cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:05-03-2016 01
Executado por gabydelvarge (administrador) em GABYDELVARGE-PC (03-04-2016 15:03:52)
Executando a partir de C:\Users\gabydelvarge\Downloads
Perfis Carregados: gabydelvarge (Perfis Disponíveis: gabydelvarge)
Platform: Microsoft Windows 10 Pro Versão 1511 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Edge)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Google Inc.) C:\Users\gabydelvarge\AppData\Local\Google\Update\GoogleUpdate.exe
(Google, Inc) C:\Users\gabydelvarge\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files\3700bbd81a0a6beb0d0ebef859fa4310\c55ca384caf2e8b6c2cc1334cd6d729d.exe
() C:\Program Files\3700bbd81a0a6beb0d0ebef859fa4310\c55ca384caf2e8b6c2cc1334cd6d729d.exe
() C:\ProgramData\WindowsMsg\osmsg.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Nosibay) C:\Users\gabydelvarge\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [23248528 2016-03-28] (Dropbox, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-12-09] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\Run: [GoogleChromeAutoLaunch_DDFE2C2B18184AD6D30087D058706DC4] => C:\Program Files\Google\Chrome\Application\chrome.exe [874136 2016-03-27] (Google Inc.)
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\Run: [Google Update] => C:\Users\gabydelvarge\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-15] (Google Inc.)
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\Run: [Google Photos Backup] => C:\Users\gabydelvarge\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3791176 2015-12-11] (Google, Inc)
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\osmsg.exe [2041856 2016-03-31] ()
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\Run: [Selection Tools] => C:\Users\gabydelvarge\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe [4083952 2016-03-14] (Nosibay)
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\...\RunOnce: [Uninstall C:\Users\gabydelvarge\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\gabydelvarge\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.30.dll [2016-03-28] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 201.6.2.19 201.6.2.159
Tcpip\..\Interfaces\{4ad78140-c886-4cd0-a88f-19cf50aef71c}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{6c639041-a017-46a3-b3bd-1e8ba0aef123}: [DhcpNameServer] 201.6.2.19 201.6.2.159

Internet Explorer:
==================
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-3195576826-3011500952-4164507872-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.intelbras.com.br
BHO: Sem Nome -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-03] (Oracle Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-03] (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-3195576826-3011500952-4164507872-1000 -> Sem Nome - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Nenhum Arquivo
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\gabydelvarge\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF NewTab: hxxp://www.yessearches.com/?ts=AHEpCHQkB3YmAE..&v=20160329&uid=C7066891C2EB4CD840E7F811CAF888B9&ptid=wak&mode=ffseng
FF DefaultSearchEngine: yessearches
FF SelectedSearchEngine: yessearches
FF Homepage: hxxp://www.yessearches.com/?ts=AHEpCHQkB3YmAE..&v=20160329&uid=C7066891C2EB4CD840E7F811CAF888B9&ptid=wak&mode=ffseng
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-03] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-12] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-12] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-02-09] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3195576826-3011500952-4164507872-1000: @tools.google.com/Google Update;version=3 -> C:\Users\gabydelvarge\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-3195576826-3011500952-4164507872-1000: @tools.google.com/Google Update;version=9 -> C:\Users\gabydelvarge\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-15] (Google Inc.)
FF SearchPlugin: C:\Users\gabydelvarge\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\DD1B66D4.xml [2016-04-03]
FF Extension: GsearchFinder - C:\Users\gabydelvarge\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@E9438230-A7DF-4D1F-8F2D-CA1D0F0F7924.xpi [2016-03-29]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-11-16]

Chrome:
=======
CHR HomePage: Default -> hxxp://search.babylon.com/?affID=44444&tt=3512_1&babsrc=HP_ss&mntrId=60979533000000000000001966c2e835
CHR StartupUrls: Default -> "hxxp://search.babylon.com/?affID=44444&tt=3512_1&babsrc=HP_ss&mntrId=60979533000000000000001966c2e835","hxxp://search.babylon.com/?affID=44444&tt=3712_6&babsrc=HP_ss&mntrId=60979533000000000000001966c2e835","hxxp://searchfunmoods.com/?f=1&a=ironpub&chnl=ironpub&cd=2XzuyEtN2Y1L1QzutDtDtCzyyCyC0CtB0EzztAyDzyyDtAtAtN0D0Tzu0CtAtCyDtN1L2XzutBtFtBtFtDtFtAyEyE&cr=994602052","hxxp://searchfunmoods.com/?f=1&a=pcmega1&ir=pcmega1&cd=2XzuyEtN2Y1L1QzutDtDtCzyyCyC0CtB0EzztAyDzyyDtAtAtN0D0Tzu0CtAyCyCtN1L2XzutBtFtBtFtCtFyEtDyB&cr=425913614","hxxp://www.baixaki.com.br/portal/?utm_source=core&utm_medium=ppi&utm_campaign=portal","hxxp://google.com/","hxxp://feed.snap.do/?publisher=QuickObrw&dpid=QuickObrw&co=BR&userid=fd90c32b-047e-4a77-bf4a-3b79f258fefe&searchtype=hp&installDate=18/09/2013","hxxp://search.conduit.com/?ctid=CT3321037&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP3A1CCD4D-D89C-4CF4-879B-451A9D42A1A9&SSPV=","hxxp://istart.webssearches.com/?type=hp&ts=1407953374&from=adks&uid=ST3320418AS_9VM07HK2XXXX9VM07HK2","hxxp://www.delta-homes.com/?type=hp&ts=1419421481&from=wpm12233&uid=ST3320418AS_9VM07HK2XXXX9VM07HK2","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=C7066891C2EB4CD840E7F811CAF888B9&v=20160329&ts=AHEpCHQkB3YmAE.."
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-19]
CHR Extension: (Google Docs) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-19]
CHR Extension: (Bíblia Católica Online) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\aoobfofcfmnhbjanfpkjemoceiefbbeb [2015-10-19]
CHR Extension: (Google Drive) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-19]
CHR Extension: (Católico Orante) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjkddpienhcbpkiehecfibankpjpmlih [2015-10-19]
CHR Extension: (Google Search) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Dropbox para Gmail) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2016-02-12]
CHR Extension: (Planilhas do Google) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-19]
CHR Extension: (Documentos Google off-line) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Save to foursquare) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpkpffnipnldeicdmdidbodfdjmloep [2015-10-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\gabydelvarge\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-19]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 d4b569c8033ae56d734d81b0a1bfe5f2; C:\Program Files\3700bbd81a0a6beb0d0ebef859fa4310\c55ca384caf2e8b6c2cc1334cd6d729d.exe [2538496 2016-03-31] () [Arquivo não assinado]
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-11-01] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-11-01] (Dropbox, Inc.)
S2 ggbugreport; C:\Program Files\SearchesToYesbnd\bugreport.exe [1609280 2016-03-29] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
S2 Winsere; C:\Program Files\Winsere\Winsere\Winsere.exe [316472 2016-03-29] ()

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
U3 idsvc; não ImagePath
U3 wpcsvc; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-03 15:03 - 2016-04-03 15:05 - 00015929 _____ C:\Users\gabydelvarge\Downloads\FRST.txt
2016-04-03 15:03 - 2016-04-03 15:03 - 01725440 _____ (Farbar) C:\Users\gabydelvarge\Downloads\FRST.exe
2016-04-03 15:03 - 2016-04-03 15:03 - 00000000 ____D C:\FRST
2016-04-03 14:49 - 2016-04-03 14:49 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Macromedia
2016-04-03 14:41 - 2016-04-03 14:41 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\WTools
2016-04-03 14:41 - 2016-04-03 14:41 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Store
2016-04-03 14:40 - 2016-04-03 14:45 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Nosibay
2016-04-03 14:39 - 2016-04-03 14:39 - 00001042 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-03 14:39 - 2016-04-03 14:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-04-03 14:39 - 2016-04-03 14:39 - 00000000 ____D C:\Program Files\CCleaner
2016-04-03 14:37 - 2016-04-03 14:40 - 00000742 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-04-03 14:37 - 2016-04-03 14:40 - 00000742 __RSH C:\ProgramData\ntuser.pol
2016-04-03 14:37 - 2016-04-03 14:38 - 06868672 _____ (Piriform Ltd) C:\Users\gabydelvarge\Downloads\ccsetup516.exe
2016-04-03 14:36 - 2016-04-03 14:37 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-04-03 14:36 - 2016-04-03 14:37 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-04-03 14:36 - 2016-04-03 14:37 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-04-03 14:36 - 2016-04-03 14:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WNetworkEn
2016-04-03 14:36 - 2016-04-03 14:36 - 00000000 ____D C:\Program Files\3700bbd81a0a6beb0d0ebef859fa4310
2016-04-03 14:35 - 2016-04-03 14:40 - 00000000 ____D C:\Program Files\SearchesToYesbnd
2016-04-03 14:35 - 2016-04-03 14:35 - 00000000 ____D C:\Program Files\WinTaske
2016-04-03 14:35 - 2016-04-03 14:35 - 00000000 ____D C:\Program Files\Winsere
2016-04-03 14:34 - 2016-04-03 14:35 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-04-03 14:34 - 2016-04-03 14:34 - 00542720 _____ C:\Users\gabydelvarge\Downloads\Orban opticodec-pc download.iso
2016-04-03 14:30 - 2016-04-03 14:31 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Comms
2016-04-03 14:29 - 2016-04-03 14:29 - 00002042 _____ C:\Users\Public\Desktop\CopySpider.lnk
2016-04-03 14:28 - 2016-04-03 14:29 - 00000000 ____D C:\Program Files\CopySpider
2016-04-03 14:27 - 2016-04-03 14:27 - 00095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2016-04-03 14:27 - 2016-04-03 14:27 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Sun
2016-04-03 14:27 - 2016-04-03 14:27 - 00000000 ____D C:\Users\gabydelvarge\AppData\LocalLow\Sun
2016-04-03 14:27 - 2016-04-03 14:27 - 00000000 ____D C:\Users\gabydelvarge\.oracle_jre_usage
2016-04-03 14:27 - 2016-04-03 14:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-03 14:27 - 2016-04-03 14:27 - 00000000 ____D C:\Program Files\Common Files\Java
2016-04-03 14:26 - 2016-04-03 14:28 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-04-03 14:26 - 2016-04-03 14:28 - 00000000 ____D C:\ProgramData\Oracle
2016-04-03 14:26 - 2016-04-03 14:26 - 00000000 ____D C:\Program Files\Java
2016-04-03 14:25 - 2016-04-03 14:25 - 00000000 ____D C:\Users\gabydelvarge\AppData\LocalLow\Oracle
2016-04-03 14:25 - 2016-04-03 14:25 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Publishers
2016-04-03 14:24 - 2016-04-03 14:24 - 26146580 _____ (CopySpider Software ) C:\Users\gabydelvarge\Downloads\CopySpider-Setup-v1.1.16.exe
2016-04-03 14:24 - 2016-04-03 14:24 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\MicrosoftEdge
2016-04-03 14:12 - 2016-04-03 14:12 - 00002398 _____ C:\Users\gabydelvarge\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-03 14:12 - 2016-04-03 14:12 - 00000000 ___RD C:\Users\gabydelvarge\OneDrive
2016-04-03 14:10 - 2016-04-03 14:10 - 00001055 _____ C:\Users\gabydelvarge\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recursos Opcionais.lnk
2016-04-03 14:10 - 2015-10-29 19:42 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-04-03 14:10 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-04-03 14:10 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-04-03 14:08 - 2016-04-03 14:08 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\ActiveSync
2016-04-03 14:06 - 2016-04-03 14:34 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Packages
2016-04-03 14:06 - 2016-04-03 14:06 - 00000020 ___SH C:\Users\gabydelvarge\ntuser.ini
2016-04-03 14:06 - 2016-04-03 14:06 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\TileDataLayer
2016-04-03 12:41 - 2016-04-03 14:46 - 00000000 ____D C:\TEMP
2016-04-03 12:38 - 2016-04-03 14:13 - 01819274 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Modelos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Meus Documentos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Dados de Aplicativos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Configurações Locais
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Ambiente de Rede
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default\Ambiente de Impressão
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Músicas
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Imagens
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default User\Documents\Meus Vídeos
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-04-03 12:35 - 2016-04-03 12:35 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de Aplicativos
2016-04-03 12:34 - 2016-04-03 12:34 - 00021528 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-04-03 12:30 - 2016-04-03 12:30 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-04-03 12:30 - 2016-04-03 12:30 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Media Center Programs
2016-04-03 12:30 - 2016-04-03 12:30 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-04-03 12:30 - 2016-04-03 12:30 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-04-03 12:27 - 2016-04-03 12:27 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-04-03 12:26 - 2016-04-03 14:47 - 00000000 ____D C:\Users\gabydelvarge
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Modelos
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Meus Documentos
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Menu Iniciar
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Documents\Minhas Músicas
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Documents\Minhas Imagens
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Documents\Meus Vídeos
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Dados de Aplicativos
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Configurações Locais
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\AppData\Local\Histórico
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\AppData\Local\Dados de Aplicativos
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Ambiente de Rede
2016-04-03 12:26 - 2016-04-03 12:26 - 00000000 _SHDL C:\Users\gabydelvarge\Ambiente de Impressão
2016-04-03 12:21 - 2016-04-03 14:42 - 00000000 ___DC C:\WINDOWS\Panther
2016-04-03 12:16 - 2016-04-03 12:16 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-04-03 12:16 - 2016-04-03 12:16 - 00000000 ____D C:\Windows.old
2016-04-03 12:15 - 2016-04-03 12:15 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-04-03 12:15 - 2016-04-03 12:15 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-04-03 12:15 - 2016-04-03 12:15 - 00000000 ____D C:\Program Files\MSBuild
2016-04-03 12:14 - 2016-04-03 12:14 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-04-03 12:14 - 2016-04-03 12:14 - 00279376 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-04-03 12:14 - 2016-04-03 12:14 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-03 12:14 - 2016-04-03 12:14 - 00153952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-03 12:14 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-04-03 12:14 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-04-03 12:14 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-04-03 10:32 - 2016-04-03 11:59 - 00000000 ___HD C:\$WINDOWS.~BT
2016-04-03 10:05 - 2016-04-03 10:05 - 00000000 ___HD C:\$Windows.~WS
2016-04-02 23:44 - 2016-04-03 12:27 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-04-02 22:35 - 2016-04-03 12:35 - 00010449 _____ C:\WINDOWS\diagerr.xml
2016-04-02 22:35 - 2016-04-03 12:35 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2016-04-02 22:26 - 2016-04-03 10:26 - 00000000 ____D C:\ESD
2016-04-02 22:02 - 2016-04-02 22:02 - 07635472 _____ (Microsoft Corporation) C:\Users\gabydelvarge\Downloads\GetWindows10-Web_Default_Attr.exe
2016-04-02 20:55 - 2016-04-02 20:55 - 00432091 _____ C:\Users\gabydelvarge\Downloads\Opticodec-PC-LE.rar
2016-04-02 20:35 - 2016-04-03 12:30 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-02 20:35 - 2016-04-03 12:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-04-02 20:35 - 2016-04-02 20:36 - 01303009 _____ C:\Users\gabydelvarge\Downloads\Opticodec-PC-SE.rar
2016-04-02 20:35 - 2016-04-02 20:35 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\WinRAR
2016-04-02 20:35 - 2016-04-02 20:35 - 00000000 ____D C:\Program Files\WinRAR
2016-04-02 20:34 - 2016-04-02 20:34 - 01741344 _____ C:\Users\gabydelvarge\Downloads\wrar510.exe
2016-03-31 14:22 - 2016-03-31 14:22 - 00137728 _____ C:\WINDOWS\7fa314d49d346e2d40741580ec400c81.exe
2016-03-29 15:35 - 2016-04-03 12:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-03-20 22:17 - 2016-03-20 22:17 - 00044353 _____ C:\Users\gabydelvarge\Downloads\protocolo_agendamento_20032016221713.pdf
2016-03-19 19:04 - 2016-03-19 19:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_netaapl_01009.Wdf
2016-03-19 18:57 - 2016-03-19 19:01 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Apple Computer
2016-03-19 18:57 - 2016-03-19 18:57 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Apple Computer
2016-03-19 18:56 - 2016-04-03 12:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-03-19 18:56 - 2016-03-19 18:56 - 00001757 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-03-19 18:56 - 2016-03-19 18:56 - 00000000 ____D C:\Program Files\iPod
2016-03-19 18:55 - 2016-03-19 18:56 - 00000000 ____D C:\Program Files\iTunes
2016-03-19 18:55 - 2016-03-19 18:55 - 00000000 ____D C:\Users\Todos os Usuários\Apple Computer
2016-03-19 18:55 - 2016-03-19 18:55 - 00000000 ____D C:\ProgramData\Apple Computer
2016-03-19 18:54 - 2016-03-19 18:54 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-03-19 18:54 - 2016-03-19 18:54 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Apple
2016-03-19 18:54 - 2016-03-19 18:54 - 00000000 ____D C:\Program Files\Bonjour
2016-03-19 18:54 - 2016-03-19 18:54 - 00000000 ____D C:\Program Files\Apple Software Update
2016-03-19 18:52 - 2016-03-19 18:55 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-03-19 18:52 - 2016-03-19 18:54 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-03-19 18:52 - 2016-03-19 18:54 - 00000000 ____D C:\ProgramData\Apple
2016-03-19 18:44 - 2016-03-19 18:50 - 117524248 _____ (Apple Inc.) C:\Users\gabydelvarge\Downloads\iTunesSetup.exe
2016-03-12 13:27 - 2016-03-12 13:27 - 00000123 ____H C:\Users\gabydelvarge\Downloads\.~lock.in77PRESINSSanexoIV (1).doc#
2016-03-09 14:07 - 2016-03-09 14:07 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\CEF
2016-03-07 20:02 - 2016-04-03 14:06 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Adobe
2016-03-07 20:02 - 2016-03-07 20:02 - 00000000 ____D C:\Users\gabydelvarge\AppData\LocalLow\Adobe
2016-03-07 14:33 - 2016-03-11 09:11 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-07 14:33 - 2016-03-07 20:03 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-03-07 14:33 - 2016-03-07 20:03 - 00000000 ____D C:\ProgramData\Adobe
2016-03-07 14:33 - 2016-03-07 14:33 - 00002021 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-07 14:33 - 2016-03-07 14:33 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-03-07 14:33 - 2016-03-07 14:33 - 00000000 ____D C:\Program Files\Adobe
2016-03-07 14:32 - 2016-03-07 20:03 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Adobe

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-03 15:05 - 2016-02-15 17:53 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3195576826-3011500952-4164507872-1000UA.job
2016-04-03 15:04 - 2015-10-20 09:57 - 00001058 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-03 15:02 - 2015-10-30 02:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-03 15:02 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-03 14:55 - 2015-11-01 13:50 - 00001020 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-04-03 14:55 - 2015-11-01 13:50 - 00001016 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-04-03 14:46 - 2015-10-20 09:58 - 00002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-03 14:46 - 2015-10-20 09:58 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-03 14:45 - 2015-10-30 02:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-04-03 14:42 - 2015-10-30 02:47 - 00000000 ____D C:\WINDOWS\INF
2016-04-03 14:42 - 2015-10-25 13:54 - 00000000 ____D C:\Users\gabydelvarge\Tracing
2016-04-03 14:40 - 2015-10-20 10:12 - 00001908 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-03 14:40 - 2015-10-20 10:12 - 00001896 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-04-03 14:37 - 2009-07-13 23:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-04-03 14:13 - 2016-02-13 08:55 - 00785262 _____ C:\WINDOWS\system32\prfh0416.dat
2016-04-03 14:13 - 2016-02-13 08:55 - 00154048 _____ C:\WINDOWS\system32\prfc0416.dat
2016-04-03 14:11 - 2015-11-01 14:17 - 00000000 ___RD C:\Users\gabydelvarge\Dropbox
2016-04-03 14:10 - 2016-02-13 08:57 - 00000000 ____D C:\WINDOWS\OCR
2016-04-03 14:10 - 2015-10-30 02:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-03 14:07 - 2015-10-20 09:57 - 00001054 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-03 14:06 - 2016-02-13 09:17 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-03 12:37 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\rescache
2016-04-03 12:35 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-04-03 12:35 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\Registration
2016-04-03 12:35 - 2015-10-30 02:48 - 00000000 ____D C:\Program Files\Windows NT
2016-04-03 12:34 - 2016-02-13 09:13 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-03 12:33 - 2015-10-30 02:48 - 00000000 __RSD C:\WINDOWS\Media
2016-04-03 12:33 - 2015-10-30 02:48 - 00000000 __RHD C:\Users\Public\Libraries
2016-04-03 12:31 - 2016-02-13 03:10 - 00243384 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-03 12:30 - 2016-02-15 17:53 - 00000000 ____D C:\Users\gabydelvarge\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2016-04-03 12:30 - 2015-11-16 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.0
2016-04-03 12:30 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-04-03 12:30 - 2015-10-30 02:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-03 12:30 - 2015-10-30 02:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-03 12:30 - 2015-10-25 12:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-04-03 12:30 - 2015-10-19 12:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2016-04-03 12:30 - 2009-07-13 23:37 - 00000000 ____D C:\Users\Default.migrated
2016-04-03 12:27 - 2016-01-26 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-04-03 12:27 - 2015-10-31 20:22 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-04-03 12:27 - 2015-10-30 02:48 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-04-03 12:27 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\system32\IME
2016-04-03 12:27 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\schemas
2016-04-03 12:27 - 2015-10-30 02:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-03 12:27 - 2015-10-25 14:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-04-03 12:27 - 2015-10-23 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-04-03 12:27 - 2015-10-19 12:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-04-03 12:27 - 2009-07-14 01:52 - 00000000 ____D C:\Program Files\Microsoft Games
2016-04-03 12:27 - 2009-07-14 01:52 - 00000000 ____D C:\Program Files\DVD Maker
2016-04-03 12:25 - 2015-10-30 02:13 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-04-03 12:21 - 2015-10-30 02:48 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-04-03 12:15 - 2015-10-30 02:48 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-04-03 12:06 - 2009-07-14 01:34 - 00025888 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-03 12:06 - 2009-07-14 01:34 - 00025888 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-01 18:05 - 2016-02-15 17:53 - 00001054 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3195576826-3011500952-4164507872-1000Core.job
2016-03-29 15:36 - 2015-11-01 13:50 - 00000000 ____D C:\Program Files\Dropbox
2016-03-23 13:47 - 2015-11-01 13:50 - 00000000 ____D C:\Users\gabydelvarge\AppData\Local\Dropbox
2016-03-10 03:05 - 2015-10-25 13:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-10 03:01 - 2015-10-25 13:55 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Arquivos na raiz de alguns diretórios =======

2016-04-03 14:37 - 2016-04-03 14:41 - 0001298 _____ () C:\Users\gabydelvarge\AppData\Roaming\Bubble Dock.boostrap.log
2016-04-03 14:38 - 2016-04-03 14:40 - 0005750 _____ () C:\Users\gabydelvarge\AppData\Roaming\Bubble Dock.installation.log
2016-04-03 14:41 - 2016-04-03 14:41 - 0000078 _____ () C:\Users\gabydelvarge\AppData\Roaming\Selection Tools.installation.log
2016-04-03 14:37 - 2016-04-03 14:37 - 0000097 _____ () C:\Users\gabydelvarge\AppData\Roaming\WindApp.boostrap.log
2016-04-03 14:41 - 2016-04-03 14:41 - 0000078 _____ () C:\Users\gabydelvarge\AppData\Roaming\WindApp.installation.log

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-04-03 12:22

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité