cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:27-01-2016
Executado por Samsung (administrador) em FELIPE-TORRESIN (03-02-2016 07:42:28)
Executando a partir de C:\Users\Samsung\Desktop
Perfis Carregados: Samsung (Perfis Disponíveis: Samsung & DefaultAppPool)
Platform: Microsoft Windows 10 Home Versão 1511 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Edge)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgcsrvx.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(IObit) C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(BiniSoft.org) C:\Program Files\wfcs.exe
() C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(Oracle Corporation) C:\Program Files\MySQL\MySQL Notifier 1.1\MySQLNotifier.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.0_none_39c65e1db9443c5f\TiWorker.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14688512 2015-12-22] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2485976 2015-09-20] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [179624 2016-01-12] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3873704 2016-01-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3690752745-870574462-1762750705-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6495144 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-3690752745-870574462-1762750705-1000\...\Run: [MySQL Notifier] => C:\Program Files\MySQL\MySQL Notifier 1.1\MySqlNotifier.exe [773120 2014-09-03] (Oracle Corporation)
HKU\S-1-5-21-3690752745-870574462-1762750705-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3690752745-870574462-1762750705-1000\...\MountPoints2: {ff5017b8-95ae-11e5-9413-e81132afbcd7} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL http://www.ultimatebootcd.com/
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => Nenhum Arquivo
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 201.21.192.168 201.21.192.122
Tcpip\..\Interfaces\{0fbebc56-2429-4bec-bc71-0076ca7c6ade}: [DhcpNameServer] 201.21.192.168 201.21.192.122
Tcpip\..\Interfaces\{6d1856fc-ba02-4dfc-9a6d-f1d68a6e81a1}: [DhcpNameServer] 201.21.192.169 201.21.192.163 201.6.4.116

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
SearchScopes: HKLM -> {6586d803-df30-46d3-a89a-4136c8571d45} URL =
SearchScopes: HKU\S-1-5-21-3690752745-870574462-1762750705-1000 -> DefaultScope {cf34d395-9ff1-49a0-98a5-8db1636431b1} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-16] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Bluetooth Suite\IEPlugIn.dll [2011-06-15] (Atheros Commnucations)
BHO: Sem Nome -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Nenhum Arquivo
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-16] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Samsung\AppData\Roaming\Mozilla\Firefox\Profiles\e2rafoo6.default
FF NewTab: about:newtab
FF DefaultSearchEngine: AVG Secure Search
FF SelectedSearchEngine: Search Provided by Yahoo
FF Homepage: google.com
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-16] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Samsung\AppData\Roaming\Mozilla\Firefox\Profiles\e2rafoo6.default\searchplugins\avg-secure-search.xml [2016-01-28]
FF Extension: AVG Web TuneUp - C:\Users\Samsung\AppData\Roaming\Mozilla\Firefox\Profiles\e2rafoo6.default\extensions\avg@toolbar.xpi [2016-01-28]
FF Extension: Oasis Space 1.0.1 - C:\Users\Samsung\AppData\Roaming\Mozilla\Firefox\Profiles\e2rafoo6.default\Extensions\{f5230593-67d7-4f19-bcdc-c4f29bcc8e74}.xpi [2015-12-20] [não assinado]
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HKU\S-1-5-21-3690752745-870574462-1762750705-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-06-15] (Atheros) [Arquivo não assinado]
R2 avgfws; C:\Program Files\AVG\Av\avgfws.exe [1580352 2016-01-25] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3881696 2016-01-25] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [865704 2016-01-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [561104 2016-01-25] (AVG Technologies CZ, s.r.o.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-10-01] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-10-01] (Dropbox, Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [116952 2015-09-20] (ELAN Microelectronics Corp.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MySQL56; C:\Program Files\MySQL\MySQL Server 5.6\bin\mysqld.exe [11070976 2015-11-16] () [Arquivo não assinado]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
R2 _wfcs; C:\Program Files\wfcs.exe [99840 2015-01-18] (BiniSoft.org) [Arquivo não assinado]
S2 HPSLPSVC; C:\Users\Samsung\AppData\Local\Temp\7zS1E8A\hpslpsvc32.dll [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 athr; C:\WINDOWS\System32\drivers\athw10.sys [3294512 2015-12-22] (Qualcomm Atheros Communications, Inc.)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19584 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\WINDOWS\system32\DRIVERS\avgfwd6x.sys [82360 2015-08-29] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [257456 2016-01-05] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [207792 2016-01-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [198576 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [37296 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\WINDOWS\System32\DRIVERS\avgunivx.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [246720 2015-12-16] (AVG Technologies CZ, s.r.o.)
S3 bdark; C:\WINDOWS\system32\drivers\bdark.sys [82376 2015-05-27] ()
S3 BdSandbox; C:\WINDOWS\System32\drivers\BdSandbox.sys [194552 2015-01-08] (Baidu, Inc.)
R1 Bfilter; C:\WINDOWS\System32\drivers\Bfilter.sys [51144 2015-12-04] (Baidu, Inc.)
R1 Bfmon; C:\WINDOWS\System32\drivers\Bfmon.sys [31176 2015-12-04] (Baidu, Inc.)
S0 Bhbase; C:\WINDOWS\System32\drivers\Bhbase.sys [74888 2015-12-04] (Baidu, Inc.)
S3 BHipsEx; C:\WINDOWS\System32\drivers\BHipsEx.sys [138184 2015-12-04] (Baidu, Inc.)
R1 Bnbase; C:\WINDOWS\System32\drivers\bnbasex.sys [75400 2015-12-04] (Baidu, Inc.)
R1 Bndef; C:\WINDOWS\System32\drivers\bndef.sys [461192 2015-12-04] (Baidu, Inc.)
R3 BTATH_BUS; C:\WINDOWS\System32\drivers\btath_bus.sys [24736 2011-06-15] (Atheros)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [519976 2015-12-22] (Qualcomm Atheros)
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [425032 2015-09-20] (ELAN Microelectronics Corp.)
S3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [28248 2015-09-20] (ELAN Microelectronic Corp.)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-12-22] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R1 MPCKpt; C:\WINDOWS\System32\DRIVERS\MPCKpt.sys [48872 2015-12-22] (DotCash)
S4 RsFx0102; C:\WINDOWS\System32\DRIVERS\RsFx0102.sys [242712 2008-07-10] (Microsoft Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [789248 2015-12-22] (Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-12-22] (Synaptics Incorporated)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [132752 2015-11-24] (Duplex Secure Ltd)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [98704 2016-01-19] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [163576 2016-01-19] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U5 Bprotect; C:\Windows\System32\Drivers\Bprotect.sys [195528 2015-12-04] (Baidu, Inc.)
U3 idsvc; não ImagePath
S0 MPCBase; System32\drivers\MPCBase.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\PC App Store\5.0.1.8490\PCFApiUtil.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-03 07:42 - 2016-02-03 07:44 - 00015870 _____ C:\Users\Samsung\Desktop\FRST.txt
2016-02-03 07:40 - 2016-02-03 07:41 - 01721856 _____ (Farbar) C:\Users\Samsung\Desktop\FRST.exe
2016-02-02 23:34 - 2016-02-02 23:34 - 00000000 ____D C:\Users\Samsung\AppData\Local\ActiveSync
2016-02-02 23:28 - 2016-02-02 23:28 - 00006994 _____ C:\Users\Samsung\Desktop\ZHPCleaner.txt
2016-02-02 23:06 - 2016-02-02 23:06 - 00000922 _____ C:\Users\Samsung\Desktop\ZHPCleaner.lnk
2016-02-02 23:05 - 2016-02-02 23:05 - 02045440 _____ C:\Users\Samsung\Desktop\ZHPCleaner.exe
2016-02-02 22:27 - 2016-02-02 22:27 - 00004255 _____ C:\Users\Samsung\Desktop\ZHPFix[R1].txt
2016-02-02 22:26 - 2016-02-02 22:26 - 00004255 _____ C:\Users\Samsung\Desktop\ZHPFixReport.txt
2016-02-02 22:22 - 2016-02-02 22:22 - 00001864 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-02-02 22:22 - 2016-02-02 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-02-02 22:22 - 2016-02-02 22:22 - 00000000 ____D C:\Program Files\ZHPFix
2016-02-02 22:21 - 2016-02-02 22:21 - 03521617 _____ (Nicolas Coolman ) C:\Users\Samsung\Desktop\ZHPFix.exe
2016-02-02 18:15 - 2016-02-02 23:28 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\ZHP
2016-02-02 18:12 - 2016-02-02 18:13 - 02107392 _____ C:\Users\Samsung\Desktop\ZHPDiag3.exe
2016-02-02 12:30 - 2016-02-02 12:34 - 00130972 _____ C:\WINDOWS\Minidump\020216-45390-01.dmp
2016-02-02 12:18 - 2016-02-02 12:23 - 00130948 _____ C:\WINDOWS\Minidump\020216-44156-01.dmp
2016-02-02 11:11 - 2016-02-02 11:15 - 00130964 _____ C:\WINDOWS\Minidump\020216-63171-01.dmp
2016-02-02 10:31 - 2016-02-02 12:30 - 299443975 _____ C:\WINDOWS\MEMORY.DMP
2016-02-02 10:31 - 2016-02-02 12:30 - 00000000 ____D C:\WINDOWS\Minidump
2016-02-02 10:31 - 2016-02-02 10:33 - 00131012 _____ C:\WINDOWS\Minidump\020216-62062-01.dmp
2016-02-02 09:24 - 2016-02-02 09:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-02-02 09:21 - 2016-02-02 09:30 - 00000000 ____D C:\WINDOWS\pss
2016-02-02 08:38 - 2016-02-03 07:41 - 00000000 ____D C:\FRST
2016-01-31 00:10 - 2016-01-31 00:16 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\stremio
2016-01-31 00:08 - 2016-01-31 00:09 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stremio
2016-01-30 22:09 - 2016-02-02 13:36 - 00000000 ____D C:\stremio-cache
2016-01-30 21:44 - 2016-01-31 00:10 - 00000000 ____D C:\Users\Samsung\AppData\Local\Chromium
2016-01-30 21:44 - 2016-01-30 21:44 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium
2016-01-30 21:40 - 2016-01-31 00:09 - 00000000 ____D C:\Users\Samsung\AppData\Local\{37390165-1391-6DDD-7E09-48355A61B4AD}
2016-01-29 19:48 - 2016-01-29 19:48 - 00290015 _____ C:\Users\Samsung\Downloads\Projeto arquitetonico(1).dwg
2016-01-29 19:38 - 2016-01-29 19:38 - 00262409 _____ C:\Users\Samsung\Downloads\RES Tabela empreendimentos.zip
2016-01-29 19:37 - 2016-01-29 19:37 - 00290015 _____ C:\Users\Samsung\Downloads\Projeto arquitetonico.dwg
2016-01-29 19:37 - 2016-01-29 19:37 - 00043520 _____ C:\Users\Samsung\Downloads\Lista de preços INTERNET.xls
2016-01-29 08:10 - 2016-01-29 08:10 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\Apple Computer
2016-01-28 16:19 - 2016-01-28 16:19 - 02944584 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Samsung\Downloads\AVG_PCTuneUp_879.exe
2016-01-28 16:04 - 2016-01-28 16:20 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\AVG
2016-01-28 16:02 - 2016-01-28 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-01-28 16:01 - 2016-01-28 16:01 - 00000000 ___HD C:\$AVG
2016-01-28 15:58 - 2016-02-03 07:40 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-01-28 15:58 - 2016-02-03 07:40 - 00000000 ____D C:\ProgramData\MFAData
2016-01-28 15:58 - 2016-01-28 15:58 - 00000000 ____D C:\Users\Samsung\AppData\Local\MFAData
2016-01-28 15:57 - 2016-01-28 16:20 - 00000000 ____D C:\Users\Todos os Usuários\Avg
2016-01-28 15:57 - 2016-01-28 16:20 - 00000000 ____D C:\ProgramData\Avg
2016-01-28 15:57 - 2016-01-28 16:20 - 00000000 ____D C:\Program Files\AVG
2016-01-28 15:56 - 2016-01-30 22:25 - 00000000 ____D C:\Users\Samsung\AppData\Local\Avg
2016-01-28 15:56 - 2016-01-29 12:21 - 00000000 ____D C:\Users\Samsung\AppData\Local\AvgSetupLog
2016-01-28 15:56 - 2016-01-28 15:56 - 02894560 _____ (AVG Technologies) C:\Users\Samsung\Downloads\AVG_Internet_Security32_2016.exe
2016-01-28 15:56 - 2016-01-28 15:56 - 02894560 _____ (AVG Technologies) C:\Users\Samsung\Downloads\AVG_Internet_Security32_2016(1).exe
2016-01-28 10:52 - 2016-01-28 10:52 - 00000000 ____D C:\Users\Samsung\Documents\Nova pasta
2016-01-28 08:58 - 2016-01-16 04:20 - 06971752 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-01-28 08:57 - 2016-01-16 03:19 - 12126208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-28 08:56 - 2016-01-16 04:16 - 05238360 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-01-28 08:56 - 2016-01-16 03:28 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-01-28 08:56 - 2016-01-16 03:26 - 19338752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-28 08:56 - 2016-01-16 03:21 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-01-28 08:55 - 2016-01-16 04:17 - 21125400 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-28 08:55 - 2016-01-16 03:24 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-28 08:55 - 2016-01-16 03:22 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-28 08:55 - 2016-01-16 03:20 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-01-28 08:55 - 2016-01-16 03:17 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-28 08:55 - 2016-01-16 03:16 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-01-28 08:54 - 2016-01-16 04:35 - 00959840 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-28 08:54 - 2016-01-16 04:35 - 00599904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-28 08:54 - 2016-01-16 04:35 - 00168360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-01-28 08:54 - 2016-01-16 04:33 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-28 08:54 - 2016-01-16 04:20 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-28 08:54 - 2016-01-16 04:20 - 00431240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-01-28 08:54 - 2016-01-16 04:20 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-28 08:54 - 2016-01-16 04:20 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-01-28 08:54 - 2016-01-16 04:19 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-28 08:54 - 2016-01-16 04:19 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-01-28 08:54 - 2016-01-16 04:17 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-01-28 08:54 - 2016-01-16 04:08 - 01714016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-01-28 08:54 - 2016-01-16 04:08 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-01-28 08:54 - 2016-01-16 04:08 - 00483680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-01-28 08:54 - 2016-01-16 04:04 - 00771424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-01-28 08:54 - 2016-01-16 04:03 - 00364168 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-28 08:54 - 2016-01-16 03:37 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-01-28 08:54 - 2016-01-16 03:35 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-28 08:54 - 2016-01-16 03:35 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-01-28 08:54 - 2016-01-16 03:34 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2016-01-28 08:54 - 2016-01-16 03:33 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-28 08:54 - 2016-01-16 03:32 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-01-28 08:54 - 2016-01-16 03:32 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-01-28 08:54 - 2016-01-16 03:32 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-01-28 08:54 - 2016-01-16 03:31 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2016-01-28 08:54 - 2016-01-16 03:31 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2016-01-28 08:54 - 2016-01-16 03:30 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-01-28 08:54 - 2016-01-16 03:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-01-28 08:54 - 2016-01-16 03:29 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-01-28 08:54 - 2016-01-16 03:29 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-01-28 08:54 - 2016-01-16 03:29 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-01-28 08:54 - 2016-01-16 03:29 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-01-28 08:54 - 2016-01-16 03:28 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-01-28 08:54 - 2016-01-16 03:28 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2016-01-28 08:54 - 2016-01-16 03:28 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-28 08:54 - 2016-01-16 03:28 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-01-28 08:54 - 2016-01-16 03:27 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-01-28 08:54 - 2016-01-16 03:27 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2016-01-28 08:54 - 2016-01-16 03:27 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-28 08:54 - 2016-01-16 03:27 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-28 08:54 - 2016-01-16 03:26 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-01-28 08:54 - 2016-01-16 03:25 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-01-28 08:54 - 2016-01-16 03:25 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-01-28 08:54 - 2016-01-16 03:24 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-01-28 08:54 - 2016-01-16 03:24 - 00382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-01-28 08:54 - 2016-01-16 03:24 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-01-28 08:54 - 2016-01-16 03:24 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-01-28 08:54 - 2016-01-16 03:23 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-28 08:54 - 2016-01-16 03:23 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-28 08:54 - 2016-01-16 03:23 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-01-28 08:54 - 2016-01-16 03:22 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-01-28 08:54 - 2016-01-16 03:20 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-28 08:54 - 2016-01-16 03:20 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-01-28 08:54 - 2016-01-16 03:20 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-01-28 08:54 - 2016-01-16 03:19 - 01552896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-01-28 08:54 - 2016-01-16 03:19 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-01-28 08:54 - 2016-01-16 03:19 - 00176128 _____ C:\WINDOWS\system32\MTFServer.dll
2016-01-28 08:54 - 2016-01-16 03:19 - 00162816 _____ C:\WINDOWS\system32\MTF.dll
2016-01-28 08:54 - 2016-01-16 03:19 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-28 08:54 - 2016-01-16 03:16 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-28 08:54 - 2016-01-16 03:15 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-01-28 08:54 - 2016-01-16 03:14 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-01-28 08:54 - 2016-01-16 03:14 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-01-28 08:54 - 2016-01-16 03:11 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-01-28 08:54 - 2016-01-16 03:06 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-01-28 08:53 - 2016-01-16 03:36 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-01-28 08:53 - 2016-01-16 03:35 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-01-28 08:53 - 2016-01-16 03:34 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-01-28 08:53 - 2016-01-16 03:30 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2016-01-28 07:49 - 2016-01-28 09:51 - 00000000 ____D C:\Users\Samsung\AppData\Local\AnVir
2016-01-28 07:40 - 2016-01-28 07:40 - 00000000 ____D C:\Users\Todos os Usuários\VS Revo Group
2016-01-28 07:40 - 2016-01-28 07:40 - 00000000 ____D C:\Users\Samsung\AppData\Local\VS Revo Group
2016-01-28 07:40 - 2016-01-28 07:40 - 00000000 ____D C:\ProgramData\VS Revo Group
2016-01-28 07:40 - 2016-01-28 07:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2016-01-28 07:40 - 2016-01-28 07:40 - 00000000 ____D C:\Program Files\VS Revo Group
2016-01-28 07:40 - 2009-12-30 10:21 - 00027192 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2016-01-27 15:09 - 2016-01-27 15:09 - 01600120 _____ C:\Users\Samsung\Downloads\taskfree.exe
2016-01-27 15:08 - 2016-01-27 15:08 - 01231523 _____ C:\Users\Samsung\Downloads\taskfree.zip
2016-01-27 09:18 - 2016-01-27 09:18 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\MySQL
2016-01-27 09:12 - 2016-01-29 19:37 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\Oracle
2016-01-27 09:12 - 2016-01-27 09:13 - 00000469 _____ C:\WINDOWS\ODBCINST.INI
2016-01-27 08:59 - 2016-01-27 09:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2016-01-27 08:58 - 2016-01-27 09:14 - 00000000 ____D C:\Program Files\MySQL
2016-01-27 08:58 - 2016-01-27 09:09 - 00000000 ____D C:\Users\Todos os Usuários\MySQL
2016-01-27 08:58 - 2016-01-27 09:09 - 00000000 ____D C:\ProgramData\MySQL
2016-01-27 08:28 - 2016-01-27 08:31 - 276672512 _____ C:\Users\Samsung\Downloads\mysql-installer-community-5.6.28.0.msi
2016-01-26 16:43 - 2016-01-26 16:43 - 01629552 _____ ( ) C:\Users\Samsung\Downloads\cpu-z_1.73-en.exe
2016-01-26 16:27 - 2016-01-26 16:28 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\ProductData
2016-01-26 16:27 - 2016-01-26 16:27 - 00000000 ____D C:\Program Files\Common Files\IObit
2016-01-25 09:49 - 2016-01-25 11:10 - 00000882 _____ C:\Users\Samsung\Documents\LinksKitnetApto.txt
2016-01-23 10:28 - 2016-01-23 10:28 - 00211312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-23 08:35 - 2016-01-23 08:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-01-23 08:35 - 2016-01-19 18:02 - 00784696 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2016-01-23 08:31 - 2016-01-23 08:32 - 117185736 _____ (Oracle Corporation) C:\Users\Samsung\Downloads\VirtualBox-5.0.14-105127-Win.exe
2016-01-22 15:13 - 2016-01-22 15:13 - 00198576 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx86.sys
2016-01-22 07:41 - 2016-01-22 07:41 - 00163654 _____ C:\Users\Samsung\Downloads\edital_020-2015.pdf
2016-01-21 07:46 - 2016-02-01 09:15 - 00000000 ____D C:\Users\Samsung\Documents\PastaCompartilhada
2016-01-19 18:02 - 2016-01-19 18:02 - 00163576 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys
2016-01-19 18:02 - 2016-01-19 18:02 - 00098704 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys
2016-01-19 09:48 - 2016-01-24 10:20 - 00000000 ____D C:\Users\Samsung\VirtualBox VMs
2016-01-16 19:57 - 2016-01-16 20:00 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\Notepad++
2016-01-16 19:57 - 2016-01-16 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-01-16 19:57 - 2016-01-16 19:57 - 00000000 ____D C:\Program Files\Notepad++
2016-01-16 19:51 - 2016-01-16 19:51 - 04121418 _____ C:\Users\Samsung\Downloads\npp.6.8.8.Installer.exe
2016-01-15 15:00 - 2008-07-10 22:28 - 00079896 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-MSSQL$SQLEXPRESS-sqlctr10.0.1600.22.dll
2016-01-15 15:00 - 2008-07-10 22:28 - 00050200 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.0.1600.22.dll
2016-01-15 14:59 - 2016-01-15 14:59 - 00000000 ____D C:\WINDOWS\system32\RsFx
2016-01-15 14:58 - 2016-01-15 14:58 - 00000000 ____D C:\WINDOWS\system32\1033
2016-01-15 14:57 - 2016-01-15 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2016-01-15 14:54 - 2016-01-15 15:00 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-01-15 14:53 - 2016-01-15 15:12 - 00000000 ____D C:\Users\Samsung\Documents\Visual Studio 2008
2016-01-15 14:50 - 2016-01-15 15:16 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2016-01-15 14:49 - 2016-01-15 14:49 - 00000000 ____D C:\Program Files\Microsoft SDKs
2016-01-13 09:41 - 2016-01-13 09:41 - 00740912 _____ C:\Users\Samsung\Downloads\Fotos.zip
2016-01-13 08:28 - 2016-01-05 00:49 - 05798240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 08:28 - 2016-01-05 00:49 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-01-13 08:28 - 2016-01-05 00:49 - 00926560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-01-13 08:28 - 2016-01-05 00:48 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 08:28 - 2016-01-05 00:42 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-01-13 08:28 - 2016-01-05 00:33 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 08:28 - 2016-01-05 00:33 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 08:28 - 2016-01-05 00:33 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 08:28 - 2016-01-05 00:33 - 00208176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-13 08:28 - 2016-01-05 00:33 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 08:28 - 2016-01-05 00:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-01-13 08:28 - 2016-01-05 00:18 - 00641728 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-13 08:28 - 2016-01-05 00:17 - 01137856 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-13 08:28 - 2016-01-05 00:17 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 08:28 - 2016-01-05 00:16 - 01696176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 08:28 - 2016-01-05 00:16 - 00100160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 08:28 - 2016-01-04 23:48 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 08:28 - 2016-01-04 23:48 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 08:28 - 2016-01-04 23:47 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-01-13 08:28 - 2016-01-04 23:45 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-01-13 08:28 - 2016-01-04 23:45 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 08:28 - 2016-01-04 23:44 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-01-13 08:28 - 2016-01-04 23:43 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-01-13 08:28 - 2016-01-04 23:43 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 08:28 - 2016-01-04 23:42 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 08:28 - 2016-01-04 23:41 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 08:28 - 2016-01-04 23:41 - 00588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-01-13 08:28 - 2016-01-04 23:41 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-01-13 08:28 - 2016-01-04 23:40 - 01496064 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-13 08:28 - 2016-01-04 23:40 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 08:28 - 2016-01-04 23:40 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 08:28 - 2016-01-04 23:39 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 08:28 - 2016-01-04 23:39 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 08:28 - 2016-01-04 23:39 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 08:28 - 2016-01-04 23:38 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 08:28 - 2016-01-04 23:37 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 08:28 - 2016-01-04 23:36 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-01-13 08:28 - 2016-01-04 23:36 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 08:28 - 2016-01-04 23:36 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 08:28 - 2016-01-04 23:35 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-13 08:28 - 2016-01-04 23:35 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-13 08:28 - 2016-01-04 23:30 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 08:28 - 2016-01-04 23:29 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-01-13 08:28 - 2016-01-04 23:25 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-13 08:28 - 2016-01-04 23:25 - 01925120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-08 10:49 - 2016-01-08 10:49 - 00207792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidshx.sys
2016-01-08 10:49 - 2016-01-08 10:49 - 00023472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgunivx.sys
2016-01-07 15:03 - 2016-01-07 15:03 - 00019584 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbootx.sys
2016-01-07 11:17 - 2016-01-28 12:50 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\CodeBlocks
2016-01-07 11:16 - 2016-01-07 11:17 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2016-01-07 11:16 - 2016-01-07 11:17 - 00000000 ____D C:\Program Files\CodeBlocks
2016-01-07 11:16 - 2016-01-07 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2016-01-07 11:14 - 2016-01-07 11:15 - 102611063 _____ (The Code::Blocks Team) C:\Users\Samsung\Downloads\codeblocks-13.12mingw-setup.exe
2016-01-07 11:08 - 2016-01-07 11:08 - 00001250 _____ C:\Users\Samsung\Downloads\Install Microsoft Visual Basic 2008 Express Edition.lnk
2016-01-07 11:06 - 2016-01-07 11:06 - 02701304 _____ (Microsoft Corporation) C:\Users\Samsung\Downloads\vbsetup.exe
2016-01-07 11:01 - 2016-01-07 11:01 - 00000000 ____D C:\VC
2016-01-06 21:17 - 2016-01-28 16:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-01-05 16:18 - 2016-01-05 16:18 - 00257456 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdriverx.sys

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-03 07:36 - 2014-09-26 18:04 - 00000902 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-02-03 07:35 - 2015-10-01 15:30 - 00001032 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-02-03 07:34 - 2015-11-26 00:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-03 07:34 - 2015-10-01 15:30 - 00001028 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-02-02 23:38 - 2015-10-30 03:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-02-02 19:06 - 2015-12-22 20:57 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2016-02-02 19:06 - 2015-12-22 20:57 - 00000000 ____D C:\ProgramData\ProductData
2016-02-02 18:34 - 2015-12-04 18:17 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-02-02 15:32 - 2015-11-26 00:01 - 00000000 ____D C:\Users\Samsung
2016-02-02 12:53 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-02 12:52 - 2015-10-30 03:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-02 09:51 - 2015-12-14 23:55 - 00000000 ____D C:\Users\Samsung\.VirtualBox
2016-02-01 16:38 - 2015-08-08 01:46 - 00000000 ___RD C:\Users\Samsung\OneDrive
2016-02-01 11:39 - 2015-04-02 15:58 - 00000000 ____D C:\Users\Samsung\Documents\Fran
2016-02-01 10:14 - 2015-11-11 18:13 - 00000000 ____D C:\Users\Samsung\Documents\Bytes
2016-02-01 09:57 - 2015-12-04 20:22 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\HPActiveHealth
2016-02-01 09:57 - 2015-12-04 20:22 - 00000000 ____D C:\Users\Default\AppData\Roaming\HPActiveHealth
2016-02-01 09:57 - 2015-12-04 20:22 - 00000000 ____D C:\Users\Default User\AppData\Roaming\HPActiveHealth
2016-02-01 09:32 - 2015-12-19 19:04 - 00000000 ____D C:\Users\Samsung\Documents\Pendrive
2016-02-01 09:15 - 2015-12-04 19:38 - 00000000 ____D C:\Users\Samsung\Downloads\HP Downloads
2016-02-01 09:15 - 2015-11-22 20:24 - 00000000 ____D C:\Users\Samsung\Documents\Remote Assistance Logs
2016-02-01 09:15 - 2015-11-21 21:11 - 00000000 ____D C:\Users\Samsung\Documents\Scratch Projects
2016-02-01 09:15 - 2015-10-01 15:34 - 00000000 ___RD C:\Users\Samsung\Dropbox
2016-02-01 09:14 - 2015-01-17 12:55 - 00000000 ____D C:\Users\Samsung\Documents\Notes
2016-02-01 09:03 - 2014-09-09 17:04 - 00000000 ____D C:\Users\Samsung\Documents\Bluetooth Folder
2016-02-01 09:00 - 2015-12-23 11:15 - 00000000 ____D C:\Users\Samsung\.idlerc
2016-02-01 09:00 - 2015-11-26 00:01 - 00000000 ____D C:\Users\DefaultAppPool
2016-02-01 09:00 - 2015-11-16 22:16 - 00000000 ____D C:\Users\Samsung\.oracle_jre_usage
2016-02-01 09:00 - 2015-11-10 21:03 - 00000000 ____D C:\Users\Samsung\.matplotlib
2016-02-01 09:00 - 2015-11-10 21:02 - 00000000 ____D C:\Users\Samsung\.qgis2
2016-02-01 09:00 - 2015-10-30 03:48 - 00000000 __RHD C:\Users\Public\Libraries
2016-02-01 09:00 - 2015-08-10 21:19 - 00000000 ___RD C:\Users\Samsung\3D Objects
2016-02-01 09:00 - 2015-08-08 01:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-01 08:59 - 2015-12-23 11:13 - 00000000 ____D C:\Python27
2016-02-01 08:59 - 2015-11-29 10:12 - 00000000 ____D C:\AdwCleaner
2016-02-01 08:56 - 2014-09-09 16:45 - 00000000 ____D C:\Intel
2016-02-01 08:52 - 2015-11-26 00:01 - 02234350 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-01 08:52 - 2015-10-30 13:14 - 00938414 _____ C:\WINDOWS\system32\prfh0416.dat
2016-02-01 08:52 - 2015-10-30 13:14 - 00211388 _____ C:\WINDOWS\system32\prfc0416.dat
2016-02-01 08:52 - 2015-10-30 03:47 - 00000000 ____D C:\WINDOWS\INF
2016-01-31 00:09 - 2015-12-22 19:39 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-01-31 00:09 - 2015-12-22 19:39 - 00000286 __RSH C:\ProgramData\ntuser.pol
2016-01-30 23:34 - 2014-09-09 19:07 - 00000000 ____D C:\Program Files\Google
2016-01-29 16:38 - 2015-10-01 15:30 - 00000000 ____D C:\Users\Samsung\AppData\Local\Dropbox
2016-01-29 08:52 - 2015-12-22 21:17 - 00000000 ____D C:\Program Files\IObit
2016-01-29 08:11 - 2015-12-22 20:56 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2016-01-29 08:11 - 2015-12-22 20:56 - 00000000 ____D C:\ProgramData\IObit
2016-01-29 08:10 - 2015-12-22 20:56 - 00000000 ____D C:\Users\Samsung\AppData\LocalLow\IObit
2016-01-29 08:09 - 2015-12-22 20:56 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\IObit
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-28 16:31 - 2015-10-30 03:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-01-28 16:29 - 2015-12-04 19:47 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\hpqLog
2016-01-28 16:29 - 2015-10-30 03:13 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-01-28 16:29 - 2014-09-09 16:17 - 00000000 ____D C:\Users\Samsung\AppData\Local\Microsoft Help
2016-01-28 16:07 - 2015-10-30 03:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-28 16:02 - 2015-10-30 03:48 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-01-28 16:02 - 2014-11-13 19:24 - 00000000 ____D C:\Users\Samsung\AppData\Roaming\TuneUp Software
2016-01-28 15:21 - 2015-10-30 03:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-28 07:47 - 2014-10-24 14:38 - 00000000 ____D C:\Users\Todos os Usuários\baidu
2016-01-28 07:47 - 2014-10-24 14:38 - 00000000 ____D C:\ProgramData\baidu
2016-01-27 09:04 - 2015-10-30 03:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-27 09:03 - 2015-11-11 10:36 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-01-27 09:03 - 2015-11-11 10:36 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-25 08:52 - 2014-09-09 21:37 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-24 21:32 - 2014-09-09 21:37 - 141317472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-23 10:28 - 2015-10-30 03:48 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2016-01-19 18:02 - 2015-12-14 23:50 - 00112112 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2016-01-15 15:16 - 2014-09-09 16:17 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-01-15 10:18 - 2015-11-16 08:38 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-13 11:28 - 2015-11-19 20:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-13 11:28 - 2015-11-17 08:48 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-01-13 08:53 - 2015-11-19 20:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Arquivos na raiz de alguns diretórios =======

2015-01-18 22:34 - 2015-01-18 22:34 - 0176128 _____ () C:\Program Files\restore.wfw
2015-01-18 22:33 - 2015-01-18 22:33 - 0568320 _____ (BiniSoft.org) C:\Program Files\wfc.exe
2015-01-18 22:33 - 2015-01-18 22:33 - 0099840 _____ (BiniSoft.org) C:\Program Files\wfcs.exe
2015-02-11 17:26 - 2015-02-11 17:26 - 0007605 _____ () C:\Users\Samsung\AppData\Local\Resmon.ResmonCfg
2015-12-22 18:10 - 2015-12-22 18:10 - 0000000 _____ () C:\Users\Samsung\AppData\Local\{EC5B80C9-155B-44D6-8DEF-16AEC58C7FE2}
2014-11-13 19:29 - 2014-11-13 19:29 - 0000165 _____ () C:\ProgramData\bc.ini
2015-11-25 23:58 - 2015-11-25 23:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Alguns arquivos em TEMP:
====================
C:\Users\Samsung\AppData\Local\Temp\DRHelper_uninstallComplete.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll
[2015-10-30 03:44] - [2015-10-30 03:44] - 0535088 ____A (Microsoft Corporation) 2DB3F3050DADD6C51F4F40712BE118F4

C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-01-25 14:08

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité