cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-01-2016
Executado por marco (administrador) em LAPTOP-FSB0V8JO (06-02-2016 22:02:39)
Executando a partir de C:\Users\marco\Downloads
Perfis Carregados: marco (Perfis Disponíveis: marco)
Platform: Windows 10 Home Single Language (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Amazon Inc.) C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe
(TODO: ) C:\ProgramData\Updata\GoogleUpdata.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(BitTorrent Inc.) C:\Users\marco\AppData\Roaming\uTorrent\uTorrent.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
() C:\ProgramData\WindowsMsg\osmsg.exe
(Curse, Inc) C:\Users\marco\AppData\Roaming\Curse Client\Bin\Curse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(BitTorrent Inc.) C:\Users\marco\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
(BitTorrent Inc.) C:\Users\marco\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Skype Technologies S.A.) C:\Users\marco\Documents\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\Chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\Chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\Chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\Chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\Chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [uTorrent] => C:\Users\marco\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-14] (BitTorrent Inc.)
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\osmsg.exe [2036224 2016-02-04] ()
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\MountPoints2: {4a6e6604-a372-11e5-9bed-1c39470c8d59} - "F:\Autorun.exe"
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\MountPoints2: {76ebbaf2-c344-11e5-9c26-1c39470c8d59} - "E:\Autorun.exe"
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => Nenhum Arquivo
Startup: C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2016-02-05]
ShortcutTarget: Curse.lnk -> C:\Users\marco\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:61109;https=127.0.0.1:61109
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\..\Interfaces\{5704013b-9dc5-4bb5-8596-89af3f674895}: [DhcpNameServer] 187.18.187.4 187.18.187.2
Tcpip\..\Interfaces\{7e64a55b-4643-40f4-8552-57ebf3d452ad}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
URLSearchHook: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 - (Sem Nome) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - Nenhum Arquivo
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> {4AD43A14-AA87-4d4b-A345-B0BC1C61BC76} URL = hxxp://www.google.cn/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> {C3BBCD0B-9234-4d36-9151-EC49EE32FCE3} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=28026190_dg&ie=utf-8
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-12-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-12-23] (Oracle Corporation)
IE Session Restore: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> está habilitado.

FireFox:
========
FF ProfilePath: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Nenhum Arquivo]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-12-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-12-23] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-4207123351-2558841533-2703887520-1001: gastecnologia.com.br/sf/cef64 -> C:\Users\marco\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [Nenhum Arquivo]
FF SearchPlugin: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\DD1B66D4.xml [2016-02-04]
FF SearchPlugin: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\McSiteAdvisor.xml [2015-12-13]
FF Extension: Português Brasileiro Language Pack - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\wka901jo.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2015-12-01]
FF Extension: GsearchFinder - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@E9438230-A7DF-4D1F-8F2D-CA1D0F0F7924.xpi [2016-01-21]
FF Extension: Português Brasileiro Language Pack - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2015-12-01]
FF HKLM\...\Firefox\Extensions: [{DF371121-FC15-4E46-8DC1-7A1A108DC409}] - C:\Program Files\groover050220162330\Firefox\{DF371121-FC15-4E46-8DC1-7A1A108DC409}.xpi => não encontrado (a)
FF HKLM\...\Firefox\Extensions: [{0DA7B203-0BA9-477F-8563-38B199734B62}] - C:\Program Files\shopperz050220162301\Firefox\{0DA7B203-0BA9-477F-8563-38B199734B62}.xpi => não encontrado (a)
FF HKLM\...\Firefox\Extensions: [{D1F5921D-416A-4656-8B75-32B57057CA86}] - C:\Program Files\shopperz050220161443\Firefox\{D1F5921D-416A-4656-8B75-32B57057CA86}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [{DF371121-FC15-4E46-8DC1-7A1A108DC409}] - C:\Program Files\groover050220162330\Firefox\{DF371121-FC15-4E46-8DC1-7A1A108DC409}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [{0DA7B203-0BA9-477F-8563-38B199734B62}] - C:\Program Files\shopperz050220162301\Firefox\{0DA7B203-0BA9-477F-8563-38B199734B62}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [{D1F5921D-416A-4656-8B75-32B57057CA86}] - C:\Program Files\shopperz050220161443\Firefox\{D1F5921D-416A-4656-8B75-32B57057CA86}.xpi => não encontrado (a)
FF HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\marco\AppData\Local\GAS Tecnologia\GBBD\cef\xpi => não encontrado (a)

Chrome:
=======
CHR Profile: C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-05]
CHR Extension: (Google Drive) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-05]
CHR Extension: (YouTube) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-05]
CHR Extension: (Google Search) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-05]
CHR Extension: (Ad.Block) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdnhmodopgbdolkppmmmakhfpglglaoj [2016-02-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-05]
CHR Extension: (Gmail) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-05]
CHR Profile: C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Apresentações) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-06]
CHR Extension: (Google Docs) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-06]
CHR Extension: (Google Drive) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-06]
CHR Extension: (YouTube) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-06]
CHR Extension: (Google Search) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-06]
CHR Extension: (Planilhas do Google) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-06]
CHR Extension: (Documentos Google off-line) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-06]
CHR Extension: (Gmail) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-06]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 Amazon 1Button App Service; c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [456000 2015-09-17] (Amazon Inc.)
R2 GoogleChromeUpdata; C:\ProgramData\Updata\GoogleUpdata.exe [2768384 2016-02-04] (TODO: ) [Arquivo não assinado]
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [359848 2015-12-23] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [398176 2015-07-09] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-09] (Acer Incorporated)
S2 QQRepair10f1; C:\Windows\GJFix\QQRepair10f1 [129504 2016-02-06] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-26] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 Uisulba; "C:\Users\marco\AppData\Roaming\SywsuUugol\Womgeamt.exe" -cms [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4301304 2015-05-17] (Qualcomm Atheros Communications, Inc.)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [270912 2015-12-15] (DT Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [132360 2015-06-15] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21344 2015-07-09] (Acer Incorporated)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [183584 2015-06-12] (Intel Corporation)
S3 Qcamain; C:\Windows\System32\drivers\Qcamainx64.sys [2276352 2015-07-10] (Qualcomm Atheros, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14688 2015-07-09] (Acer Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-28] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2015-11-30] (Realsil Semiconductor Corporation)
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [11973 2015-12-17] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Arquivo não assinado]
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2015-12-15] (Duplex Secure Ltd.)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [51368 2015-05-11] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 BtFilter; \SystemRoot\system32\DRIVERS\btfilter.sys [X]
S1 SRepairDrv; \??\C:\Windows\GJFix\SRepairDrv [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-06 22:09 - 2016-02-06 22:09 - 00016148 _____ C:\Windows\system32\LAPTOP-FSB0V8JO_marco_HistoryPrediction.bin
2016-02-06 22:02 - 2016-02-06 22:09 - 00018216 _____ C:\Users\marco\Downloads\FRST.txt
2016-02-06 22:02 - 2016-02-06 22:02 - 00000000 ____D C:\FRST
2016-02-06 22:01 - 2016-02-06 22:02 - 02370560 _____ (Farbar) C:\Users\marco\Downloads\FRST64.exe
2016-02-06 21:03 - 2016-02-06 21:03 - 00001033 _____ C:\Users\marco\Desktop\Facebook Chat.lnk
2016-02-06 21:03 - 2016-02-06 21:03 - 00000000 ____D C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FBCIM
2016-02-06 21:03 - 2016-02-06 21:03 - 00000000 ____D C:\Program Files (x86)\FBCIM
2016-02-06 21:02 - 2016-02-06 21:03 - 04399960 _____ C:\Users\marco\Downloads\FBCIMSetup.exe
2016-02-06 20:48 - 2016-02-06 20:48 - 00000000 ____D C:\Users\marco\AppData\Local\Bluestacks
2016-02-06 20:28 - 2016-02-06 20:28 - 00000000 ___HD C:\OneDriveTemp
2016-02-06 19:28 - 2016-02-06 19:28 - 00000000 ____D C:\Users\Todos os Usuários\TXQMPC
2016-02-06 19:28 - 2016-02-06 19:28 - 00000000 ____D C:\ProgramData\TXQMPC
2016-02-06 18:15 - 2016-02-06 18:15 - 00970898 _____ ( ) C:\Users\marco\Documents\FlashPlayerPro.exe
2016-02-06 18:14 - 2016-02-06 18:14 - 00000000 ____D C:\Users\marco\AppData\Local\Macromedia
2016-02-06 18:12 - 2016-02-06 20:00 - 00000000 ____D C:\Users\Todos os Usuários\BlueStacksSetup
2016-02-06 18:12 - 2016-02-06 20:00 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-02-06 18:07 - 2016-02-06 18:11 - 267213632 _____ (BlueStack Systems Inc.) C:\Users\marco\Downloads\BlueStacks2_native.exe
2016-02-06 16:29 - 2016-02-06 20:28 - 00000000 ____D C:\Users\marco\AppData\LocalLow\uTorrent
2016-02-05 22:45 - 2016-02-05 22:45 - 00000000 ____D C:\Windows\system32\qac
2016-02-05 22:38 - 2016-02-06 19:20 - 00000000 ____D C:\AdwCleaner
2016-02-05 22:38 - 2016-02-05 22:38 - 01508352 _____ C:\Users\marco\Downloads\AdwCleaner.exe
2016-02-05 22:23 - 2016-02-05 22:23 - 00000000 ____D C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-02-05 19:55 - 2016-02-05 19:55 - 00000000 ____D C:\Users\marco\Intel
2016-02-05 19:48 - 2016-02-05 19:48 - 00003320 _____ C:\Windows\System32\Tasks\{601F1756-7C5E-4BE5-944A-F9F72BAD0B9C}
2016-02-05 19:47 - 2016-02-05 19:48 - 00000000 ____D C:\Users\Todos os Usuários\OWdMO
2016-02-05 19:47 - 2016-02-05 19:48 - 00000000 ____D C:\ProgramData\OWdMO
2016-02-05 19:46 - 2016-02-05 19:46 - 00003122 _____ C:\Windows\System32\Tasks\ttwifi
2016-02-05 19:46 - 2016-02-05 19:46 - 00003016 _____ C:\Windows\System32\Tasks\osTip
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\Users\Todos os Usuários\Updata
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\Users\marco\AppData\Local\Tempfolder
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\ProgramData\Updata
2016-02-05 19:45 - 2016-02-05 19:45 - 00003416 _____ C:\Windows\System32\Tasks\Viubb
2016-02-05 19:15 - 2016-02-05 19:15 - 00003418 _____ C:\Windows\System32\Tasks\Buiwmev
2016-02-05 19:14 - 2016-02-05 19:12 - 00000967 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-02-05 19:11 - 2016-02-05 19:11 - 00003422 _____ C:\Windows\System32\Tasks\Wiwlud
2016-02-05 19:11 - 2016-02-05 19:11 - 00000000 ____D C:\Users\marco\AppData\LocalLow\Company
2016-02-05 19:11 - 2016-02-05 19:11 - 00000000 ____D C:\uninst
2016-02-05 03:16 - 2016-02-06 16:39 - 00000037 _____ C:\Users\marco\Desktop\séries.txt
2016-02-04 15:14 - 2016-02-04 15:15 - 00000000 ____D C:\Users\Todos os Usuários\2WdM2
2016-02-04 15:14 - 2016-02-04 15:15 - 00000000 ____D C:\ProgramData\2WdM2
2016-02-04 01:56 - 2015-03-05 02:12 - 00421784 _____ (Baidu, Inc.) C:\Windows\system32\BdSandboxDll64.dll
2016-02-04 01:56 - 2015-03-05 02:12 - 00332320 _____ (Baidu, Inc.) C:\Windows\SysWOW64\BdSandboxDll32.dll
2016-02-04 01:52 - 2016-02-04 01:52 - 00000000 ____D C:\Users\marco\AppData\Local\ElevatedDiagnostics
2016-02-04 01:51 - 2016-02-04 01:51 - 00003280 _____ C:\Windows\System32\Tasks\{F411FB24-EE32-4B94-8E58-3355B0D562AC}
2016-02-04 01:49 - 2016-02-04 01:49 - 00003292 _____ C:\Windows\System32\Tasks\{978AC345-9DA8-4730-ADFF-341E75D0C530}
2016-02-04 01:15 - 2016-02-04 01:15 - 00005120 _____ C:\Users\marco\AppData\Roaming\GiftBag.db
2016-02-04 01:14 - 2016-02-04 01:07 - 00127800 _____ (Tencent Technology(Shenzhen) Company Limited) C:\Windows\system32\Drivers\TAOKernelEx64.sys
2016-02-04 01:13 - 2016-02-06 19:54 - 00000000 ____D C:\Windows\GJFix
2016-02-04 01:09 - 2016-02-05 21:37 - 00003694 _____ C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2016-02-04 01:09 - 2016-02-04 01:09 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2016-02-04 01:09 - 2016-02-04 01:09 - 00000000 ____D C:\Users\marco\AppData\LocalLow\BAVData
2016-02-04 01:09 - 2016-02-04 01:09 - 00000000 ____D C:\ProgramData\Baidu Security
2016-02-04 01:05 - 2016-02-04 01:05 - 00000000 ____D C:\Program Files (x86)\Baidu Security
2016-02-04 01:03 - 2016-02-05 22:46 - 00000000 ____D C:\Users\marco\AppData\Roaming\BavMini
2016-02-04 01:03 - 2016-02-04 01:03 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-02-04 01:01 - 2016-02-05 21:36 - 00000000 ____D C:\Users\marco\AppData\Roaming\Baidu
2016-02-04 01:01 - 2016-02-04 01:56 - 00000000 ____D C:\Users\Todos os Usuários\Baidu
2016-02-04 01:01 - 2016-02-04 01:56 - 00000000 ____D C:\ProgramData\Baidu
2016-02-04 01:01 - 2016-02-04 01:02 - 00000000 ____D C:\Program Files (x86)\Baidu
2016-02-04 00:59 - 2016-02-04 01:16 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-02-04 00:59 - 2016-02-04 01:16 - 00000286 __RSH C:\ProgramData\ntuser.pol
2016-02-04 00:58 - 2016-02-04 00:58 - 00000000 ____D C:\Program Files (x86)\t_201602040058
2016-02-04 00:56 - 2016-02-04 01:11 - 00000000 ____D C:\Users\marco\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-02-04 00:55 - 2016-02-04 00:56 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-02-03 17:13 - 2016-02-05 19:25 - 00001524 _____ C:\Users\marco\Desktop\GameDevTycoon - Atalho.lnk
2016-02-03 16:22 - 2016-02-04 17:11 - 00000000 ____D C:\Users\marco\AppData\Local\Game Dev Tycoon - Steam
2016-02-03 15:31 - 2016-02-03 15:31 - 00000000 ____D C:\Users\marco\AppData\Roaming\MMFApplications
2016-02-03 15:30 - 2016-02-03 15:51 - 00000000 ____D C:\Users\marco\Documents\The Escapists
2016-02-03 15:29 - 2016-02-03 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
2016-02-03 15:29 - 2016-02-03 15:29 - 00000000 ____D C:\Program Files (x86)\Tribo Gamer
2016-02-03 15:03 - 2016-02-05 19:25 - 00001753 _____ C:\Users\Public\Desktop\The Escapists.lnk
2016-02-03 15:03 - 2016-02-03 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Escapists [GOG.com]
2016-02-03 15:02 - 2016-02-03 15:02 - 00000000 ____D C:\GOG Games
2016-02-03 14:57 - 2016-02-06 20:28 - 00000000 ____D C:\Users\marco\AppData\Roaming\Curse Client
2016-02-03 14:57 - 2016-02-05 19:25 - 00001198 _____ C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2016-02-03 14:57 - 2016-02-05 19:25 - 00001192 _____ C:\Users\marco\Desktop\Curse.lnk
2016-02-03 14:56 - 2016-02-03 14:56 - 00000000 ____D C:\Users\marco\AppData\Roaming\Curse
2016-02-03 13:34 - 2016-02-03 13:34 - 00000000 ____D C:\Users\marco\Documents\League of Legends
2016-01-30 17:47 - 2016-02-05 19:25 - 00002038 _____ C:\Users\marco\Desktop\The Sims 3.lnk
2016-01-29 23:28 - 2016-01-30 17:27 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-01-29 23:28 - 2016-01-30 17:27 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-01-29 23:27 - 2016-01-29 23:27 - 00000060 _____ C:\Windows\wininit.ini
2016-01-27 16:54 - 2016-01-27 16:54 - 00000000 ____D C:\Users\marco\Documents\Electronic Arts
2016-01-27 16:52 - 2016-01-27 16:52 - 00000000 ____D C:\Program Files (x86)\Microsoft WSE
2016-01-27 16:52 - 2008-09-04 21:22 - 00447752 ____R (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2016-01-27 16:36 - 2016-01-30 17:50 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2016-01-23 21:06 - 2016-01-23 21:06 - 00000000 ____D C:\Users\marco\AppData\Roaming\Java
2016-01-23 16:09 - 2016-01-23 16:09 - 00000000 ____D C:\Users\marco\Desktop\Replays
2016-01-21 21:20 - 2016-01-26 20:16 - 00000000 ____D C:\Users\marco\Desktop\mods
2016-01-21 15:57 - 2016-02-04 15:21 - 00000000 ____D C:\Users\marco\Desktop\arquivos
2016-01-21 15:56 - 2016-01-21 15:56 - 37107315 _____ (Adobe Systems, Inc.) C:\Users\marco\Desktop\punkomatic2.exe
2016-01-21 15:36 - 2016-01-21 15:38 - 00000000 ____D C:\Users\marco\Desktop\minecraft
2016-01-18 19:34 - 2016-01-18 19:34 - 00000000 ____D C:\Users\marco\AppData\Local\AAA_Internet_Publishing,_
2016-01-18 19:34 - 2015-04-08 15:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SPORDER.DLL
2016-01-12 20:35 - 2016-01-05 00:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-01-12 20:35 - 2016-01-05 00:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-12 20:35 - 2016-01-05 00:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-12 20:35 - 2016-01-05 00:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-12 20:35 - 2016-01-05 00:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-01-12 20:35 - 2016-01-05 00:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-12 20:35 - 2016-01-05 00:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-12 20:35 - 2016-01-04 23:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-01-12 20:35 - 2016-01-04 23:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-12 20:35 - 2016-01-04 23:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-12 20:35 - 2016-01-04 23:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-12 20:35 - 2016-01-04 23:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-12 20:35 - 2016-01-04 23:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-12 20:35 - 2016-01-04 23:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-01-12 20:35 - 2016-01-04 23:18 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-01-12 20:35 - 2016-01-04 23:15 - 24592896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-12 20:35 - 2016-01-04 23:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-12 20:35 - 2016-01-04 23:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-01-12 20:35 - 2016-01-04 23:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-01-12 20:35 - 2016-01-04 23:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-01-12 20:35 - 2016-01-04 23:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-12 20:35 - 2016-01-04 23:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-12 20:35 - 2016-01-04 23:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-12 20:35 - 2016-01-04 23:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-01-12 20:35 - 2016-01-04 23:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-12 20:35 - 2016-01-04 23:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-12 20:35 - 2016-01-04 23:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-12 20:35 - 2016-01-04 23:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-12 20:35 - 2016-01-04 23:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-12 20:35 - 2016-01-04 23:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-12 20:35 - 2016-01-04 23:00 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-01-12 20:35 - 2016-01-04 22:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-12 20:35 - 2016-01-04 22:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-01-12 20:35 - 2016-01-04 22:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-01-12 20:35 - 2016-01-04 22:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-12 20:35 - 2016-01-04 22:56 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-01-12 20:35 - 2016-01-04 22:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-01-12 20:35 - 2016-01-04 22:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-01-12 20:35 - 2016-01-04 22:43 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-12 20:35 - 2016-01-04 22:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-12 20:35 - 2016-01-04 22:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-01-12 20:35 - 2016-01-04 22:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-12 20:35 - 2016-01-04 22:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-12 20:35 - 2016-01-04 22:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-12 20:35 - 2016-01-04 22:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-12 20:35 - 2016-01-04 22:30 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-01-12 20:35 - 2016-01-04 22:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-12 20:35 - 2016-01-04 22:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-12 20:35 - 2016-01-04 22:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-12 20:35 - 2016-01-04 22:24 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-01-12 20:35 - 2016-01-04 22:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-12 12:15 - 2016-02-05 19:49 - 00000866 _____ C:\Users\marco\Desktop\LoL.lnk
2016-01-11 19:26 - 2016-01-20 18:12 - 00000000 ____D C:\Users\marco\Desktop\lolzinhu
2016-01-10 11:25 - 2015-12-01 04:01 - 02115936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-01-10 11:25 - 2015-12-01 03:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\gpuenergydrv.sys
2016-01-10 11:25 - 2015-11-25 02:42 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-01-10 11:25 - 2015-11-25 02:42 - 00168288 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe
2016-01-10 11:25 - 2015-11-25 02:41 - 01822280 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-10 11:25 - 2015-11-25 02:40 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2016-01-10 11:25 - 2015-11-25 02:33 - 03622272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-10 11:25 - 2015-11-25 02:32 - 00113184 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2016-01-10 11:25 - 2015-11-25 02:27 - 01366680 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-01-10 11:25 - 2015-11-25 02:12 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-01-10 11:25 - 2015-11-25 02:11 - 01532984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-10 11:25 - 2015-11-25 02:09 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-01-10 11:25 - 2015-11-25 02:01 - 02879024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-10 11:25 - 2015-11-25 01:59 - 00092992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2016-01-10 11:25 - 2015-11-25 01:49 - 01569280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-01-10 11:25 - 2015-11-25 01:49 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-01-10 11:25 - 2015-11-25 01:49 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-01-10 11:25 - 2015-11-25 01:49 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2016-01-10 11:25 - 2015-11-25 01:48 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\EthernetMediaManager.dll
2016-01-10 11:25 - 2015-11-25 01:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\DAMediaManager.dll
2016-01-10 11:25 - 2015-11-25 01:37 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-01-10 11:25 - 2015-11-25 01:36 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-01-10 11:25 - 2015-11-25 01:36 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-01-10 11:25 - 2015-11-25 01:35 - 00929792 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-01-10 11:25 - 2015-11-25 01:35 - 00845824 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2016-01-10 11:25 - 2015-11-25 01:34 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-10 11:25 - 2015-11-25 01:31 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\DAMM.dll
2016-01-10 11:25 - 2015-11-25 01:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\dot3mm.dll
2016-01-10 11:25 - 2015-11-25 01:30 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-01-10 11:25 - 2015-11-25 01:30 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2016-01-10 11:25 - 2015-11-25 01:29 - 01649152 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-01-10 11:25 - 2015-11-25 01:29 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2016-01-10 11:25 - 2015-11-25 01:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-01-10 11:25 - 2015-11-25 01:27 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-01-10 11:25 - 2015-11-25 01:26 - 00849408 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-01-10 11:25 - 2015-11-25 01:26 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-01-10 11:25 - 2015-11-25 01:25 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-01-10 11:25 - 2015-11-25 01:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
2016-01-10 11:25 - 2015-11-25 01:23 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-01-10 11:25 - 2015-11-25 01:23 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-10 11:25 - 2015-11-25 01:22 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-01-10 11:25 - 2015-11-25 01:22 - 01383424 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-01-10 11:25 - 2015-11-25 01:22 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2016-01-10 11:25 - 2015-11-25 01:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-01-10 11:25 - 2015-11-25 01:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2016-01-10 11:25 - 2015-11-25 01:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-01-10 11:25 - 2015-11-25 01:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-01-10 11:25 - 2015-11-25 01:19 - 01795584 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-01-10 11:25 - 2015-11-25 01:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2016-01-10 11:25 - 2015-11-25 01:18 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-01-10 11:25 - 2015-11-25 01:17 - 00774656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-01-10 11:25 - 2015-11-25 01:16 - 01442816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-01-10 11:25 - 2015-11-25 01:16 - 00786432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2016-01-10 11:25 - 2015-11-25 01:13 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-01-10 11:25 - 2015-11-25 01:11 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2016-01-10 11:25 - 2015-11-25 01:10 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-01-10 11:25 - 2015-11-25 01:10 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-01-10 11:25 - 2015-11-25 01:08 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2016-01-10 11:25 - 2015-11-25 01:07 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2016-01-10 11:25 - 2015-11-25 01:05 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-10 11:25 - 2015-11-25 01:04 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-01-10 11:25 - 2015-11-25 01:04 - 00480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2016-01-10 11:25 - 2015-11-25 01:04 - 00474624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-10 11:25 - 2015-11-25 01:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-01-10 11:25 - 2015-11-25 01:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2016-01-10 11:25 - 2015-11-25 01:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-01-10 11:25 - 2015-11-25 01:04 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-01-10 11:25 - 2015-11-24 23:52 - 00775312 _____ C:\Windows\SysWOW64\locale.nls
2016-01-10 11:25 - 2015-11-24 23:52 - 00775312 _____ C:\Windows\system32\locale.nls
2016-01-10 11:24 - 2015-12-01 02:49 - 04792320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-10 11:24 - 2015-12-01 02:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-06 22:09 - 2015-11-30 18:24 - 00000000 ____D C:\Users\marco\AppData\Roaming\Skype
2016-02-06 22:08 - 2015-12-14 01:13 - 00000000 ____D C:\Users\marco\AppData\Roaming\uTorrent
2016-02-06 21:35 - 2015-12-12 02:24 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-06 21:07 - 2015-11-30 18:02 - 00000000 ____D C:\Users\marco\AppData\Local\CrashDumps
2016-02-06 20:48 - 2015-07-10 08:04 - 00000000 __RHD C:\Users\Public\Libraries
2016-02-06 20:37 - 2015-12-23 13:43 - 00000000 ____D C:\Users\marco\AppData\Roaming\.minecraft
2016-02-06 20:29 - 2015-11-30 15:41 - 00000000 ____D C:\Program Files (x86)\Steam
2016-02-06 20:28 - 2015-12-24 19:11 - 00000000 ____D C:\Users\marco\AppData\Local\LogMeIn Hamachi
2016-02-06 20:28 - 2015-12-12 02:24 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-06 20:28 - 2015-11-30 15:32 - 00000000 ___RD C:\Users\marco\OneDrive
2016-02-06 20:28 - 2015-11-30 15:28 - 00000000 __SHD C:\Users\marco\IntelGraphicsProfiles
2016-02-06 20:28 - 2015-11-30 15:23 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-06 19:58 - 2015-08-13 03:50 - 00782022 _____ C:\Windows\system32\prfh0416.dat
2016-02-06 19:58 - 2015-08-13 03:50 - 00153010 _____ C:\Windows\system32\prfc0416.dat
2016-02-06 19:58 - 2015-07-16 01:35 - 01810446 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-06 19:58 - 2015-07-10 08:02 - 00000000 ____D C:\Windows\INF
2016-02-06 19:54 - 2015-07-10 09:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-06 19:53 - 2015-07-10 06:05 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-02-06 19:31 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\AppReadiness
2016-02-05 22:47 - 2015-07-16 01:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-05 22:46 - 2015-07-10 09:20 - 00198912 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-05 21:21 - 2015-08-12 23:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-05 21:15 - 2015-07-16 01:39 - 00000000 ____D C:\Program Files\Acer
2016-02-05 21:15 - 2015-07-16 01:36 - 00000000 ____D C:\Users\Todos os Usuários\OEM
2016-02-05 21:15 - 2015-07-16 01:36 - 00000000 ____D C:\ProgramData\OEM
2016-02-05 21:15 - 2015-07-16 01:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-02-05 21:08 - 2015-07-16 01:36 - 00000000 ____D C:\Program Files (x86)\Acer
2016-02-05 21:05 - 2015-12-17 11:42 - 00000000 ____D C:\Users\marco\AppData\Roaming\Foxit Software
2016-02-05 19:55 - 2015-11-30 15:25 - 00000000 ____D C:\Users\marco
2016-02-05 19:49 - 2015-12-12 02:36 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-05 19:49 - 2015-12-12 02:36 - 00002223 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-05 19:49 - 2015-07-16 01:38 - 00001911 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-05 19:25 - 2015-12-24 19:11 - 00000977 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2016-02-05 19:25 - 2015-12-17 08:49 - 00001051 _____ C:\Users\marco\Desktop\GameSpy Arcade.lnk
2016-02-05 19:25 - 2015-12-15 22:41 - 00002005 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-02-05 19:25 - 2015-12-14 09:22 - 00001866 _____ C:\Users\marco\Desktop\Steam.lnk
2016-02-05 19:25 - 2015-12-14 01:14 - 00001006 _____ C:\Users\marco\Desktop\µTorrent.lnk
2016-02-05 19:25 - 2015-12-13 10:38 - 00001786 _____ C:\Users\marco\Desktop\PSCS6 - Atalho.lnk
2016-02-05 19:25 - 2015-11-30 18:26 - 00001217 _____ C:\Users\marco\Desktop\Skype - Atalho.lnk
2016-02-05 19:25 - 2015-11-30 15:32 - 00002481 _____ C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-05 19:25 - 2015-11-30 15:31 - 00001343 _____ C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gerenciador de áudio HD.lnk
2016-02-05 19:17 - 2015-07-10 08:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-05 01:44 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\system32\NDF
2016-02-05 01:39 - 2015-11-30 22:42 - 00000000 ____D C:\Users\marco\AppData\Local\Steam
2016-02-04 18:29 - 2015-12-28 21:32 - 00000000 ____D C:\Program Files (x86)\stronghold
2016-02-04 15:29 - 2015-11-30 15:32 - 00000000 ____D C:\Users\marco\AppData\Local\acer
2016-02-04 15:16 - 2015-12-13 23:57 - 00000000 ____D C:\Program Files\3dsexvilla
2016-02-04 02:42 - 2015-11-30 15:31 - 00000000 ____D C:\Users\marco\AppData\Local\clear.fi
2016-02-04 01:59 - 2015-08-12 23:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-04 01:58 - 2015-07-10 08:04 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-02-04 01:58 - 2015-07-10 08:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-04 01:15 - 2015-11-30 15:28 - 00000000 ____D C:\Users\marco\AppData\Local\VirtualStore
2016-02-04 00:59 - 2015-07-10 08:04 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-02-04 00:59 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-02-03 16:11 - 2015-12-14 07:55 - 00000000 ____D C:\Users\marco\Downloads\torrents
2016-02-02 07:30 - 2015-12-12 02:24 - 00004166 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-02 07:30 - 2015-12-12 02:24 - 00003934 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-31 14:46 - 2015-12-04 19:21 - 00000132 _____ C:\Users\marco\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-01-31 07:58 - 2015-12-15 22:40 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-01-31 07:58 - 2015-12-15 22:40 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-01-26 21:00 - 2015-12-01 12:42 - 00000000 ____D C:\Windows\system32\MRT
2016-01-26 20:51 - 2015-12-01 12:42 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 20:53 - 2015-07-10 07:55 - 00000000 ____D C:\Windows\CbsTemp
2016-01-20 22:16 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\rescache
2016-01-12 12:10 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\system32\oobe
2016-01-10 14:03 - 2015-12-05 02:21 - 00000000 ____D C:\Users\marco\BrawlhallaReplays

==================== Arquivos na raiz de alguns diretórios =======

2016-02-04 01:15 - 2016-02-04 01:15 - 0005120 _____ () C:\Users\marco\AppData\Roaming\GiftBag.db
2015-12-04 19:21 - 2016-01-31 14:46 - 0000132 _____ () C:\Users\marco\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2015-08-12 23:47 - 2015-08-12 23:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Alguns arquivos em TEMP:
====================
C:\Users\marco\AppData\Local\Temp\13B9.tmp.exe
C:\Users\marco\AppData\Local\Temp\2728.tmp.exe
C:\Users\marco\AppData\Local\Temp\32E.tmp.exe
C:\Users\marco\AppData\Local\Temp\3934.tmp.exe
C:\Users\marco\AppData\Local\Temp\39D0.tmp.exe
C:\Users\marco\AppData\Local\Temp\3B38.tmp.exe
C:\Users\marco\AppData\Local\Temp\4DDF.tmp.exe
C:\Users\marco\AppData\Local\Temp\4E05.tmp.exe
C:\Users\marco\AppData\Local\Temp\513E.tmp.exe
C:\Users\marco\AppData\Local\Temp\521E.tmp.exe
C:\Users\marco\AppData\Local\Temp\561E.tmp.exe
C:\Users\marco\AppData\Local\Temp\565D.tmp.exe
C:\Users\marco\AppData\Local\Temp\6F7F.tmp.exe
C:\Users\marco\AppData\Local\Temp\7438.tmp.exe
C:\Users\marco\AppData\Local\Temp\78B4.tmp.exe
C:\Users\marco\AppData\Local\Temp\7B7F.tmp.exe
C:\Users\marco\AppData\Local\Temp\8816.tmp.exe
C:\Users\marco\AppData\Local\Temp\9088.tmp.exe
C:\Users\marco\AppData\Local\Temp\9946.tmp.exe
C:\Users\marco\AppData\Local\Temp\A0D1.tmp.exe
C:\Users\marco\AppData\Local\Temp\AcerDocsSetup.exe
C:\Users\marco\AppData\Local\Temp\AcerPortalSetup.exe
C:\Users\marco\AppData\Local\Temp\AOPSetup.exe
C:\Users\marco\AppData\Local\Temp\BABD.tmp.exe
C:\Users\marco\AppData\Local\Temp\C205.tmp.exe
C:\Users\marco\AppData\Local\Temp\C69D.tmp.exe
C:\Users\marco\AppData\Local\Temp\CEED.tmp.exe
C:\Users\marco\AppData\Local\Temp\comver.dll
C:\Users\marco\AppData\Local\Temp\E18D.tmp.exe
C:\Users\marco\AppData\Local\Temp\E1D6.tmp.exe
C:\Users\marco\AppData\Local\Temp\E975.tmp.exe
C:\Users\marco\AppData\Local\Temp\EAD2D11.exe
C:\Users\marco\AppData\Local\Temp\EAD4484.exe
C:\Users\marco\AppData\Local\Temp\F6B4.tmp.exe
C:\Users\marco\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\marco\AppData\Local\Temp\HD-Logger-Native.dll
C:\Users\marco\AppData\Local\Temp\HD-ShortcutHandler.dll
C:\Users\marco\AppData\Local\Temp\launcher_vs2010_sp1_vcredist_x86.exe
C:\Users\marco\AppData\Local\Temp\McCSPInstall.dll
C:\Users\marco\AppData\Local\Temp\mccspuninstall.exe
C:\Users\marco\AppData\Local\Temp\mslog.dll
C:\Users\marco\AppData\Local\Temp\octDDB7.tmp.exe
C:\Users\marco\AppData\Local\Temp\octDEDB.tmp.exe
C:\Users\marco\AppData\Local\Temp\octE87F.tmp.exe
C:\Users\marco\AppData\Local\Temp\oprun3237.exe
C:\Users\marco\AppData\Local\Temp\qqpcmgr_v11.2.17058.221_45129_Silence.exe
C:\Users\marco\AppData\Local\Temp\SkypeSetup.exe
C:\Users\marco\AppData\Local\Temp\sqlite3.dll
C:\Users\marco\AppData\Local\Temp\Tinyxml2.dll
C:\Users\marco\AppData\Local\Temp\uninstall.exe
C:\Users\marco\AppData\Local\Temp\UninstallEADM.dll
C:\Users\marco\AppData\Local\Temp\UninstallModule.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-02-01 23:16

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité