cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:06-01-2015
Executado por Cliente (administrador) em CLIENTE-PC (06-01-2016 18:05:59)
Executando a partir de C:\Users\Cliente\Downloads
Perfis Carregados: Cliente (Perfis Disponíveis: Cliente)
Platform: Microsoft Windows 10 Pro Versão 1511 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(AVAST Software) C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(TODO: ) C:\ProgramData\Windows Update\upgsvr--.exe
(Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
() C:\ProgramData\msdtc.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
() C:\Program Files\CalendarTool\2.0.0.11153\CalendarServ.exe
() C:\Program Files\CalendarTool\2.0.0.11153\calendar.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Malwarebytes ) C:\Users\Cliente\Downloads\mbam-setup-2.2.0.1024.exe
() C:\Users\Cliente\AppData\Local\Temp\is-VQPL5.tmp\mbam-setup-2.2.0.1024.tmp
(Malwarebytes ) C:\Users\Cliente\Downloads\mbam-setup-2.2.0.1024.exe
() C:\Users\Cliente\AppData\Local\Temp\is-GB5HU.tmp\mbam-setup-2.2.0.1024.tmp
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
() C:\Users\Cliente\Downloads\adwcleaner_5.028.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111312 2015-12-14] (AVAST Software)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1795872 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [570664 2008-05-28] (Nero AG)
HKLM\...\Run: [LightGate] => c:\programdata\lightgate.exe [1081344 2015-12-04] ()
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [529632 2015-11-04] (GAS Tecnologia LTDA)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguix.exe [1139112 2015-12-08] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\ GbPluginBb: C:\Program Files\GbPlugin\gbieh.dll [2015-10-20] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files\GbPlugin\gbiehCef.dll [2015-09-01] (Caixa Economica Federal)
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\...\Run: [taskhost] => rundll32.exe C:\ProgramData\WindowsMsg\FA889F48BA91932CA1794DC9B9F86E43.dll Start /RUNNING
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2008-01-22] (Nero AG)
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\...\Run: [-] => C:\ProgramData\msdtc.exe [2423296 2016-01-04] ()
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\...\Run: [GoogleChromeAutoLaunch_4D45BBD8542522226CD2D95D166A6970] => C:\Program Files\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES\GbPlugin\gbieh.dll [1945472 2015-10-20] (Banco do Brasil)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files\GbPlugin\gbiehcef.dll [1867432 2015-09-01] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-08-04] (AVAST Software)
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => Nenhum Arquivo
Startup: C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk [2015-09-25]
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Restrição - Chrome <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

ProxyServer: [S-1-5-21-406296613-3901443165-2578290060-1000] => http=127.0.0.1:8080;https=127.0.0.1:8080
AutoConfigURL: [S-1-5-21-406296613-3901443165-2578290060-1000] => http=127.0.0.1:8080;https=127.0.0.1:8080
Winsock: Catalog5 07 C:\ProgramData\System32\SafeGuard32.dll [1536952 2015-12-28] ()
Tcpip\Parameters: [DhcpNameServer] 177.129.161.11 177.129.161.12
Tcpip\..\Interfaces\{464d3e92-aa3c-4c07-bdc9-2bdec2efc533}: [DhcpNameServer] 177.129.161.11 177.129.161.12
Tcpip\..\Interfaces\{719a600a-b221-4188-886b-86c5b8d0e35d}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=f1381d93157c05589e940b6f5517ce2c
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/search?q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/search?q={searchTerms}
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-406296613-3901443165-2578290060-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=f1381d93157c05589e940b6f5517ce2c
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-406296613-3901443165-2578290060-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-406296613-3901443165-2578290060-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-406296613-3901443165-2578290060-1000 -> {7F4EFF06-7032-458e-AE16-1C1D8255C28A} URL =
SearchScopes: HKU\S-1-5-21-406296613-3901443165-2578290060-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES\GBPLUGIN\gbieh.dll [2015-10-20] (Banco do Brasil)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files\GbPlugin\gbiehcef.dll [2015-09-01] (Caixa Economica Federal)

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-14] (Google Inc.)
FF Plugin HKU\S-1-5-21-406296613-3901443165-2578290060-1000: gastecnologia.com.br/sf/bb -> C:\Users\Cliente\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll [2015-03-06] (GAS Tecnologia)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-14]

Chrome:
=======
CHR Profile: C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-25]
CHR Extension: (Google Docs) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-25]
CHR Extension: (Google Drive) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-14]
CHR Extension: (YouTube) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google Search) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-14]
CHR Extension: (Planilhas do Google) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-25]
CHR Extension: (Documentos Google off-line) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-14]
CHR Extension: (Avast Online Security) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-01-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-30]
CHR Extension: (Gmail) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-25]
CHR Extension: (scroll back to top) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmopfkbilpnoidiclofkppbgppapnjeh [2016-01-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-01]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-04] (AVAST Software)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624 2015-08-04] (Avast Software)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [866216 2015-12-08] (AVG Technologies CZ, s.r.o.)
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [593120 2015-09-22] (GAS Tecnologia)
S2 GoogleChromeUpService; C:\ProgramData\upgsvr.exe [1762304 2015-11-16] (TODO: <公司名>) [Arquivo não assinado]
R2 GoogleChromeUpSvc; C:\ProgramData\Windows Update\upgsvr--.exe [2787328 2015-12-25] (TODO: ) [Arquivo não assinado]
R2 PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [Arquivo não assinado]
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
R2 TheCalendarService; C:\Program Files\CalendarTool\2.0.0.11153\CalendarServ.exe [153224 2015-12-10] ()
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [529632 2015-11-04] (GAS Tecnologia LTDA)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-08-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-08-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [81728 2015-08-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-08-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-12-14] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-12-14] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [113592 2015-08-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-08-04] (AVAST Software)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [243128 2015-05-01] (Disc Soft Ltd)
R0 GbpKm; C:\WINDOWS\System32\drivers\gbpkm.sys [49496 2015-08-26] (GAS Tecnologia)
R0 ngvss; C:\WINDOWS\system32\Drivers\ngvss.sys [95112 2015-08-04] (AVAST Software)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-08-04] (Avast Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert32.sys [31448 2015-07-07] (Basil)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [80728 2016-01-06] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [79064 2015-03-18] (GAS Tecnologia)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S0 gbpddreg; system32\drivers\gbpddreg32.sys [X]
U3 idsvc; não ImagePath
U3 wpcsvc; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-01-06 18:02 - 2016-01-06 18:03 - 00040143 _____ C:\Users\Cliente\Downloads\Addition.txt
2016-01-06 17:59 - 2016-01-06 18:05 - 00017608 _____ C:\Users\Cliente\Downloads\FRST.txt
2016-01-06 17:59 - 2016-01-06 18:05 - 00000000 ____D C:\FRST
2016-01-06 17:58 - 2016-01-06 17:58 - 01721856 _____ (Farbar) C:\Users\Cliente\Downloads\FRST.exe
2016-01-06 17:51 - 2016-01-06 17:51 - 00001129 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-01-06 17:51 - 2016-01-06 17:51 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2016-01-06 17:51 - 2016-01-06 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-06 17:51 - 2016-01-06 17:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-06 17:51 - 2016-01-06 17:51 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-01-06 17:51 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-01-06 17:51 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-01-06 17:51 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-01-06 17:49 - 2016-01-06 17:51 - 22908888 _____ (Malwarebytes ) C:\Users\Cliente\Downloads\mbam-setup-2.2.0.1024.exe
2016-01-06 16:25 - 2016-01-06 16:25 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-01-06 16:25 - 2016-01-06 16:25 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\CalendarTool
2016-01-06 16:25 - 2016-01-06 16:25 - 00000000 ____D C:\Program Files\CalendarTool
2016-01-06 16:12 - 2016-01-06 16:12 - 00000000 ____D C:\Users\Cliente\AppData\Local\PeerDistRepub
2016-01-06 16:07 - 2016-01-06 17:57 - 00000000 ____D C:\AdwCleaner
2016-01-06 16:03 - 2016-01-06 16:05 - 01749504 _____ C:\Users\Cliente\Downloads\adwcleaner_5.028.exe
2016-01-06 15:35 - 2016-01-06 15:35 - 00131072 ____N C:\WINDOWS\Minidump\010616-20718-01.dmp
2016-01-06 15:35 - 2016-01-06 15:35 - 00000000 ____D C:\WINDOWS\Minidump
2016-01-05 21:42 - 2016-01-05 21:42 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-01-05 21:42 - 2016-01-05 21:42 - 00000000 ____D C:\Users\Cliente\AppData\Local\MFAData
2016-01-05 21:42 - 2016-01-05 21:42 - 00000000 ____D C:\ProgramData\MFAData
2016-01-05 21:40 - 2016-01-05 23:21 - 00000000 ____D C:\Users\Todos os Usuários\Avg
2016-01-05 21:40 - 2016-01-05 23:21 - 00000000 ____D C:\ProgramData\Avg
2016-01-05 21:40 - 2016-01-05 23:21 - 00000000 ____D C:\Program Files\AVG
2016-01-05 21:38 - 2016-01-05 23:21 - 00000000 ____D C:\Users\Cliente\AppData\Local\AvgSetupLog
2016-01-05 21:38 - 2016-01-05 21:38 - 00000000 ____D C:\Users\Cliente\AppData\Local\Avg
2016-01-05 21:15 - 2016-01-05 21:16 - 00030832 _____ (AVAST Software s. r. o.) C:\Users\Cliente\Downloads\avast_free_antivirus_setup_online.exe
2016-01-05 19:51 - 2016-01-05 19:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-01-05 18:21 - 2015-10-29 19:42 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-01-05 18:21 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-01-05 18:21 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-01-05 18:20 - 2016-01-05 18:20 - 00001047 _____ C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recursos Opcionais.lnk
2016-01-05 18:08 - 2016-01-05 18:08 - 08067784 _____ (Microsoft Corporation) C:\Users\Cliente\Downloads\OneDriveSetup.exe
2016-01-05 17:37 - 2016-01-05 17:13 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-05 17:34 - 2016-01-05 17:34 - 00000000 ____D C:\Users\Cliente\AppData\Local\Comms
2016-01-05 17:32 - 2016-01-05 17:32 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 05797728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 03197440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-01-05 17:32 - 2016-01-05 17:32 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-05 17:32 - 2016-01-05 17:32 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01925120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01859448 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01821024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01539744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01273728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01154560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01086464 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-05 17:32 - 2016-01-05 17:32 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00641728 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00504624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00471392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00443744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-01-05 17:32 - 2016-01-05 17:32 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00364176 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00309088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00205824 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00203104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00113624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00076128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00043376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-01-05 17:32 - 2016-01-05 17:32 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-01-05 17:32 - 2016-01-05 17:32 - 00000000 ____D C:\Windows.old
2016-01-05 17:32 - 2016-01-05 17:32 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\Macromedia
2016-01-05 17:29 - 2016-01-05 17:29 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-01-05 17:28 - 2016-01-05 17:28 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-01-05 17:28 - 2016-01-05 17:28 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-01-05 17:28 - 2016-01-05 17:28 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-01-05 17:28 - 2016-01-05 17:28 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-01-05 17:28 - 2016-01-05 17:28 - 00000000 ____D C:\inetpub
2016-01-05 17:28 - 2016-01-05 16:53 - 00000000 ____D C:\Program Files\MSBuild
2016-01-05 17:27 - 2015-10-23 18:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-05 17:27 - 2015-10-23 18:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-05 17:27 - 2015-10-23 18:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-05 17:18 - 2016-01-05 18:08 - 00002415 _____ C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-05 17:18 - 2016-01-05 18:08 - 00000000 ___RD C:\Users\Cliente\OneDrive
2016-01-05 17:17 - 2016-01-05 17:17 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2016-01-05 17:17 - 2016-01-05 17:17 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-01-05 17:15 - 2016-01-05 17:15 - 00000000 ____D C:\Users\Cliente\AppData\Local\Publishers
2016-01-05 17:15 - 2016-01-05 17:15 - 00000000 ____D C:\Users\Cliente\AppData\Local\ActiveSync
2016-01-05 17:13 - 2016-01-05 20:10 - 00000000 ____D C:\Users\Cliente\AppData\Local\Packages
2016-01-05 17:13 - 2016-01-05 17:13 - 00000020 ___SH C:\Users\Cliente\ntuser.ini
2016-01-05 17:13 - 2016-01-05 17:13 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-05 17:13 - 2016-01-05 17:13 - 00000000 ____D C:\Users\Cliente\AppData\Local\TileDataLayer
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Modelos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Meus Documentos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Dados de Aplicativos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Configurações Locais
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Ambiente de Rede
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default\Ambiente de Impressão
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Músicas
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Imagens
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default User\Documents\Meus Vídeos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de Aplicativos
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 ____D C:\Users\Todos os Usuários\USOShared
2016-01-05 17:00 - 2016-01-05 17:00 - 00000000 ____D C:\ProgramData\USOShared
2016-01-05 16:58 - 2016-01-06 17:24 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-05 16:58 - 2016-01-05 16:58 - 00021528 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-01-05 16:55 - 2016-01-05 16:55 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-01-05 16:52 - 2016-01-05 16:52 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-05 16:52 - 2016-01-05 16:52 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Media Center Programs
2016-01-05 16:52 - 2016-01-05 16:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-01-05 16:52 - 2016-01-05 16:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-01-05 16:49 - 2016-01-05 16:49 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-01-05 16:47 - 2016-01-06 17:24 - 00000000 ____D C:\Users\Cliente
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Modelos
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Meus Documentos
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Menu Iniciar
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Documents\Minhas Músicas
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Documents\Minhas Imagens
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Documents\Meus Vídeos
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Dados de Aplicativos
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Configurações Locais
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\AppData\Local\Histórico
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\AppData\Local\Dados de Aplicativos
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Ambiente de Rede
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 _SHDL C:\Users\Cliente\Ambiente de Impressão
2016-01-05 16:44 - 2016-01-06 17:30 - 02049566 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-05 16:42 - 2016-01-06 17:24 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-01-05 16:42 - 2016-01-06 17:24 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-05 16:42 - 2015-08-06 22:13 - 04386096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-01-05 16:42 - 2015-08-06 22:13 - 03020920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2016-01-05 16:42 - 2015-08-06 22:13 - 02554672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-01-05 16:42 - 2015-08-06 22:13 - 00671024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-01-05 16:42 - 2015-08-06 22:13 - 00374904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-01-05 16:42 - 2015-08-06 22:13 - 00061560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-01-05 16:42 - 2015-08-03 11:07 - 05133709 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-01-05 16:41 - 2016-01-05 16:49 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-01-05 16:41 - 2016-01-05 16:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-01-05 16:41 - 2016-01-05 16:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-01-05 16:41 - 2016-01-05 16:41 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-01-05 16:38 - 2016-01-05 16:54 - 00330904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-05 16:11 - 2016-01-05 16:59 - 00010449 _____ C:\WINDOWS\diagerr.xml
2016-01-05 16:11 - 2016-01-05 16:59 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2016-01-05 09:55 - 2016-01-05 09:55 - 00000000 ____D C:\WINDOWS\19
2016-01-04 12:09 - 2016-01-04 12:09 - 00000000 ____D C:\Users\Todos os Usuários\AdobeCatchTemp
2016-01-04 12:09 - 2016-01-04 12:09 - 00000000 ____D C:\ProgramData\AdobeCatchTemp
2016-01-02 12:28 - 2016-01-05 17:58 - 00000000 ____D C:\Users\Todos os Usuários\Ultra Adware Killer
2016-01-02 12:28 - 2016-01-05 17:58 - 00000000 ____D C:\ProgramData\Ultra Adware Killer
2016-01-02 12:27 - 2016-01-02 12:27 - 00780256 _____ (Carifred) C:\Users\Cliente\Downloads\UltraAdwareKiller.exe
2016-01-02 11:48 - 2016-01-02 11:48 - 00041975 _____ C:\Users\Cliente\Downloads\23791666400000329993380250168321650800633330.pdf
2016-01-01 06:33 - 2016-01-01 06:34 - 00000000 ____D C:\Users\Cliente\Desktop\Nova pasta (5)
2015-12-31 11:51 - 2016-01-04 15:55 - 02423296 _____ C:\Users\Todos os Usuários\msdtc.exe
2015-12-31 11:51 - 2016-01-04 15:55 - 02423296 _____ C:\ProgramData\msdtc.exe
2015-12-30 16:33 - 2016-01-05 16:03 - 00000000 ____D C:\WINDOWS\pss
2015-12-30 16:15 - 2016-01-05 17:57 - 00002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-30 16:15 - 2016-01-05 16:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-29 13:15 - 2015-12-29 13:15 - 00000000 __RSH C:\MSDOS.SYS
2015-12-29 13:15 - 2015-12-29 13:15 - 00000000 __RSH C:\IO.SYS
2015-12-28 20:15 - 2015-12-28 21:13 - 01850880 _____ C:\Users\Todos os Usuários\ajkejjakdf.exe
2015-12-28 20:15 - 2015-12-28 21:13 - 01850880 _____ C:\ProgramData\ajkejjakdf.exe
2015-12-28 09:13 - 2015-12-28 09:13 - 00000000 ____D C:\Users\Todos os Usuários\System32
2015-12-28 09:13 - 2015-12-28 09:13 - 00000000 ____D C:\ProgramData\System32
2015-12-28 08:43 - 2015-12-28 08:43 - 00000034 ___SH C:\Users\Public\Documents\{DE764086-1C0A-4DD3-90BA-0B93BDD794BE}
2015-12-28 08:35 - 2015-12-25 07:18 - 04540096 _____ (${COMPANY_NAME}) C:\Users\Todos os Usuários\setup.exe
2015-12-28 08:35 - 2015-12-25 07:18 - 04540096 _____ (${COMPANY_NAME}) C:\ProgramData\setup.exe
2015-12-26 13:00 - 2015-12-30 06:04 - 00000000 ____D C:\Users\Cliente\AppData\rundir
2015-12-25 16:59 - 2015-12-25 16:59 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2015-12-25 16:59 - 2015-12-25 16:59 - 00000000 ____D C:\ProgramData\WindowsMsg
2015-12-25 16:59 - 2015-12-25 16:59 - 00000000 ____D C:\Program Files\osTip
2015-12-25 09:49 - 2016-01-05 17:04 - 00000000 ____D C:\Users\Todos os Usuários\Windows Update
2015-12-25 09:49 - 2016-01-05 17:04 - 00000000 ____D C:\ProgramData\Windows Update
2015-12-25 09:49 - 2015-12-25 15:59 - 02787328 _____ (TODO: ) C:\Users\Todos os Usuários\upgsvr--.exe
2015-12-25 09:49 - 2015-12-25 15:59 - 02787328 _____ (TODO: ) C:\ProgramData\upgsvr--.exe
2015-12-21 22:04 - 2015-12-29 13:13 - 00000000 ____D C:\Users\Todos os Usuários\WinZip
2015-12-21 22:04 - 2015-12-29 13:13 - 00000000 ____D C:\ProgramData\WinZip
2015-12-21 22:03 - 2015-12-31 21:32 - 00000000 ____D C:\Users\Cliente\Desktop\hinos baixados you tube
2015-12-21 22:00 - 2008-08-18 19:18 - 00077824 _____ (Fox Magic Software) C:\WINDOWS\system32\fmcodec.DLL
2015-12-20 18:52 - 2015-12-20 18:52 - 00000000 ____D C:\Users\Cliente\AppData\LocalLow\Temp
2015-12-20 10:01 - 2015-12-20 10:01 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\WinNetSvc
2015-12-18 04:21 - 2015-12-18 04:21 - 00001972 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2015-12-17 12:01 - 2015-12-17 14:31 - 02245032 _____ (UpAurora.COM) C:\Users\Todos os Usuários\UpAurora_1.0.0.3034__101br.exe
2015-12-17 12:01 - 2015-12-17 14:31 - 02245032 _____ (UpAurora.COM) C:\ProgramData\UpAurora_1.0.0.3034__101br.exe
2015-12-17 11:57 - 2015-12-17 11:57 - 00000161 _____ C:\Users\Todos os Usuários\xcgui_debug.txt
2015-12-17 11:57 - 2015-12-17 11:57 - 00000161 _____ C:\ProgramData\xcgui_debug.txt
2015-12-17 10:33 - 2016-01-05 17:04 - 00002927 _____ C:\Users\Todos os Usuários\webad.xml
2015-12-17 10:33 - 2016-01-05 17:04 - 00002927 _____ C:\ProgramData\webad.xml
2015-12-16 11:10 - 2015-12-16 11:10 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\Google
2015-12-16 09:38 - 2015-12-10 15:43 - 00600312 _____ C:\Users\Todos os Usuários\YeaPlayer_br_IBD_Bundle.exe
2015-12-16 09:38 - 2015-12-10 15:43 - 00600312 _____ C:\ProgramData\YeaPlayer_br_IBD_Bundle.exe
2015-12-16 09:32 - 2015-12-04 13:14 - 01081344 _____ C:\Users\Todos os Usuários\LightGate.exe
2015-12-16 09:32 - 2015-12-04 13:14 - 01081344 _____ C:\ProgramData\LightGate.exe
2015-12-16 09:26 - 2015-11-26 07:58 - 04127064 _____ C:\Users\Todos os Usuários\ch_dl_url
2015-12-16 09:26 - 2015-11-26 07:58 - 04127064 _____ C:\ProgramData\ch_dl_url
2015-12-16 09:16 - 2015-11-16 08:01 - 01762304 _____ (TODO: <公司名>) C:\Users\Todos os Usuários\upgsvr.exe
2015-12-16 09:16 - 2015-11-16 08:01 - 01762304 _____ (TODO: <公司名>) C:\ProgramData\upgsvr.exe
2015-12-16 09:14 - 2015-11-16 08:01 - 01762304 _____ (TODO: <公司名>) C:\Users\Cliente\AppData\Roaming\upgsvr.exe
2015-12-15 15:51 - 2015-11-09 21:57 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-12-15 15:51 - 2015-11-09 21:35 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-localization-l1-2-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-synch-l1-2-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-file-l2-1-0.dll
2015-12-15 15:51 - 2015-07-18 11:08 - 00011616 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-file-l1-2-0.dll
2015-12-15 15:48 - 2015-11-20 16:33 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-12-15 12:48 - 2015-12-24 15:01 - 00000000 ____D C:\Users\Cliente\AppData\LocalLow\uTorrent
2015-12-15 12:46 - 2016-01-06 17:24 - 00080728 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2015-12-15 12:46 - 2015-03-18 11:23 - 00079064 ____N (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddpp.sys
2015-12-15 12:19 - 2015-12-15 14:09 - 00000000 ____D C:\Users\Cliente\Downloads\Sniper.Elite.3-RELOADED
2015-12-15 12:17 - 2016-01-05 21:31 - 00000000 ____D C:\Users\Cliente\Downloads\Nova pasta
2015-12-14 20:46 - 2016-01-05 17:28 - 00000000 ____D C:\Users\Cliente\AppData\Local\ElevatedDiagnostics
2015-12-14 18:54 - 2015-12-14 18:54 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-09 12:28 - 2015-12-09 12:29 - 00000000 ___HD C:\Users\Cliente\Desktop\Nova pasta (4)

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-01-06 17:59 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-06 17:59 - 2015-10-30 03:13 - 00000000 ____D C:\Windows
2016-01-06 17:55 - 2015-05-02 12:25 - 00000167 _____ C:\Users\Cliente\AppData\default.pls
2016-01-06 17:30 - 2015-10-30 13:14 - 00872262 _____ C:\WINDOWS\system32\prfh0416.dat
2016-01-06 17:30 - 2015-10-30 13:14 - 00186436 _____ C:\WINDOWS\system32\prfc0416.dat
2016-01-06 17:30 - 2015-10-30 03:47 - 00000000 ____D C:\WINDOWS\INF
2016-01-06 17:25 - 2015-05-01 16:09 - 00001054 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-06 17:18 - 2015-05-01 16:09 - 00001058 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-06 16:13 - 2015-10-30 03:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-06 16:08 - 2015-05-25 18:03 - 00000000 ____D C:\Users\Todos os Usuários\60e5956b000061f6
2016-01-06 16:08 - 2015-05-25 18:03 - 00000000 ____D C:\ProgramData\60e5956b000061f6
2016-01-06 15:43 - 2015-10-30 03:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-06 07:21 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\AppCompat
2016-01-05 20:10 - 2015-10-30 03:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-05 18:21 - 2015-10-30 13:14 - 00000000 ____D C:\WINDOWS\OCR
2016-01-05 18:05 - 2015-05-25 16:55 - 00001562 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-01-05 18:05 - 2015-05-25 16:55 - 00001562 __RSH C:\ProgramData\ntuser.pol
2016-01-05 17:37 - 2015-10-30 03:48 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-01-05 17:32 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-01-05 17:32 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-01-05 17:32 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-05 17:32 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-01-05 17:32 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-01-05 17:32 - 2015-10-30 03:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-01-05 17:31 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-01-05 17:28 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-05 17:28 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-01-05 17:28 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-01-05 17:28 - 2015-10-30 03:45 - 01014272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-01-05 17:28 - 2015-10-30 03:45 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-01-05 17:28 - 2015-10-30 03:45 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-01-05 17:28 - 2015-10-30 03:45 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-01-05 17:28 - 2015-10-30 03:45 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-01-05 17:28 - 2015-10-30 03:45 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-01-05 17:28 - 2015-10-30 03:45 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-01-05 17:28 - 2015-10-30 03:45 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-01-05 17:28 - 2015-10-30 03:45 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-01-05 17:28 - 2015-10-30 03:45 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-01-05 17:14 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-05 17:14 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-01-05 17:14 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-01-05 17:14 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-05 17:10 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\Registration
2016-01-05 17:00 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-01-05 17:00 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\rescache
2016-01-05 17:00 - 2015-10-30 03:48 - 00000000 ____D C:\Users\Todos os Usuários\USOPrivate
2016-01-05 17:00 - 2015-10-30 03:48 - 00000000 ____D C:\ProgramData\USOPrivate
2016-01-05 17:00 - 2015-10-30 03:48 - 00000000 ____D C:\Program Files\Windows NT
2016-01-05 16:59 - 2015-10-30 03:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-05 16:58 - 2015-10-30 03:48 - 00000000 __RSD C:\WINDOWS\Media
2016-01-05 16:58 - 2015-10-30 03:48 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-05 16:57 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\spool
2016-01-05 16:53 - 2015-10-30 13:21 - 00000000 ____D C:\WINDOWS\ShellNew
2016-01-05 16:53 - 2015-08-15 06:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2016-01-05 16:53 - 2015-05-24 11:58 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-01-05 16:53 - 2015-05-06 05:53 - 00000000 ____D C:\WINDOWS\system32\vbox
2016-01-05 16:53 - 2015-05-02 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Ghost Warrior 2
2016-01-05 16:53 - 2015-05-02 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-01-05 16:53 - 2015-05-02 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-05 16:53 - 2015-05-01 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2016-01-05 16:53 - 2015-05-01 18:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-01-05 16:53 - 2015-05-01 16:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-01-05 16:53 - 2015-05-01 15:59 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-05 16:53 - 2015-05-01 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-05 16:53 - 2009-07-14 02:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-05 16:52 - 2009-07-14 00:37 - 00000000 ____D C:\Users\Default.migrated
2016-01-05 16:50 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\IME
2016-01-05 16:50 - 2015-05-01 16:42 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-01-05 16:50 - 2015-05-01 16:06 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-01-05 16:49 - 2015-10-30 03:48 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-01-05 16:49 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\schemas
2016-01-05 16:49 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-01-05 16:49 - 2015-10-30 03:48 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-05 16:49 - 2015-10-30 03:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-05 16:49 - 2015-09-25 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rebellion
2016-01-05 16:49 - 2015-09-23 06:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-01-05 16:49 - 2015-09-21 08:04 - 00000000 ____D C:\WINDOWS\system32\AGEIA
2016-01-05 16:49 - 2015-05-25 18:01 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-01-05 16:49 - 2015-05-02 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2016-01-05 16:49 - 2015-05-02 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra
2016-01-05 16:49 - 2009-07-14 06:53 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-01-05 16:49 - 2009-07-14 02:52 - 00000000 ____D C:\Program Files\DVD Maker
2016-01-05 16:48 - 2009-07-14 00:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-01-05 16:44 - 2015-10-30 03:13 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-01-05 16:42 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\Help
2016-01-05 16:38 - 2015-10-30 13:31 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-01-05 16:15 - 2009-07-14 02:34 - 00014368 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-05 16:15 - 2009-07-14 02:34 - 00014368 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-05 16:11 - 2015-10-30 13:54 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-02 23:40 - 2015-10-30 03:49 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-01-02 23:40 - 2015-10-30 03:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-01-02 12:30 - 2015-09-06 01:31 - 00001483 _____ C:\Users\Cliente\Desktop\iexplore - Atalho.lnk
2016-01-02 12:30 - 2015-05-01 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-01-02 12:13 - 2015-05-05 17:09 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-01-02 12:13 - 2015-05-05 17:09 - 00000000 ____D C:\ProgramData\GbPlugin
2015-12-31 00:05 - 2015-08-19 22:27 - 00000000 ___RD C:\Users\Cliente\Desktop\Nova pasta
2015-12-31 00:04 - 2015-01-02 19:55 - 00000000 ___RD C:\Users\Cliente\Desktop\meus hinos
2015-12-30 16:15 - 2015-05-01 16:09 - 00000000 ____D C:\Program Files\Google
2015-12-29 13:15 - 2015-05-24 11:56 - 00000000 ____D C:\Program Files\Counter-Strike 1.6
2015-12-29 13:15 - 2015-05-01 18:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 No-Steam 2015
2015-12-28 08:43 - 2015-06-28 20:04 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\logpath
2015-12-25 09:56 - 2015-09-06 01:29 - 00001744 _____ C:\Users\Cliente\Desktop\chrome - Atalho.lnk
2015-12-24 21:43 - 2015-05-28 20:21 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\uTorrent
2015-12-21 22:00 - 2015-08-15 06:58 - 00001144 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2015-12-20 21:19 - 2015-05-25 10:55 - 00000000 ____D C:\Users\Cliente\AppData\Roaming\FEFEFEFE-1432558527-FEFE-FEFE-FEFEFEFEFEFE
2015-12-18 04:20 - 2015-05-01 16:02 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-12-15 21:59 - 2015-07-02 22:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-14 19:35 - 2015-05-05 17:09 - 00000000 ____D C:\Program Files\GbPlugin
2015-12-14 18:55 - 2015-05-01 16:09 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-12-14 18:55 - 2015-05-01 16:09 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-12-09 01:39 - 2015-05-01 16:18 - 00247976 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-07 15:27 - 2014-07-10 12:32 - 00000000 ___RD C:\Users\Cliente\Desktop\Meus Videos

==================== Arquivos na raiz de alguns diretórios =======

2015-05-05 17:08 - 2015-05-05 17:08 - 0016829 _____ () C:\Users\Cliente\AppData\Roaming\unins000.dat
2015-05-05 17:08 - 2015-05-05 17:08 - 0815826 _____ () C:\Users\Cliente\AppData\Roaming\unins000.exe
2015-12-16 09:14 - 2015-11-16 08:01 - 1762304 _____ (TODO: <公司名>) C:\Users\Cliente\AppData\Roaming\upgsvr.exe
2015-08-14 19:51 - 2015-08-14 19:54 - 4996786 _____ () C:\Users\Cliente\AppData\Local\meuswinzios.zip
2015-05-25 17:21 - 2015-05-25 17:21 - 0613255 _____ (CMI Limited) C:\Users\Cliente\AppData\Local\nsd8660.tmp
2015-05-25 17:55 - 2015-05-25 17:55 - 0613255 _____ (CMI Limited) C:\Users\Cliente\AppData\Local\nsl37D7.tmp
2015-05-25 11:15 - 2015-05-25 11:15 - 0613255 _____ (CMI Limited) C:\Users\Cliente\AppData\Local\nsmE372.tmp
2015-05-25 13:30 - 2015-05-25 13:30 - 0613255 _____ (CMI Limited) C:\Users\Cliente\AppData\Local\nsr5FB5.tmp
2015-05-25 11:09 - 2015-05-25 11:09 - 0613255 _____ (CMI Limited) C:\Users\Cliente\AppData\Local\nszB8F2.tmp
2015-08-14 19:56 - 2015-08-14 19:56 - 0000000 _____ () C:\Users\Cliente\AppData\Local\their.dhn
2015-12-28 20:15 - 2015-12-28 21:13 - 1850880 _____ () C:\ProgramData\ajkejjakdf.exe
2015-12-16 09:26 - 2015-11-26 07:58 - 4127064 _____ () C:\ProgramData\ch_dl_url
2015-12-16 09:32 - 2015-12-04 13:14 - 1081344 _____ () C:\ProgramData\LightGate.exe
2015-12-31 11:51 - 2016-01-04 15:55 - 2423296 _____ () C:\ProgramData\msdtc.exe
2015-12-28 08:35 - 2015-12-25 07:18 - 4540096 _____ (${COMPANY_NAME}) C:\ProgramData\setup.exe
2015-12-17 12:01 - 2015-12-17 14:31 - 2245032 _____ (UpAurora.COM) C:\ProgramData\UpAurora_1.0.0.3034__101br.exe
2015-12-25 09:49 - 2015-12-25 15:59 - 2787328 _____ (TODO: ) C:\ProgramData\upgsvr--.exe
2015-12-16 09:16 - 2015-11-16 08:01 - 1762304 _____ (TODO: <公司名>) C:\ProgramData\upgsvr.exe
2015-12-17 10:33 - 2016-01-05 17:04 - 0002927 _____ () C:\ProgramData\webad.xml
2015-12-17 11:57 - 2015-12-17 11:57 - 0000161 _____ () C:\ProgramData\xcgui_debug.txt
2015-12-16 09:38 - 2015-12-10 15:43 - 0600312 _____ () C:\ProgramData\YeaPlayer_br_IBD_Bundle.exe

Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\ajkejjakdf.exe
C:\ProgramData\LightGate.exe
C:\ProgramData\msdtc.exe
C:\ProgramData\setup.exe
C:\ProgramData\UpAurora_1.0.0.3034__101br.exe
C:\ProgramData\upgsvr--.exe
C:\ProgramData\upgsvr.exe
C:\ProgramData\YeaPlayer_br_IBD_Bundle.exe
C:\Users\Todos os Usuários\ajkejjakdf.exe
C:\Users\Todos os Usuários\LightGate.exe
C:\Users\Todos os Usuários\msdtc.exe
C:\Users\Todos os Usuários\setup.exe
C:\Users\Todos os Usuários\UpAurora_1.0.0.3034__101br.exe
C:\Users\Todos os Usuários\upgsvr--.exe
C:\Users\Todos os Usuários\upgsvr.exe
C:\Users\Todos os Usuários\YeaPlayer_br_IBD_Bundle.exe


Alguns arquivos em TEMP:
====================
C:\Users\Cliente\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-01-05 16:38

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité