cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:16-05-2016
Executado por CLIENTE (administrador) em FELIPE (17-05-2016 08:23:00)
Executando a partir de C:\Users\CLIENTE\Downloads
Perfis Carregados: CLIENTE (Perfis Disponíveis: CLIENTE)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files\GbPlugin\GbpSv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(GAS Tecnologia) C:\Program Files\GbPlugin\GbpSv.exe
(QNT) C:\Users\CLIENTE\AppData\Roaming\Netlog\Netlog.exe
(skype.cog.cc) C:\Program Files\SkypeUpdateEx\SkypeUpdateEx.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
() C:\Users\CLIENTE\AppData\Roaming\WinNetSvc\WinNetSvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
() C:\Users\CLIENTE\AppData\Roaming\WMPNetworkAcSvc\WMPNetworkAcSvc.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7400576 2016-05-12] (AVAST Software)
Winlogon\Notify\ GbPluginBnb: C:\Program Files\GbPlugin\gbiehBnb.dll [2015-08-28] (Banco do Nordeste do Brasil S.A.)
HKU\S-1-5-21-2301342669-512270338-3653289382-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation)
HKU\S-1-5-21-2301342669-512270338-3653289382-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-03-12] (Microsoft Corporation)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399014} - C:\Program Files\GbPlugin\gbiehbnb.dll [1869168 2015-08-28] (Banco do Nordeste do Brasil S.A.)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\CLIENTE\AppData\Local\MEGAsync\ShellExtX32.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\CLIENTE\AppData\Local\MEGAsync\ShellExtX32.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\CLIENTE\AppData\Local\MEGAsync\ShellExtX32.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-05-05] (AVAST Software)
Startup: C:\Users\CLIENTE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft SharePoint Workspace.lnk [2015-08-03]
ShortcutTarget: Microsoft SharePoint Workspace.lnk -> C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
Startup: C:\Users\CLIENTE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk [2015-02-13]
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 187.17.176.38 187.17.176.40
Tcpip\..\Interfaces\{52B67938-1B2B-4B47-899E-5B4764EC3AF0}: [DhcpNameServer] 187.17.176.38 187.17.176.40

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.qqovd.com?oem=sv1&uid=S2BWJ60Z974254_SAMSUNGHD502HJ&tm=1450873781
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.qqovd.com?oem=sv1&uid=S2BWJ60Z974254_SAMSUNGHD502HJ&tm=1450873781
HKU\S-1-5-21-2301342669-512270338-3653289382-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.top8844.com?oem=mbtkv3&uid=S2BWJ60Z974254_SAMSUNGHD502HJ&tm=1434810168
SearchScopes: HKU\S-1-5-21-2301342669-512270338-3653289382-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-05-05] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540014} -> C:\Program Files\GbPlugin\gbiehbnb.dll [2015-08-28] (Banco do Nordeste do Brasil S.A.)
StartMenuInternet: IEXPLORE.EXE - www.google.com.br

FireFox:
========
FF ProfilePath: C:\Users\CLIENTE\AppData\Roaming\Mozilla\Firefox\Profiles\2hfqi1ut.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-05]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-05]

Chrome:
=======
CHR Profile: C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avast SafePrice) - C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-04-07]
CHR Extension: (AdBlock) - C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-14]
CHR Extension: (Avast Online Security) - C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Profile: C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Avast Online Security) - C:\Users\CLIENTE\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-13]
CHR HKLM\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - C:\Program Files\AVAST Software\Avast\pam\Chrome\pam.crx [2016-05-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-05]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-05] (AVAST Software)
R2 GbpSv; C:\Program Files\GbPlugin\GbpSv.exe [587576 2015-08-13] (GAS Tecnologia)
R2 NetLogHandler; C:\Users\CLIENTE\AppData\Roaming\Netlog\Netlog.exe [167704 2015-06-08] (QNT)
R2 SkypeUpdateEx; C:\Program Files\SkypeUpdateEx\SkypeUpdateEx.exe [168376 2016-05-05] (skype.cog.cc)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 WinNetSvc; C:\Users\CLIENTE\AppData\Roaming\WinNetSvc\WinNetSvc.exe [4845408 2015-12-16] ()
R2 WMPNetworkAcSvc; C:\Users\CLIENTE\AppData\Roaming\WMPNetworkAcSvc\WMPNetworkAcSvc.exe [4984448 2016-03-15] ()
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [32792 2016-05-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2016-05-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [91168 2016-05-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-05-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [58776 2016-05-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [815792 2016-05-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449640 2016-05-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [124808 2016-05-05] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [221368 2016-05-05] (AVAST Software)
R0 GbpKm; C:\Windows\System32\drivers\GbpKm.sys [49496 2015-09-08] (GAS Tecnologia)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2013-02-21] (Intel Corporation)
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2016-03-23] (GAS Tecnologia)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [17920 2014-01-12] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [76288 2014-01-12] (Nuvoton Technology Corp.)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [565424 2014-03-03] (VIA Technologies, Inc.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 {eeea1470-a34b-421d-8578-085229e78f50}Gw; system32\drivers\{eeea1470-a34b-421d-8578-085229e78f50}Gw.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-05-17 08:23 - 2016-05-17 08:23 - 00013374 _____ C:\Users\CLIENTE\Downloads\FRST.txt
2016-05-17 08:22 - 2016-05-17 08:23 - 00000000 ____D C:\FRST
2016-05-17 08:19 - 2016-05-17 08:19 - 01733120 _____ (Farbar) C:\Users\CLIENTE\Downloads\FRST.exe
2016-05-17 08:19 - 2016-05-17 08:19 - 01733120 _____ (Farbar) C:\Users\CLIENTE\Downloads\FRST (1).exe
2016-05-16 22:22 - 2016-05-16 22:22 - 02517701 _____ C:\Users\CLIENTE\Downloads\Documents\livreto-Armas.pdf
2016-05-16 09:23 - 2016-05-16 09:23 - 00002091 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2016-05-16 09:23 - 2016-05-16 09:23 - 00000000 ____D C:\Users\Todos os Usuários\Foxit ContentPlatform
2016-05-16 09:23 - 2016-05-16 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2016-05-16 09:23 - 2016-05-16 09:23 - 00000000 ____D C:\ProgramData\Foxit ContentPlatform
2016-05-16 08:27 - 2016-05-16 08:28 - 00009469 _____ C:\Users\CLIENTE\Downloads\estante-livros.zip
2016-05-14 08:21 - 2016-05-14 08:21 - 00000000 ____D C:\Users\CLIENTE\AppData\Roaming\sc
2016-05-12 14:27 - 2016-05-12 14:27 - 05405376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2016-05-11 11:58 - 2016-05-11 11:58 - 00000000 ____D C:\Program Files\SkypeUpdateEx
2016-05-05 16:05 - 2016-05-05 16:05 - 00334280 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-05-05 16:05 - 2016-05-05 16:05 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-05-05 08:46 - 2016-05-05 08:46 - 00247112 _____ C:\Users\CLIENTE\Downloads\Edital 02-2016 RENOVACaO DE MATRICULA 2016.1.pdf
2016-04-23 09:41 - 2016-04-23 09:41 - 01081279 _____ C:\Users\CLIENTE\Downloads\154843252.pdf
2016-04-20 12:32 - 2016-04-04 14:54 - 00034024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-04-20 12:32 - 2016-04-04 14:42 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-04-20 12:32 - 2016-04-02 10:07 - 01218048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-04-20 12:32 - 2016-03-23 11:02 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-04-20 12:32 - 2016-03-17 15:04 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-04-20 12:32 - 2016-03-17 15:04 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-04-20 12:32 - 2016-03-17 15:04 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-04-20 12:32 - 2016-03-17 15:04 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-04-20 12:32 - 2016-02-01 16:02 - 00105408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-04-20 12:32 - 2016-02-01 15:49 - 02364928 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-04-20 12:32 - 2016-02-01 15:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-04-20 12:32 - 2016-02-01 15:49 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-04-20 12:32 - 2016-02-01 15:45 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-04-20 12:32 - 2016-02-01 15:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-04-20 12:32 - 2016-01-22 03:05 - 12877824 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-04-20 12:32 - 2016-01-22 03:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-04-20 12:32 - 2016-01-22 03:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-04-20 12:32 - 2016-01-22 03:00 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-04-20 12:32 - 2016-01-22 02:12 - 02973184 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-04-20 12:32 - 2016-01-16 15:36 - 01413632 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-20 12:31 - 2016-03-29 14:35 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-04-20 12:31 - 2016-03-16 15:37 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-04-20 12:31 - 2016-03-16 15:37 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-04-20 12:31 - 2016-03-16 15:37 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-04-20 12:31 - 2016-03-16 15:37 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-04-20 12:31 - 2016-03-16 15:34 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-20 12:31 - 2016-03-16 15:31 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-04-20 12:31 - 2016-03-16 15:31 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-04-20 12:31 - 2016-03-16 15:31 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-04-20 12:31 - 2016-03-16 15:31 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-04-20 12:31 - 2016-03-16 15:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-04-20 12:31 - 2016-03-16 15:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-04-20 12:31 - 2016-03-16 15:30 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-04-20 12:31 - 2016-03-16 15:29 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-04-20 12:31 - 2016-03-16 15:29 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-04-20 12:31 - 2016-03-16 15:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-04-20 12:31 - 2016-03-16 15:29 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-04-20 12:31 - 2016-03-16 15:28 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-04-20 12:31 - 2016-03-16 15:28 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-04-20 12:31 - 2016-03-16 15:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-04-20 12:31 - 2016-03-16 15:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-04-20 12:31 - 2016-03-16 15:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-04-20 12:31 - 2016-03-16 15:27 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-04-20 12:31 - 2016-03-16 15:27 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-04-20 12:31 - 2016-03-16 15:27 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-04-20 12:31 - 2016-03-16 15:26 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-04-20 12:31 - 2016-03-16 15:26 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-04-20 12:31 - 2016-03-16 15:24 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-04-20 12:31 - 2016-03-16 15:24 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 15:23 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 14:39 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-04-20 12:31 - 2016-03-16 14:39 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-04-20 12:31 - 2016-03-16 14:39 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-04-20 12:31 - 2016-03-16 14:39 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-04-20 12:31 - 2016-03-16 14:37 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-04-20 12:31 - 2016-03-16 14:33 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-04-20 12:31 - 2016-03-16 14:31 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-04-20 12:31 - 2016-03-16 14:26 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-04-20 12:31 - 2016-03-16 14:26 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-04-20 12:31 - 2016-03-16 14:26 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-04-20 12:31 - 2016-03-16 14:25 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-04-20 12:31 - 2016-03-16 14:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-04-20 12:31 - 2016-03-16 14:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-04-20 12:31 - 2016-03-16 14:25 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-04-20 12:31 - 2016-03-16 14:24 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 14:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 14:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-20 12:31 - 2016-03-16 14:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-20 12:31 - 2016-03-15 20:53 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-04-20 12:31 - 2016-03-15 20:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-04-20 12:31 - 2016-02-12 15:39 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-04-20 12:31 - 2016-02-12 15:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-04-20 12:31 - 2016-02-12 15:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-04-20 12:31 - 2016-02-12 15:07 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-04-20 12:31 - 2016-02-12 15:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-04-20 12:31 - 2016-02-12 15:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-04-20 12:31 - 2016-02-12 15:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-04-20 12:31 - 2016-02-12 15:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-04-20 12:31 - 2016-02-12 15:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-04-20 12:31 - 2016-02-12 15:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-04-20 12:31 - 2016-02-12 15:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-04-20 12:31 - 2016-02-09 06:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-04-20 12:31 - 2016-02-09 06:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-04-20 12:31 - 2016-02-09 06:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-04-20 12:31 - 2016-02-09 06:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-04-20 12:31 - 2016-02-09 06:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-04-20 12:31 - 2016-02-09 06:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-04-20 12:31 - 2016-02-05 15:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-04-20 12:31 - 2016-02-05 15:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-04-20 12:31 - 2016-02-05 15:44 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-04-20 12:31 - 2016-02-05 15:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-04-20 12:31 - 2016-02-05 14:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-04-20 12:31 - 2016-02-05 14:43 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-04-20 12:31 - 2016-02-05 14:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-04-20 12:31 - 2016-01-07 14:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-04-20 12:31 - 2015-11-19 11:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-04-20 12:31 - 2015-11-19 11:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-04-20 12:31 - 2015-06-03 17:22 - 00355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-04-20 12:30 - 2016-03-11 15:35 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-04-20 12:30 - 2016-03-09 15:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-04-20 12:30 - 2016-03-06 15:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-20 12:30 - 2016-03-06 15:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-04-20 12:30 - 2016-02-04 15:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-04-20 12:30 - 2016-02-03 15:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-04-20 12:30 - 2016-02-03 15:49 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-04-20 12:30 - 2016-02-03 15:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-04-20 12:30 - 2016-02-03 14:59 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-04-20 12:30 - 2016-02-02 15:48 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-04-20 12:30 - 2016-01-20 21:51 - 00057280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-04-20 12:30 - 2016-01-06 14:56 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-04-20 12:26 - 2016-03-09 15:40 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-04-20 12:26 - 2016-03-09 15:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-04-20 12:26 - 2015-12-20 15:45 - 02745856 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-04-20 12:26 - 2015-12-20 15:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-04-20 12:26 - 2015-12-20 13:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-04-20 12:22 - 2016-01-11 15:54 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-04-14 16:25 - 2016-05-16 11:20 - 00000000 ____D C:\Users\CLIENTE\Desktop\Português
2016-04-14 15:03 - 2016-05-16 09:41 - 00000000 ____D C:\Users\CLIENTE\Downloads\Documents\Tecnica em Enfermagem
2016-04-12 18:52 - 2016-04-12 18:52 - 00000000 ____D C:\Users\CLIENTE\AppData\Local\Microsoft Games
2016-03-31 14:25 - 2016-03-31 13:49 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-03-30 16:34 - 2016-03-30 16:34 - 00183452 _____ C:\Users\CLIENTE\Downloads\29490-108094-1-PB.pdf
2016-03-23 17:50 - 2016-03-23 17:50 - 03163421 _____ C:\Users\CLIENTE\Downloads\CONTEUDOS PROGRAMATICOS_CACHOEIRA DOS INDIOS.pdf
2016-03-23 17:50 - 2016-03-23 17:50 - 00630304 _____ C:\Users\CLIENTE\Downloads\EDITAL DE ABERTURA DO CONCURSO PUBLICO_CACHOEIRA DOS INDIOS.pdf
2016-03-23 11:48 - 2016-03-23 11:48 - 00029400 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpndisrdn.sys
2016-03-23 11:46 - 2016-04-24 08:26 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-03-23 11:46 - 2016-04-24 08:26 - 00000000 ____D C:\ProgramData\GbPlugin
2016-03-23 11:46 - 2016-03-24 08:47 - 00000000 ____D C:\Program Files\GbPlugin
2016-03-23 11:46 - 2016-03-23 11:46 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2016-03-23 11:46 - 2016-03-23 11:46 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2016-03-23 11:46 - 2015-09-08 17:32 - 00049496 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpkm.sys
2016-03-23 11:45 - 2016-03-23 11:46 - 00000000 ____D C:\Users\Todos os Usuários\Temp
2016-03-23 11:45 - 2016-03-23 11:46 - 00000000 ____D C:\ProgramData\Temp
2016-03-23 11:44 - 2016-03-23 11:45 - 02619704 _____ (Banco do Nordeste do Brasil S.A.) C:\Users\CLIENTE\Downloads\DiagnosticoBNB.exe
2016-03-22 20:36 - 2016-05-05 16:04 - 00035096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-03-22 20:36 - 2016-03-22 20:36 - 00001118 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-03-22 20:36 - 2016-03-22 20:36 - 00001118 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-03-18 14:27 - 2016-03-31 13:54 - 00000000 ____D C:\Users\CLIENTE\Downloads\Programas
2016-03-15 12:04 - 2016-05-17 07:15 - 00000000 ____D C:\Users\CLIENTE\AppData\Roaming\WMPNetworkAcSvc
2016-03-06 16:58 - 2016-03-07 11:30 - 00000000 ____D C:\Program Files\Recuva
2016-03-06 16:58 - 2016-03-06 16:58 - 00001795 _____ C:\Users\Public\Desktop\Recuva.lnk
2016-03-06 16:58 - 2016-03-06 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-02-25 14:02 - 2016-02-25 14:02 - 00000000 ____D C:\Windows\system32\Private

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-05-17 08:17 - 2015-12-01 16:40 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-17 07:27 - 2015-02-12 15:31 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-17 07:23 - 2009-07-14 01:34 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-17 07:23 - 2009-07-14 01:34 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-17 07:14 - 2015-02-12 15:32 - 01664216 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-17 07:14 - 2009-07-14 05:31 - 00715400 _____ C:\Windows\system32\prfh0416.dat
2016-05-17 07:14 - 2009-07-14 05:31 - 00152766 _____ C:\Windows\system32\prfc0416.dat
2016-05-17 07:14 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2016-05-17 07:10 - 2015-12-01 16:40 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-17 07:10 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-15 08:30 - 2015-11-28 13:59 - 00000000 ____D C:\Users\CLIENTE\Downloads\Documents\IFPB
2016-05-13 09:10 - 2015-08-10 10:44 - 00000000 ____D C:\Users\CLIENTE\Downloads\Documents\Outros
2016-05-12 20:19 - 2015-12-01 16:44 - 00002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-12 20:19 - 2015-12-01 16:44 - 00002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-12 14:27 - 2015-02-12 15:31 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-05-12 14:27 - 2015-02-12 15:31 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-05-11 16:57 - 2015-06-10 08:21 - 00000000 ____D C:\Users\CLIENTE\AppData\Roaming\logpath
2016-05-11 14:23 - 2015-02-23 10:06 - 00000000 ____D C:\Users\CLIENTE\AppData\Roaming\Foxit Software
2016-05-11 11:58 - 2015-12-26 20:47 - 00000000 ____D C:\Users\CLIENTE\AppData\rundir
2016-05-09 12:02 - 2015-05-08 17:29 - 00000000 ____D C:\FFOutput
2016-05-05 16:05 - 2015-02-12 17:03 - 00449640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-05-05 16:05 - 2015-02-12 17:03 - 00221368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-05-05 16:05 - 2015-02-12 17:03 - 00124808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-05-05 16:05 - 2015-02-12 17:03 - 00091232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-05-05 16:05 - 2015-02-12 17:03 - 00091168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-05-05 16:05 - 2015-02-12 17:03 - 00058776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-05-05 16:05 - 2015-02-12 17:03 - 00032792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-05-05 16:04 - 2015-02-12 17:03 - 00815792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-04-20 14:44 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\rescache
2016-04-20 13:25 - 2009-07-14 01:33 - 00408280 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-20 13:23 - 2015-08-08 15:56 - 00000000 ___SD C:\Windows\system32\GWX
2016-04-20 13:23 - 2015-08-08 15:56 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-04-20 13:23 - 2015-08-08 15:56 - 00000000 ____D C:\Windows\system32\appraiser
2016-04-20 13:23 - 2009-07-14 05:53 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-20 12:49 - 2015-02-25 13:45 - 00000000 ____D C:\Windows\system32\MRT
2016-04-20 12:39 - 2015-02-25 13:45 - 132539272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Alguns arquivos em TEMP:
====================
C:\Users\CLIENTE\AppData\Local\Temp\FFSetup3.8.0.0.exe
C:\Users\CLIENTE\AppData\Local\Temp\FoxitUpdater.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-05-08 11:48

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité