cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 27-07-2016
Executado por Fernando (administrador) em FERNANDO-PC (31-07-2016 14:48:50)
Executando a partir de C:\Users\Fernando\Desktop
Perfis Carregados: Fernando (Perfis Disponíveis: Fernando)
Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKU\S-1-5-21-855659652-2143753965-2816116878-1001\...\MountPoints2: {29bee475-51f4-11e6-8932-002522af669e} - F:\SETUP.EXE

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9728FE99-98B0-4E1C-BE2B-8F7507195A75}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2016-07-31] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-07-31] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2016-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-31] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxp://www.youtube.com/?gl=BR&hl=pt"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxp://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
CHR Profile: C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-24]
CHR Extension: (Google Docs) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-24]
CHR Extension: (Google Drive) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-24]
CHR Extension: (YouTube) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-24]
CHR Extension: (Planilhas do Google) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-24]
CHR Extension: (Documentos Google off-line) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-24]
CHR Extension: (Norton Safe) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-07-24]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-24]
CHR Extension: (Gmail) - C:\Users\Fernando\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-24]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2950856 2016-07-25] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960160 2016-04-22] (IObit)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [242224 2016-07-23] (Microsoft Corporation) [Arquivo não assinado]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2016-07-23] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-08-26] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-07-23] (REALiX(tm))
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-31 14:48 - 2016-07-31 14:49 - 00009937 _____ C:\Users\Fernando\Desktop\FRST.txt
2016-07-31 14:47 - 2016-07-31 14:48 - 00000000 ____D C:\FRST
2016-07-31 14:44 - 2016-07-31 14:44 - 02394112 _____ (Farbar) C:\Users\Fernando\Desktop\FRST64.exe
2016-07-31 14:40 - 2016-07-31 14:40 - 14572000 _____ (Microsoft Corporation) C:\Users\Fernando\Downloads\vc_redist.x64.exe
2016-07-31 08:56 - 2016-07-31 08:56 - 01034556 _____ C:\Users\Fernando\Downloads\Windows6.1-KB2999226-x64 (1).msu
2016-07-31 08:56 - 2016-07-31 08:56 - 00000000 ____D C:\ef323fc117e5867bd22740032e8ca2c0
2016-07-31 01:38 - 2016-07-31 01:38 - 00000000 ____D C:\73e3360f8c95956efc92f0bb
2016-07-31 01:33 - 2016-07-31 01:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2016-07-31 01:33 - 2016-07-31 01:34 - 00000000 ____D C:\Program Files\Dolphin
2016-07-31 01:33 - 2016-07-31 01:33 - 00000796 _____ C:\Users\Public\Desktop\Dolphin.lnk
2016-07-31 01:17 - 2016-07-31 01:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2016-07-31 01:13 - 2016-07-31 01:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-07-31 01:13 - 2016-07-31 01:13 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2016-07-31 00:53 - 2016-07-31 00:53 - 00000000 ____D C:\3ff42e58d04e9fae8a2b167a00a72182
2016-07-31 00:52 - 2016-07-31 00:52 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-31 00:52 - 2016-07-31 00:52 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-31 00:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-07-31 00:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-07-31 00:35 - 2016-07-31 08:45 - 00003758 _____ C:\Windows\System32\Tasks\AutoKMS
2016-07-31 00:35 - 2016-07-31 00:43 - 00000000 ____D C:\Windows\AutoKMS
2016-07-31 00:34 - 2016-07-31 00:34 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Toolkit
2016-07-31 00:34 - 2016-07-31 00:34 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2016-07-31 00:17 - 2016-07-31 00:17 - 00002174 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-07-31 00:17 - 2016-07-31 00:17 - 00002106 _____ C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-07-31 00:17 - 2016-07-31 00:17 - 00002106 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-07-31 00:17 - 2016-07-31 00:17 - 00002106 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-07-31 00:17 - 2016-07-31 00:17 - 00000000 ___RD C:\Users\Fernando\OneDrive
2016-07-31 00:17 - 2016-07-31 00:17 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2016-07-31 00:17 - 2016-07-31 00:17 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-07-31 00:17 - 2016-07-31 00:17 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-07-31 00:16 - 2016-07-31 00:16 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-07-31 00:08 - 2016-07-31 00:08 - 00002406 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00002355 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00002352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00002342 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00002322 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-07-31 00:08 - 2016-07-31 00:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-07-31 00:06 - 2016-07-31 00:17 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-07-31 00:06 - 2016-07-31 00:17 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-07-31 00:04 - 2016-07-31 00:04 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-07-30 22:49 - 2016-07-30 22:52 - 01598152 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-07-30 22:10 - 2016-07-30 22:10 - 00000000 ____D C:\0bf95a4467c8e5b2b75e2b80
2016-07-27 21:17 - 2016-07-27 21:17 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Samsung
2016-07-27 21:15 - 2016-07-27 21:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2016-07-27 21:10 - 2016-07-27 21:17 - 00000000 ____D C:\Users\Todos os Usuários\Samsung
2016-07-27 21:10 - 2016-07-27 21:17 - 00000000 ____D C:\ProgramData\Samsung
2016-07-27 21:10 - 2016-07-27 21:10 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-07-27 21:10 - 2016-03-24 00:56 - 02817536 ____N C:\Windows\system32\DlgSearchEngine.dll
2016-07-27 21:10 - 2016-03-24 00:56 - 02078208 ____N C:\Windows\SysWOW64\DlgSearchEngine.dll
2016-07-27 21:10 - 2015-09-24 22:13 - 00225600 _____ C:\Windows\system32\SBuySupplies.exe
2016-07-27 21:10 - 2015-03-11 23:43 - 00158016 _____ C:\Windows\system32\us00aci.exe
2016-07-27 21:10 - 2015-03-11 23:43 - 00089600 _____ (SS) C:\Windows\system32\us00aci.dll
2016-07-27 21:10 - 2015-03-11 23:43 - 00022528 _____ () C:\Windows\system32\us00alm.dll
2016-07-27 21:07 - 2016-07-27 21:07 - 51503524 _____ C:\Users\Fernando\Downloads\EasyPrinterManager_Mac_V1.02.07.zip
2016-07-27 21:06 - 2016-07-27 21:06 - 00000000 ____D C:\Users\Fernando\AppData\Local\ElevatedDiagnostics
2016-07-27 15:46 - 2016-07-27 15:46 - 00000000 ____D C:\Users\Fernando\Documents\Modelos Personalizados do Office
2016-07-25 11:57 - 2016-07-25 11:57 - 00000000 ____D C:\Users\Fernando\Desktop\PROVAS VUNESP ALUMINIO
2016-07-25 11:52 - 2016-07-25 11:52 - 00000000 ____D C:\Users\Fernando\AppData\Local\CEF
2016-07-24 23:20 - 2016-07-24 23:20 - 00000000 ____D C:\7fcfc2727a333efd48774227408b1f1e
2016-07-24 22:51 - 2016-07-24 22:51 - 00000000 ____D C:\f573c5435f3d73fe819c30414008
2016-07-24 22:47 - 2016-07-31 10:52 - 00000000 ____D C:\Program Files\KMSpico
2016-07-24 22:47 - 2016-07-24 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2016-07-24 22:47 - 2010-12-05 23:16 - 00090112 _____ (Vestris Inc.) C:\Windows\system32\Vestris.ResourceLib.dll
2016-07-24 22:42 - 2016-07-24 22:42 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\Adobe
2016-07-24 22:28 - 2016-07-24 22:58 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-24 22:28 - 2016-07-24 22:57 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-24 22:28 - 2016-07-24 22:28 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-07-24 22:27 - 2016-07-24 22:54 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-07-24 22:27 - 2016-07-24 22:54 - 00000000 ____D C:\ProgramData\Adobe
2016-07-24 22:27 - 2016-07-24 22:43 - 00000000 ____D C:\Users\Fernando\AppData\Local\Adobe
2016-07-24 20:26 - 2016-07-24 20:26 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-07-24 20:24 - 2016-07-24 20:24 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\WinRAR
2016-07-24 20:19 - 2016-07-31 08:55 - 00000000 ____D C:\Program Files\Microsoft Office
2016-07-24 20:19 - 2016-07-30 22:05 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-07-24 20:19 - 2016-07-24 20:19 - 00000000 ____D C:\Users\Fernando\AppData\Local\Microsoft Help
2016-07-24 20:15 - 2016-07-24 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2016-07-24 20:15 - 2016-07-24 20:15 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2016-07-24 19:44 - 2016-07-24 19:44 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-24 19:44 - 2016-07-24 19:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-24 19:44 - 2016-07-24 19:44 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-07-24 19:37 - 2016-07-31 14:39 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-24 19:37 - 2016-07-31 14:39 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-24 19:37 - 2016-07-29 14:22 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-24 19:37 - 2016-07-29 14:22 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-24 19:37 - 2016-07-24 19:37 - 00002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-24 19:37 - 2016-07-24 19:37 - 00002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-24 19:36 - 2016-07-24 22:19 - 00000000 ____D C:\Users\Fernando\AppData\Local\Google
2016-07-24 19:36 - 2016-07-24 19:37 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-24 19:36 - 2016-07-24 19:36 - 00000000 ____D C:\Users\Fernando\AppData\Local\Deployment
2016-07-24 19:36 - 2016-07-24 19:36 - 00000000 ____D C:\Users\Fernando\AppData\Local\Apps\2.0
2016-07-23 22:45 - 2016-07-23 22:45 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2016-07-23 22:45 - 2016-07-23 22:45 - 00001912 _____ C:\Windows\epplauncher.mif
2016-07-23 22:45 - 2016-07-23 22:45 - 00000000 ____D C:\Program Files\Microsoft Security Client
2016-07-23 22:45 - 2016-07-23 22:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2016-07-23 22:42 - 2016-07-23 22:42 - 00000000 __SHD C:\Users\Fernando\AppData\LocalLow\EmieUserList
2016-07-23 22:42 - 2016-07-23 22:42 - 00000000 __SHD C:\Users\Fernando\AppData\LocalLow\EmieSiteList
2016-07-23 22:41 - 2016-07-23 22:41 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-07-23 22:41 - 2016-07-23 22:41 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-23 22:41 - 2015-01-30 21:57 - 06223680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-07-23 22:41 - 2015-01-30 21:57 - 03299472 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-07-23 22:41 - 2015-01-30 21:57 - 02558272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-07-23 22:41 - 2015-01-30 21:57 - 00878400 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-07-23 22:41 - 2015-01-30 21:57 - 00117392 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-07-23 22:41 - 2015-01-30 21:57 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-07-23 22:40 - 2016-07-23 22:40 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-07-23 22:40 - 2016-07-23 22:40 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-07-23 22:39 - 2016-07-23 22:39 - 26341704 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 25255568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 19916432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 17559184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 15373568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 13585736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-07-23 22:39 - 2016-07-23 22:39 - 09185504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 07755632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 07639952 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 06295288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 02753952 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 02748232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 02576200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 02447000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 02220176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 01868104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 01801544 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6430908.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 01510728 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6430908.dll
2016-07-23 22:39 - 2016-07-23 22:39 - 00017616 _____ C:\Windows\system32\nvinfo.pb
2016-07-23 22:39 - 2016-07-23 22:39 - 00000000 ____D C:\Windows\system32\SRSLabs
2016-07-23 22:39 - 2016-07-23 22:39 - 00000000 ____D C:\Program Files\VIA
2016-07-23 22:38 - 2016-07-23 22:41 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-07-23 22:38 - 2016-07-23 22:38 - 27646720 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64H.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 03300528 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 01999640 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO264.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 01986048 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO232.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 01161336 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 01013504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00953344 _____ (NVIDIA Corporation) C:\Windows\system32\fdco2.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00879616 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO64.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00876544 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00758272 _____ (NVIDIA Corporation) C:\Windows\system32\cohelper.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00739328 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO32.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00688648 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2016-07-23 22:38 - 2016-07-23 22:38 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00657512 _____ (NVIDIA Corporation) C:\Windows\system32\nvuninst.exe
2016-07-23 22:38 - 2016-07-23 22:38 - 00619520 _____ (Creative Technology Ltd.) C:\Windows\system32\VMTHX64.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00554496 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMTHX32.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00501280 _____ (NVIDIA Corporation) C:\Windows\system32\nvusmb.exe
2016-07-23 22:38 - 2016-07-23 22:38 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64H.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00388096 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP64.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00349416 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvmf6264.sys
2016-07-23 22:38 - 2016-07-23 22:38 - 00248952 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00229480 _____ (NVIDIA Corporation) C:\Windows\system32\nvconrm.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64H.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00135680 _____ (NVIDIA Corporation) C:\Windows\system32\NVCOSMB.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00123512 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64H.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00095352 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00092280 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00083968 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64H.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00070776 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\VtSrdAPO.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00057856 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD64.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00055416 _____ (TODO: ) C:\Windows\system32\PropPageExt.dll
2016-07-23 22:38 - 2016-07-23 22:38 - 00053760 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN64.DLL
2016-07-23 22:38 - 2016-07-23 22:38 - 00030728 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\VMfilt64.sys
2016-07-23 22:38 - 2016-07-23 22:38 - 00027768 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe
2016-07-23 22:38 - 2016-07-23 22:38 - 00010084 _____ C:\Windows\system32\Drivers\nvphy.bin
2016-07-23 22:38 - 2016-07-23 22:38 - 00002344 _____ C:\Windows\system32\nvsmb.nvu
2016-07-23 22:20 - 2016-07-23 22:20 - 00000000 ____D C:\Windows\IObit
2016-07-23 22:19 - 2016-07-31 00:44 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2016-07-23 22:19 - 2016-07-31 00:44 - 00000000 ____D C:\ProgramData\ProductData
2016-07-23 22:19 - 2016-07-31 00:34 - 00111448 _____ C:\Users\Fernando\AppData\Local\GDIPFONTCACHEV1.DAT
2016-07-23 22:19 - 2016-07-23 22:20 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\ProductData
2016-07-23 22:19 - 2016-07-23 22:19 - 00000000 __SHD C:\Users\Fernando\AppData\Local\EmieUserList
2016-07-23 22:19 - 2016-07-23 22:19 - 00000000 __SHD C:\Users\Fernando\AppData\Local\EmieSiteList
2016-07-23 22:19 - 2016-07-23 22:19 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2016-07-23 22:19 - 2016-07-23 22:19 - 00000000 ____D C:\Users\Todos os Usuários\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-07-23 22:19 - 2016-07-23 22:19 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-07-23 22:18 - 2016-07-23 22:42 - 00000000 ____D C:\Program Files (x86)\IObit
2016-07-23 22:18 - 2016-07-23 22:20 - 00002886 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Fernando)
2016-07-23 22:18 - 2016-07-23 22:20 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\IObit
2016-07-23 22:18 - 2016-07-23 22:19 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2016-07-23 22:18 - 2016-07-23 22:19 - 00000000 ____D C:\Users\Fernando\AppData\LocalLow\IObit
2016-07-23 22:18 - 2016-07-23 22:19 - 00000000 ____D C:\ProgramData\IObit
2016-07-23 22:18 - 2016-07-23 22:18 - 00026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-07-23 22:06 - 2016-07-24 22:54 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Adobe
2016-07-23 22:06 - 2016-07-23 22:06 - 00001389 _____ C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-07-23 22:06 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-07-23 22:06 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-07-23 22:06 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-07-23 22:06 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-07-23 22:06 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-07-23 22:06 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-07-23 22:06 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-07-23 22:06 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-07-23 22:06 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-07-23 22:06 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-07-23 22:05 - 2016-07-31 00:17 - 00000000 ____D C:\Users\Fernando
2016-07-23 22:05 - 2016-07-23 22:05 - 00000020 ___SH C:\Users\Fernando\ntuser.ini
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Modelos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Meus documentos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Menu Iniciar
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Documents\Minhas músicas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Documents\Minhas imagens
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Documents\Meus vídeos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Configurações locais
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\AppData\Local\Histórico
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\AppData\Local\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Ambiente de rede
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Fernando\Ambiente de impressão
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Modelos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\ProgramData\Modelos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\ProgramData\Documentos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 _SHDL C:\Arquivos de Programas
2016-07-23 22:05 - 2016-07-23 22:05 - 00000000 ____D C:\Users\Fernando\AppData\Local\VirtualStore
2016-07-23 22:05 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-07-23 22:05 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-07-23 22:05 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-07-23 22:05 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-07-23 22:05 - 2011-04-12 11:20 - 00000000 ____D C:\Users\Fernando\AppData\Roaming\Media Center Programs
2016-07-23 22:02 - 2016-07-23 22:02 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-07-23 22:02 - 2016-07-23 22:02 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-07-23 21:53 - 2016-07-23 22:05 - 00000000 ____D C:\Windows\Panther
2016-07-23 09:53 - 2016-07-23 09:53 - 00439608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2016-07-23 09:53 - 2016-07-23 09:53 - 00266928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2016-07-23 09:53 - 2016-07-23 09:53 - 00243520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2016-07-23 09:53 - 2016-07-23 09:53 - 00085328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-31 09:00 - 2009-07-14 01:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-31 09:00 - 2009-07-14 01:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-31 08:51 - 2011-04-12 10:40 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-07-31 08:51 - 2011-04-12 10:40 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-07-31 08:51 - 2009-07-14 02:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-31 08:51 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-31 08:45 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-31 00:42 - 2009-07-14 01:45 - 00441736 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-31 00:16 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-30 22:04 - 2011-04-12 11:21 - 00000000 ____D C:\Windows\ShellNew
2016-07-30 22:03 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-07-30 22:03 - 2009-07-13 23:34 - 00000387 _____ C:\Windows\win.ini
2016-07-23 22:41 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\Help
2016-07-23 22:39 - 2009-07-13 18:59 - 18320440 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-07-23 22:05 - 2009-07-14 00:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-07-23 22:05 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache
2016-07-23 22:05 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Windows NT
2016-07-23 22:02 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-07-23 21:57 - 2011-04-12 11:21 - 00000000 ____D C:\Windows\CSC
2016-07-23 21:53 - 2009-07-14 02:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-07-06 21:39 - 2010-11-21 00:27 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Alguns arquivos em TEMP:
====================
C:\Users\Fernando\AppData\Local\Temp\ose00000.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-07-23 21:57

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité