Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:04-05-2016
Executado por Tereza Lemos (administrador) em TEREZALEMOS (04-05-2016 18:38:14)
Executando a partir de C:\Users\Tereza Lemos\Desktop
Perfis Carregados: Tereza Lemos (Perfis Disponíveis: Tereza Lemos)
Platform: Windows 8.1 Single Language (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\Minhateca.com.br Box\MinhaBox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe
() C:\Program Files (x86)\CalendarTool\2.0.0.11189\calendar.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT3106.tmp
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\AtBroker.exe
(Microsoft Corporation) C:\Windows\System32\osk.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [888344 2016-01-07] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2015-12-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM\...\RunOnce: [WINDOWS_SCREEN_MANAGER_UPDATER_1] => C:\Program Files\Windows Screen Manager\Windows screen manage updater.exe [16896 2016-04-19] (Wizzservices)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23484296 2016-04-25] (Google)
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [MinhaBox.br] => C:\Program Files (x86)\Minhateca.com.br Box\MinhaBox.exe [3916800 2015-12-10] ()
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [taskhost] => rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\MountPoints2: {159be0f7-b332-11e5-be98-7427ea750670} - "E:\setup.exe"
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\MountPoints2: {403190bb-a0dc-11e5-be7a-7427ea750670} - "F:\setup.exe"
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\MountPoints2: {403191f6-a0dc-11e5-be7a-7427ea750670} - "G:\setup.exe"
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\...\MountPoints2: {4031921c-a0dc-11e5-be7a-7427ea750670} - "H:\setup.exe"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
Startup: C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Deskjet 2050 J510 series.lnk [2016-04-17]
BootExecute: RegistryDefragBootTime.exeautocheck autochk *
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyServer: [S-1-5-21-2426027570-3042564260-384977448-1001] => http=localhost:5050
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2538A9F4-2BA3-41F7-B169-CB3010E3BF3B}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{28fe4234-aaf8-11e5-8250-806e6f6e6963}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{5516D347-F3C2-48E7-9590-7420A26B219B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{71E67C77-35AC-4D64-86EB-CFEDBACC8B97}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{A9DC8FF4-C59D-40F6-8F04-C5663A714B0E}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{A9DC8FF4-C59D-40F6-8F04-C5663A714B0E}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=17282100f7141baa3ca7d4031ad6abca
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=17282100f7141baa3ca7d4031ad6abca
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=17282100f7141baa3ca7d4031ad6abca
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.cce.com.br
HKU\S-1-5-21-2426027570-3042564260-384977448-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.cce.com.br/
SearchScopes: HKU\S-1-5-21-2426027570-3042564260-384977448-1001 -> DefaultScope {B5D523AC-A24F-48D5-98F6-FB8CD0EFE190} URL =
SearchScopes: HKU\S-1-5-21-2426027570-3042564260-384977448-1001 -> {B5D523AC-A24F-48D5-98F6-FB8CD0EFE190} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-12-11] (IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-16] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-04-25] (Intel Security)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-03-16] (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> Nenhum Arquivo
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-10] (Oracle Corporation)
BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-04-01] (IObit)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-10] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-04-25] (Intel Security)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-01-01] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Tereza Lemos\AppData\Roaming\Mozilla\Firefox\Profiles\uvfnpgyk.default
FF NewTab: hxxp://www.nicesearches.com?type=hp&ts=1459846362&from=58740405&uid=toshibaxmq01abf050_73dkcbebtxx73dkcbebt&z=34659d414ced0430319c2e2g6z6w2t5b4z0q4c4q3o
FF Homepage: hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=17282100f7141baa3ca7d4031ad6abca
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-15] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-01-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-01-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-07-30] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-02-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2426027570-3042564260-384977448-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tereza Lemos\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-03-10] (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Tereza Lemos\AppData\Roaming\Mozilla\Firefox\Profiles\uvfnpgyk.default\user.js [2016-04-19]
FF Extension: Fasterfox - C:\Users\Tereza Lemos\AppData\Roaming\Mozilla\Firefox\Profiles\uvfnpgyk.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi [2016-05-01]
FF Extension: xRocket Toolbar - C:\Users\Tereza Lemos\AppData\Roaming\Mozilla\Firefox\Profiles\uvfnpgyk.default\Extensions\arthurj8283@gmail.com [2016-04-13] [não assinado]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon [2015-12-25]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon
FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\Tereza Lemos\AppData\Roaming\Mozilla\Firefox\Profiles\uvfnpgyk.default\extensions\arthurj8283@gmail.com
Chrome:
=======
CHR HomePage: Default -> hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=17282100f7141baa3ca7d4031ad6abca
CHR StartupUrls: Default -> "hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=17282100f7141baa3ca7d4031ad6abca"
CHR DefaultSearchURL: Default -> hxxp://www.nicesearches.com/search.php?type=ds&ts=1459846362&from=58740405&uid=toshibaxmq01abf050_73dkcbebtxx73dkcbebt&z=34659d414ced0430319c2e2g6z6w2t5b4z0q4c4q3o&q={searchTerms}
CHR DefaultSearchKeyword: Default -> nice
CHR Plugin: (Shockwave Flash) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\PepperFlash\21.0.0.216\pepflashplayer.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\pdf.dll => Nenhum Arquivo
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Deployment Toolkit 8.0.770.3) - C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 8 U77) - C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1224194.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll ()
CHR Profile: C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-17]
CHR Extension: (Google Docs) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-17]
CHR Extension: (Google Drive) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-17]
CHR Extension: (YouTube) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-17]
CHR Extension: (Google Search) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-17]
CHR Extension: (Planilhas do Google) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-17]
CHR Extension: (Documentos Google off-line) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-12-19]
CHR Extension: (Desprotetor de Links) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\imcbnnnoghiihopefblgehihofbfbmei [2016-04-24]
CHR Extension: (Facebook Flat) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kadbillinepbjlgenaliokdhejdmmlgp [2016-04-24]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Economia de dados) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmgfdlgomnbgkofeojodiodmgpgmkac [2016-05-03]
CHR Extension: (Gmail) - C:\Users\Tereza Lemos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-17]
CHR HKU\S-1-5-21-2426027570-3042564260-384977448-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\Exts\Chrome.crx [2015-12-23]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433688 2016-01-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413208 2016-01-07] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [859672 2016-01-07] (BlueStack Systems, Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2829552 2016-03-08] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
S2 GoogleChromeUpService; C:\ProgramData\service.exe [1747456 2016-04-19] () [Arquivo não assinado]
S2 GoogleChromeUpSvc; C:\ProgramData\Windows Update\svrupg.exe [2783744 2016-04-19] (TODO: ) [Arquivo não assinado]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28736 2016-03-16] (Hewlett-Packard Company)
S4 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [Arquivo não assinado]
S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3020440 2015-11-25] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S4 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\NIS.exe [282016 2015-11-20] (Symantec Corporation)
S2 ProntSpooler; C:\Users\Tereza Lemos\AppData\Local\Apps\2.0\abril.exe [111616 2016-03-21] () [Arquivo não assinado]
R2 TheCalendarService; C:\Program Files (x86)\CalendarTool\2.0.0.11189\CalendarServ.exe [141960 2015-12-25] ()
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [874784 2016-04-21] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-04-21] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-04-21] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S2 rijufoze; C:\Program Files (x86)\8C0F1990-1461075964-11E2-B76E-800911470900\hnsp7B4F.tmp [X]
S2 rocufyky; C:\Program Files (x86)\8C0F1990-1461075964-11E2-B76E-800911470900\jnsj547B.tmp [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20160104.001\BHDrvx64.sys [1665608 2015-12-18] (Symantec Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154680 2016-01-07] (BlueStack Systems)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1605050.00F\ccSetx64.sys [173808 2015-09-23] (Symantec Corporation)
R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [65856 2016-04-19] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-17] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-17] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-12-17] (Symantec Corporation)
R3 FintekCIR; C:\Windows\system32\DRIVERS\FintekCIR.sys [33064 2015-12-29] (Fintek)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-12-19] (REALiX(tm))
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160111.001\IDSvia64.sys [767224 2015-12-23] (Symantec Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185600 2016-03-21] (Intel Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160111.050\ENG64.SYS [138488 2016-01-11] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\VirusDefs\20160111.050\EX64.SYS [0 2016-01-11] () <==== ATENÇÃO (zero byte Arquivo/Pasta)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3737304 2015-12-19] (Realtek Semiconductor Corporation )
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1605050.00F\SRTSP64.SYS [928496 2015-11-11] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1605050.00F\SRTSPX64.SYS [50936 2015-09-23] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1605050.00F\SYMEFASI64.SYS [1621232 2015-11-11] (Symantec Corporation)
S4 SymELAM; C:\Windows\system32\drivers\NISx64\1605050.00F\SymELAM.sys [24192 2015-09-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-12-22] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1605050.00F\Ironx64.SYS [297720 2015-09-23] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1605050.00F\SYMNETS.SYS [577768 2015-11-11] (Symantec Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 Baidu PC Faster FileShredder; \??\C:\Program Files (x86)\PC Faster\5.1.0.0\FileKill_x64.sys [X]
S3 BprotectEx; \??\C:\WINDOWS\System32\drivers\BprotectEx.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\PC Faster\5.1.0.0\PCFApiUtil64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-05-04 18:38 - 2016-05-04 18:39 - 00029901 _____ C:\Users\Tereza Lemos\Desktop\FRST.txt
2016-05-04 18:36 - 2016-05-04 18:37 - 02377216 _____ (Farbar) C:\Users\Tereza Lemos\Desktop\FRST64.exe
2016-05-04 18:34 - 2016-05-04 18:36 - 00001800 _____ C:\Users\Tereza Lemos\Desktop\Rkill.txt
2016-05-04 18:34 - 2016-05-04 18:34 - 01106888 _____ (Bleeping Computer, LLC) C:\Users\Tereza Lemos\Downloads\iExplore64.exe
2016-05-04 18:33 - 2016-05-04 18:34 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\Tereza Lemos\Downloads\iExplore.exe
2016-05-04 18:32 - 2016-05-04 18:32 - 00000022 _____ C:\Users\Tereza Lemos\Downloads\ESETPoweliksCleaner.exe_20160504.183237.5180.zip
2016-05-04 18:32 - 2016-05-04 18:32 - 00000022 _____ C:\Users\Tereza Lemos\Downloads\ESETPoweliksCleaner.exe_20160504.183210.4176.zip
2016-05-04 18:32 - 2016-05-04 18:32 - 00000022 _____ C:\Users\Tereza Lemos\Downloads\ESETPoweliksCleaner.exe_20160504.183202.5792.zip
2016-05-04 18:31 - 2016-05-04 18:31 - 00224968 _____ (ESET) C:\Users\Tereza Lemos\Downloads\ESETPoweliksCleaner.exe
2016-05-04 12:57 - 2016-05-04 12:57 - 00003858 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1460320370
2016-05-04 12:57 - 2016-05-04 12:57 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-05-04 10:40 - 2016-05-04 10:40 - 01886169 _____ C:\Users\Tereza Lemos\Downloads\Provoke - Missy Johnson.pdf
2016-05-04 10:37 - 2016-05-04 10:37 - 02246859 _____ C:\Users\Tereza Lemos\Downloads\Azar o Seu! - Carol Sabar.pdf
2016-05-04 10:24 - 2016-05-04 10:24 - 02080299 _____ C:\Users\Tereza Lemos\Downloads\The Vixen and the Vet - Katy Regnery.pdf
2016-05-04 10:17 - 2016-05-04 10:17 - 00000000 ____D C:\Program Files (x86)\CalendarTool
2016-05-02 11:32 - 2016-05-02 12:29 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\livros maio 2016
2016-05-01 16:41 - 2016-05-01 16:42 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\os diversos 2016
2016-05-01 15:55 - 2016-05-04 10:42 - 00000000 ____D C:\Users\Tereza Lemos\Downloads\MinhaBox
2016-04-30 18:34 - 2016-04-30 18:34 - 00001106 _____ C:\Users\Tereza Lemos\Desktop\On-Screen Keyboard.lnk
2016-04-28 21:26 - 2016-04-30 00:07 - 00002961 _____ C:\Users\Tereza Lemos\Desktop\livros indicados.txt
2016-04-28 18:44 - 2016-04-29 23:46 - 00000384 _____ C:\WINDOWS\Tasks\HPCeeScheduleForTereza Lemos.job
2016-04-28 18:44 - 2016-04-28 18:44 - 00003212 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForTereza Lemos
2016-04-28 12:08 - 2016-04-29 17:29 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Jessyca
2016-04-28 10:32 - 2016-04-28 10:32 - 00413439 _____ C:\Users\Todos os Usuários\xdo.zip
2016-04-28 10:32 - 2016-04-28 10:32 - 00413439 _____ C:\ProgramData\xdo.zip
2016-04-28 10:32 - 2016-04-26 12:07 - 01253376 _____ (eee) C:\Users\Todos os Usuários\apptj.exe
2016-04-28 10:32 - 2016-04-26 12:07 - 01253376 _____ (eee) C:\ProgramData\apptj.exe
2016-04-27 23:06 - 2016-04-27 23:07 - 00000000 ____D C:\Users\Tereza Lemos\Downloads\downalods abril 2015
2016-04-26 09:24 - 2016-04-26 09:24 - 00000009 ____N C:\Users\Todos os Usuários\a.bat
2016-04-26 09:24 - 2016-04-26 09:24 - 00000009 ____N C:\ProgramData\a.bat
2016-04-25 12:18 - 2016-04-25 12:06 - 01085440 _____ C:\Users\Todos os Usuários\delCalendarReg.exe
2016-04-25 12:18 - 2016-04-25 12:06 - 01085440 _____ C:\ProgramData\delCalendarReg.exe
2016-04-22 23:05 - 2016-04-28 23:01 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-04-22 21:59 - 2016-04-22 22:00 - 00965847 _____ ( ) C:\Users\Tereza Lemos\AppData\Roaming\svrupg.exe
2016-04-22 18:09 - 2016-04-22 18:09 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-22 18:09 - 2016-04-22 18:09 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-22 18:09 - 2016-04-22 18:09 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-04-22 18:08 - 2016-04-22 18:08 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-22 18:08 - 2016-04-22 18:08 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-04-22 18:08 - 2016-04-22 18:08 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-04-22 18:08 - 2016-04-22 18:08 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-04-22 18:08 - 2016-04-22 18:08 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-22 18:08 - 2016-04-22 18:08 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-04-22 18:07 - 2016-04-22 18:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 00316760 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-04-22 18:07 - 2016-04-22 18:07 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 00137968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-04-22 18:07 - 2016-04-22 18:07 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-04-21 21:03 - 2016-04-21 21:03 - 00000000 ____D C:\Program Files (x86)\R.G. Freedom
2016-04-21 20:04 - 2016-04-27 15:56 - 00000000 ____D C:\Users\Tereza Lemos\Documents\Euro Truck Simulator 2
2016-04-21 19:31 - 2016-04-21 19:31 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\American Truck Simulator_Uninstall
2016-04-21 19:31 - 2016-04-21 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2016-04-21 16:04 - 2016-04-21 16:04 - 00003154 _____ C:\WINDOWS\System32\Tasks\{6B011F82-3EA1-422A-AB7A-2D13F4C71F52}
2016-04-21 12:38 - 2016-05-04 18:38 - 00000000 ____D C:\FRST
2016-04-21 12:26 - 2016-04-21 12:27 - 00000316 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Tereza_Lemos.job
2016-04-21 12:26 - 2016-04-21 12:26 - 00002430 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Tereza_Lemos
2016-04-21 12:11 - 2016-04-27 11:22 - 00000000 ____D C:\Users\Tereza Lemos\Documents\American Truck Simulator
2016-04-21 12:03 - 2016-04-21 12:03 - 00000000 ____D C:\WINDOWS\system32\lohw
2016-04-21 11:41 - 2016-04-21 21:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\American Truck Simulator
2016-04-21 11:30 - 2016-04-21 08:27 - 00121120 _____ (Valve Corporation) C:\WINDOWS\system32\steam_api64.dll
2016-04-20 20:38 - 2016-04-20 20:38 - 00000519 _____ C:\Users\Tereza Lemos\AppData\Roaming\index.html
2016-04-20 20:30 - 2016-04-20 20:30 - 00000000 ____D C:\WINDOWS\system32\cae
2016-04-20 15:11 - 2016-04-20 15:11 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Steam
2016-04-20 15:05 - 2016-04-22 18:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2016-04-20 14:53 - 2016-04-20 14:54 - 00000000 ____D C:\Program Files\Games By GG releases
2016-04-20 14:36 - 2016-04-21 15:42 - 00000000 ____D C:\Games
2016-04-20 13:10 - 2016-04-20 13:10 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Steam
2016-04-20 12:48 - 2016-05-04 10:18 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-20 12:48 - 2016-04-20 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-04-20 12:28 - 2016-05-04 15:13 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\CalendarTool
2016-04-20 01:43 - 2016-04-20 01:43 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\ProxyList
2016-04-20 00:22 - 2016-05-04 10:16 - 00000000 ____D C:\Program Files (x86)\osTip
2016-04-20 00:18 - 2016-04-20 00:18 - 00000000 ____D C:\WINDOWS\system32\kynu
2016-04-20 00:18 - 2016-04-20 00:18 - 00000000 ____D C:\WINDOWS\system32\jofa
2016-04-19 14:28 - 2016-04-21 17:25 - 00000000 ____D C:\Users\Tereza Lemos\Documents\Euro Truck Simulator
2016-04-19 14:22 - 2016-04-19 14:22 - 00000000 ____D C:\Users\Todos os Usuários\Windows Update
2016-04-19 14:22 - 2016-04-19 14:22 - 00000000 ____D C:\ProgramData\Windows Update
2016-04-19 11:45 - 2016-04-19 11:45 - 00003182 _____ C:\WINDOWS\System32\Tasks\{3F27B42C-92DD-40D8-99EB-E92232D5EB7C}
2016-04-19 11:37 - 2016-04-19 11:37 - 00003622 _____ C:\WINDOWS\System32\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}
2016-04-19 11:37 - 2016-04-19 11:37 - 00000558 _____ C:\WINDOWS\Tasks\BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B}.job
2016-04-19 11:37 - 2016-04-19 11:37 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Baidu
2016-04-19 11:36 - 2016-04-19 11:36 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\WeatherTool
2016-04-19 11:35 - 2016-04-21 15:56 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Tueasjey
2016-04-19 11:35 - 2016-04-19 11:50 - 00000000 ____D C:\Program Files\Ekeh
2016-04-19 11:35 - 2016-04-19 11:35 - 00003348 _____ C:\WINDOWS\System32\Tasks\Redywo
2016-04-19 11:35 - 2016-04-19 11:35 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\mbot_en_037050302
2016-04-19 11:27 - 2016-04-19 11:17 - 00001221 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-04-19 11:26 - 2016-04-22 18:04 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\YSPackage
2016-04-19 11:23 - 2016-04-19 05:58 - 00600312 _____ C:\Users\Tereza Lemos\AppData\Roaming\YeaPlayer_br_IBD_Bundle.exe
2016-04-19 11:18 - 2016-04-19 11:18 - 00003350 _____ C:\WINDOWS\System32\Tasks\Waznebum
2016-04-19 11:18 - 2016-04-19 11:18 - 00003038 _____ C:\WINDOWS\System32\Tasks\ttwifi
2016-04-19 11:17 - 2016-05-04 10:16 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-04-19 11:17 - 2016-05-04 10:16 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-04-19 11:17 - 2016-04-21 15:58 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Byknog
2016-04-19 11:17 - 2016-04-19 11:35 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Tempfolder
2016-04-19 11:17 - 2016-04-19 11:25 - 00000000 ____D C:\Program Files\Tageno
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\Users\Todos os Usuários\5373c76b-2f37-1
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\Users\Todos os Usuários\5373c76b-2f35-0
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\Users\Tereza Lemos\AppData\LocalLow\Company
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\Users\Tereza Lemos\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\uninst
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\ProgramData\5373c76b-2f37-1
2016-04-19 11:17 - 2016-04-19 11:17 - 00000000 ____D C:\ProgramData\5373c76b-2f35-0
2016-04-19 11:16 - 2016-04-19 11:27 - 00000000 ____D C:\Program Files\NewExt
2016-04-19 11:16 - 2016-04-19 11:17 - 00000822 _____ C:\WINDOWS\SysWOW64\${LOGFILE}
2016-04-19 11:15 - 2016-04-19 14:10 - 00072050 _____ C:\Users\Todos os Usuários\YSIns.exe
2016-04-19 11:15 - 2016-04-19 14:10 - 00072050 _____ C:\ProgramData\YSIns.exe
2016-04-19 11:15 - 2016-04-19 11:15 - 00000000 ____D C:\Users\Public\Documents\Tools
2016-04-19 11:14 - 2016-04-25 11:45 - 00600312 _____ C:\Users\Todos os Usuários\YeaPlayer_br_IBD_Bundle.exe
2016-04-19 11:14 - 2016-04-25 11:45 - 00600312 _____ C:\ProgramData\YeaPlayer_br_IBD_Bundle.exe
2016-04-19 11:14 - 2016-04-19 11:14 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-04-19 11:11 - 2016-04-19 11:12 - 00015696 _____ C:\Users\Tereza Lemos\AppData\Roaming\InstallationConfiguration.xml
2016-04-19 11:11 - 2016-04-19 11:11 - 00192913 _____ C:\Users\Tereza Lemos\AppData\Roaming\inst.lat
2016-04-19 11:11 - 2016-04-19 11:11 - 00127488 _____ C:\Users\Tereza Lemos\AppData\Roaming\Installer.dat
2016-04-19 11:11 - 2016-04-19 11:11 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\tuto_monetize_120160419
2016-04-19 11:10 - 2016-04-19 11:17 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Nosibay
2016-04-19 11:10 - 2016-04-19 06:10 - 01747456 _____ C:\Users\Todos os Usuários\service.exe
2016-04-19 11:10 - 2016-04-19 06:10 - 01747456 _____ C:\ProgramData\service.exe
2016-04-19 11:09 - 2016-04-19 11:09 - 00002992 _____ C:\WINDOWS\System32\Tasks\svchost
2016-04-19 11:09 - 2016-04-19 11:09 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\csdi_monetize_220160419
2016-04-19 11:07 - 2016-04-19 11:08 - 00000000 ____D C:\Program Files\Windows Screen Manager
2016-04-19 11:06 - 2016-04-19 11:06 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\csdi_monetize_320160419
2016-04-17 11:56 - 2016-04-17 11:56 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\TempTaskUpdateDetectionD3324499-9201-4D5F-A1D4-62B9A29720A2
2016-04-17 06:18 - 2016-04-19 11:35 - 00065856 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\cherimoya.sys
2016-04-16 21:00 - 2016-04-16 21:00 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\American Truck Simulator.lnk
2016-04-16 20:53 - 2016-04-21 11:41 - 00000000 ____D C:\Program Files (x86)\American Truck Simulator
2016-04-16 14:46 - 2016-04-16 15:07 - 00000000 ____D C:\Users\Tereza Lemos\Documents\RCT3
2016-04-16 14:46 - 2016-04-16 14:46 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Atari
2016-04-16 14:19 - 2016-04-19 11:55 - 00000000 ____D C:\Program Files (x86)\Roller Coaster Tycoon 3 Platinum - CarlesNeo !
2016-04-16 13:48 - 2016-04-16 13:48 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\TEREZA LEMOS IRPF 2016
2016-04-16 13:28 - 2016-04-16 13:36 - 00000000 ____D C:\Users\Tereza Lemos\.receitanet
2016-04-15 16:24 - 2016-04-15 17:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-15 15:32 - 2016-04-15 15:32 - 00000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-15 15:32 - 2016-04-15 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-04-15 15:32 - 2016-04-15 15:32 - 00000000 ____D C:\Program Files\CCleaner
2016-04-15 12:33 - 2016-04-15 12:33 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\Games
2016-04-15 12:26 - 2016-04-15 12:26 - 00003570 _____ C:\WINDOWS\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2016-04-15 12:26 - 2016-04-15 12:26 - 00000000 ____D C:\Users\Public\Documents\PC Faster
2016-04-15 11:25 - 2016-04-15 11:26 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\MKKE
2016-04-15 11:25 - 2016-04-15 11:25 - 00000000 ____D C:\Users\Todos os Usuários\Steam
2016-04-15 11:25 - 2016-04-15 11:25 - 00000000 ____D C:\ProgramData\Steam
2016-04-14 12:58 - 2016-04-22 18:04 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\Tradução City Car Driving PT-BR 2.0
2016-04-14 12:58 - 2016-04-14 12:58 - 00000000 ____D C:\Users\Tereza Lemos\Documents\Multisoft
2016-04-14 12:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-04-14 12:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-04-14 12:52 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-04-14 12:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-04-14 12:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-04-14 12:52 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-04-14 12:52 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-04-14 12:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-04-14 12:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-04-14 12:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-04-14 12:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-04-14 12:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-04-14 12:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-04-14 12:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-04-14 12:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-04-14 12:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-04-14 12:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-04-14 12:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-04-14 12:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-04-14 12:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-04-14 12:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-04-14 12:51 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-04-14 12:51 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-04-14 12:51 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-04-14 12:51 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-04-14 12:51 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-04-14 12:51 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-04-14 12:51 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-04-14 12:51 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-04-14 12:51 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-04-14 12:51 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-04-14 12:51 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-04-14 12:51 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-04-14 12:51 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-04-14 12:51 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-04-14 12:51 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-04-14 12:51 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-04-14 12:51 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-04-14 12:51 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-04-14 12:51 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-04-14 12:51 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-04-14 12:51 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-04-14 12:51 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-04-14 12:51 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-04-14 12:51 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-04-14 12:51 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-04-14 12:51 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-04-14 12:51 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-04-14 12:51 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-04-14 12:51 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-04-14 12:51 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-04-14 12:51 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-04-14 12:51 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-04-14 12:51 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-04-14 12:51 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-04-14 12:51 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-04-14 12:51 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-04-14 12:51 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-04-14 12:51 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-04-14 12:51 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-04-14 12:51 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-04-14 12:51 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-04-14 12:51 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-04-14 12:51 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-04-14 12:51 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-04-14 12:51 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-04-14 12:51 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-04-14 12:51 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-04-14 12:51 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-04-14 12:51 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-04-14 12:51 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-04-14 12:51 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-04-14 12:51 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-04-14 12:51 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-04-14 12:51 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-04-14 12:51 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-04-14 12:51 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-04-14 12:51 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-04-14 12:51 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-04-14 12:51 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-04-14 12:51 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-04-14 12:51 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-04-14 12:51 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-04-14 12:51 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-04-14 12:51 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-04-14 12:51 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-04-14 12:51 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-04-14 12:51 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-04-14 12:51 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-04-14 12:51 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-04-14 12:51 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-04-14 12:51 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-04-14 12:51 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-04-14 12:51 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-04-14 12:51 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-04-14 12:50 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-04-14 12:50 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-04-14 12:50 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-04-14 12:50 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-04-14 12:50 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-04-14 12:50 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-04-14 12:50 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-04-14 12:50 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-04-14 12:50 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-04-14 12:50 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-04-14 12:50 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-04-14 12:50 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-04-14 12:50 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-04-14 12:50 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-04-14 12:50 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-04-14 12:50 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-04-14 12:50 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-04-14 12:50 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-04-14 12:50 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-04-14 12:50 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-04-14 12:50 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-04-14 12:50 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-04-14 12:50 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-04-14 12:50 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-04-14 12:50 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-04-14 12:50 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-04-14 12:50 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-04-14 12:50 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-04-14 12:50 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-04-14 12:50 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-04-14 12:50 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-04-14 12:50 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-04-14 12:50 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-04-14 12:50 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-04-14 12:50 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-04-14 12:50 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-04-14 12:50 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-04-14 12:50 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-04-14 12:50 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-04-14 12:50 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-04-14 12:50 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-04-14 12:49 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-04-14 12:49 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-04-14 12:49 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-04-14 12:49 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-04-14 12:49 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-04-14 12:49 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-04-14 12:49 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-04-14 12:49 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-04-14 12:49 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-04-14 12:49 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-04-14 12:07 - 2016-04-14 12:07 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Electronic_Arts_Inc
2016-04-14 12:05 - 2016-04-20 15:07 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2016-04-14 12:05 - 2016-04-20 15:07 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2016-04-13 14:05 - 2016-04-05 18:53 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-13 14:05 - 2016-04-05 18:53 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-13 12:41 - 2016-03-03 13:13 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-13 12:40 - 2016-03-30 21:54 - 25817600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-13 12:39 - 2016-03-30 21:31 - 02892800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-13 12:39 - 2016-03-30 21:28 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-04-13 12:39 - 2016-03-30 21:25 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-04-13 12:39 - 2016-03-30 21:17 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-04-13 12:39 - 2016-03-30 21:03 - 20352512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-13 12:39 - 2016-03-30 20:56 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-04-13 12:39 - 2016-03-30 20:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-04-13 12:39 - 2016-03-30 20:55 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-04-13 12:39 - 2016-03-30 20:53 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-04-13 12:39 - 2016-03-30 20:51 - 02285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-13 12:39 - 2016-03-30 20:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-04-13 12:39 - 2016-03-30 20:45 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-04-13 12:39 - 2016-03-30 20:45 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-04-13 12:39 - 2016-03-30 20:43 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-04-13 12:39 - 2016-03-30 20:43 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-04-13 12:39 - 2016-03-30 20:43 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-04-13 12:39 - 2016-03-30 20:42 - 02131968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-04-13 12:39 - 2016-03-30 20:39 - 15415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-13 12:39 - 2016-03-30 20:30 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-04-13 12:39 - 2016-03-30 20:30 - 02596864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-13 12:39 - 2016-03-30 20:30 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-04-13 12:39 - 2016-03-30 20:30 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-04-13 12:39 - 2016-03-30 20:27 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-04-13 12:39 - 2016-03-30 20:24 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-04-13 12:39 - 2016-03-30 20:23 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-04-13 12:39 - 2016-03-30 20:23 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-04-13 12:39 - 2016-03-30 20:23 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-04-13 12:39 - 2016-03-30 20:21 - 13811712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-13 12:39 - 2016-03-30 20:18 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-13 12:39 - 2016-03-30 20:06 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-04-13 12:39 - 2016-03-30 20:05 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-13 12:39 - 2016-03-30 20:02 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-13 12:39 - 2016-03-30 20:00 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-04-13 12:36 - 2016-03-15 20:00 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-13 12:36 - 2016-03-15 11:14 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-13 12:36 - 2016-03-11 11:48 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-13 12:36 - 2016-03-10 15:22 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-04-13 12:36 - 2016-03-10 15:21 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-04-13 12:36 - 2016-03-10 15:20 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-04-13 12:36 - 2016-03-10 14:44 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-04-13 12:36 - 2016-03-10 14:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-04-13 12:36 - 2016-03-10 14:03 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-13 12:36 - 2016-03-10 13:48 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-13 12:34 - 2016-04-04 03:35 - 00046768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-04-13 12:34 - 2016-04-02 10:26 - 01386496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-04-13 12:34 - 2016-04-02 10:26 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-04-13 12:34 - 2016-03-28 10:21 - 00698368 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-04-13 12:34 - 2016-03-28 10:21 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-04-13 12:34 - 2016-03-28 10:21 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-04-13 12:34 - 2016-03-28 10:21 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-04-13 12:34 - 2016-03-28 10:21 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-04-13 12:34 - 2016-03-10 14:43 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-13 12:34 - 2016-03-10 13:42 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-13 12:34 - 2016-03-03 13:47 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-13 12:34 - 2016-03-03 13:33 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-13 12:34 - 2016-03-02 22:39 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-04-13 12:34 - 2016-03-02 22:39 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-04-13 12:33 - 2016-03-10 16:19 - 07452512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 12:33 - 2016-03-10 16:17 - 01663192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-13 12:33 - 2016-03-10 16:17 - 01523216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-13 12:33 - 2016-03-10 16:17 - 01490128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-13 12:33 - 2016-03-10 16:17 - 01358960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-13 12:33 - 2016-03-10 16:17 - 01133752 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-13 12:33 - 2016-03-10 14:48 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-13 12:33 - 2016-03-10 13:55 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-13 12:31 - 2016-04-13 12:31 - 00177488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-04-13 12:20 - 2016-03-29 11:05 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-04-13 12:16 - 2016-04-13 12:16 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-04-13 12:16 - 2016-04-13 12:16 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-04-13 12:16 - 2016-04-13 12:16 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-04-10 17:41 - 2016-04-10 17:41 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\DOSBox
2016-04-10 17:41 - 2016-04-10 17:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2016-04-10 17:41 - 2016-04-10 17:41 - 00000000 ____D C:\Program Files (x86)\DOSBox-0.74
2016-04-10 17:33 - 2016-04-10 17:33 - 00001147 _____ C:\Users\Public\Desktop\Opera.lnk
2016-04-10 17:33 - 2016-04-10 17:33 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Opera Software
2016-04-10 17:33 - 2016-04-10 17:33 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Opera Software
2016-04-10 17:27 - 2016-05-04 12:57 - 00000000 ____D C:\Program Files (x86)\Opera
2016-04-10 16:06 - 2016-04-10 16:06 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\15246
2016-04-10 15:08 - 2016-04-10 15:08 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Unity
2016-04-10 14:49 - 2016-04-15 15:13 - 00000000 ____D C:\Users\Tereza Lemos\AppData\LocalLow\Unity
2016-04-10 14:49 - 2016-04-10 14:49 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Unity
2016-04-10 13:57 - 2016-04-10 13:57 - 00000000 ____D C:\WINDOWS\Sun
2016-04-10 13:55 - 2016-04-10 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-10 13:55 - 2016-04-10 13:54 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-04-10 13:54 - 2016-04-10 13:54 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-10 13:05 - 2016-04-10 13:05 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Macromedia
2016-04-10 13:03 - 2016-04-10 13:09 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Mozilla
2016-04-10 13:02 - 2016-04-15 17:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-10 13:02 - 2016-04-10 13:02 - 00001177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-10 13:02 - 2016-04-10 13:02 - 00001165 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-04-10 12:17 - 2016-04-11 10:16 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2016-04-07 21:06 - 2016-04-07 21:06 - 05934784 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-04-06 23:16 - 2016-04-06 23:16 - 00002249 _____ C:\Users\Public\Desktop\Receitanet 1.07 .lnk
2016-04-06 23:16 - 2016-04-06 23:16 - 00000190 _____ C:\WINDOWS\REC-NET.INI
2016-04-06 23:16 - 2016-04-06 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programas RFB
2016-04-06 23:15 - 2016-04-06 23:15 - 00001752 _____ C:\Users\Tereza Lemos\Desktop\IRPF2016 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País.lnk
2016-04-06 23:15 - 2016-04-06 23:15 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\Programas RFB2016
2016-04-06 23:15 - 2016-04-06 23:15 - 00000000 ____D C:\Program Files (x86)\Programas RFB
2016-04-06 21:27 - 2016-04-06 23:15 - 00000000 ____D C:\Arquivos de Programas RFB
2016-04-06 21:27 - 2016-04-06 21:27 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\Programas RFB2015
2016-04-06 21:21 - 2016-04-06 23:15 - 00000000 ___HD C:\Program Files (x86)\InstallJammer Registry
2016-04-06 13:06 - 2016-04-06 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-04-06 13:06 - 2016-04-06 13:06 - 00003656 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series
2016-04-06 13:06 - 2016-04-06 13:06 - 00000000 ____D C:\Users\Todos os Usuários\Visan
2016-04-06 13:06 - 2016-04-06 13:06 - 00000000 ____D C:\Users\Todos os Usuários\HP Photo Creations
2016-04-06 13:06 - 2016-04-06 13:06 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\HpUpdate
2016-04-06 13:06 - 2016-04-06 13:06 - 00000000 ____D C:\ProgramData\Visan
2016-04-06 13:06 - 2016-04-06 13:06 - 00000000 ____D C:\ProgramData\HP Photo Creations
2016-04-06 13:06 - 2016-04-06 13:06 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2016-04-06 13:05 - 2016-04-06 13:20 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\HP
2016-04-06 13:05 - 2016-04-06 13:06 - 00000000 ____D C:\Program Files (x86)\HP
2016-04-06 13:05 - 2016-04-06 13:05 - 00000057 _____ C:\Users\Todos os Usuários\Ament.ini
2016-04-06 13:05 - 2016-04-06 13:05 - 00000057 _____ C:\ProgramData\Ament.ini
2016-04-06 13:05 - 2016-04-06 13:05 - 00000000 ____D C:\Program Files\HP
2016-04-06 12:57 - 2016-04-06 13:04 - 00000000 ____D C:\Users\Tereza Lemos\Downloads\HP Downloads
2016-04-06 12:55 - 2016-04-06 12:55 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Hewlett-Packard
2016-04-06 12:23 - 2016-04-06 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-04-06 12:22 - 2016-04-07 10:20 - 00000000 ____D C:\Users\Todos os Usuários\Hewlett-Packard
2016-04-06 12:22 - 2016-04-07 10:20 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-04-06 12:22 - 2016-04-06 12:22 - 00000000 ____D C:\System.sav
2016-04-06 12:21 - 2016-04-06 12:21 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\hpqLog
2016-04-06 12:15 - 2016-04-28 18:43 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Hewlett-Packard
2016-04-06 12:15 - 2016-04-07 10:21 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2016-04-06 12:13 - 2016-04-06 12:22 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-04-06 11:54 - 2016-04-06 11:54 - 00000000 ____D C:\Users\Todos os Usuários\Xerox
2016-04-06 11:54 - 2016-04-06 11:54 - 00000000 ____D C:\ProgramData\Xerox
2016-04-06 11:48 - 2016-04-22 18:04 - 00000000 ___RD C:\Users\Tereza Lemos\Desktop\icones area de trabalho
2016-04-06 11:09 - 2016-04-06 11:09 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Sun
2016-04-06 11:09 - 2016-04-06 11:09 - 00000000 ____D C:\Users\Tereza Lemos\AppData\LocalLow\Sun
2016-04-06 11:09 - 2016-04-06 11:09 - 00000000 ____D C:\Users\Tereza Lemos\.oracle_jre_usage
2016-04-06 10:50 - 2016-04-06 11:24 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-04-06 10:50 - 2016-04-06 11:24 - 00000000 ____D C:\ProgramData\Oracle
2016-04-06 10:36 - 2016-04-06 10:36 - 00000000 ____D C:\Users\Tereza Lemos\AppData\LocalLow\Oracle
2016-04-06 10:25 - 2016-04-06 10:25 - 00000000 ____D C:\Users\Tereza Lemos\Downloads\New Folder
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-05-04 18:29 - 2016-02-01 22:24 - 00001100 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-04 17:55 - 2016-03-24 11:13 - 00000902 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-05-04 17:25 - 2015-12-26 16:08 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-04 17:25 - 2012-07-26 04:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-04 17:20 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Inf
2016-05-04 16:57 - 2015-12-31 17:54 - 00003982 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CE892200-20A1-4853-8C78-2778082BC566}
2016-05-04 14:44 - 2013-10-22 19:24 - 00000870 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2016-05-04 13:15 - 2015-12-09 12:41 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2426027570-3042564260-384977448-1001
2016-05-04 11:56 - 2016-01-26 11:13 - 00000000 __RDO C:\Users\Tereza Lemos\OneDrive
2016-05-04 11:56 - 2015-12-11 10:31 - 00000280 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Tereza Lemos.job
2016-05-04 10:44 - 2016-02-23 21:30 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\MinhaBox.br
2016-05-04 10:31 - 2016-03-24 11:13 - 00000000 ____D C:\Program Files\TrueKey
2016-05-04 10:30 - 2016-03-24 11:27 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-05-04 10:21 - 2016-02-11 12:03 - 00000000 ___RD C:\Users\Tereza Lemos\Google Drive
2016-05-04 10:20 - 2016-01-30 22:08 - 00000000 ____D C:\Users\Todos os Usuários\BlueStacksSetup
2016-05-04 10:20 - 2016-01-30 22:08 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-05-04 10:19 - 2016-02-01 10:35 - 00003262 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2016-05-04 10:19 - 2016-02-01 10:35 - 00002894 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Tereza Lemos)
2016-05-04 10:17 - 2016-02-23 21:30 - 00000000 ____D C:\Users\Tereza Lemos\.gstreamer-0.10
2016-05-04 10:17 - 2016-02-01 22:24 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-04 10:16 - 2013-10-22 19:24 - 00000868 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2016-05-04 10:15 - 2013-08-22 11:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-02 16:33 - 2015-12-17 13:22 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-02 16:33 - 2015-12-17 13:22 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-02 12:45 - 2014-11-21 23:44 - 01800588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-02 12:45 - 2014-11-21 22:52 - 00775740 _____ C:\WINDOWS\system32\prfh0416.dat
2016-05-02 12:45 - 2014-11-21 22:52 - 00158832 _____ C:\WINDOWS\system32\prfc0416.dat
2016-04-30 16:44 - 2015-12-25 08:21 - 00000000 ____D C:\Users\Tereza Lemos
2016-04-30 13:28 - 2016-02-11 12:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-04-30 00:05 - 2015-12-08 21:13 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Packages
2016-04-29 23:48 - 2015-12-11 10:31 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2016-04-29 23:48 - 2015-12-11 10:31 - 00000000 ____D C:\ProgramData\ProductData
2016-04-27 18:30 - 2015-12-16 23:02 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\ElevatedDiagnostics
2016-04-27 18:30 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-04-27 15:57 - 2015-12-10 16:09 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\CrashDumps
2016-04-23 10:36 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\rescache
2016-04-22 21:52 - 2016-01-02 17:06 - 91013120 _____ C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2016-04-22 21:52 - 2016-01-02 17:06 - 00425984 _____ C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2016-04-22 21:52 - 2016-01-02 17:06 - 00065536 _____ C:\WINDOWS\system32\config\SAM.iodefrag.bak
2016-04-22 21:52 - 2016-01-02 17:06 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2016-04-22 19:47 - 2013-08-22 10:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-22 18:04 - 2015-12-22 21:35 - 00000000 ____D C:\Users\Tereza Lemos\Desktop\Start Menu\Programs\Baidu MoboMarket
2016-04-22 10:35 - 2015-12-17 17:05 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\uTorrent
2016-04-19 11:56 - 2015-12-08 21:31 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Apps\2.0
2016-04-19 11:37 - 2015-12-17 17:45 - 00000000 ____D C:\Users\Todos os Usuários\Baidu
2016-04-19 11:37 - 2015-12-17 17:45 - 00000000 ____D C:\ProgramData\Baidu
2016-04-19 10:52 - 2013-08-22 12:36 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-04-19 10:52 - 2013-08-22 12:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-04-19 10:50 - 2015-12-29 13:44 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-04-16 22:41 - 2015-12-17 16:00 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\DAEMON Tools Lite
2016-04-16 17:02 - 2015-12-08 21:13 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\VirtualStore
2016-04-16 13:37 - 2015-12-08 21:14 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Adobe
2016-04-15 16:07 - 2016-03-24 11:13 - 00003790 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-04-15 16:07 - 2016-03-17 21:44 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Local\Adobe
2016-04-15 15:32 - 2015-12-08 21:30 - 00002810 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-04-15 15:29 - 2013-10-22 19:35 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-04-15 15:12 - 2013-10-22 19:20 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-04-15 12:25 - 2015-12-25 08:30 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2016-04-15 12:25 - 2015-12-08 21:15 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Baidu Security
2016-04-15 12:25 - 2013-09-21 11:36 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2016-04-15 12:25 - 2013-09-21 11:36 - 00000000 ____D C:\ProgramData\Baidu Security
2016-04-15 10:37 - 2015-12-10 12:50 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-04-15 10:37 - 2015-12-10 12:50 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-04-13 20:45 - 2013-09-21 15:40 - 00453280 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-13 19:52 - 2013-08-22 11:44 - 00486688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-13 18:11 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\tracing
2016-04-13 14:15 - 2015-12-18 14:17 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-13 14:07 - 2015-12-18 14:17 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-12 19:17 - 2016-03-24 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee
2016-04-12 11:25 - 2013-08-22 10:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-10 16:14 - 2016-03-28 13:13 - 00000000 ____D C:\Users\Tereza Lemos\AppData\LocalLow\Adobe
2016-04-10 13:03 - 2016-01-30 22:11 - 00000000 ____D C:\Users\Tereza Lemos\AppData\Roaming\Mozilla
2016-04-07 10:16 - 2016-03-24 11:13 - 00000000 ____D C:\Users\Todos os Usuários\McAfee
2016-04-07 10:16 - 2016-03-24 11:13 - 00000000 ____D C:\ProgramData\McAfee
==================== Arquivos na raiz de alguns diretórios =======
2016-04-19 11:06 - 2016-04-19 11:06 - 0001238 _____ () C:\Users\Tereza Lemos\AppData\Roaming\Bubble Dock.boostrap.log
2016-04-19 11:09 - 2016-04-19 11:11 - 0002227 _____ () C:\Users\Tereza Lemos\AppData\Roaming\Bubble Dock.installation.log
2016-04-20 20:38 - 2016-04-20 20:38 - 0000519 _____ () C:\Users\Tereza Lemos\AppData\Roaming\index.html
2016-04-19 11:11 - 2016-04-19 11:11 - 0192913 _____ () C:\Users\Tereza Lemos\AppData\Roaming\inst.lat
2016-04-19 11:11 - 2016-04-19 11:12 - 0015696 _____ () C:\Users\Tereza Lemos\AppData\Roaming\InstallationConfiguration.xml
2016-04-19 11:11 - 2016-04-19 11:11 - 0127488 _____ () C:\Users\Tereza Lemos\AppData\Roaming\Installer.dat
2016-04-22 21:59 - 2016-04-22 22:00 - 0965847 _____ ( ) C:\Users\Tereza Lemos\AppData\Roaming\svrupg.exe
2016-04-19 11:06 - 2016-04-19 11:06 - 0000097 _____ () C:\Users\Tereza Lemos\AppData\Roaming\WindApp.boostrap.log
2016-04-19 11:23 - 2016-04-19 05:58 - 0600312 _____ () C:\Users\Tereza Lemos\AppData\Roaming\YeaPlayer_br_IBD_Bundle.exe
2016-04-26 09:24 - 2016-04-26 09:24 - 0000009 ____N () C:\ProgramData\a.bat
2010-08-28 17:43 - 2010-08-28 17:43 - 0577335 ____N () C:\ProgramData\adb.exe
2010-08-28 17:43 - 2010-08-28 17:43 - 0096256 ____N (Google, inc) C:\ProgramData\AdbWinApi.dll
2010-08-28 17:43 - 2010-08-28 17:43 - 0060928 ____N (Google, inc) C:\ProgramData\AdbWinUsbApi.dll
2016-04-06 13:05 - 2016-04-06 13:05 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-04-28 10:32 - 2016-04-26 12:07 - 1253376 _____ (eee) C:\ProgramData\apptj.exe
2016-04-25 12:18 - 2016-04-25 12:06 - 1085440 _____ () C:\ProgramData\delCalendarReg.exe
2015-12-25 08:13 - 2015-12-25 08:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-12-17 17:46 - 2015-12-17 17:46 - 0014501 _____ () C:\ProgramData\Duplicaterecord.js
2010-08-28 17:43 - 2010-08-28 17:43 - 0356009 ____N () C:\ProgramData\fastboot.exe
2016-04-19 11:10 - 2016-04-19 06:10 - 1747456 _____ () C:\ProgramData\service.exe
2016-04-28 10:32 - 2016-04-28 10:32 - 0413439 _____ () C:\ProgramData\xdo.zip
2016-04-19 11:14 - 2016-04-25 11:45 - 0600312 _____ () C:\ProgramData\YeaPlayer_br_IBD_Bundle.exe
2016-04-19 11:15 - 2016-04-19 14:10 - 0072050 _____ () C:\ProgramData\YSIns.exe
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\a.bat
C:\ProgramData\adb.exe
C:\ProgramData\AdbWinApi.dll
C:\ProgramData\AdbWinUsbApi.dll
C:\ProgramData\apptj.exe
C:\ProgramData\delCalendarReg.exe
C:\ProgramData\Duplicaterecord.js
C:\ProgramData\fastboot.exe
C:\ProgramData\service.exe
C:\ProgramData\YeaPlayer_br_IBD_Bundle.exe
C:\ProgramData\YSIns.exe
C:\Users\Todos os Usuários\a.bat
C:\Users\Todos os Usuários\adb.exe
C:\Users\Todos os Usuários\AdbWinApi.dll
C:\Users\Todos os Usuários\AdbWinUsbApi.dll
C:\Users\Todos os Usuários\apptj.exe
C:\Users\Todos os Usuários\delCalendarReg.exe
C:\Users\Todos os Usuários\Duplicaterecord.js
C:\Users\Todos os Usuários\fastboot.exe
C:\Users\Todos os Usuários\service.exe
C:\Users\Todos os Usuários\YeaPlayer_br_IBD_Bundle.exe
C:\Users\Todos os Usuários\YSIns.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll
[2016-01-01 08:57] - [2016-01-01 08:57] - 0657920 ____A (Microsoft Corporation) 0A17A699C1941815BFCD966336FBE80B
C:\WINDOWS\SysWOW64\dnsapi.dll
[2016-01-01 08:57] - [2016-01-01 08:57] - 0498688 ____A (Microsoft Corporation) 1B663FEE5654EC9906234E9E888E50A5
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-05-04 11:02
==================== Fim de FRST.txt ============================