cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-10-2015
Ran by Wendel Carvalho (administrator) on DILLA (04-10-2015 07:18:28)
Running from C:\Users\Wendel Carvalho\Desktop
Loaded Profiles: Wendel Carvalho & ReportServer$SQLEXPRESS (Available Profiles: UpdatusUser & Wendel Carvalho & MSSQL$SQLEXPRESS & ReportServer$SQLEXPRESS & MSSQLFDLauncher$SQLEXPRESS)
Platform: Windows 10 Pro (X64) Language: Português (Brasil)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSRS12.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(eBoostr.com) C:\Program Files\eBoostr\EBstrSvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
() C:\Program Files (x86)\ToolsUpdatePlatform\UpdatePlatform.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Konami Digital Entertainment Co., Ltd.) C:\Program Files (x86)\Pro Evolution Soccer 2016\PES2016.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Opera Software) C:\Program Files (x86)\Opera\32.0.1948.69\opera.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-09-18] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944648 2015-08-07] (Synaptics Incorporated)
HKLM-x32\...\Run: [gmsd_br_511] => [X]
HKLM-x32\...\Run: [gmsd_br_523] => [X]
HKLM-x32\...\Run: [gmsd_br_523b] => [X]
HKLM-x32\...\Run: [gmsd_br_560] => [X]
HKLM-x32\...\Run: [gmsd_br_005010005] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [Codec Settings UAC Manager] => C:\WINDOWS\SysWOW64\Codecs\CodecUACManager.exe [60416 2015-09-03] ()
HKLM-x32\...\Run: [mbot_br_014010096] => [X]
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-07-08] (Caixa Economica Federal)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6277912 2014-03-18] (Piriform Ltd)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31280256 2015-04-17] (Skype Technologies S.A.)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [BingSvc] => C:\Users\Wendel Carvalho\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [uTorrent] => C:\Users\Wendel Carvalho\AppData\Roaming\uTorrent\uTorrent.exe [1821536 2015-09-25] (BitTorrent Inc.)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [Spotify Web Helper] => C:\Users\Wendel Carvalho\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2025016 2015-09-26] (Spotify Ltd)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [GoogleChromeAutoLaunch_559201484874E357BC84E11F3108F03F] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240 2015-09-24] (Google Inc.)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\Run: [Spotify] => C:\Users\Wendel Carvalho\AppData\Roaming\Spotify\Spotify.exe [7571000 2015-09-26] (Spotify Ltd)
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\RunOnce: [Uninstall C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\RunOnce: [Uninstall C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\RunOnce: [Uninstall C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\...\RunOnce: [Uninstall C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Wendel Carvalho\AppData\Local\Microsoft\OneDrive\17.3.5907.0716"
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1853256 2015-07-08] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2015-09-25]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\eBoostr Control Panel.lnk [2015-10-03]
ShortcutTarget: eBoostr Control Panel.lnk -> C:\Program Files\eBoostr\eBoostrCP.exe (eBoostr.com)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-3276470861-1064914068-939901412-1002] => 192.168.1.100:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{14160134-e2de-481c-b5aa-13c34c8e4b37}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4d5970b7-32d3-4b53-8c4e-2a3afe58dc04}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&fr=EUsc4l0yRP999idrAAps6xFMHedVIAm3NQ%3D%3D
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1434505837&z=ad56d27b1a26ec0608c93bbgaz3c6z3w5e9w3b7cbc&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=1434505837&z=ad56d27b1a26ec0608c93bbgaz3c6z3w5e9w3b7cbc&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1434505837&z=ad56d27b1a26ec0608c93bbgaz3c6z3w5e9w3b7cbc&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&q={searchTerms}
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.luckysearches.com/web/?type=dspp&ts=1429906446&from=smt&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&q={searchTerms}
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/?type=888596&fr=spigot-yhp-ie
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=1434505837&z=ad56d27b1a26ec0608c93bbgaz3c6z3w5e9w3b7cbc&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952
HKU\S-1-5-21-3276470861-1064914068-939901412-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://br.hao123.com/?tn=sdks_inner_hp_09_hao123_br&fr=EUsc4l0yRP999idrAAps6xFMHedVIAm3NQ%3D%3D
hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=pt-br
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.navegaki.com/?bd=ds&oem=Cube&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&version=2.3.0.8724&pid=414031160&tid=428&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://search.navegaki.com/?bd=ds&oem=Cube&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&version=2.3.0.8724&pid=414031160&tid=428&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {05046B93-CC41-4CF5-84CF-3AC3004B22A7} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {203E169E-879D-413F-99B6-BEBC515139E6} URL = hxxps://br.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=888596&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {5FE67395-2944-4724-8C8F-9F17F3F1B57E} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {6E71E502-B218-4259-86C5-CED6E6306E6C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3276470861-1064914068-939901412-1002 -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952&ts=1434505908&type=default&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-09-09] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-09-09] (Oracle Corporation)
BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-08-24] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-07-08] (Caixa Economica Federal)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-08-24] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-09-09] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-09-09] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.79.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-08-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.79.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2015-08-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{5081D2D4-1637-404c-B74F-50526718257D}] - C:\Program Files\shopperz\Firefox => not found
FF HKLM-x32\...\Firefox\Extensions: [{5081D2D4-1637-404c-B74F-50526718257D}] - C:\Program Files\shopperz\Firefox => not found

Chrome:
=======
CHR HomePage: Default -> hxxp://www.msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=pt-br
CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hp&ts=1434505837&z=ad56d27b1a26ec0608c93bbgaz3c6z3w5e9w3b7cbc&from=cmi&uid=ST500LM012XHN-M500MBB_S2TAJ5AC902952"
CHR Profile: C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-25]
CHR Extension: (YouTube) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-25]
CHR Extension: (Adblock Plus) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-04-28]
CHR Extension: (Google Search) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-25]
CHR Extension: (ShortOrange - The Cloud Podcast Player) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbgedljgicfnmjkpbblhbmkfocceckb [2015-04-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-10]
CHR Extension: (AdBlock) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-28]
CHR Extension: (Motorola Connect) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\kigmoblgooahdmdibodmcnffgnejlndh [2015-05-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-16]
CHR Extension: (Skype Click to Call) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-11]
CHR Extension: (WeVideo - Criador e Editor de Vídeos) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgjbfikepgflmlelgfgecmgjnmnmnnb [2015-09-24]
CHR Extension: (Gmail) - C:\Users\Wendel Carvalho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-25]
CHR HKU\S-1-5-21-3276470861-1064914068-939901412-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

Opera:
=======
OPR StartupUrls: "hxxp://www.google.com/"],"urls_signature":"eGkvsGq1inABnhxdNYncmmQ2AGec6YEKz3LX7TSbuVYu+tipajt2IArBRC87eiFX"},"speeddial":{"bookmarks_folder_guid":"E7002D1F-0C93-45E5-A644-ABB561029020","imported_to_bookmarks":true},"spellcheck":{"dictionaries":["pt-BR"
OPR Extension: (adblockforopera) - C:\Users\Wendel Carvalho\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2015-08-30]
OPR Extension: (Ghostery) - C:\Users\Wendel Carvalho\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2015-07-22]
OPR Extension: (dr34polw) - C:\Users\Wendel Carvalho\AppData\Roaming\Opera Software\Opera Stable\Extensions\cgdogbijachehheddakopmfjahhgmmma [2015-05-19]
OPR Extension: (Adblock Plus) - C:\Users\Wendel Carvalho\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-05-19]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593152 2014-01-29] (Samsung Electronics CO., LTD.)
R2 EBOOSTRSVC; C:\Program Files\eBoostr\EBstrSvc.exe [814824 2013-08-27] (eBoostr.com)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [565560 2015-01-20] (GAS Tecnologia)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328624 2015-08-07] (Intel Corporation)
S2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [370368 2015-06-10] (Microsoft Corporation)
S3 MSSQLFDLauncher$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\fdlauncher.exe [50880 2014-02-21] (Microsoft Corporation)
R2 ReportServer$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSRS12.SQLEXPRESS\Reporting Services\ReportServer\bin\ReportingServicesService.exe [2450112 2014-02-21] (Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-06-10] (Microsoft Corporation)
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3014488 2015-03-24] (Samsung Electronics CO., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-06-05] (Disc Soft Ltd)
S0 eBoost; C:\Windows\System32\drivers\eBoost.sys [190184 2013-08-27] (eBoostr.com)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [21720 2015-08-11] (GAS Tecnologia)
R2 IntelHaxm; C:\Windows\system32\DRIVERS\IntelHaxm.sys [84992 2015-01-30] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [193336 2015-09-10] (Intel Corporation)
R1 ppfd_vw_1_10_0_24; C:\Windows\System32\drivers\ppfd_vw_1_10_0_24.sys [57744 2015-09-02] (PhraseProfessor)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider)
S4 RsFx0300; C:\Windows\System32\DRIVERS\RsFx0300.sys [247488 2014-02-21] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-05-19] (GAS Tecnologia LTDA)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S1 UGKrnlDrv; \??\C:\Program Files (x86)\UPCleaner\0.9.30.12075\UGKrnlDrv64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-04 07:18 - 2015-10-04 07:19 - 00026331 _____ C:\Users\Wendel Carvalho\Desktop\FRST.txt
2015-10-04 07:18 - 2015-10-04 07:18 - 00000000 ____D C:\FRST
2015-10-04 07:16 - 2015-10-04 07:18 - 02193408 _____ (Farbar) C:\Users\Wendel Carvalho\Desktop\FRST64.exe
2015-10-04 07:06 - 2015-10-04 07:06 - 00000000 ____D C:\teste de espera
2015-10-04 07:05 - 2015-10-04 07:05 - 00593693 _____ C:\Users\Wendel Carvalho\Desktop\Autoruns.zip
2015-10-04 06:57 - 2015-10-04 06:57 - 00016148 _____ C:\WINDOWS\system32\DILLA_Wendel Carvalho_HistoryPrediction.bin
2015-10-03 23:04 - 2015-10-03 23:12 - 00001695 _____ C:\Users\Wendel Carvalho\Desktop\PES2016 - Atalho.lnk
2015-10-03 22:59 - 2015-10-03 23:09 - 00000000 ____D C:\Users\Wendel Carvalho\Desktop\Nova pasta
2015-10-03 22:56 - 2015-10-03 22:56 - 00000926 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016.lnk
2015-10-03 14:01 - 2015-10-03 14:08 - 00000000 ____D C:\Users\Todos os Usuários\eboostr
2015-10-03 14:01 - 2015-10-03 14:08 - 00000000 ____D C:\ProgramData\eboostr
2015-10-03 14:01 - 2015-10-03 14:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBoostr
2015-10-03 14:01 - 2015-10-03 14:01 - 00000000 ____D C:\Program Files\eBoostr
2015-10-01 16:55 - 2015-10-01 16:55 - 00000570 _____ C:\Users\Wendel Carvalho\Desktop\registryg.txt
2015-10-01 16:55 - 2015-10-01 16:55 - 00000570 _____ C:\Users\Wendel Carvalho\Desktop\registry.txt
2015-09-29 18:14 - 2015-09-29 18:15 - 00000000 ____D C:\Users\Wendel Carvalho\Documents\KONAMI
2015-09-29 17:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-09-29 17:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-09-29 17:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-09-29 17:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-09-29 17:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-09-29 17:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-09-29 17:41 - 2015-10-03 23:07 - 00000000 ____D C:\Program Files (x86)\Pro Evolution Soccer 2016
2015-09-29 16:46 - 2015-09-29 16:46 - 00042496 _____ C:\Users\Wendel Carvalho\Desktop\gfSubtitlePlayer.exe
2015-09-28 04:19 - 2015-10-04 06:58 - 00000462 _____ C:\WINDOWS\Tasks\ToolsUpdatePlatform_ScheduledTask.job
2015-09-28 04:19 - 2015-09-28 04:19 - 00003630 _____ C:\WINDOWS\System32\Tasks\ToolsUpdatePlatform_ScheduledTask
2015-09-28 04:19 - 2015-09-28 04:19 - 00000000 ____D C:\Program Files (x86)\ToolsUpdatePlatform
2015-09-27 01:16 - 2015-09-27 01:16 - 00003292 _____ C:\WINDOWS\System32\Tasks\JetBoost_AutoUpdate
2015-09-27 01:16 - 2015-09-27 01:16 - 00001230 _____ C:\Users\Public\Desktop\Quick Boost.lnk
2015-09-27 01:16 - 2015-09-27 01:16 - 00000000 ____D C:\Users\Todos os Usuários\BlueSprig
2015-09-27 01:16 - 2015-09-27 01:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBoost
2015-09-27 01:16 - 2015-09-27 01:16 - 00000000 ____D C:\ProgramData\BlueSprig
2015-09-27 01:16 - 2015-09-27 01:16 - 00000000 ____D C:\Program Files (x86)\BlueSprig
2015-09-27 01:10 - 2015-09-27 01:10 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Local\GZero
2015-09-27 01:07 - 2015-09-27 02:24 - 00001332 _____ C:\Users\Wendel Carvalho\Desktop\Rastreador Para O Torrent.txt
2015-09-27 00:48 - 2015-09-27 00:51 - 01821536 _____ (BitTorrent Inc.) C:\Users\Wendel Carvalho\Desktop\uTorrent.exe
2015-09-27 00:04 - 2015-09-27 00:04 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\LocalLow\Temp
2015-09-26 23:41 - 2015-09-26 23:41 - 00000000 ____D C:\$SysReset
2015-09-26 13:59 - 2015-09-27 01:13 - 00007085 _____ C:\Users\Wendel Carvalho\GBoost_Bootstrap.log
2015-09-26 13:59 - 2015-09-26 13:59 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\GZero
2015-09-26 13:59 - 2015-09-26 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GBoost
2015-09-26 13:59 - 2015-09-26 13:59 - 00000000 ____D C:\Program Files (x86)\GBoost
2015-09-26 13:46 - 2015-09-26 13:46 - 00000000 ____D C:\Program Files (x86)\Counter-Strike Source
2015-09-26 10:00 - 2015-09-26 12:40 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-09-26 10:00 - 2015-09-26 12:39 - 00000000 ____D C:\Program Files\Rockstar Games
2015-09-25 20:14 - 2015-09-25 20:14 - 00004354 _____ C:\WINDOWS\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.24 Pending Update
2015-09-25 20:14 - 2015-09-25 20:14 - 00004324 _____ C:\WINDOWS\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.24 Core
2015-09-25 17:41 - 2015-09-25 17:41 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-09-25 17:40 - 2015-09-25 17:41 - 00000000 ____D C:\Program Files (x86)\FormatFactory
2015-09-25 17:15 - 2015-10-04 06:58 - 00000000 ____D C:\Users\Todos os Usuários\ToolsUpdatePlatform
2015-09-25 17:15 - 2015-10-04 06:58 - 00000000 ____D C:\ProgramData\ToolsUpdatePlatform
2015-09-25 17:15 - 2015-09-25 17:15 - 00000000 ____D C:\Users\Public\Documents\Guid
2015-09-25 17:07 - 2015-09-26 13:27 - 00000000 ____D C:\Program Files (x86)\UPCleaner
2015-09-25 17:01 - 2015-09-25 17:01 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\MPC-HC
2015-09-25 16:57 - 2015-09-25 16:59 - 00000000 ____D C:\WINDOWS\SysWOW64\Codecs
2015-09-25 16:57 - 2015-09-25 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player - Codec Pack
2015-09-25 15:38 - 2015-09-28 08:43 - 00000000 ____D C:\Users\Wendel Carvalho\Downloads\FIFA 16 Super Deluxe Edition -SKIDROWCRACK
2015-09-18 15:44 - 2015-09-18 15:44 - 00003194 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2015-09-18 15:42 - 2015-09-18 15:42 - 72130584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-09-18 15:42 - 2015-09-18 15:42 - 07181616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 07106408 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 03310776 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 03269440 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 02937064 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 02869360 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-09-18 15:42 - 2015-09-18 15:42 - 02721512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-09-18 15:42 - 2015-09-18 15:42 - 02649032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 02060400 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 01991784 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 01804936 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 01767144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 01613720 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 01532392 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 01351176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00982248 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00759208 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00744056 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00724752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00694032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00693032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00661384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00633872 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00589640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00547344 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00518984 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00461968 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00458016 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00453848 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00399464 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00357016 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00342280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00340648 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00334808 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00333288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00285440 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00266488 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00266416 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00263944 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00242768 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00232712 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00225504 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00221648 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00187280 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00177992 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00163472 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00145704 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00132544 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00130032 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00122240 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00100544 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00099496 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00097912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00095688 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-09-18 15:42 - 2015-09-18 15:42 - 00094664 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-09-16 18:01 - 2015-09-28 09:42 - 00000000 ___RD C:\Users\Wendel Carvalho\3D Objects
2015-09-16 17:54 - 2015-09-16 17:55 - 45067320 _____ C:\Users\libcef.dll
2015-09-16 17:54 - 2015-09-16 17:55 - 10207504 _____ C:\Users\icudtl.dat
2015-09-16 17:54 - 2015-09-16 17:55 - 07535672 _____ (Spotify Ltd) C:\Users\Spotify.exe
2015-09-16 17:54 - 2015-09-16 17:55 - 04487782 _____ C:\Users\devtools_resources.pak
2015-09-16 17:54 - 2015-09-16 17:55 - 03457592 _____ (Microsoft Corporation) C:\Users\d3dcompiler_47.dll
2015-09-16 17:54 - 2015-09-16 17:55 - 02184260 _____ C:\Users\cef.pak
2015-09-16 17:54 - 2015-09-16 17:55 - 02157553 _____ C:\Users\Apps\glue-resources.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 02106424 _____ (Microsoft Corporation) C:\Users\d3dcompiler_43.dll
2015-09-16 17:54 - 2015-09-16 17:55 - 02018360 _____ (Spotify Ltd) C:\Users\SpotifyWebHelper.exe
2015-09-16 17:54 - 2015-09-16 17:55 - 01867297 _____ C:\Users\Apps\musixmatch-lyrics-cp.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 01649208 _____ C:\Users\libGLESv2.dll
2015-09-16 17:54 - 2015-09-16 17:55 - 00967736 _____ (The Chromium Authors) C:\Users\ffmpegsumo.dll
2015-09-16 17:54 - 2015-09-16 17:55 - 00900495 _____ C:\Users\Apps\zlink.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00839224 _____ (Spotify Ltd) C:\Users\SpotifyCrashService.exe
2015-09-16 17:54 - 2015-09-16 17:55 - 00768038 _____ C:\Users\Apps\playlist-desktop.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00761075 _____ C:\Users\Apps\artist.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00750083 _____ C:\Users\Apps\browse.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00622967 _____ C:\Users\cef_200_percent.pak
2015-09-16 17:54 - 2015-09-16 17:55 - 00607382 _____ C:\Users\Apps\local-files-desktop.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00555515 _____ C:\Users\Apps\genre.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00549988 _____ C:\Users\Apps\notification-center.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00538456 _____ C:\Users\Apps\settings.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00528578 _____ C:\Users\Apps\collection.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00520851 _____ C:\Users\Apps\collection-artist.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00520120 _____ C:\Users\Apps\discover.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00488825 _____ C:\Users\Apps\album.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00487229 _____ C:\Users\Apps\article.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00478891 _____ C:\Users\Apps\messages.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00468951 _____ C:\Users\cef_100_percent.pak
2015-09-16 17:54 - 2015-09-16 17:55 - 00466223 _____ C:\Users\Apps\collection-album.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00456502 _____ C:\Users\Apps\social-feed.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00453236 _____ C:\Users\Apps\charts.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00449780 _____ C:\Users\snapshot_blob.bin
2015-09-16 17:54 - 2015-09-16 17:55 - 00410937 _____ C:\Users\natives_blob.bin
2015-09-16 17:54 - 2015-09-16 17:55 - 00398127 _____ C:\Users\Apps\zlogin.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00395528 _____ C:\Users\Apps\collection-songs.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00387716 _____ C:\Users\Apps\social-chart.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00378993 _____ C:\Users\Apps\creator-about-modals.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00369607 _____ C:\Users\Apps\buddy-list.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00336806 _____ C:\Users\Apps\radio.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00321096 _____ C:\Users\Apps\chart.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00285977 _____ C:\Users\Apps\folder.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00277789 _____ C:\Users\Apps\share.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00261124 _____ C:\Users\Apps\zlink-queue.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00246967 _____ C:\Users\Apps\profile.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00236915 _____ C:\Users\Apps\search.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00218391 _____ C:\Users\Apps\findfriends.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00195849 _____ C:\Users\Apps\hub.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00186702 _____ C:\Users\Apps\suggest.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00158229 _____ C:\Users\Apps\follow.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00098360 _____ (Spotify Ltd) C:\Users\SpotifyLauncher.exe
2015-09-16 17:54 - 2015-09-16 17:55 - 00088762 _____ C:\Users\Apps\about.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00080952 _____ C:\Users\libEGL.dll
2015-09-16 17:54 - 2015-09-16 17:55 - 00078348 _____ C:\Users\Apps\error.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00073272 _____ C:\Users\wow_helper.exe
2015-09-16 17:54 - 2015-09-16 17:55 - 00053462 _____ C:\Users\Apps\ad.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00050934 _____ C:\Users\Apps\licenses.spa
2015-09-16 17:54 - 2015-09-16 17:55 - 00014086 _____ C:\Users\locales\en-US.pak
2015-09-16 17:54 - 2015-09-16 17:55 - 00009273 _____ C:\Users\locales\el.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00008384 _____ C:\Users\locales\ru.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00008121 _____ C:\Users\locales\ja.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007783 _____ C:\Users\locales\fr-CA.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007735 _____ C:\Users\locales\hu.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007669 _____ C:\Users\locales\pl.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007662 _____ C:\Users\locales\fr.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007627 _____ C:\Users\locales\fi.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007542 _____ C:\Users\locales\es-419.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007515 _____ C:\Users\locales\nl.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007499 _____ C:\Users\locales\es.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007490 _____ C:\Users\locales\de.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007475 _____ C:\Users\locales\it.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007461 _____ C:\Users\locales\tr.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007404 _____ C:\Users\locales\zsm.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007402 _____ C:\Users\locales\pt-BR.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007385 _____ C:\Users\locales\sv.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007290 _____ C:\Users\locales\zh-Hant.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007133 _____ C:\Users\locales\arb.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00007062 _____ C:\Users\locales\en.mo
2015-09-16 17:54 - 2015-09-16 17:55 - 00000020 _____ C:\Users\inst_ver.dat
2015-09-16 17:54 - 2015-09-16 17:55 - 00000000 ____D C:\Users\locales
2015-09-16 17:54 - 2015-09-16 17:55 - 00000000 _____ C:\Users\Wendel.redir
2015-09-11 16:18 - 2015-09-11 16:18 - 00000000 ____D C:\Users\Usuário Padrão\Documents\Visual Studio 2010
2015-09-11 16:18 - 2015-09-11 16:18 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2015-09-11 16:18 - 2015-09-11 16:18 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2015-09-11 16:15 - 2014-02-21 05:20 - 00248512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SQSRVRES.DLL
2015-09-10 23:25 - 2015-09-10 23:26 - 00000004 _____ C:\Users\Wendel Carvalho\Desktop\kl.sql
2015-09-10 23:12 - 2015-09-10 23:12 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\Microsoft Corporation
2015-09-10 19:21 - 2014-02-21 05:20 - 00056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQL12.SQLEXPRESS-sqlagtctr.dll
2015-09-10 19:21 - 2014-02-21 05:20 - 00052416 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-ReportServer$SQLEXPRESS-rsctr12.0.2000.8.dll
2015-09-10 19:21 - 2014-02-21 05:20 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-MSSQL12.SQLEXPRESS-sqlagtctr.dll
2015-09-10 19:21 - 2014-02-21 05:20 - 00045760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-ReportServer$SQLEXPRESS-rsctr12.0.2000.8.dll
2015-09-10 19:20 - 2014-02-21 05:20 - 00103104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQL$SQLEXPRESS-sqlctr12.0.2000.8.dll
2015-09-10 19:20 - 2014-02-21 05:20 - 00088768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf-MSSQL$SQLEXPRESS-sqlctr12.0.2000.8.dll
2015-09-10 19:08 - 2015-09-10 19:08 - 00000000 ____D C:\WINDOWS\system32\RsFx
2015-09-10 19:07 - 2015-09-10 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2015-09-10 19:04 - 2015-09-10 19:04 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2015-09-10 19:04 - 2015-09-10 19:04 - 00000000 ____D C:\WINDOWS\system32\1033
2015-09-10 19:03 - 2015-09-11 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2014
2015-09-10 19:00 - 2015-09-10 19:04 - 00000000 ____D C:\WINDOWS\SysWOW64\1046
2015-09-10 18:58 - 2015-09-11 16:08 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-09-10 14:23 - 2015-09-10 14:23 - 00193336 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-09-10 13:05 - 2015-09-10 13:05 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\LocalLow\Intel
2015-09-10 13:03 - 2015-09-10 13:03 - 00003340 _____ C:\WINDOWS\System32\Tasks\{91A25979-7BE2-4766-9529-2B93AE6CBFAE}
2015-09-10 00:24 - 2015-08-27 03:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-10 00:24 - 2015-08-27 02:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-10 00:24 - 2015-08-27 02:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-10 00:24 - 2015-08-27 02:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-10 00:23 - 2015-09-01 22:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-10 00:23 - 2015-09-01 21:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-10 00:23 - 2015-09-01 21:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-10 00:23 - 2015-08-27 03:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-10 00:23 - 2015-08-27 03:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 00:23 - 2015-08-27 02:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-10 00:23 - 2015-08-27 02:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-10 00:23 - 2015-08-27 02:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-10 00:23 - 2015-08-27 02:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-10 00:23 - 2015-08-27 02:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 00:23 - 2015-08-27 02:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-10 00:23 - 2015-08-27 02:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-10 00:23 - 2015-08-27 02:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-10 00:23 - 2015-08-27 02:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-10 00:23 - 2015-08-27 02:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-10 00:23 - 2015-08-27 02:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-10 00:23 - 2015-08-27 02:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 00:23 - 2015-08-27 02:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-10 00:23 - 2015-08-27 02:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-10 00:23 - 2015-08-27 02:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-10 00:23 - 2015-08-27 02:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-10 00:23 - 2015-08-27 02:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-10 00:23 - 2015-08-27 02:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-10 00:23 - 2015-08-27 02:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-10 00:23 - 2015-08-27 02:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-10 00:23 - 2015-08-27 02:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-10 00:23 - 2015-08-27 02:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-10 00:23 - 2015-08-27 02:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-10 00:08 - 2015-09-10 00:08 - 00000020 ___SH C:\Users\ReportServer\ntuser.ini
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Modelos
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Meus Documentos
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Menu Iniciar
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Documents\Minhas Músicas
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Documents\Minhas Imagens
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Documents\Meus Vídeos
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Dados de Aplicativos
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Configurações Locais
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\AppData\Local\Histórico
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\AppData\Local\Dados de Aplicativos
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Ambiente de Rede
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 _SHDL C:\Users\ReportServer\Ambiente de Impressão
2015-09-10 00:08 - 2015-09-10 00:08 - 00000000 ____D C:\Users\ReportServer
2015-09-10 00:08 - 2015-08-15 20:52 - 00000000 ___RD C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-10 00:08 - 2015-08-07 12:33 - 00000000 ____D C:\Users\ReportServer\AppData\Local\Microsoft Help
2015-09-10 00:08 - 2015-07-10 08:04 - 00000000 __RSD C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-10 00:08 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-10 00:08 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-10 00:08 - 2015-07-10 08:04 - 00000000 ____D C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-10 00:08 - 2014-03-18 07:46 - 00000369 _____ C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-10 00:08 - 2014-03-18 07:46 - 00000369 _____ C:\Users\ReportServer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-10 00:07 - 2015-09-10 00:07 - 00000020 ___SH C:\Users\MSSQLSERVER\ntuser.ini
2015-09-10 00:07 - 2015-09-10 00:07 - 00000020 ___SH C:\Users\MSSQLFDLauncher\ntuser.ini
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Modelos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Meus Documentos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Menu Iniciar
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Documents\Minhas Músicas
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Documents\Minhas Imagens
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Documents\Meus Vídeos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Dados de Aplicativos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Configurações Locais
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\AppData\Local\Histórico
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\AppData\Local\Dados de Aplicativos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Ambiente de Rede
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLSERVER\Ambiente de Impressão
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Modelos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Meus Documentos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Menu Iniciar
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Documents\Minhas Músicas
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Documents\Minhas Imagens
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Documents\Meus Vídeos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Dados de Aplicativos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Configurações Locais
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\AppData\Local\Histórico
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\AppData\Local\Dados de Aplicativos
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Ambiente de Rede
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 _SHDL C:\Users\MSSQLFDLauncher\Ambiente de Impressão
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 ____D C:\Users\MSSQLSERVER
2015-09-10 00:07 - 2015-09-10 00:07 - 00000000 ____D C:\Users\MSSQLFDLauncher
2015-09-10 00:07 - 2015-08-15 20:52 - 00000000 ___RD C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-10 00:07 - 2015-08-15 20:52 - 00000000 ___RD C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-10 00:07 - 2015-08-07 12:33 - 00000000 ____D C:\Users\MSSQLSERVER\AppData\Local\Microsoft Help
2015-09-10 00:07 - 2015-08-07 12:33 - 00000000 ____D C:\Users\MSSQLFDLauncher\AppData\Local\Microsoft Help
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 __RSD C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 __RSD C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 ____D C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-10 00:07 - 2015-07-10 08:04 - 00000000 ____D C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-10 00:07 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-10 00:07 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-10 00:07 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-10 00:07 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQLFDLauncher\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-09 23:08 - 2015-09-09 23:08 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-09-09 22:10 - 2015-09-09 22:10 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Local\Microsoft_Corporation
2015-09-09 22:09 - 2015-10-01 16:49 - 00000000 ____D C:\Users\ReportServer$SQLEXPRESS
2015-09-09 22:09 - 2015-09-09 22:09 - 00000020 ___SH C:\Users\ReportServer$SQLEXPRESS\ntuser.ini
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Modelos
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Meus Documentos
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Menu Iniciar
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Documents\Minhas Músicas
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Documents\Minhas Imagens
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Documents\Meus Vídeos
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Dados de Aplicativos
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Configurações Locais
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\AppData\Local\Histórico
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\AppData\Local\Dados de Aplicativos
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Ambiente de Rede
2015-09-09 22:09 - 2015-09-09 22:09 - 00000000 _SHDL C:\Users\ReportServer$SQLEXPRESS\Ambiente de Impressão
2015-09-09 22:09 - 2015-08-15 20:52 - 00000000 ___RD C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-09 22:09 - 2015-08-07 12:33 - 00000000 ____D C:\Users\ReportServer$SQLEXPRESS\AppData\Local\Microsoft Help
2015-09-09 22:09 - 2015-07-10 08:04 - 00000000 __RSD C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-09 22:09 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-09 22:09 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-09 22:09 - 2015-07-10 08:04 - 00000000 ____D C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-09 22:09 - 2014-03-18 07:46 - 00000369 _____ C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-09 22:09 - 2014-03-18 07:46 - 00000369 _____ C:\Users\ReportServer$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-09 22:08 - 2015-09-27 23:33 - 00000000 ____D C:\Users\MSSQLFDLauncher$SQLEXPRESS
2015-09-09 22:08 - 2015-09-27 16:25 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS
2015-09-09 22:08 - 2015-09-09 22:08 - 00000020 ___SH C:\Users\MSSQLFDLauncher$SQLEXPRESS\ntuser.ini
2015-09-09 22:08 - 2015-09-09 22:08 - 00000020 ___SH C:\Users\MSSQL$SQLEXPRESS\ntuser.ini
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Modelos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Meus Documentos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Menu Iniciar
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Documents\Minhas Músicas
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Documents\Minhas Imagens
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Documents\Meus Vídeos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Dados de Aplicativos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Configurações Locais
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Local\Histórico
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Local\Dados de Aplicativos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Ambiente de Rede
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQLFDLauncher$SQLEXPRESS\Ambiente de Impressão
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Modelos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Meus Documentos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Menu Iniciar
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Documents\Minhas Músicas
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Documents\Minhas Imagens
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Documents\Meus Vídeos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Dados de Aplicativos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Configurações Locais
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\AppData\Local\Histórico
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\AppData\Local\Dados de Aplicativos
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Ambiente de Rede
2015-09-09 22:08 - 2015-09-09 22:08 - 00000000 _SHDL C:\Users\MSSQL$SQLEXPRESS\Ambiente de Impressão
2015-09-09 22:08 - 2015-08-15 20:52 - 00000000 ___RD C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-09 22:08 - 2015-08-15 20:52 - 00000000 ___RD C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-09 22:08 - 2015-08-07 12:33 - 00000000 ____D C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Local\Microsoft Help
2015-09-09 22:08 - 2015-08-07 12:33 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS\AppData\Local\Microsoft Help
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 __RSD C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 __RSD C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 ___RD C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 ____D C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-09 22:08 - 2015-07-10 08:04 - 00000000 ____D C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-09 22:08 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-09 22:08 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQLFDLauncher$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-09 22:08 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-09 22:08 - 2014-03-18 07:46 - 00000369 _____ C:\Users\MSSQL$SQLEXPRESS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-09 22:07 - 2015-09-09 22:07 - 00000000 ____D C:\Users\Wendel Carvalho\Documents\SQL Server Management Studio
2015-09-09 22:03 - 2014-02-21 05:27 - 00172224 _____ (Microsoft Corporation) C:\WINDOWS\system32\hadrres.dll
2015-09-09 22:03 - 2014-02-21 05:27 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fssres.dll
2015-09-09 21:51 - 2015-09-09 21:51 - 00000000 ____D C:\Users\Wendel Carvalho\Documents\Visual Studio 2010
2015-09-09 21:49 - 2015-09-10 19:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2015-09-09 21:46 - 2015-09-10 19:04 - 00000000 ____D C:\WINDOWS\system32\1046
2015-09-09 21:46 - 2015-09-09 21:46 - 00000000 ____D C:\WINDOWS\symbols
2015-09-09 21:46 - 2015-09-09 21:46 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-09-09 21:46 - 2015-09-09 21:46 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\JetBrains
2015-09-09 21:46 - 2015-09-09 21:46 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
2015-09-09 21:46 - 2015-09-09 21:46 - 00000000 ____D C:\Program Files\Microsoft Help Viewer
2015-09-09 21:46 - 2015-09-09 21:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-09-09 21:45 - 2015-09-09 21:45 - 00000000 ____D C:\Users\Wendel Carvalho\.AndroidStudio1.3
2015-09-09 21:44 - 2015-09-09 21:44 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\LocalLow\Oracle
2015-09-09 21:44 - 2015-09-09 21:41 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-09-09 21:41 - 2015-09-09 21:44 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2015-09-09 21:41 - 2015-09-09 21:44 - 00000000 ____D C:\ProgramData\Oracle
2015-09-09 21:39 - 2015-09-09 21:41 - 00000000 ____D C:\Program Files\Java
2015-09-09 21:37 - 2015-09-11 16:08 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-09-09 21:33 - 2015-09-09 21:33 - 00000000 ____D C:\Program Files\SQL

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-04 07:10 - 2015-06-05 09:03 - 00000000 ____D C:\Users\Todos os Usuários\KONAMI
2015-10-04 07:10 - 2015-06-05 09:03 - 00000000 ____D C:\ProgramData\KONAMI
2015-10-04 07:10 - 2012-09-12 00:09 - 00000000 ____D C:\temp
2015-10-04 07:01 - 2015-04-14 23:08 - 00004182 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D69ACBE4-B5FF-4D98-ABC0-07CF2E7B450C}
2015-10-04 06:58 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-04 06:58 - 2015-05-12 23:01 - 00001084 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-03 23:42 - 2015-04-28 21:07 - 00000902 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-03 23:26 - 2015-05-12 23:01 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-03 20:55 - 2015-08-09 18:27 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\Spotify
2015-10-03 19:06 - 2015-08-09 18:30 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Local\Spotify
2015-10-03 15:40 - 2015-05-05 20:33 - 00000515 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-10-03 15:19 - 2015-06-04 15:09 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\uTorrent
2015-10-03 15:05 - 2015-05-05 18:26 - 00000000 ____D C:\Users\Wendel Carvalho\Downloads\Marcos Brasil
2015-10-01 16:57 - 2015-04-25 08:58 - 00003940 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1429963127
2015-10-01 16:57 - 2015-04-25 08:58 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-10-01 16:57 - 2015-04-25 08:51 - 00000000 ____D C:\Program Files (x86)\Opera
2015-10-01 16:54 - 2015-08-07 12:42 - 02147452 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-01 16:54 - 2015-07-10 13:36 - 00906058 _____ C:\WINDOWS\system32\prfh0416.dat
2015-10-01 16:54 - 2015-07-10 13:36 - 00205708 _____ C:\WINDOWS\system32\prfc0416.dat
2015-10-01 16:50 - 2015-07-10 09:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-01 16:50 - 2015-05-11 18:53 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2015-10-01 16:49 - 2015-07-10 06:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-01 16:44 - 2015-04-05 23:02 - 00430080 ___SH C:\Users\Wendel Carvalho\Desktop\Thumbs.db
2015-10-01 16:43 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-30 17:04 - 2015-08-07 12:27 - 00000000 ____D C:\Users\Wendel Carvalho
2015-09-27 18:28 - 2015-04-20 12:28 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\Macromedia
2015-09-27 18:28 - 2015-04-11 12:18 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Roaming\Adobe
2015-09-27 15:35 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-09-26 23:48 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-26 14:41 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-26 13:27 - 2015-08-07 14:37 - 00000798 __RSH C:\Users\Todos os Usuários\ntuser.pol
2015-09-26 13:27 - 2015-08-07 14:37 - 00000798 __RSH C:\ProgramData\ntuser.pol
2015-09-26 13:16 - 2015-06-09 22:36 - 00000080 _____ C:\Users\Wendel Carvalho\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-09-26 12:58 - 2015-04-13 17:54 - 00000000 ____D C:\Program Files (x86)\Samsung
2015-09-25 17:44 - 2015-07-10 07:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-25 17:43 - 2015-07-10 07:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-09-25 17:43 - 2015-07-10 07:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-09-25 17:43 - 2015-07-10 07:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-09-25 17:43 - 2015-07-10 07:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-09-25 17:43 - 2015-07-10 07:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-09-21 22:35 - 2015-04-28 21:07 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-09-21 17:43 - 2015-04-28 21:07 - 00004032 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-09-19 15:00 - 2015-08-07 13:04 - 00002405 _____ C:\Users\Wendel Carvalho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-19 15:00 - 2015-04-11 12:23 - 00000000 __RDO C:\Users\Wendel Carvalho\OneDrive
2015-09-18 15:45 - 2015-04-11 12:38 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2015-09-18 15:45 - 2015-04-11 12:38 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-18 15:43 - 2015-08-07 12:23 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-09-18 15:42 - 2015-06-24 22:59 - 03001320 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-09-18 15:42 - 2015-06-24 22:57 - 04519144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-09-18 15:42 - 2015-06-24 22:57 - 00032392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-09-16 18:21 - 2015-05-12 23:01 - 00004146 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 18:21 - 2015-05-12 23:01 - 00003914 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-16 17:31 - 2015-04-11 12:18 - 00000000 ____D C:\Users\Wendel Carvalho\AppData\Local\Packages
2015-09-15 13:12 - 2015-08-15 20:56 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 13:12 - 2015-08-15 20:56 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-11 16:19 - 2013-08-22 10:25 - 00000167 _____ C:\WINDOWS\win.ini
2015-09-10 19:16 - 2015-04-11 12:38 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-09-10 19:08 - 2015-07-10 08:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-10 18:42 - 2015-07-10 09:20 - 00348560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-10 18:39 - 2015-07-10 13:50 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 18:39 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-10 13:34 - 2015-04-17 00:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-10 13:05 - 2015-08-07 12:23 - 00000000 ____D C:\Program Files\Intel
2015-09-10 13:05 - 2015-04-13 19:04 - 00000000 ____D C:\Users\Todos os Usuários\Intel
2015-09-10 13:05 - 2015-04-13 19:04 - 00000000 ____D C:\ProgramData\Intel
2015-09-10 13:05 - 2015-04-13 18:59 - 00000000 ____D C:\Program Files (x86)\Intel
2015-09-10 13:04 - 2015-04-25 09:07 - 00000000 ____D C:\Program Files\CCleaner
2015-09-10 12:59 - 2015-08-24 22:46 - 00000000 ____D C:\Users\Wendel Carvalho\.android
2015-09-10 12:59 - 2015-08-24 22:34 - 00000000 ____D C:\Program Files\Android
2015-09-09 23:30 - 2015-07-10 08:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-09 23:18 - 2015-05-18 13:47 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2015-09-09 23:18 - 2015-05-18 13:47 - 00000000 ____D C:\ProgramData\GbPlugin
2015-09-09 21:40 - 2015-08-24 22:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-09 21:40 - 2015-08-24 22:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit

==================== Files in the root of some directories =======

2015-04-19 09:20 - 2015-04-19 09:20 - 0005872 _____ () C:\Users\Wendel Carvalho\AppData\Roaming\hUdjpqpJ
2015-04-20 10:45 - 2015-04-20 10:45 - 1579520 _____ () C:\Users\Wendel Carvalho\AppData\Roaming\hUdjpqpJ.exe
2015-04-19 09:20 - 2015-04-19 09:20 - 0005872 _____ () C:\Users\Wendel Carvalho\AppData\Roaming\LlAFSZV862Us9JqhFeEkB4
2015-04-20 10:45 - 2015-04-20 10:45 - 1579520 _____ () C:\Users\Wendel Carvalho\AppData\Roaming\LlAFSZV862Us9JqhFeEkB4.exe
2015-04-19 09:20 - 2015-04-19 09:20 - 0005872 _____ () C:\Users\Wendel Carvalho\AppData\Roaming\YFrDLBtiSXBZK4
2015-04-20 10:45 - 2015-04-20 10:45 - 1579520 _____ () C:\Users\Wendel Carvalho\AppData\Roaming\YFrDLBtiSXBZK4.exe
2015-05-24 10:16 - 2015-05-24 10:16 - 0613255 _____ (CMI Limited) C:\Users\Wendel Carvalho\AppData\Local\nsj54DA.tmp
2015-04-25 09:06 - 2015-04-25 09:05 - 0613255 _____ (CMI Limited) C:\Users\Wendel Carvalho\AppData\Local\nsq2509.tmp
2015-05-19 17:04 - 2015-05-19 17:04 - 0613255 _____ (CMI Limited) C:\Users\Wendel Carvalho\AppData\Local\nsuF854.tmp
2015-04-20 13:39 - 2015-04-20 13:39 - 0000160 _____ () C:\ProgramData\bc.ini
2015-08-07 12:23 - 2015-08-07 12:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-10-03 19:13

==================== End of FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité