cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-01-2016
Executado por Marcos Lucena (administrador) em MARCOS (03-02-2016 21:46:03)
Executando a partir de C:\Users\Marcos Lucena\Desktop
Perfis Carregados: Marcos Lucena (Perfis Disponíveis: Marcos Lucena & DefaultAppPool)
Platform: Windows 8.1 Pro (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
(Firebird Project) C:\Santander\Gerenciador de Arquivos\Servidor\bin\fbguard.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Firebird Project) C:\Santander\Gerenciador de Arquivos\Servidor\bin\fbserver.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\SmartAudio3.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files (x86)\WeatherTool\2.0.1.11073\WeatherService.exe
(ShenZhen Enode Techology co,.Ltd) C:\Program Files (x86)\WeatherTool\2.0.1.11073\weather.exe
() C:\Users\Marcos Lucena\AppData\Roaming\Gameo\gameo.exe
() C:\Users\Marcos Lucena\AppData\Roaming\Gameo\gameo.exe
() C:\Users\Marcos Lucena\AppData\Roaming\Gameo\gameo.exe
() C:\Users\Marcos Lucena\AppData\Roaming\Gameo\gameo.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2122536 2010-05-07] (Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-09-25] (Adobe Systems Incorporated)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SA3\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [847160 2015-02-13] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-14] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2024800 2014-06-04] (Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ GbPluginAbn: C:\Program Files (x86)\GbPlugin\gbiehAbn.dll [2014-11-18] (Banco Real)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-10-20] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-01] (Caixa Economica Federal)
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53282944 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\RunOnce: [Go_Palikan] => [X]
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\Policies\Explorer: []
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\MountPoints2: {91a80684-8492-11e3-8256-e006e6d008d2} - "E:\Windows/AutoRun.exe"
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\MountPoints2: {d68e142c-44e7-11e4-8295-e006e6d008d2} - "F:\AutoRun.exe"
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\...\MountPoints2: {d68e151c-44e7-11e4-8295-e006e6d008d2} - "F:\AutoRun.exe"
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1867432 2015-09-01] (Caixa Economica Federal)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1945472 2015-10-20] (Banco do Brasil)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - C:\Program Files (x86)\GbPlugin\gbiehabn.dll [1939512 2014-11-18] (Banco Real)
Startup: C:\Users\Marcos Lucena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Officejet Pro 8600 (Rede).lnk [2016-01-28]
ShortcutTarget: Monitorar alertas de tinta - HP Officejet Pro 8600 (Rede).lnk -> C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0F572E63-EA0F-45AB-A5C2-61EDB217359B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C65ADE96-C439-4E8A-B390-96EF0A2EAB63}: [DhcpNameServer] 10.0.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir=
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir=
HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.br.msn.com/
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir=&q={searchTerms}
SearchScopes: HKLM -> {6586d803-df30-46d3-a89a-4136c8571d45} URL =
SearchScopes: HKLM-x32 -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-1415586297-2205061315-3192296508-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1415586297-2205061315-3192296508-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1415586297-2205061315-3192296508-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKU\S-1-5-21-1415586297-2205061315-3192296508-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=BR&ver=21&locale=pt_BR&gct=kwd&qsrc=2869
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2016-01-07] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-07] (Oracle Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12] (Adblock Plus)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.7.0.11\IPS\IPSBHO.DLL => Nenhum Arquivo
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2016-01-07] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-10-20] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-01] (Caixa Economica Federal)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540007} -> C:\Program Files (x86)\GbPlugin\gbiehabn.dll [2014-11-18] (Banco Real)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-07] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Adblock Plus)
Toolbar: HKU\S-1-5-21-1415586297-2205061315-3192296508-1001 -> Sem Nome - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Nenhum Arquivo
Toolbar: HKU\S-1-5-21-1415586297-2205061315-3192296508-1001 -> Sem Nome - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Nenhum Arquivo
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-07] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2013-09-25] (Adobe Systems)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-12-27] (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-21] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2013-09-25] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1415586297-2205061315-3192296508-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Marcos Lucena\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-03-03] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1415586297-2205061315-3192296508-1001: gastecnologia.com.br/sf/abn -> C:\Users\Marcos Lucena\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll [2015-02-19] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-1415586297-2205061315-3192296508-1001: gastecnologia.com.br/sf/abn64 -> C:\Users\Marcos Lucena\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll [2015-02-19] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-1415586297-2205061315-3192296508-1001: gastecnologia.com.br/sf/bb -> C:\Users\Marcos Lucena\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll [2015-01-13] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-1415586297-2205061315-3192296508-1001: gastecnologia.com.br/sf/bb64 -> C:\Users\Marcos Lucena\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll [2015-01-13] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-1415586297-2205061315-3192296508-1001: gastecnologia.com.br/sf/cef -> C:\Users\Marcos Lucena\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll [2014-04-16] (GAS Tecnologia)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8
CHR StartupUrls: Default -> "hxxp://www.palikan.com/?f=7&a=bfp_coinisre_16_05&cd=2XzuyEtN2Y1L1Qzu0EtDtDyC0EyC0DtDtDzz0DtByC0EzyyDtN0D0Tzu0StCyEzyyEtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0EyB0FzzyCzy0AtGyDtAtCzztGzytA0FtDtGtAzy0BzztGtBtD0A0ByByC0DtCyDtAyD0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0E0Dzz0F0BtC0DtGtDyEtDzytGyEzytBtDtGzz0FtAzytGtByEyC0FtCyCyD0DtDyE0EtD2QtN0A0LzuyE&cr=1425212007&ir="
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => Nenhum Arquivo
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-22]
CHR Extension: (Google Drive) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Documentos Google off-line) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-29]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-24]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnjbodopomfddehlalfilheomcahbpei [2014-08-08]
CHR Extension: (Gmail) - C:\Users\Marcos Lucena\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR HKLM\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1415586297-2205061315-3192296508-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nnjbodopomfddehlalfilheomcahbpei] - C:\Users\Marcos Lucena\AppData\Local\GAS Tecnologia\GBBD\cef\sf.crx [2014-08-07]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
CHR HKLM-x32\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - chrome.exe

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations) [Arquivo não assinado]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [109184 2011-10-11] (Conexant Systems, Inc.)
R2 FirebirdGuardianSuperCash; C:\Santander\Gerenciador de Arquivos\Servidor\bin\fbguard.exe [81920 2014-03-13] (Firebird Project) [Arquivo não assinado]
R3 FirebirdServerSuperCash; C:\Santander\Gerenciador de Arquivos\Servidor\bin\fbserver.exe [2723840 2014-03-13] (Firebird Project) [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [555320 2015-10-03] (GAS Tecnologia)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89352 2014-09-15] (Hewlett-Packard Company)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [62382256 2015-03-30] (Microsoft Corporation)
R2 MSSQLSERVER; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [42884448 2010-04-03] (Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [442536 2015-03-30] (Microsoft Corporation)
S4 SQLSERVERAGENT; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [367456 2010-04-03] (Microsoft Corporation)
R2 TheDesktopWeatherService; C:\Program Files (x86)\WeatherTool\2.0.1.11073\WeatherService.exe [152008 2015-11-23] ()
S2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] () [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [847160 2015-02-13] (GAS Tecnologia LTDA)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\WsAppService.exe [252816 2015-04-23] (Wondershare)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia)
S4 RsFx0153; C:\Windows\System32\DRIVERS\RsFx0153.sys [322736 2015-03-30] (Microsoft Corporation)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2014-09-02] (GAS Tecnologia LTDA)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R4 WinDivert1.1; C:\Windows\system32\WinDivert64.sys [37592 2015-02-13] (Basil's Projects)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; \SystemRoot\System32\drivers\ew_juextctrl.sys [X]
S3 huawei_wwanecm; \SystemRoot\system32\DRIVERS\ew_juwwanecm.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
S3 ZTEusbmdm6k; \SystemRoot\system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; \SystemRoot\system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; \SystemRoot\system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-03 21:46 - 2016-02-03 21:46 - 00028451 _____ C:\Users\Marcos Lucena\Desktop\FRST.txt
2016-02-03 21:45 - 2016-02-03 21:46 - 00000000 ____D C:\FRST
2016-02-03 21:44 - 2016-02-03 21:44 - 02370560 _____ (Farbar) C:\Users\Marcos Lucena\Desktop\FRST64.exe
2016-02-03 18:33 - 2016-02-03 18:33 - 00003794 _____ C:\Windows\System32\Tasks\gameo_update
2016-02-03 18:33 - 2016-02-03 18:33 - 00003536 _____ C:\Windows\System32\Tasks\ProfessionalCleaningSoftware_Popup
2016-02-03 18:33 - 2016-02-03 18:33 - 00003272 _____ C:\Windows\System32\Tasks\ProfessionalCleaningSoftware_Start
2016-02-03 18:33 - 2016-02-03 18:33 - 00000181 _____ C:\Users\Marcos Lucena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url
2016-02-03 18:33 - 2016-02-03 18:33 - 00000000 ___HD C:\Users\Marcos Lucena\AppData\Roaming\GoldenGate
2016-02-03 18:33 - 2016-02-03 18:33 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\updates
2016-02-03 18:33 - 2016-02-03 18:33 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\Professional_Cleaning_Sof
2016-02-03 18:33 - 2016-02-03 18:33 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\Gameo
2016-02-03 18:32 - 2016-02-03 21:32 - 00000328 _____ C:\Windows\Tasks\Price Fountain.job
2016-02-03 18:32 - 2016-02-03 18:41 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\Gameo
2016-02-03 18:32 - 2016-02-03 18:32 - 00003510 _____ C:\Windows\System32\Tasks\Marcos LucenaPhosphaticCasuallyV2
2016-02-03 18:32 - 2016-02-03 18:32 - 00002666 _____ C:\Windows\System32\Tasks\Price Fountain
2016-02-03 18:32 - 2016-02-03 18:32 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-02-03 18:32 - 2016-02-03 18:32 - 00000372 __RSH C:\ProgramData\ntuser.pol
2016-02-03 18:32 - 2016-02-03 18:32 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\PriceFountain
2016-02-03 18:31 - 2016-02-03 19:31 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\WeatherTool
2016-02-03 18:31 - 2016-02-03 18:35 - 00000000 ____D C:\Users\Marcos Lucena\Documents\ProfessionalCleaningSoftware
2016-02-03 18:31 - 2016-02-03 18:32 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\PhosphaticCasually
2016-02-03 18:31 - 2016-02-03 18:31 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-02-03 18:31 - 2016-02-03 18:31 - 00000000 ____D C:\Program Files (x86)\WeatherTool
2016-02-03 18:31 - 2016-02-03 18:31 - 00000000 ____D C:\Program Files (x86)\Pro PC Cleaner
2016-02-03 18:30 - 2016-02-03 18:30 - 00106160 _____ (Astalavista) C:\Users\Marcos Lucena\Downloads\adobe_flash_player.exe
2016-01-28 23:32 - 2016-01-30 11:37 - 00000000 ____D C:\Users\Marcos Lucena\Desktop\ivete sangalo
2016-01-28 23:30 - 2016-01-30 11:47 - 00000000 ____D C:\Users\Marcos Lucena\Desktop\Asas da américa
2016-01-23 15:02 - 2016-01-23 15:02 - 58919389 _____ C:\Users\Marcos Lucena\Downloads\Asas_da_America_No_Frevo.rar
2016-01-23 14:55 - 2016-01-23 14:55 - 78317078 _____ C:\Users\Marcos Lucena\Downloads\IS AO VIVO NO FESTIVAL DE VERAO DE SALVADOR 2015.rar
2016-01-22 18:28 - 2016-01-22 18:28 - 00542040 _____ C:\Users\Marcos Lucena\Downloads\Tabela_de_Preço_Inverno_2016_-_Malwee_Infantil.pdf
2016-01-22 18:20 - 2016-01-22 18:20 - 00457843 _____ C:\Users\Marcos Lucena\Downloads\Tabela_de_preços_-_Inverno_16_-_Fidelizados_-_Malwee_Infantil.pdf
2016-01-22 12:06 - 2016-01-22 12:06 - 00229427 _____ C:\Users\Marcos Lucena\Downloads\Tabela_de_Preço_-_Novidades_de_Inverno_2016_-_Malwee_Infantil.pdf
2016-01-21 20:09 - 2016-01-21 20:09 - 00497889 _____ C:\Users\Marcos Lucena\Downloads\Tabela_de_Preço_-_Novidades_de_Verão_2016_-_Malwee_Infantil.pdf
2016-01-20 19:08 - 2016-01-20 19:08 - 00272862 _____ C:\Users\Marcos Lucena\Downloads\Tabela_de_Preço_-_Resort_2016_-__Malwee_Infantil.pdf
2016-01-15 22:23 - 2016-01-15 22:54 - 00000000 ____D C:\Users\Marcos Lucena\Desktop\Pasta samba
2016-01-14 00:52 - 2016-01-14 00:52 - 00315129 _____ C:\Users\Marcos Lucena\Downloads\Aula 02 - Água e sais minerias.pptx
2016-01-12 16:36 - 2015-12-11 01:38 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-12 16:36 - 2015-12-11 01:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-12 16:36 - 2015-12-11 00:55 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-12 16:36 - 2015-12-11 00:50 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-12 16:36 - 2015-12-11 00:45 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-12 16:36 - 2015-12-11 00:21 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-12 16:36 - 2015-12-11 00:18 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-12 16:36 - 2015-12-11 00:09 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-01-12 16:36 - 2015-12-11 00:09 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-12 16:36 - 2015-12-11 00:03 - 14456832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-12 16:36 - 2015-12-10 23:59 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-12 16:36 - 2015-12-10 23:43 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-12 16:36 - 2015-12-10 23:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-01-12 16:36 - 2015-12-10 23:38 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-12 16:36 - 2015-12-10 23:37 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-12 16:36 - 2015-12-10 23:35 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-12 16:36 - 2015-12-10 23:26 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-12 16:36 - 2015-12-10 23:14 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-12 16:36 - 2015-12-10 23:12 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-12 16:36 - 2015-12-10 23:08 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-12 16:36 - 2015-12-10 23:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-12 16:35 - 2015-12-30 16:32 - 07453016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-12 16:35 - 2015-12-30 16:32 - 01735000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-12 16:35 - 2015-12-30 16:32 - 01499912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-12 16:35 - 2015-12-07 07:56 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 02745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 02528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 02450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 02447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 02334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 02324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 01877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 01798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 01484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 01288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 01210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 01150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 01115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 01037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00498472 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-12 16:35 - 2015-12-05 02:58 - 00090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-12 16:35 - 2015-12-05 02:58 - 00076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-12 16:35 - 2015-12-04 12:00 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-12 16:35 - 2015-12-03 16:42 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-01-12 16:35 - 2015-12-03 16:42 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-01-12 16:35 - 2015-12-03 16:42 - 00137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-12 16:35 - 2015-12-03 16:42 - 00106960 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-01-12 16:35 - 2015-12-03 16:41 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-12 16:35 - 2015-12-03 15:52 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-01-12 16:35 - 2015-12-03 15:52 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-12 16:35 - 2015-12-03 15:52 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-01-12 16:35 - 2015-12-03 15:28 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-12 16:35 - 2015-12-03 15:28 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-12 16:35 - 2015-12-03 15:07 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-12 16:35 - 2015-12-03 15:07 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-12 16:35 - 2015-12-03 15:05 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-12 16:35 - 2015-12-03 15:02 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-12 16:35 - 2015-12-03 15:00 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-12 16:35 - 2015-12-03 14:58 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-12 16:35 - 2015-12-03 14:51 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-01-12 16:35 - 2015-12-03 14:36 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-12 16:35 - 2015-12-03 14:30 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-12 16:35 - 2015-12-03 14:28 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-12 16:35 - 2015-12-03 14:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-12 16:35 - 2015-12-03 14:27 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-12 16:35 - 2015-12-03 14:24 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-12 16:35 - 2015-12-03 14:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-12 16:35 - 2015-12-03 14:16 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-01-12 16:35 - 2015-12-03 14:13 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-12 16:35 - 2015-12-03 14:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-12 16:35 - 2015-12-03 14:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-12 16:35 - 2015-12-03 14:01 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-12 16:35 - 2015-12-03 13:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-12 16:35 - 2015-12-03 13:40 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-12 16:35 - 2015-12-03 13:29 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-12 16:35 - 2015-12-02 12:04 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-12 16:35 - 2015-12-02 12:01 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-12 16:34 - 2015-12-09 21:40 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-12 16:34 - 2015-12-08 16:08 - 00685432 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-12 16:34 - 2015-12-08 16:07 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 01380864 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-12 16:34 - 2015-11-17 18:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-12 16:31 - 2016-01-12 16:31 - 05056051 _____ C:\Users\Marcos Lucena\Downloads\SLIDE PADRAO - DIRETO AO PONTO.pptx
2016-01-09 15:36 - 2016-01-09 15:59 - 00000000 ____D C:\Users\Marcos Lucena\Downloads\PopcornTime
2016-01-09 15:35 - 2016-01-09 15:35 - 00001173 _____ C:\Users\Public\Desktop\Popcorn Time.lnk
2016-01-09 15:35 - 2016-01-09 15:35 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\PopcornTimeDesktop
2016-01-09 15:35 - 2016-01-09 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2016-01-09 15:35 - 2016-01-09 15:35 - 00000000 ____D C:\Program Files (x86)\Popcorn Time
2016-01-09 15:19 - 2016-01-09 15:34 - 48359224 _____ (Popcorn Time ) C:\Users\Marcos Lucena\Downloads\PopcornTime-latest.exe
2016-01-07 19:10 - 2016-01-07 19:10 - 00000000 _____ C:\Windows\SysWOW64\REN6A38.tmp
2016-01-07 19:09 - 2016-01-07 19:10 - 00000000 ____D C:\Users\Marcos Lucena\.oracle_jre_usage
2016-01-07 19:09 - 2016-01-07 19:09 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\Sun
2016-01-07 19:07 - 2016-01-07 19:07 - 00000000 ____D C:\Users\Marcos Lucena\AppData\LocalLow\Oracle
2016-01-07 17:15 - 2016-01-07 17:18 - 96942766 _____ C:\Users\Marcos Lucena\Downloads\O Melhor De Benito Di Paula - 1992.rar
2016-01-07 16:23 - 2016-01-07 16:23 - 00878011 _____ C:\Users\Marcos Lucena\Documents\Benito Di Paula Grandes Sucessos (2012).zip
2016-01-07 16:19 - 2016-01-07 16:20 - 52210730 _____ C:\Users\Marcos Lucena\Downloads\Martinho da Vila.rar
2016-01-05 16:48 - 2016-01-05 16:48 - 00001306 _____ C:\Users\Marcos Lucena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk
2016-01-05 16:48 - 2016-01-05 16:48 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\FreeAudioPack
2016-01-05 16:47 - 2016-01-05 16:47 - 00001276 _____ C:\Users\Marcos Lucena\Desktop\Free Mp3 Wma Converter.lnk
2016-01-05 16:47 - 2016-01-05 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Audio Pack
2016-01-05 16:47 - 2011-09-29 14:20 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\AudFile.dll
2016-01-05 16:47 - 2011-09-29 14:20 - 01212416 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\AudioInfos.dll
2016-01-05 16:47 - 2011-09-29 14:20 - 00484352 _____ C:\Windows\SysWOW64\lame_enc.dll
2016-01-05 16:47 - 2011-09-29 14:20 - 00458752 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\AudPlayer.dll
2016-01-05 16:47 - 2011-09-29 14:20 - 00348160 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\WMAFile.dll
2016-01-05 16:47 - 2011-09-29 14:20 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2016-01-05 16:47 - 2011-09-29 14:20 - 00116296 _____ C:\Windows\SysWOW64\NCTWMAProfiles.prx
2016-01-05 16:47 - 2011-09-29 14:19 - 00224016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TABCTL32.OCX
2016-01-05 16:47 - 2011-09-29 14:19 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCFR.DLL
2016-01-05 16:47 - 2011-09-29 14:19 - 00119568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6FR.DLL
2016-01-05 16:47 - 2011-09-29 14:19 - 00115920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.OCX
2016-01-05 16:47 - 2011-09-29 14:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6STKIT.DLL
2016-01-05 16:47 - 2011-09-29 14:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mscc2fr.dll
2016-01-05 16:47 - 2011-09-29 14:19 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CMDLGFR.DLL
2016-01-05 16:47 - 2011-09-29 14:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TABCTFR.DLL
2016-01-05 16:47 - 2011-09-29 14:19 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetfr.DLL
2016-01-05 16:46 - 2016-01-05 16:48 - 00000000 ____D C:\Program Files (x86)\Free mp3 Wma Converter
2016-01-05 16:46 - 2016-01-05 16:46 - 01335200 _____ (Koyote-Lab Inc) C:\Users\Marcos Lucena\Downloads\FreeMp3WmaConverterSetup-r0-n-bc.exe
2016-01-05 16:46 - 2016-01-05 16:46 - 01335200 _____ (Koyote-Lab Inc) C:\Users\Marcos Lucena\Downloads\FreeMp3WmaConverterSetup-r0-n-bc (1).exe
2015-12-29 21:21 - 2015-12-29 21:21 - 01475395 _____ C:\Users\Marcos Lucena\Downloads\Roda da vida.docx
2015-12-28 21:42 - 2015-12-28 21:42 - 00210177 _____ C:\Users\Marcos Lucena\Documents\Scan0001.jpg
2015-12-27 18:10 - 2016-01-28 10:39 - 00000000 ____D C:\Users\Marcos Lucena\Desktop\Rodrigo
2015-12-18 01:03 - 2015-12-18 01:04 - 03427775 _____ C:\Users\Marcos Lucena\Downloads\A interpretao_de_Gasometria_Arterial.pdf
2015-12-18 00:47 - 2015-12-18 00:53 - 55920450 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 56 23.mov
2015-12-18 00:47 - 2015-12-18 00:53 - 54516934 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 47 16.mov
2015-12-18 00:47 - 2015-12-18 00:50 - 31017108 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 42 56.mov
2015-12-18 00:47 - 2015-12-18 00:50 - 26951561 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 39 14.mov
2015-12-18 00:47 - 2015-12-18 00:50 - 22301856 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 23 24.mov
2015-12-18 00:47 - 2015-12-18 00:49 - 18490821 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 31 08.mov
2015-12-18 00:47 - 2015-12-18 00:49 - 17377035 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 34 26.mov
2015-12-18 00:47 - 2015-12-18 00:48 - 08637980 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 23 28 19.mov
2015-12-18 00:46 - 2015-12-18 00:52 - 91602936 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 06 35.mov
2015-12-18 00:46 - 2015-12-18 00:52 - 87941340 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 16 03.mov
2015-12-18 00:46 - 2015-12-18 00:51 - 34220868 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 22 12 55.mov
2015-12-18 00:43 - 2015-12-18 00:44 - 23653160 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 21 50 08.mov
2015-12-18 00:39 - 2015-12-18 00:40 - 41511810 _____ C:\Users\Marcos Lucena\Downloads\Vídeo 25-11-15 21 47 45.mov
2015-12-17 18:46 - 2015-12-17 21:08 - 06467284 _____ C:\Users\Marcos Lucena\Downloads\mini jornada.pptx
2015-12-14 17:01 - 2015-12-14 17:01 - 01532031 _____ C:\Users\Marcos Lucena\Downloads\Cópia de Casos éticos.pptx
2015-12-14 13:41 - 2015-12-14 13:41 - 00000162 ____H C:\Users\Marcos Lucena\Desktop\~$abalho sobre tipos esterelização.docx
2015-12-14 11:36 - 2015-12-14 11:36 - 01297998 _____ C:\Users\Marcos Lucena\Downloads\PPI - Passo a Passo Indicador Biológico Rev.2 - 2014 - MPR.01016 (1).pdf
2015-12-14 11:35 - 2015-12-14 11:35 - 01297998 _____ C:\Users\Marcos Lucena\Downloads\PPI - Passo a Passo Indicador Biológico Rev.2 - 2014 - MPR.01016.pdf
2015-12-14 10:29 - 2015-12-14 10:29 - 00000162 ____H C:\Users\Marcos Lucena\Desktop\~$abalho sobre tipos de drenos.docx
2015-12-10 09:17 - 2015-11-05 05:59 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-10 09:16 - 2015-11-11 12:44 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-12-10 09:16 - 2015-11-11 12:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-12-10 09:16 - 2015-11-09 21:11 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-12-10 09:16 - 2015-11-09 21:08 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-12-10 09:16 - 2015-11-09 21:04 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-12-10 09:16 - 2015-11-09 20:37 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-12-10 09:16 - 2015-11-09 20:36 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-12-10 09:16 - 2015-11-09 20:36 - 00325632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-12-10 09:16 - 2015-11-09 20:25 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-12-10 09:16 - 2015-11-08 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-10 09:16 - 2015-11-08 19:02 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-10 09:16 - 2015-11-08 18:32 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-10 09:16 - 2015-11-08 18:32 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-12-10 09:16 - 2015-11-08 18:18 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-12-10 09:16 - 2015-11-08 18:16 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-12-10 09:16 - 2015-11-08 18:15 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-12-10 09:16 - 2015-11-08 18:13 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-10 09:16 - 2015-11-08 17:53 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-12-10 09:15 - 2015-11-22 03:59 - 01659568 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-12-10 09:15 - 2015-11-22 03:59 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-12-10 09:15 - 2015-11-22 03:59 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-12-10 09:15 - 2015-11-22 03:59 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-12-10 09:15 - 2015-11-21 15:32 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-12-10 09:15 - 2015-11-21 14:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-12-10 09:15 - 2015-11-21 13:59 - 01706496 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-10 09:15 - 2015-11-21 13:49 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-12-10 09:15 - 2015-11-21 13:47 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-10 09:15 - 2015-11-21 13:40 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-12-10 09:15 - 2015-11-08 21:41 - 01540728 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-10 09:15 - 2015-11-08 19:30 - 04176384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-10 09:15 - 2015-11-08 18:23 - 01994752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-10 09:15 - 2015-11-08 18:13 - 01383936 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-10 09:15 - 2015-11-08 18:01 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-12-10 09:15 - 2015-11-08 17:52 - 01559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-12-10 09:15 - 2015-11-08 17:48 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-12-10 09:15 - 2015-11-08 17:42 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-12-10 09:15 - 2015-10-22 14:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2015-12-10 09:15 - 2015-10-22 14:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2015-12-10 09:15 - 2015-10-22 14:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2015-12-10 09:15 - 2015-10-22 14:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2015-12-10 09:15 - 2015-10-22 13:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2015-12-10 09:15 - 2015-10-22 13:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2015-12-10 09:15 - 2015-10-22 13:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2015-12-10 09:15 - 2015-10-22 13:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2015-12-10 09:15 - 2015-10-22 13:21 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-12-10 09:15 - 2015-10-22 13:21 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2015-12-10 09:15 - 2015-10-22 12:58 - 00868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-12-10 09:15 - 2015-10-22 12:58 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2015-12-10 09:15 - 2015-10-22 11:08 - 00513456 _____ C:\Windows\SysWOW64\locale.nls
2015-12-10 09:15 - 2015-10-22 11:08 - 00513456 _____ C:\Windows\system32\locale.nls
2015-12-10 09:15 - 2015-10-10 14:20 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-12-10 09:15 - 2015-10-03 16:41 - 01385280 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-12-10 09:15 - 2015-10-03 16:41 - 01124384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-12-10 09:14 - 2015-11-20 19:47 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-12-10 09:14 - 2015-11-20 15:18 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-12-10 09:14 - 2015-11-20 13:58 - 03706880 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-12-10 09:14 - 2015-11-20 13:47 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-12-10 09:14 - 2015-11-20 13:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-12-10 09:14 - 2015-11-20 13:44 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-12-10 09:14 - 2015-11-20 13:44 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-12-10 09:14 - 2015-11-20 13:43 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-12-10 09:14 - 2015-11-20 13:42 - 02243584 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-12-10 09:14 - 2015-11-20 13:30 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-12-10 09:14 - 2015-11-20 13:29 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-12-10 09:14 - 2015-11-20 13:28 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-12-10 09:14 - 2015-11-20 13:27 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-12-10 09:14 - 2015-10-28 12:49 - 02775552 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-12-10 09:14 - 2015-10-28 12:29 - 02462720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-12-10 09:14 - 2015-10-11 03:34 - 00468824 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-12-10 09:14 - 2015-10-11 03:34 - 00462168 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-12-10 09:14 - 2015-10-11 03:34 - 00443224 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-12-10 09:14 - 2015-10-11 03:34 - 00092504 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-12-10 09:14 - 2015-10-11 03:34 - 00027992 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-12-10 09:14 - 2015-10-10 15:41 - 00037376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-12-10 09:14 - 2015-10-10 15:41 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-12-10 09:14 - 2015-10-10 15:40 - 00078848 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys
2015-12-10 09:14 - 2015-10-08 13:11 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2015-12-10 09:14 - 2015-10-08 12:50 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2015-12-10 09:14 - 2015-10-05 15:28 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe
2015-12-10 09:14 - 2015-10-05 15:25 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-12-09 22:39 - 2015-12-09 22:39 - 01070232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2015-12-09 14:19 - 2015-12-09 14:19 - 00095024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dc3d.sys
2015-12-07 21:36 - 2015-12-07 21:36 - 00014119 _____ C:\Users\Marcos Lucena\Downloads\monolog.A4.pdf
2015-12-06 20:47 - 2015-12-06 20:47 - 00052609 _____ C:\Users\Marcos Lucena\Downloads\NORMAS PARA RELATO DE CASO.PM I.pdf
2015-12-06 20:46 - 2015-12-06 20:46 - 00660357 _____ C:\Users\Marcos Lucena\Downloads\Relato de caso. exemplo .IAM.PMAo.pdf
2015-12-02 07:34 - 2016-01-30 11:15 - 00012010 _____ C:\Windows\setupact.log
2015-12-02 07:34 - 2015-12-02 07:34 - 00000000 _____ C:\Windows\setuperr.log
2015-11-20 15:21 - 2015-11-20 15:21 - 00000162 ____H C:\Users\Marcos Lucena\Desktop\~$abalho sobre tipos de choques 20 11 2015.docx
2015-11-20 05:50 - 2015-11-20 05:50 - 00430479 _____ C:\Users\Marcos Lucena\Downloads\Des. Crescimento RC Petronio.xlsx
2015-11-12 20:07 - 2015-11-12 20:07 - 00466728 _____ (Microsoft Corporation) C:\Windows\system32\coin99itp.dll
2015-11-12 08:50 - 2015-09-29 09:24 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-11-12 08:50 - 2015-09-04 16:24 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-11-12 08:50 - 2015-08-28 19:20 - 00183368 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-11-12 08:50 - 2014-11-04 22:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-11-12 08:50 - 2014-11-04 22:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-11-11 22:21 - 2015-10-13 14:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 22:21 - 2015-10-13 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 22:21 - 2015-09-07 13:22 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-11-11 22:21 - 2015-09-07 13:21 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2015-11-11 22:21 - 2015-09-07 13:17 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2015-11-11 22:21 - 2015-09-07 12:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-11-11 22:21 - 2015-09-07 12:30 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-11-11 22:20 - 2015-10-15 13:08 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 22:20 - 2015-10-15 12:46 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-11 22:20 - 2015-09-12 10:47 - 00414559 _____ C:\Windows\system32\ApnDatabase.xml
2015-11-11 22:16 - 2015-10-08 13:08 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-11-11 22:16 - 2015-08-10 15:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-11-11 22:16 - 2015-08-10 15:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-11-11 22:16 - 2015-08-10 14:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-11-11 22:16 - 2015-08-10 13:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-11-11 22:16 - 2015-08-10 13:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-11-11 22:16 - 2014-11-10 15:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-11-11 07:28 - 2015-11-11 07:28 - 00463591 _____ C:\Users\Marcos Lucena\Documents\Scan0006.pdf
2015-11-10 19:03 - 2015-11-10 19:03 - 00466728 _____ (Microsoft Corporation) C:\Windows\system32\coin99ip.dll

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-03 21:22 - 2014-10-13 16:34 - 00000368 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2016-02-03 20:51 - 2014-03-10 12:18 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-03 19:09 - 2014-01-21 16:39 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1415586297-2205061315-3192296508-1001
2016-02-03 18:53 - 2014-10-11 20:14 - 00573440 ___SH C:\Users\Marcos Lucena\Downloads\Thumbs.db
2016-02-03 18:51 - 2015-03-21 19:04 - 00000000 ____D C:\Program Files\Autodesk
2016-02-03 18:48 - 2015-03-21 18:45 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2016-02-03 18:48 - 2015-03-21 18:45 - 00000000 ____D C:\ProgramData\Autodesk
2016-02-03 18:39 - 2014-01-27 15:04 - 00000000 ____D C:\Users\Marcos Lucena\AppData\LocalLow\Adblock Plus for IE
2016-02-03 18:34 - 2015-10-05 18:36 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\node-webkit
2016-02-03 18:32 - 2013-08-22 12:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-02-03 18:32 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-02-03 15:51 - 2014-03-10 12:18 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-03 15:46 - 2014-03-10 12:18 - 00004062 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 15:46 - 2014-03-10 12:18 - 00003826 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-03 15:35 - 2014-02-13 13:21 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2F72AAA7-A77B-4579-A1DB-445AB0A33CFB}
2016-02-03 15:32 - 2015-07-08 23:38 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\Skype
2016-01-30 11:17 - 2014-01-21 16:37 - 02117878 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-30 11:17 - 2013-08-22 19:58 - 00940160 _____ C:\Windows\system32\prfh0416.dat
2016-01-30 11:17 - 2013-08-22 19:58 - 00220820 _____ C:\Windows\system32\prfc0416.dat
2016-01-30 11:17 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf
2016-01-28 23:39 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\AppReadiness
2016-01-28 23:21 - 2014-01-21 16:33 - 00000000 ____D C:\Users\Marcos Lucena
2016-01-28 23:20 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-28 12:46 - 2015-02-02 09:41 - 00000000 ____D C:\Users\Marcos Lucena\Desktop\escola enfermagem vitoria
2016-01-28 10:45 - 2014-03-10 12:19 - 00002190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-28 10:39 - 2015-08-03 11:11 - 00000000 ____D C:\Users\Marcos Lucena\Desktop\Malwee
2016-01-27 02:45 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-01-27 02:43 - 2014-04-08 23:02 - 01657856 ___SH C:\Users\Marcos Lucena\Desktop\Thumbs.db
2016-01-26 23:50 - 2014-08-16 09:18 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-01-26 23:50 - 2014-08-16 09:18 - 00000000 ____D C:\ProgramData\GbPlugin
2016-01-26 23:30 - 2014-07-21 17:12 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Roaming\HpUpdate
2016-01-16 19:08 - 2013-08-22 12:36 - 00000000 ____D C:\Windows\rescache
2016-01-15 22:20 - 2015-07-08 23:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-14 20:34 - 2014-01-21 19:23 - 00000000 ____D C:\Users\Marcos Lucena\Documents\Arquivos do Outlook
2016-01-13 19:29 - 2015-03-14 08:43 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-01-13 19:29 - 2015-03-14 08:43 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-13 02:33 - 2014-12-11 16:16 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-13 02:33 - 2014-07-09 23:59 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-12 19:12 - 2014-01-21 16:52 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-01-12 19:12 - 2013-08-22 12:20 - 00000000 ____D C:\Windows\CbsTemp
2016-01-12 19:10 - 2014-01-22 15:39 - 00000000 ____D C:\Windows\system32\MRT
2016-01-12 19:04 - 2014-01-22 15:39 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-12 19:04 - 2013-08-22 10:25 - 00000167 _____ C:\Windows\win.ini
2016-01-09 18:08 - 2014-02-02 20:06 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2016-01-09 18:05 - 2014-02-02 20:09 - 00000000 ____D C:\Users\Todos os Usuários\Norton
2016-01-09 18:05 - 2014-02-02 20:09 - 00000000 ____D C:\ProgramData\Norton
2016-01-09 15:35 - 2014-01-21 16:34 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\VirtualStore
2016-01-07 22:12 - 2014-02-07 08:56 - 00000000 ____D C:\Users\Marcos Lucena\AppData\Local\CrashDumps
2016-01-07 22:07 - 2014-01-21 16:49 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-01-07 22:07 - 2014-01-21 16:49 - 00000000 ____D C:\ProgramData\Oracle
2016-01-07 19:10 - 2014-08-16 10:31 - 00000000 ____D C:\Program Files (x86)\Java
2016-01-07 19:10 - 2014-01-21 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-07 19:10 - 2014-01-21 16:48 - 00000000 ____D C:\Program Files\Java
2016-01-07 19:09 - 2014-01-21 16:48 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-01-05 17:04 - 2014-01-22 16:45 - 00826872 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-05 17:04 - 2014-01-22 16:45 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-05 15:55 - 2014-06-04 22:47 - 00000000 ___RD C:\Users\Marcos Lucena\Desktop\Pastas, arquivos, programas

==================== Arquivos na raiz de alguns diretórios =======

2014-01-23 17:37 - 2014-01-23 17:37 - 0016005 _____ () C:\Users\Marcos Lucena\AppData\Roaming\unins000.dat
2014-03-13 10:58 - 2015-04-07 10:06 - 0032432 _____ () C:\Users\Marcos Lucena\AppData\Roaming\unins001.dat
2015-04-07 10:06 - 2015-04-07 10:06 - 0811218 _____ () C:\Users\Marcos Lucena\AppData\Roaming\unins001.exe
2014-09-19 13:31 - 2015-03-02 20:10 - 0016640 _____ () C:\Users\Marcos Lucena\AppData\Roaming\unins002.dat
2014-09-19 13:31 - 2015-03-02 20:10 - 0815826 _____ () C:\Users\Marcos Lucena\AppData\Roaming\unins002.exe
2014-01-23 15:29 - 2014-01-31 23:29 - 0000151 _____ () C:\Users\Marcos Lucena\AppData\Roaming\WB.CFG
2014-01-23 15:29 - 2014-01-31 23:29 - 0000005 _____ () C:\Users\Marcos Lucena\AppData\Roaming\WBPU-TTL.DAT
2014-07-21 17:12 - 2014-07-21 17:12 - 0000057 _____ () C:\ProgramData\Ament.ini

Alguns arquivos em TEMP:
====================
C:\Users\Marcos Lucena\AppData\Local\Temp\AcDeltree.exe
C:\Users\Marcos Lucena\AppData\Local\Temp\apptemp.1.exe
C:\Users\Marcos Lucena\AppData\Local\Temp\OverassertiveContinuable.dll


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-01-26 23:41

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité