Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02-07-2016
Executado por User (administrador) em USER-PC (06-07-2016 12:25:46)
Executando a partir de C:\Users\User\Downloads
Perfis Carregados: User (Perfis Disponíveis: User)
Platform: Windows 7 Home Basic (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\WeatherTool\2.0.1.11076\WeatherService.exe
(ShenZhen Enode Techology co,.Ltd) C:\Program Files (x86)\WeatherTool\2.0.1.11076\weather.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSTORDB.EXE
(Mega Limited) C:\Users\User\AppData\Local\MEGAsync\MEGAsync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-03-20] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8897712 2016-06-24] (AVAST Software)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3674783497-3938882022-2434818844-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG)
HKU\S-1-5-21-3674783497-3938882022-2434818844-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3674783497-3938882022-2434818844-1000\...\Run: [Chromium] => c:\users\user\appdata\local\chromium\application\chrome.exe [1068544 2016-03-18] (The Chromium Authors)
HKU\S-1-5-21-3674783497-3938882022-2434818844-1000\...\MountPoints2: {eea7fc81-41d6-11e6-a07d-d027889dc5ef} - E:\LG_PC_Programs.exe
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-06-24] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\User\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-07-06]
ShortcutTarget: MEGAsync.lnk -> C:\Users\User\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Deskjet 1510 series.lnk [2016-07-06]
ShortcutTarget: Monitorar alertas de tinta - HP Deskjet 1510 series.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DC359820-9257-47B3-A40A-32B4114E8FA1}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic
HKU\S-1-5-21-3674783497-3938882022-2434818844-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3674783497-3938882022-2434818844-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3674783497-3938882022-2434818844-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_sumsca_16_27¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0DtDtByBzzzzzy0D0CyD0E0F0AyE0EtDtN0D0Tzu0StCyCyEyEtN1L2XzutAtFtBtAtFtCtFtAtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDtDyCyC0BtBzy0FtGtA0CyEyDtGyD0FtD0DtGyE0BtCtCtG0E0C0E0FtC0DtDyDyCtD0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StAtAyBtB0CyCtAtCtG0AyDtDzytGyE0B0C0BtGzzzyzz0AtG0D0EtAtA0ByDtAtCyCtByD0C2QtN0A0LzuyE%26cr%3D302477627%26a%3Dwbf_sumsca_16_27%26os_ver%3D6.1%26os%3DWindows%2B7%2BHome%2BBasic&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2016-06-24] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-06-24] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2016-06-24] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-24] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2016-06-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2016-06-24] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-24] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3674783497-3938882022-2434818844-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-24]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-06-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-24]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-24]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-24]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-07-02]
CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-24]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-24]
CHR Extension: (Search Manager) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej [2016-07-02]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-24]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3674783497-3938882022-2434818844-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-06-24] (AVAST Software)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
R2 TheDesktopWeatherService; C:\Program Files (x86)\WeatherTool\2.0.1.11076\WeatherService.exe [152008 2015-11-25] ()
S3 wampmysqld64; C:\wamp64\bin\mysql\mysql5.7.9\bin\mysqld.exe [38587904 2015-10-12] () [Arquivo não assinado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-24] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-06-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-06-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-24] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-06-30] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-06-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [290088 2016-06-24] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [51712 2009-09-09] (Intel Corporation)
S3 Rockusb; C:\Windows\System32\DRIVERS\rockusb.sys [66704 2013-09-09] (Fuzhou Rockchip Electronics Co,Ltd.)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Nuvoton Technology Corp.)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-07-06 12:25 - 2016-07-06 12:26 - 00021866 _____ C:\Users\User\Downloads\FRST.txt
2016-07-06 12:25 - 2016-07-06 12:25 - 00000000 ____D C:\FRST
2016-07-06 12:24 - 2016-07-06 12:24 - 02390016 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2016-07-06 12:22 - 2016-07-06 12:22 - 00001445 _____ C:\Users\Public\Desktop\Wampserver64.lnk
2016-07-06 12:22 - 2016-07-06 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2016-07-06 12:21 - 2016-07-06 12:21 - 00000000 ____D C:\wamp64
2016-07-06 12:20 - 2015-05-29 10:28 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-07-06 12:10 - 2015-06-23 15:00 - 00088248 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
2016-07-06 11:06 - 2016-07-06 12:17 - 00000000 ____D C:\Users\User\Desktop\PROGAMA OS
2016-07-06 11:05 - 2016-07-06 11:31 - 93341184 _____ (Dominique Ottello aka Otomatic ) C:\Users\User\Downloads\wampserver3_x64_apache2.4.17_mysql5.7.9_php5.6.16_php7.0.0.exe
2016-07-06 10:29 - 2016-07-06 10:30 - 00000000 ____D C:\Users\User\Desktop\Comunicação loja
2016-07-06 10:28 - 2016-07-06 10:30 - 00000000 ____D C:\Users\User\Desktop\dia dos pais
2016-07-06 10:28 - 2016-07-06 10:28 - 00000000 ____D C:\Users\User\Desktop\cartão nato
2016-07-06 10:22 - 2016-07-06 10:22 - 00001015 _____ C:\Users\User\Desktop\MEGAsync.lnk
2016-07-06 10:22 - 2016-07-06 10:22 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2016-07-06 10:22 - 2016-07-06 10:22 - 00000000 ____D C:\Users\User\AppData\Local\MEGAsync
2016-07-06 10:22 - 2016-07-06 10:22 - 00000000 ____D C:\Users\User\AppData\Local\Mega Limited
2016-07-06 09:57 - 2016-07-06 09:57 - 00071542 _____ C:\Users\User\Downloads\planilha-fluxo-de-caixa1-1.xlsx
2016-07-06 09:22 - 2016-07-06 09:24 - 00000000 ____D C:\Users\User\Desktop\CURRICULOS
2016-07-06 08:30 - 2016-07-06 09:35 - 00736256 _____ C:\Users\User\Downloads\cms%2Ffiles%2F4313%2F1445515889Ordem+de+Serviço.xls
2016-07-06 08:05 - 2016-07-06 08:05 - 00081491 _____ C:\Users\User\Downloads\Planilha-de-ordem-de-serviço1.zip
2016-07-06 08:05 - 2016-07-06 08:05 - 00000000 ____D C:\Users\User\Downloads\Planilha-de-ordem-de-serviço1
2016-07-05 14:02 - 2016-07-05 14:02 - 00000000 ____D C:\Users\User\AppData\Roaming\Media Player Classic
2016-07-05 09:21 - 2016-07-06 10:50 - 00000000 ___SD C:\Users\User\AppData\LocalLow\Temp
2016-07-05 08:32 - 2016-07-05 12:06 - 00009641 _____ C:\Users\User\Desktop\TABELA DE PREÇO.xlsx
2016-07-04 17:17 - 2016-07-06 07:58 - 00000000 ____D C:\Users\User\AppData\Roaming\7 Sticky Notes
2016-07-04 17:16 - 2016-07-04 17:16 - 00001073 _____ C:\Users\Public\Desktop\7 Sticky Notes.lnk
2016-07-04 17:16 - 2016-07-04 17:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7 Sticky Notes
2016-07-04 17:16 - 2016-07-04 17:16 - 00000000 ____D C:\Program Files (x86)\7 Sticky Notes
2016-07-04 17:16 - 2012-10-13 22:20 - 00805376 _____ C:\Windows\SysWOW64\EditCtlsU.ocx
2016-07-04 17:16 - 2011-08-13 21:06 - 01031168 _____ C:\Windows\SysWOW64\ExLVwU.ocx
2016-07-04 17:16 - 2011-05-21 00:02 - 00604672 _____ C:\Windows\SysWOW64\ExTVwU.ocx
2016-07-04 17:16 - 2009-06-07 09:27 - 01071088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2016-07-04 17:16 - 2008-01-19 11:34 - 00554008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dao360.dll
2016-07-04 17:16 - 2005-04-15 15:58 - 01351392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2016-07-04 17:16 - 2004-03-09 14:45 - 00212240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2016-07-04 17:16 - 2004-03-09 00:00 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX
2016-07-04 17:16 - 2000-05-22 12:58 - 00140488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2016-07-04 17:16 - 1998-06-24 01:00 - 00198456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCI32.OCX
2016-07-04 17:11 - 2016-07-04 17:14 - 06154467 _____ (Fabio Martin ) C:\Users\User\Downloads\Setup7StickyNotesv19.exe
2016-07-04 16:27 - 2016-07-04 16:30 - 00000000 ____D C:\Users\User\Documents\Atualização GT-E2222
2016-07-04 15:07 - 2016-07-04 15:07 - 00000000 ____D C:\Program Files (x86)\LG Electronics
2016-07-04 15:05 - 2016-07-04 15:05 - 18682795 _____ C:\Users\User\Downloads\Como atualizar o Samsung Ch@t222 GT-E2222 - passos a passo.mp4
2016-07-04 11:28 - 2016-07-04 11:30 - 45577379 _____ C:\Users\User\Downloads\DIAGRAMA ELÉTRICO E ESQUEMA DE JUMPER PARA PLACA DE CELULAR..mp4
2016-07-04 11:26 - 2016-07-04 11:47 - 240880596 _____ C:\Users\User\Downloads\Esquemas Eletricos Samsung.rar
2016-07-04 11:13 - 2016-07-04 11:17 - 25774898 _____ (z3x-team ) C:\Users\User\Downloads\latest_shell.exe
2016-07-02 18:09 - 2016-07-02 18:13 - 119477254 _____ C:\Users\User\Downloads\Wesley Safadao - Repertorio novo - Ao vivo em Maracanau CE.rar
2016-07-02 18:06 - 2016-07-02 18:06 - 00002218 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2016-07-02 18:05 - 2016-07-02 18:06 - 00000000 ____D C:\Users\User\AppData\Local\Chromium
2016-07-02 18:02 - 2016-07-06 08:02 - 00000000 ____D C:\Users\Todos os Usuários\{9308566B-194A-DCAD-9F8C-42EF05CEC921}
2016-07-02 18:02 - 2016-07-06 08:02 - 00000000 ____D C:\ProgramData\{9308566B-194A-DCAD-9F8C-42EF05CEC921}
2016-07-02 18:02 - 2016-07-02 18:02 - 89991598 _____ C:\Users\User\Downloads\gigantesdobrasil.ZIP
2016-07-02 18:02 - 2016-07-02 18:02 - 00004336 _____ C:\Windows\System32\Tasks\Yahoo! Powered rorom
2016-07-02 18:02 - 2016-07-02 18:02 - 00002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
2016-07-02 18:01 - 2016-07-03 19:03 - 00000000 ____D C:\Users\User\AppData\Roaming\{FA17CCAC-DF45-A1DA-B473-860868A17B36}
2016-07-02 18:01 - 2016-07-02 18:01 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-07-02 18:01 - 2016-07-02 18:01 - 00000286 __RSH C:\ProgramData\ntuser.pol
2016-07-02 18:00 - 2016-07-02 18:03 - 00000000 ____D C:\Users\User\AppData\Local\{FA4ACC16-DEE2-A0AE-B37A-8546971279DE}
2016-07-02 17:55 - 2016-07-02 17:56 - 01029091 _____ ( ) C:\Users\User\Downloads\gigantesdobrasil.exe
2016-07-02 14:34 - 2016-07-02 14:34 - 05455060 _____ C:\Users\User\Downloads\Dark-circuit-background.zip
2016-07-02 14:34 - 2016-07-02 14:23 - 05455060 _____ C:\Users\User\Downloads\Dark-circuit-background (1).zip
2016-07-02 14:31 - 2016-07-02 14:31 - 00000000 ____D C:\Users\User\Downloads\Green-technology-background (1)
2016-07-02 14:29 - 2016-07-02 14:29 - 06690013 _____ C:\Users\User\Downloads\Green-technology-background (1).zip
2016-07-02 14:28 - 2016-07-02 14:29 - 06690013 _____ C:\Users\User\Downloads\Green-technology-background.zip
2016-07-02 14:24 - 2016-07-02 14:24 - 00000000 ____D C:\Users\User\Downloads\Dark-circuit-background (1)
2016-07-02 13:50 - 2016-07-02 13:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-07-02 13:34 - 2016-07-02 15:05 - 00000132 _____ C:\Users\User\AppData\Roaming\Preferências do formato PNG do Adobe CS5
2016-07-02 12:01 - 2016-07-02 12:01 - 01240137 _____ C:\Users\User\Downloads\Coloured-sticks-collection.zip
2016-07-02 12:01 - 2016-07-02 12:01 - 01240137 _____ C:\Users\User\Downloads\Coloured-sticks-collection (1).zip
2016-07-02 12:01 - 2016-07-02 12:01 - 00000000 ____D C:\Users\User\Downloads\Coloured-sticks-collection
2016-07-02 11:39 - 2016-07-02 11:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2016-07-02 09:47 - 2016-07-02 09:47 - 00000000 ____D C:\Users\User\Documents\Minhas paletas
2016-07-02 09:40 - 2016-07-05 08:43 - 00000000 ____D C:\Users\Todos os Usuários\Protexis64
2016-07-02 09:40 - 2016-07-05 08:43 - 00000000 ____D C:\ProgramData\Protexis64
2016-07-02 09:40 - 2016-07-02 09:46 - 00000000 ____D C:\Users\User\AppData\Roaming\Corel
2016-07-02 09:39 - 2016-07-02 09:23 - 00002833 _____ C:\Users\Public\Desktop\CorelDRAW X6 (64-Bit).lnk
2016-07-02 09:37 - 2016-07-02 12:12 - 00000000 ____D C:\Users\User\Documents\Corel
2016-07-02 09:37 - 2016-07-02 09:37 - 00000000 ____D C:\Users\User\Documents\Visual Studio 2008
2016-07-02 09:33 - 2016-07-02 09:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2016-07-02 09:33 - 2016-07-02 09:33 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-07-02 09:31 - 2016-07-02 09:31 - 00000000 ____D C:\Program Files (x86)\gs
2016-07-02 09:30 - 2016-07-02 09:40 - 00000000 ____D C:\Users\Todos os Usuários\Corel
2016-07-02 09:30 - 2016-07-02 09:40 - 00000000 ____D C:\ProgramData\Corel
2016-07-02 09:30 - 2016-07-02 09:30 - 00000000 ____D C:\Program Files\Common Files\Protexis
2016-07-02 09:30 - 2016-07-02 09:30 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-07-02 09:23 - 2016-07-02 09:23 - 00000000 ____D C:\Users\Public\Documents\Corel
2016-07-02 09:22 - 2016-07-02 09:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X6 (64-Bit)
2016-07-02 09:21 - 2016-07-02 09:21 - 00000000 ____D C:\Program Files\Corel
2016-07-02 08:59 - 2016-07-02 09:00 - 01594828 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-07-02 08:53 - 2009-11-25 16:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2016-07-02 08:53 - 2009-11-25 16:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2016-07-02 08:53 - 2009-11-25 16:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2016-07-02 08:53 - 2009-11-25 16:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2016-07-02 08:51 - 2016-07-02 09:40 - 00000000 ____D C:\Users\Todos os Usuários\CorelDRAW Graphics Suite X6
2016-07-02 08:51 - 2016-07-02 09:40 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X6
2016-07-02 08:48 - 2016-07-02 08:48 - 10645952 _____ (MEGA Limited) C:\Users\User\Downloads\MEGAsyncSetup.exe
2016-07-02 08:48 - 2016-07-02 08:48 - 00000000 ____D C:\Users\User\Downloads\CorelDraw X6 16.1.0.843 PT-BR 64 Bits + Ativador
2016-07-02 08:46 - 2016-07-02 08:46 - 570843683 _____ C:\Users\User\Downloads\CorelDraw X6 16.1.0.843 PT-BR 64 Bits + Ativador.rar
2016-07-02 08:32 - 2016-07-02 08:33 - 24041300 _____ C:\Users\User\Downloads\CorelDRAW X6 - Baixar, Instalar e Ativar.mp4
2016-07-01 20:11 - 2016-07-01 20:11 - 00000000 ____D C:\Users\User\Downloads\CorelDraw X8 32 e 64Bits [Paulinho Tutors]
2016-07-01 18:48 - 2016-07-01 18:49 - 1624553012 _____ C:\Users\User\Downloads\CorelDraw X8 32 e 64Bits [Paulinho Tutors].rar
2016-07-01 17:55 - 2016-07-01 17:57 - 47603756 _____ C:\Users\User\Downloads\VENDA AMPERÍMETRO ANALÓGICO 500 mA( SIMULADOR FONTE ASSIMÉTRICA) E DICAS DE USO Analog power supply.mp4.crdownload
2016-07-01 17:32 - 2016-07-01 17:32 - 12828698 _____ C:\Users\User\Downloads\Baixar Instalar e Ativar o CorelDraw X8 - Português.mp4
2016-07-01 13:13 - 2016-07-01 13:18 - 00000000 ____D C:\CWM
2016-07-01 12:59 - 2016-07-01 12:59 - 00003334 _____ C:\Windows\System32\Tasks\{C0CF5897-0EBB-4513-A60B-6F3DB3728D71}
2016-07-01 12:56 - 2016-07-06 10:26 - 00000000 ___RD C:\Users\User\Documents\recuperação de tablet navicity 1711
2016-07-01 12:56 - 2013-09-09 14:56 - 00066704 _____ (Fuzhou Rockchip Electronics Co,Ltd.) C:\Windows\system32\Drivers\rockusb.sys
2016-07-01 12:56 - 2013-04-11 11:27 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2016-07-01 12:56 - 2013-04-11 11:27 - 01002728 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2016-07-01 12:14 - 2016-07-01 12:55 - 328436782 _____ C:\Users\User\Downloads\recuperação de tablet 2014.rar
2016-07-01 10:33 - 2016-07-01 10:36 - 69552992 _____ (Samsung Electronics Co., Ltd. ) C:\Users\User\Downloads\KiesSetup.exe
2016-07-01 09:20 - 2016-07-01 09:20 - 00003608 _____ C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 1510 series
2016-07-01 09:20 - 2016-07-01 09:20 - 00002212 _____ C:\Users\Public\Desktop\HP Deskjet 1510 series.lnk
2016-07-01 09:20 - 2016-07-01 09:20 - 00001159 _____ C:\Users\Public\Desktop\Comprar suprimentos - HP Deskjet 1510 series.lnk
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\Users\User\AppData\Roaming\HpUpdate
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\Users\Todos os Usuários\Visan
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\Users\Todos os Usuários\HP Photo Creations
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\ProgramData\Visan
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\ProgramData\HP Photo Creations
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2016-07-01 09:20 - 2016-07-01 09:20 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-07-01 09:19 - 2016-07-01 09:20 - 00000000 ____D C:\Program Files (x86)\HP
2016-07-01 09:19 - 2016-07-01 09:19 - 00000057 _____ C:\Users\Todos os Usuários\Ament.ini
2016-07-01 09:19 - 2016-07-01 09:19 - 00000057 _____ C:\ProgramData\Ament.ini
2016-07-01 09:19 - 2016-07-01 09:19 - 00000000 ____D C:\Users\Todos os Usuários\HP
2016-07-01 09:19 - 2016-07-01 09:19 - 00000000 ____D C:\ProgramData\HP
2016-07-01 09:19 - 2016-07-01 09:19 - 00000000 ____D C:\Program Files\HP
2016-07-01 09:17 - 2016-07-01 09:20 - 00000000 ____D C:\Users\User\AppData\Local\HP
2016-07-01 09:04 - 2016-07-01 11:00 - 00001107 _____ C:\Users\User\Desktop\Adobe Photoshop CS6 (64 Bit).lnk
2016-07-01 09:01 - 2016-07-01 09:01 - 00000000 ____D C:\Users\User\AppData\Roaming\WinRAR
2016-07-01 08:53 - 2016-07-01 08:53 - 00003498 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User
2016-07-01 08:48 - 2016-07-01 08:48 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe
2016-07-01 08:48 - 2016-07-01 08:48 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-07-01 08:47 - 2016-07-01 08:47 - 00001211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk
2016-07-01 08:47 - 2016-07-01 08:47 - 00001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2016-07-01 08:46 - 2016-07-01 08:47 - 00000000 ____D C:\Program Files\Adobe
2016-07-01 08:46 - 2016-07-01 08:46 - 00001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk
2016-07-01 08:46 - 2016-07-01 08:46 - 00001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2016-07-01 08:44 - 2016-07-01 08:44 - 00001523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2016-07-01 08:44 - 2016-07-01 08:44 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2016-07-01 08:42 - 2016-07-01 08:47 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-07-01 08:39 - 2016-07-06 07:56 - 00000000 ____D C:\Users\User\AppData\Local\Adobe
2016-07-01 08:39 - 2016-07-05 16:20 - 00000000 ____D C:\Users\User\AppData\Roaming\Adobe
2016-07-01 08:39 - 2016-07-01 08:39 - 00000000 ____D C:\Users\User\AppData\Roaming\Macromedia
2016-07-01 08:39 - 2016-07-01 08:39 - 00000000 ____D C:\Users\User\AppData\LocalLow\Adobe
2016-06-30 16:22 - 2016-06-30 16:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-06-24 14:49 - 2016-06-24 16:03 - 00000000 ____D C:\Users\User\AppData\Local\Google
2016-06-24 14:49 - 2016-06-24 14:49 - 00000000 ____D C:\Users\User\AppData\Local\CEF
2016-06-24 14:48 - 2016-06-24 14:48 - 00003894 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1466790514
2016-06-24 14:48 - 2016-06-24 14:48 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-24 14:48 - 2016-06-24 14:48 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-24 14:48 - 2016-06-24 14:48 - 00001037 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-06-24 14:48 - 2016-06-24 14:48 - 00001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-06-24 14:47 - 2016-07-06 11:58 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-24 14:47 - 2016-07-06 08:52 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-24 14:47 - 2016-06-24 14:53 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-24 14:47 - 2016-06-24 14:53 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-24 14:47 - 2016-06-24 14:48 - 00000000 ____D C:\Program Files (x86)\Google
2016-06-24 14:46 - 2016-06-24 14:46 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-06-24 14:45 - 2016-06-30 16:28 - 00473592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-06-24 14:45 - 2016-06-24 14:45 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-06-24 14:45 - 2016-06-24 14:45 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-06-24 14:45 - 2016-06-24 14:45 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-06-24 14:45 - 2016-06-24 14:45 - 00000000 ____D C:\Users\User\AppData\Roaming\AVAST Software
2016-06-24 14:45 - 2016-06-24 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-06-24 14:45 - 2016-06-24 14:45 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-24 14:45 - 2016-06-24 14:44 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-06-24 14:45 - 2016-06-24 14:44 - 00290088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-06-24 14:45 - 2016-06-24 14:44 - 00162904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-06-24 14:45 - 2016-06-24 14:44 - 00108304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-06-24 14:45 - 2016-06-24 14:44 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-06-24 14:45 - 2016-06-24 14:44 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-06-24 14:45 - 2016-06-24 14:44 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-06-24 14:44 - 2016-06-24 14:44 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-06-24 14:44 - 2016-06-24 14:44 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-06-24 14:44 - 2016-06-24 14:44 - 00390984 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-06-24 14:44 - 2016-06-24 14:44 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-06-24 14:43 - 2016-06-24 14:46 - 00000000 ____D C:\Program Files\AVAST Software
2016-06-24 14:40 - 2016-06-24 14:46 - 00000000 ____D C:\Users\Todos os Usuários\AVAST Software
2016-06-24 14:40 - 2016-06-24 14:46 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-24 14:38 - 2016-06-24 14:20 - 00003031 _____ C:\Users\User\Desktop\Microsoft Word 2010.lnk
2016-06-24 14:38 - 2016-06-24 14:20 - 00002911 _____ C:\Users\User\Desktop\Microsoft PowerPoint 2010.lnk
2016-06-24 14:38 - 2016-06-24 14:20 - 00002911 _____ C:\Users\User\Desktop\Microsoft Excel 2010.lnk
2016-06-24 14:33 - 2016-06-24 14:33 - 00000000 ____D C:\Users\User\AppData\Local\Ahead
2016-06-24 14:30 - 2016-06-24 14:30 - 00060416 _____ C:\Windows\SysWOW64\rollback.db
2016-06-24 14:30 - 2016-06-24 14:30 - 00002786 _____ C:\Users\Public\Desktop\Nero StartSmart.lnk
2016-06-24 14:30 - 2016-06-24 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Premium
2016-06-24 14:30 - 2016-06-24 14:30 - 00000000 ____D C:\Program Files (x86)\Nero
2016-06-24 14:27 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-06-24 14:27 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-06-24 14:24 - 2016-07-06 08:53 - 00078848 _____ C:\Windows\KMSEmulator.exe
2016-06-24 14:24 - 2016-07-06 08:53 - 00002742 _____ C:\Windows\System32\Tasks\AutoKMSDaily
2016-06-24 14:24 - 2016-07-06 08:53 - 00000204 _____ C:\Windows\Tasks\AutoKMSDaily.job
2016-06-24 14:24 - 2016-07-06 08:53 - 00000198 _____ C:\Windows\Tasks\AutoKMS.job
2016-06-24 14:24 - 2016-07-02 09:46 - 00133456 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-24 14:24 - 2016-06-24 14:24 - 00650240 _____ C:\Windows\AutoKMS.exe
2016-06-24 14:24 - 2016-06-24 14:24 - 00002430 _____ C:\Windows\System32\Tasks\AutoKMS
2016-06-24 14:24 - 2016-06-24 14:24 - 00000182 _____ C:\Windows\AutoKMS.ini
2016-06-24 14:21 - 2016-06-13 19:31 - 00484008 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-06-24 14:20 - 2016-06-24 14:20 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-06-24 14:20 - 2016-06-24 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-06-24 14:20 - 2016-06-24 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-06-24 14:19 - 2016-06-24 14:19 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2016-06-24 14:19 - 2016-06-24 14:19 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-06-24 14:18 - 2016-06-24 14:18 - 00000000 ____D C:\Windows\PCHEALTH
2016-06-24 14:18 - 2016-06-24 14:18 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2016-06-24 14:18 - 2016-06-24 14:18 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-06-24 14:17 - 2016-06-24 14:19 - 00000000 ____D C:\Windows\SHELLNEW
2016-06-24 14:17 - 2016-06-24 14:17 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-06-24 14:17 - 2016-06-24 14:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2016-06-24 14:17 - 2016-06-24 14:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-06-24 14:16 - 2016-07-02 09:39 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-06-24 14:16 - 2016-06-24 14:18 - 00000000 ____D C:\Program Files\Microsoft Office
2016-06-24 14:16 - 2016-06-24 14:16 - 00000000 ____D C:\Users\User\AppData\Local\Microsoft Help
2016-06-24 14:16 - 2016-06-24 14:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-06-24 14:15 - 2016-06-24 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-06-24 14:15 - 2016-06-24 14:15 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-06-24 14:15 - 2011-01-28 05:00 - 00080896 _____ C:\Windows\SysWOW64\ff_vfw.dll
2016-06-24 14:15 - 2011-01-28 05:00 - 00000038 _____ C:\Windows\avisplitter.ini
2016-06-24 14:15 - 2010-12-10 13:57 - 00000590 _____ C:\Windows\SysWOW64\ff_vfw.dll.manifest
2016-06-24 14:15 - 2010-12-07 15:40 - 00183808 _____ C:\Windows\SysWOW64\xvidvfw.dll
2016-06-24 14:15 - 2010-12-07 15:22 - 00810496 _____ C:\Windows\SysWOW64\xvidcore.dll
2016-06-24 14:15 - 2010-11-03 16:08 - 00237568 _____ (www.helixcommunity.org) C:\Windows\SysWOW64\yv12vfw.dll
2016-06-24 14:15 - 2010-03-15 07:31 - 00165376 _____ C:\Windows\SysWOW64\unrar.dll
2016-06-24 14:15 - 2010-01-17 13:18 - 00151552 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2016-06-24 14:15 - 2006-10-18 16:05 - 00232448 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\mp3fhg.acm
2016-06-24 14:13 - 2016-06-24 14:13 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\Users\User\AppData\Roaming\Sun
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\Users\User\AppData\LocalLow\Sun
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\Users\User\.oracle_jre_usage
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\ProgramData\Oracle
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-24 14:13 - 2016-06-24 14:13 - 00000000 ____D C:\Program Files\Java
2016-06-24 14:12 - 2016-07-05 16:25 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-06-24 14:12 - 2016-06-24 14:12 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-06-24 14:12 - 2016-06-24 14:12 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-24 14:12 - 2016-06-24 14:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-06-24 14:12 - 2016-06-24 14:12 - 00000000 ____D C:\Windows\system32\Macromed
2016-06-24 14:12 - 2016-06-24 14:12 - 00000000 ____D C:\Users\User\AppData\LocalLow\Unity
2016-06-24 14:12 - 2016-06-24 14:12 - 00000000 ____D C:\Users\User\AppData\LocalLow\Oracle
2016-06-24 14:12 - 2016-06-24 14:12 - 00000000 ____D C:\Users\User\AppData\Local\Unity
2016-06-24 14:12 - 2016-06-24 14:12 - 00000000 ____D C:\Program Files (x86)\Intel
2016-06-24 14:12 - 2012-11-14 21:57 - 10629408 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-06-24 14:12 - 2012-11-14 21:57 - 01991936 _____ C:\Windows\system32\iglhxa64.cpa
2016-06-24 14:12 - 2012-11-14 21:57 - 00189552 _____ C:\Windows\system32\Gfxres.th-TH.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00178407 _____ C:\Windows\system32\Gfxres.el-GR.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00165395 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00139909 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00136401 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00133746 _____ C:\Windows\system32\Gfxres.he-IL.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00125558 _____ C:\Windows\system32\Gfxres.it-IT.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00123230 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00122927 _____ C:\Windows\system32\Gfxres.es-ES.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00122709 _____ C:\Windows\system32\Gfxres.de-DE.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00122368 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2016-06-24 14:12 - 2012-11-14 21:57 - 00121173 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00120800 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00120366 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00119616 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00119586 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00119360 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00119067 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00118745 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00118697 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00118409 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00118058 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00114852 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00114372 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00114261 _____ C:\Windows\system32\Gfxres.da-DK.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00110211 _____ C:\Windows\system32\Gfxres.en-US.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00104044 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00102883 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2016-06-24 14:12 - 2012-11-14 21:57 - 00088576 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088576 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088576 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087552 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087040 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00087040 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00086528 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00086528 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00084992 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00084992 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00083968 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00083968 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2016-06-24 14:12 - 2012-11-14 21:57 - 00060254 _____ C:\Windows\system32\iglhxg64.vp
2016-06-24 14:12 - 2012-11-14 21:57 - 00060226 _____ C:\Windows\system32\iglhxc64.vp
2016-06-24 14:12 - 2012-11-14 21:57 - 00060015 _____ C:\Windows\system32\iglhxo64.vp
2016-06-24 14:12 - 2012-11-14 21:57 - 00005448 _____ C:\Windows\system32\iglhxs64.vp
2016-06-24 14:12 - 2012-11-14 21:57 - 00001090 _____ C:\Windows\system32\iglhxa64.vp
2016-06-24 14:12 - 2012-11-14 21:57 - 00000259 _____ C:\Windows\system32\GfxUI.exe.config
2016-06-24 14:11 - 2016-07-05 16:25 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-24 14:11 - 2016-07-01 08:46 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-24 14:11 - 2016-06-24 14:11 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-06-24 14:11 - 2012-11-16 21:56 - 03158584 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2016-06-24 14:11 - 2012-11-16 21:56 - 00511032 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2016-06-24 14:11 - 2012-11-16 21:56 - 00418360 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2016-06-24 14:11 - 2012-11-16 21:56 - 00387640 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2016-06-24 14:11 - 2012-11-16 21:56 - 00224824 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-06-24 14:11 - 2012-11-16 21:56 - 00163384 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2016-06-24 14:11 - 2012-11-14 21:57 - 15546880 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 11405824 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 06549504 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 04338688 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00830464 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00571904 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00380416 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00272384 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00244224 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00228864 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00208896 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00206336 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00188416 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00147456 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00119808 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00108544 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00090112 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v2869.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00061952 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00027648 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00023552 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-06-24 14:11 - 2012-11-14 21:57 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2016-06-24 14:10 - 2016-06-24 14:10 - 00000000 ____H C:\Users\Todos os Usuários\DP45977C.lfl
2016-06-24 14:10 - 2016-06-24 14:10 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-06-24 14:10 - 2016-06-24 14:10 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-06-24 14:10 - 2016-06-24 14:10 - 00000000 ____D C:\Program Files\Realtek
2016-06-24 14:10 - 2014-11-04 07:42 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-06-24 14:10 - 2014-11-04 07:42 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-06-24 14:10 - 2014-11-04 07:42 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-06-24 14:10 - 2014-11-04 07:42 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-06-24 14:10 - 2014-09-24 05:31 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-06-24 14:10 - 2014-09-24 05:31 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-06-24 14:10 - 2014-09-24 05:31 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-06-24 14:10 - 2014-09-24 05:31 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-06-24 14:10 - 2012-11-16 21:56 - 00154680 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-06-24 14:10 - 2012-11-14 21:57 - 00982240 _____ C:\Windows\SysWOW64\igkrng500.bin
2016-06-24 14:10 - 2012-11-14 21:57 - 00982240 _____ C:\Windows\system32\igkrng500.bin
2016-06-24 14:10 - 2012-11-14 21:57 - 00439308 _____ C:\Windows\SysWOW64\igcompkrng500.bin
2016-06-24 14:10 - 2012-11-14 21:57 - 00439308 _____ C:\Windows\system32\igcompkrng500.bin
2016-06-24 14:10 - 2012-11-14 21:57 - 00092356 _____ C:\Windows\SysWOW64\igfcg500m.bin
2016-06-24 14:10 - 2012-11-14 21:57 - 00092356 _____ C:\Windows\system32\igfcg500m.bin
2016-06-24 14:10 - 2012-08-31 13:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-06-24 14:10 - 2012-08-31 13:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-06-24 14:10 - 2012-08-31 13:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-06-24 14:10 - 2012-08-31 13:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-06-24 14:10 - 2012-08-31 13:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-06-24 14:09 - 2016-07-05 09:01 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-06-24 14:09 - 2016-07-05 09:01 - 00000000 ____D C:\ProgramData\Adobe
2016-06-24 14:09 - 2016-06-24 14:09 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2016-06-24 14:09 - 2016-06-24 14:09 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-24 14:09 - 2016-06-24 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-24 14:09 - 2015-03-30 12:27 - 04648664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-06-24 14:09 - 2015-03-30 10:14 - 01952916 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-06-24 14:09 - 2015-03-30 08:29 - 01303768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-06-24 14:09 - 2015-03-27 12:36 - 02841816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-06-24 14:09 - 2015-03-27 12:36 - 02525400 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-06-24 14:09 - 2015-03-20 13:59 - 01710296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-06-24 14:09 - 2015-03-19 07:20 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-06-24 14:09 - 2015-03-13 06:41 - 00543376 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2016-06-24 14:09 - 2015-03-13 06:40 - 00836240 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-06-24 14:09 - 2015-03-13 06:40 - 00651408 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-06-24 14:09 - 2015-03-13 06:40 - 00435344 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-06-24 14:09 - 2015-03-10 12:04 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-06-24 14:09 - 2015-03-08 06:22 - 03182104 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-06-24 14:09 - 2015-03-02 05:20 - 01558720 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-06-24 14:09 - 2015-02-27 19:10 - 05615552 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-06-24 14:09 - 2015-02-05 11:48 - 12834736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-06-24 14:09 - 2015-02-05 11:48 - 02789808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-06-24 14:09 - 2015-02-03 18:38 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-06-24 14:09 - 2015-02-03 18:38 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-06-24 14:09 - 2015-02-03 18:38 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-06-24 14:09 - 2015-02-03 18:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-06-24 14:09 - 2015-02-03 18:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-06-24 14:09 - 2015-01-30 04:58 - 02421480 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-06-24 14:09 - 2015-01-23 12:16 - 00213432 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2016-06-24 14:09 - 2015-01-19 12:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-06-24 14:09 - 2015-01-19 03:08 - 12975360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-06-24 14:09 - 2014-12-15 08:02 - 00306288 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-06-24 14:09 - 2014-12-11 02:10 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2016-06-24 14:09 - 2014-12-11 02:10 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-06-24 14:09 - 2014-12-11 02:10 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-06-24 14:09 - 2014-12-11 02:10 - 00250536 _____ (TODO: ) C:\Windows\system32\slprp64.dll
2016-06-24 14:09 - 2014-12-02 12:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-06-24 14:09 - 2014-11-11 07:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-06-24 14:09 - 2014-10-24 04:12 - 05234952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-06-24 14:09 - 2014-10-24 04:12 - 00995120 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-06-24 14:09 - 2014-10-20 09:49 - 01360640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-06-24 14:09 - 2014-08-14 13:16 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-06-24 14:09 - 2014-07-03 08:44 - 01499984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-06-24 14:09 - 2014-07-03 08:44 - 00979280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-06-24 14:09 - 2014-06-17 13:17 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-06-24 14:09 - 2014-06-09 04:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-06-24 14:09 - 2014-05-22 10:24 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2016-06-24 14:09 - 2014-04-17 11:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-06-24 14:09 - 2014-04-10 06:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-06-24 14:09 - 2014-04-10 06:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-06-24 14:09 - 2014-02-27 14:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-06-24 14:09 - 2014-01-31 11:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-06-24 14:09 - 2014-01-12 06:05 - 00086016 _____ (Nuvoton Technology Corp.) C:\Windows\system32\Drivers\nuvserial.sys
2016-06-24 14:09 - 2014-01-12 06:05 - 00023552 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\nuvserenum.sys
2016-06-24 14:09 - 2013-10-11 06:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-06-24 14:09 - 2013-10-11 05:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-06-24 14:09 - 2013-10-06 18:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-06-24 14:09 - 2013-10-06 18:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-06-24 14:09 - 2013-10-06 18:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-06-24 14:09 - 2013-08-14 09:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-06-24 14:09 - 2013-08-14 09:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-06-24 14:09 - 2013-07-23 09:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-06-24 14:09 - 2013-07-23 09:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-06-24 14:09 - 2013-06-25 06:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-06-24 14:09 - 2013-06-25 06:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-06-24 14:09 - 2013-06-25 06:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-06-24 14:09 - 2013-06-21 05:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-06-24 14:09 - 2013-04-03 08:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-06-24 14:09 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-06-24 14:09 - 2012-01-10 04:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-06-24 14:09 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-06-24 14:09 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-06-24 14:09 - 2011-09-02 08:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-06-24 14:09 - 2011-09-02 08:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-06-24 14:09 - 2011-09-02 08:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-06-24 14:09 - 2011-08-23 11:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-06-24 14:09 - 2011-05-31 03:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-06-24 14:09 - 2011-03-17 06:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-06-24 14:09 - 2011-03-07 11:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-06-24 14:09 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-06-24 14:09 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-06-24 14:09 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-06-24 14:09 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-06-24 14:09 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-06-24 14:09 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-06-24 14:09 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-06-24 14:09 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-06-24 14:09 - 2010-07-22 10:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-06-24 14:09 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-06-24 14:09 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-06-24 14:09 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-06-24 14:09 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-06-24 14:08 - 2016-06-24 14:09 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-06-24 14:08 - 2015-01-15 08:42 - 00977624 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-06-24 14:08 - 2015-01-15 08:42 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-06-24 14:08 - 2015-01-15 08:42 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-06-24 14:07 - 2016-07-06 09:35 - 00000000 ____D C:\Users\User\AppData\Roaming\WeatherTool
2016-06-24 14:07 - 2016-06-24 14:07 - 00000000 ____D C:\Users\User\AppData\Roaming\OpenCandy
2016-06-24 14:07 - 2016-06-24 14:07 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-06-24 14:07 - 2016-06-24 14:07 - 00000000 ____D C:\Program Files (x86)\WeatherTool
2016-06-24 14:07 - 2009-09-09 06:23 - 00051712 _____ (Intel Corporation) C:\Windows\system32\Drivers\flashud.sys
2016-06-24 14:04 - 2016-06-24 14:04 - 00001423 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-24 14:04 - 2016-06-24 14:04 - 00001389 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-06-24 14:04 - 2016-06-24 14:04 - 00000000 ____D C:\Users\User\AppData\Local\VirtualStore
2016-06-24 14:03 - 2016-06-24 14:03 - 00000020 ___SH C:\Users\User\ntuser.ini
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Modelos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Meus documentos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Menu Iniciar
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Documents\Minhas músicas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Documents\Minhas imagens
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Documents\Meus vídeos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Configurações locais
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\AppData\Local\Histórico
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\AppData\Local\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Ambiente de rede
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\User\Ambiente de impressão
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Modelos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\ProgramData\Modelos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\ProgramData\Documentos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-06-24 14:03 - 2016-06-24 14:03 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-06-24 13:01 - 2016-06-24 14:03 - 00000000 ____D C:\Windows\Panther
2016-06-24 12:43 - 2016-06-24 12:43 - 00000000 ____D C:\Windows.old
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-07-06 11:04 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-06 11:04 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-06 09:09 - 2009-07-14 14:55 - 00702882 _____ C:\Windows\system32\prfh0416.dat
2016-07-06 09:09 - 2009-07-14 14:55 - 00145668 _____ C:\Windows\system32\prfc0416.dat
2016-07-06 09:09 - 2009-07-14 02:13 - 01626900 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-06 09:09 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-06 08:52 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-02 18:01 - 2009-07-14 00:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-07-02 18:01 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-07-02 10:35 - 2009-07-14 01:45 - 05099672 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-02 09:30 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-06-30 16:20 - 2009-07-14 02:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-06-24 14:19 - 2009-07-14 02:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-06-24 14:17 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-06-24 14:17 - 2009-07-13 23:34 - 00000478 _____ C:\Windows\win.ini
2016-06-24 14:04 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache
2016-06-24 14:03 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Windows NT
2016-06-24 13:07 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\sysprep
2016-06-24 13:01 - 2009-07-14 02:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
==================== Arquivos na raiz de alguns diretórios =======
2016-07-02 13:34 - 2016-07-02 15:05 - 0000132 _____ () C:\Users\User\AppData\Roaming\Preferências do formato PNG do Adobe CS5
2016-07-01 09:19 - 2016-07-01 09:19 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-06-24 14:10 - 2016-06-24 14:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Alguns arquivos em TEMP:
====================
C:\Users\User\AppData\Local\Temp\DGFeKMOtFZ.DLL
C:\Users\User\AppData\Local\Temp\FnytCIvyUpXDtfLtDaqn.DLL
C:\Users\User\AppData\Local\Temp\GdnfVxuiAfFobtOKxtWg.DLL
C:\Users\User\AppData\Local\Temp\HuHxTdXXmNCUBrXEAaJO.DLL
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-07-01 10:07
==================== Fim de FRST.txt ============================