) C:\Users\pc\Desktop\FRST.exe 2017-12-22 14:24 - 2017-12-22 14:24 - 000010868 _____ C:\Users\pc\Desktop\FRST.txt 2017-12-22 14:24 - 2017-12-22 14:24 - 000000000 ____D C:\FRST 2017-12-22 14:23 - 2017-12-22 14:23 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64 (2).msu 2017-12-22 14:16 - 2017-03-14 14:23 - 000023232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2017-12-22 14:15 - 2017-12-22 14:15 - 000013187 _____ C:\Users\pc\Desktop\api-ms-win-crt-runtime-l1-1-0.zip 2017-12-22 14:15 - 2017-12-22 14:15 - 000000000 ____D C:\Users\pc\Desktop\api-ms-win-crt-runtime-l1-1-0 2017-12-22 13:53 - 2009-11-25 11:47 - 001942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 001130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 000444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 000320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2017-12-22 13:53 - 2009-11-25 11:47 - 000297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 000295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe 2017-12-22 13:53 - 2009-11-25 11:47 - 000109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 000099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 000049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll 2017-12-22 13:53 - 2009-11-25 11:47 - 000048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2017-12-22 13:43 - 2017-12-22 13:43 - 001005568 _____ (Microsoft Corporation) C:\Users\pc\Desktop\dotNetFx45_Full_setup.exe 2017-12-22 13:37 - 2017-12-22 13:38 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64 (1).msu 2017-12-22 13:28 - 2017-12-22 13:28 - 001034556 _____ C:\Users\pc\Desktop\Windows6.1-KB2999226-x64.msu 2017-12-22 13:24 - 2017-12-22 13:24 - 000001341 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk 2017-12-22 13:23 - 2017-12-22 13:24 - 000000000 ____D C:\Users\pc\Desktop\geodeo_v108 2017-12-22 13:20 - 2017-12-22 13:23 - 017170374 _____ C:\Users\pc\Desktop\geodeo_v108.rar 2017-12-22 13:15 - 2017-12-22 13:15 - 000001530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk 2017-12-22 12:55 - 2017-12-22 12:55 - 000000000 ____D C:\Users\pc\Desktop\app-smart-descontos 2017-12-22 12:54 - 2017-12-22 12:55 - 018564141 _____ C:\Users\pc\Desktop\bazaar_v102.rar 2017-12-22 12:48 - 2017-12-22 12:49 - 000000000 ____D C:\Users\pc\Desktop\Materia Promocional 2017-12-22 12:44 - 2017-12-22 12:44 - 000000000 ____D C:\Users\pc\Desktop\AtvdR W7 By PH Downs 2017-12-22 11:15 - 2017-12-22 11:29 - 000000000 ____D C:\Users\pc\Downloads\Adobe Illustrator CC 17.0.0 Final Multilanguage [ChingLiu] 2017-12-21 23:45 - 2017-12-21 23:45 - 000020256 _____ C:\Users\pc\Desktop\woocommerce-google-analytics-integration.1.4.3.zip 2017-12-21 23:40 - 2017-12-21 23:40 - 000067900 _____ C:\Users\pc\Desktop\facebook-for-woocommerce.zip 2017-12-21 16:52 - 2017-12-21 16:52 - 000183484 _____ C:\Users\pc\Documents\logo-smart.psd 2017-12-21 16:36 - 2017-12-21 16:36 - 000000000 ____D C:\Users\pc\Desktop\Creative-cyber-monday-badges 2017-12-21 14:32 - 2017-12-21 15:52 - 000000000 ____D C:\Users\pc\Downloads\Illustrator.CC.2017 2017-12-21 14:12 - 2017-12-21 14:12 - 000751208 _____ C:\Users\pc\Desktop\Creative-cyber-monday-badges.zip 2017-12-17 09:53 - 2017-12-17 11:40 - 000000000 ____D C:\Users\pc\Desktop\redmi-5a 2017-12-17 09:04 - 2017-11-30 22:06 - 000000000 ____D C:\Users\pc\Desktop\redmi-5 2017-12-17 01:12 - 2017-11-15 20:17 - 000000000 ____D C:\Users\pc\Desktop\mi-5x 2017-12-17 00:20 - 2017-12-14 19:44 - 000000000 ____D C:\Users\pc\Desktop\mi-band2 2017-12-16 15:13 - 2017-12-16 15:13 - 000002348 _____ C:\Users\pc\web-fonts-control.css 2017-12-16 15:08 - 2017-12-21 18:19 - 000000000 ____D C:\Users\pc\AppData\Roaming\FileZilla 2017-12-16 15:08 - 2017-12-18 00:05 - 000000000 ____D C:\Users\pc\AppData\Local\FileZilla 2017-12-16 15:08 - 2017-12-16 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2017-12-16 15:08 - 2017-12-16 15:08 - 000000000 ____D C:\Program Files\FileZilla FTP Client 2017-12-16 00:03 - 2017-12-16 00:43 - 000000000 ____D C:\Users\pc\AppData\Local\Sublime Text 3 2017-12-16 00:03 - 2017-12-16 00:03 - 000000886 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk 2017-12-16 00:03 - 2017-12-16 00:03 - 000000000 ____D C:\Users\pc\AppData\Roaming\Sublime Text 3 2017-12-16 00:03 - 2017-12-16 00:03 - 000000000 ____D C:\Program Files\Sublime Text 3 2017-12-14 13:19 - 2017-12-14 13:19 - 038639142 _____ C:\Users\pc\Documents\GCam5.1.014-Arnova8G2-v10.1.apk 2017-12-14 12:46 - 2017-12-14 12:46 - 002351011 _____ C:\Users\pc\Documents\com.google.android.apps.nexuslauncher_8.1.0-4429924-401_minAPI21(nodpi)_apkmirror.com.apk 2017-12-14 12:40 - 2017-12-14 12:40 - 029103779 _____ C:\Users\pc\Documents\com.google.android.inputmethod.latin_6.8.8.178714143-release-armeabi-v7a-26680809_minAPI17(armeabi-v7a)(nodpi)_apkmirror.com.apk 2017-12-13 13:34 - 2017-12-13 13:34 - 000079345 _____ C:\Users\pc\Documents\You-Can-Now-Preorder-Apps-on-Apple-App-Store.jpeg 2017-12-13 01:50 - 2017-12-13 01:50 - 000949721 _____ C:\Users\pc\Documents\24794533_1851676495123948_3689072123499773952_n.mp4 2017-12-13 01:43 - 2017-12-13 01:43 - 000000000 ____D C:\Users\pc\Documents\Engine_v1.8] 2017-12-13 01:41 - 2017-12-13 01:41 - 040782865 _____ C:\Users\pc\Documents\Engine_v1.8].rar 2017-12-08 13:45 - 2017-12-08 13:45 - 000324427 _____ C:\Users\pc\Documents\MOSAICO-IURD-DOMINGO.psd 2017-12-07 19:16 - 2017-12-07 19:16 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Temp 2017-12-06 09:12 - 2017-12-06 09:14 - 000000000 ____D C:\7234eabd35e8ebce0ef4ca 2017-11-27 21:36 - 2017-11-27 21:36 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome 2017-11-27 01:16 - 2017-11-27 01:16 - 003946831 _____ C:\Users\pc\Documents\Novo modelo post.psd 2017-11-26 15:58 - 2017-11-26 15:58 - 000000000 ____D C:\Users\pc\AppData\Roaming\Poedit 2017-11-26 15:56 - 2017-11-26 15:56 - 000001033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poedit.lnk 2017-11-26 15:56 - 2017-11-26 15:56 - 000000000 ____D C:\Program Files (x86)\Poedit 2017-11-23 23:12 - 2017-12-22 13:57 - 001601574 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2017-11-23 23:12 - 2017-11-23 23:12 - 000000000 ____D C:\Users\pc\AppData\Roaming\Intel Corporation 2017-11-23 23:06 - 2017-11-23 23:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OSD 2017-11-23 23:05 - 2017-11-23 23:05 - 000003932 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d 2017-11-23 23:05 - 2017-11-23 23:05 - 000003684 _____ C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon 2017-11-23 23:05 - 2017-11-23 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPM 2017-11-23 23:05 - 2012-10-19 10:42 - 000008192 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll 2017-11-23 23:04 - 2017-11-23 23:04 - 000000000 ____D C:\Program Files\Intel 2017-11-23 23:03 - 2017-11-23 23:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2017-11-23 23:03 - 2012-09-01 18:01 - 000647736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys 2017-11-23 23:03 - 2012-09-01 18:01 - 000028216 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys 2017-11-23 23:02 - 2017-11-23 23:06 - 019493888 _____ (OEM) C:\Users\Todos os Usuários\E1010.tmp 2017-11-23 23:02 - 2017-11-23 23:06 - 019493888 _____ (OEM) C:\ProgramData\E1010.tmp 2017-11-23 23:02 - 2017-11-23 23:06 - 000000000 ____D C:\Program Files (x86)\OEM 2017-11-23 23:02 - 2017-11-23 23:02 - 000002607 _____ C:\Users\Public\Desktop\ControlAP II.lnk 2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iBrightness 2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Control AP II 2017-11-23 23:02 - 2017-11-23 23:02 - 000000000 ____D C:\Program Files\OEM 2017-11-23 23:01 - 2017-11-23 23:01 - 000507904 _____ C:\Users\Todos os Usuários\Dri10.tmp 2017-11-23 23:01 - 2017-11-23 23:01 - 000507904 _____ C:\ProgramData\Dri10.tmp 2017-11-23 23:01 - 2012-07-12 18:56 - 000062784 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys 2017-11-23 22:58 - 2017-11-23 22:58 - 000000000 ____D C:\Windows\SysWOW64\SDA 2017-11-23 22:57 - 2012-07-31 11:05 - 000175928 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys 2017-11-23 22:57 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll 2017-11-23 22:57 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll 2017-11-23 01:05 - 2017-11-23 01:05 - 000653617 _____ C:\Users\pc\Documents\Modelo Post.psd ==================== Um Mês Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2017-12-22 14:19 - 2009-07-14 02:45 - 000014208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-12-22 14:19 - 2009-07-14 02:45 - 000014208 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-12-22 14:05 - 2009-07-29 13:49 - 000706108 _____ C:\Windows\system32\prfh0416.dat 2017-12-22 14:05 - 2009-07-29 13:49 - 000147446 _____ C:\Windows\system32\prfc0416.dat 2017-12-22 14:05 - 2009-07-14 03:13 - 001636956 _____ C:\Windows\system32\PerfStringBackup.INI 2017-12-22 14:05 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\inf 2017-12-22 14:00 - 2009-07-14 03:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-12-22 13:47 - 2017-11-17 13:59 - 000000382 _____ C:\Windows\Tasks\update-S-1-5-21-1717954071-391292689-155083303-1000.job 2017-12-22 13:24 - 2017-11-10 06:54 - 000000000 ____D C:\Program Files\Common Files\Adobe 2017-12-22 13:21 - 2017-11-10 06:56 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache 2017-12-22 13:21 - 2017-11-10 06:56 - 000000000 ____D C:\ProgramData\Package Cache 2017-12-22 13:17 - 2017-11-10 06:55 - 000000000 ____D C:\Program Files\Adobe 2017-12-22 13:17 - 2017-11-10 00:32 - 000000000 ____D C:\Users\pc\AppData\Roaming\Adobe 2017-12-22 12:45 - 2017-11-10 01:08 - 000000000 ____D C:\Users\pc\AppData\Roaming\uTorrent 2017-12-22 12:14 - 2017-11-10 10:43 - 000001456 _____ C:\Users\pc\AppData\Local\Adobe Salvar para Web 13.0 Prefs 2017-12-22 11:14 - 2017-11-10 01:10 - 000000000 ____D C:\Users\pc\AppData\LocalLow\uTorrent 2017-12-21 22:37 - 2017-11-17 13:59 - 000000382 _____ C:\Windows\Tasks\update-sys.job 2017-12-21 22:14 - 2017-11-17 14:14 - 000000000 ____D C:\Users\pc\Documents\Lightshot 2017-12-21 14:07 - 2009-07-14 02:45 - 006188808 _____ C:\Windows\system32\FNTCACHE.DAT 2017-12-18 16:01 - 2017-11-10 01:08 - 000406472 _____ C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT 2017-12-18 14:19 - 2017-11-20 13:23 - 000000989 _____ C:\Users\pc\Desktop\Adobe Premiere Pro CC.lnk 2017-12-16 15:13 - 2017-11-09 16:52 - 000000000 ____D C:\Users\pc 2017-12-14 00:43 - 2017-11-10 00:28 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-12-14 00:43 - 2017-11-10 00:28 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-12-05 07:41 - 2017-11-10 00:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-12-04 20:15 - 2017-11-10 00:33 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla 2017-12-04 19:09 - 2017-11-10 00:33 - 000000000 ____D C:\Program Files\Firefox Developer Edition 2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\Users\Todos os Usuários\Intel 2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\ProgramData\Intel 2017-11-23 23:05 - 2017-11-09 23:27 - 000000000 ____D C:\Program Files (x86)\Intel 2017-11-23 23:03 - 2017-11-09 23:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-11-23 23:01 - 2017-11-10 00:30 - 000000000 ____D C:\temp 2017-11-23 22:58 - 2017-11-10 00:31 - 000000000 ____D C:\Program Files (x86)\JMicron ==================== Arquivos na raiz de alguns diretórios ======= 2017-11-10 10:43 - 2017-12-22 12:14 - 000001456 _____ () C:\Users\pc\AppData\Local\Adobe Salvar para Web 13.0 Prefs 2017-11-13 16:02 - 2017-11-13 16:02 - 000000038 _____ () C:\Users\pc\AppData\Local\cloudready_installer_uuid 2017-11-17 13:59 - 2017-11-17 13:59 - 000000003 _____ () C:\Users\pc\AppData\Local\updater.log 2017-11-17 13:59 - 2017-11-17 13:59 - 000000425 _____ () C:\Users\pc\AppData\Local\UserProducts.xml ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente ATENÇÃO: ==> Não foi possível acessar BCD. LastRegBack: 2017-12-09 11:24 ==================== Fim de FRST.txt ============================