cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 25-07-2016
Executado por HDsilva (administrador) em HDSILVA-PC (25-07-2016 16:02:00)
Executando a partir de C:\Users\HDsilva\Downloads
Perfis Carregados: HDsilva (Perfis Disponíveis: HDsilva)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\WeatherTool\2.0.1.11389\WeatherService.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{3B942F61-1A4C-E64E-A05A-0B3C981BECE0}\YSearchUtilSVC.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2472048 2010-08-11] (VIA)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-07-19] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2010-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-20] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2016-06-22] (Caixa Economica Federal)
HKU\S-1-5-21-2764714437-3486830612-683997084-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-2764714437-3486830612-683997084-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd)
HKU\S-1-5-21-2764714437-3486830612-683997084-1000\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1903328 2016-06-22] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-19] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{50AD3A80-1FC4-4970-B881-E86F2BF0538C}: [NameServer] 208.76.222.222,208.67.220.220
Tcpip\..\Interfaces\{50AD3A80-1FC4-4970-B881-E86F2BF0538C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2764714437-3486830612-683997084-1000 -> {C8363821-A6D4-430D-B0CD-B47564DB99B8} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-07-19] (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-19] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-07-19] (AVAST Software)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2016-06-22] (Caixa Economica Federal)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-19] (Oracle Corporation)
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2013-04-16] (Belarc, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\HDsilva\AppData\Roaming\Mozilla\Firefox\Profiles\9laq2f6h.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-19] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-19] (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\buscape.xml [2012-06-14]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\mercadolivre.xml [2012-06-14]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-19]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-07-19]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-19]
CHR Extension: (Google Docs) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-19]
CHR Extension: (Google Drive) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-19]
CHR Extension: (YouTube) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-19]
CHR Extension: (Planilhas do Google) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-19]
CHR Extension: (Documentos Google off-line) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-19]
CHR Extension: (Avast Online Security) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-07-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-19]
CHR Extension: (Gmail) - C:\Users\HDsilva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-19]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Arquivo não assinado]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-19] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [223600 2016-07-19] (AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-05-30] (Disc Soft Ltd)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [631520 2016-06-22] (GAS Tecnologia)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado]
R2 TheDesktopWeatherService; C:\Program Files (x86)\WeatherTool\2.0.1.11389\WeatherService.exe [150640 2016-05-30] ()
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-04-09] (Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{3B942F61-1A4C-E64E-A05A-0B3C981BECE0}\YSearchUtilSvc.exe [182736 2016-05-16] (Yahoo Inc.)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-07-19] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-07-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-07-19] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [28312 2016-07-19] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [572120 2016-07-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-07-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-07-19] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-07-19] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-07-19] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-07-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [290088 2016-07-19] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-07-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-07-20] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2016-06-22] (GAS Tecnologia)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-06-22] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-07-25] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-25 16:02 - 2016-07-25 16:02 - 00014322 _____ C:\Users\HDsilva\Downloads\FRST.txt
2016-07-25 16:01 - 2016-07-25 16:02 - 00000000 ____D C:\FRST
2016-07-25 16:01 - 2016-07-25 16:01 - 02394112 _____ (Farbar) C:\Users\HDsilva\Downloads\FRST64.exe
2016-07-25 16:00 - 2016-07-25 16:00 - 01744384 _____ (Farbar) C:\Users\HDsilva\Downloads\FRST.exe
2016-07-25 15:54 - 2016-07-25 15:54 - 14572000 _____ (Microsoft Corporation) C:\Users\HDsilva\Downloads\vc_redist.x64.exe
2016-07-25 15:53 - 2016-07-25 15:53 - 00000000 ___HT C:\Windows\wusa.lock
2016-07-25 15:53 - 2016-07-25 15:53 - 00000000 ____D C:\88eece999f794a5a69
2016-07-25 15:52 - 2016-07-25 15:52 - 01034556 _____ C:\Users\HDsilva\Downloads\Windows6.1-KB2999226-x64.msu
2016-07-25 15:50 - 2016-07-25 15:51 - 00000000 ____D C:\Users\HDsilva\Downloads\citra-latest-windows-amd64
2016-07-22 18:09 - 2016-07-22 18:09 - 00001024 _____ C:\.rnd
2016-07-22 18:08 - 2016-07-25 15:07 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-07-22 18:08 - 2016-07-22 18:08 - 00000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2016-07-22 18:08 - 2016-07-22 18:08 - 00000000 ___HD C:\Program Files (x86)\Diebold
2016-07-22 18:08 - 2016-07-22 18:08 - 00000000 ____D C:\Program Files\Diebold
2016-07-22 18:08 - 2015-03-18 10:23 - 00103640 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2016-07-22 18:07 - 2016-07-25 15:07 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-07-22 18:07 - 2016-07-25 15:07 - 00000000 ____D C:\ProgramData\GbPlugin
2016-07-22 18:07 - 2016-07-25 15:07 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-07-22 18:07 - 2016-07-22 18:07 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2016-07-22 18:07 - 2016-07-22 18:07 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2016-07-22 18:05 - 2016-07-22 18:05 - 00001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-22 18:05 - 2016-07-22 18:05 - 00001130 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-22 18:05 - 2016-07-22 18:05 - 00000000 ____D C:\Users\Todos os Usuários\Mozilla
2016-07-22 18:05 - 2016-07-22 18:05 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Mozilla
2016-07-22 18:05 - 2016-07-22 18:05 - 00000000 ____D C:\Users\HDsilva\AppData\Local\Mozilla
2016-07-22 18:05 - 2016-07-22 18:05 - 00000000 ____D C:\ProgramData\Mozilla
2016-07-22 18:05 - 2016-07-22 18:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-22 18:04 - 2016-07-22 18:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-22 18:00 - 2016-07-23 15:39 - 02103538 _____ C:\Users\HDsilva\Desktop\Culto Homens 23.07.16.pptx
2016-07-22 14:49 - 2016-07-25 08:16 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-07-22 14:49 - 2016-07-25 08:16 - 00000000 ____D C:\ProgramData\Origin
2016-07-22 14:49 - 2016-07-22 14:49 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-07-22 14:49 - 2016-07-22 14:49 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Origin
2016-07-22 14:49 - 2016-07-22 14:49 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-07-22 10:59 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-07-22 10:59 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-07-22 10:57 - 2016-07-22 10:57 - 00001246 _____ C:\Windows\SysWOW64\ealregsnapshot1.reg
2016-07-22 10:57 - 2016-07-22 10:57 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-07-22 10:56 - 2016-07-22 10:56 - 00000000 ____D C:\Users\HDsilva\AppData\Local\Downloaded Installations
2016-07-22 10:38 - 2016-07-23 14:08 - 00000000 ____D C:\Users\HDsilva\Documents\Dolphin Emulator
2016-07-22 10:37 - 2016-07-22 10:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin
2016-07-22 10:37 - 2016-07-22 10:38 - 00000000 ____D C:\Program Files\Dolphin
2016-07-22 10:28 - 2016-07-22 10:28 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-22 10:28 - 2016-07-22 10:28 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-22 10:27 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-07-22 10:27 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-07-22 10:22 - 2016-07-25 10:06 - 00000000 ____D C:\Users\HDsilva\Desktop\Games
2016-07-21 12:40 - 2016-07-21 12:40 - 00001972 _____ C:\Users\HDsilva\Desktop\DVD Decrypter.lnk
2016-07-21 12:40 - 2016-07-21 12:40 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
2016-07-21 12:40 - 2016-07-21 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Decrypter
2016-07-21 12:40 - 2016-07-21 12:40 - 00000000 ____D C:\Program Files (x86)\DVD Decrypter
2016-07-21 09:31 - 2016-07-21 09:32 - 00002562 _____ C:\Windows\diagwrn.xml
2016-07-21 09:31 - 2016-07-21 09:32 - 00001908 _____ C:\Windows\diagerr.xml
2016-07-20 09:06 - 2016-07-20 09:22 - 00000000 ____D C:\Users\HDsilva\AppData\Local\Adobe
2016-07-20 09:05 - 2016-07-20 09:22 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-07-20 09:05 - 2016-07-20 09:22 - 00000000 ____D C:\ProgramData\Adobe
2016-07-20 09:05 - 2016-07-20 09:05 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2016-07-20 09:05 - 2016-07-20 09:05 - 00002014 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2016-07-20 09:05 - 2016-07-20 09:05 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-07-20 08:57 - 2016-07-20 08:57 - 00000000 ____D C:\Users\HDsilva\AppData\Local\ElevatedDiagnostics
2016-07-20 08:55 - 2016-07-20 08:55 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-07-20 08:54 - 2016-07-25 15:49 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\WeatherTool
2016-07-20 08:54 - 2016-07-20 08:54 - 00000000 ____D C:\Users\Public\Documents\Tools
2016-07-20 08:54 - 2016-07-20 08:54 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-07-20 08:54 - 2016-07-20 08:54 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-07-20 08:54 - 2016-07-20 08:54 - 00000000 ____D C:\Program Files (x86)\WeatherTool
2016-07-20 08:53 - 2016-07-22 10:50 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\DAEMON Tools Lite
2016-07-20 08:53 - 2016-07-20 08:55 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-07-20 08:53 - 2016-07-20 08:53 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-07-20 08:53 - 2016-07-20 08:53 - 00001773 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-07-20 08:53 - 2016-07-20 08:53 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-07-20 08:53 - 2016-07-20 08:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-07-20 08:53 - 2016-07-20 08:53 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-07-19 21:05 - 2016-07-19 21:05 - 00008192 __RSH C:\BOOTSECT.BAK
2016-07-19 21:05 - 2010-11-21 00:23 - 00383786 __RSH C:\bootmgr
2016-07-19 20:35 - 2016-07-19 20:35 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-07-19 19:45 - 2016-07-19 19:45 - 00000000 ____D C:\Users\HDsilva\AppData\Local\cache
2016-07-19 19:44 - 2016-07-19 19:44 - 00000000 ____D C:\Users\Todos os Usuários\FLEXnet
2016-07-19 19:44 - 2016-07-19 19:44 - 00000000 ____D C:\ProgramData\FLEXnet
2016-07-19 19:42 - 2016-07-19 19:42 - 00002404 _____ C:\Users\Public\Desktop\AutoCAD Architecture 2014 - English (US Metric).lnk
2016-07-19 19:41 - 2016-07-19 19:42 - 00000000 ____D C:\Users\HDsilva\Documents\Autodesk
2016-07-19 19:40 - 2016-07-19 19:40 - 00000153 _____ C:\Users\Todos os Usuários\Microsoft.SqlServer.Compact.351.32.bc
2016-07-19 19:40 - 2016-07-19 19:40 - 00000153 _____ C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2016-07-19 19:40 - 2016-07-19 19:40 - 00000000 ____D C:\Users\HDsilva\Documents\Inventor Server SDK ACA 2014
2016-07-19 19:39 - 2016-07-19 19:39 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2016-07-19 19:37 - 2016-07-19 19:43 - 00000000 ____D C:\Users\HDsilva\AppData\Local\Autodesk
2016-07-19 19:37 - 2016-07-19 19:42 - 00000000 ____D C:\Program Files\Autodesk
2016-07-19 19:37 - 2016-07-19 19:40 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2016-07-19 19:37 - 2016-07-19 19:37 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2016-07-19 19:36 - 2016-07-19 19:36 - 00000000 ____D C:\Program Files (x86)\Autodesk
2016-07-19 19:32 - 2016-07-19 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2016-07-19 19:30 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-07-19 19:30 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-07-19 19:30 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-07-19 19:30 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-07-19 19:30 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-07-19 19:30 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-07-19 19:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-07-19 19:30 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-07-19 19:30 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-07-19 19:30 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-07-19 19:30 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-07-19 19:30 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-07-19 19:30 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-07-19 19:30 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-07-19 19:30 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-07-19 19:26 - 2016-07-19 19:55 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2016-07-19 19:26 - 2016-07-19 19:55 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Autodesk
2016-07-19 19:26 - 2016-07-19 19:55 - 00000000 ____D C:\ProgramData\Autodesk
2016-07-19 19:22 - 2016-07-19 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-07-19 19:21 - 2016-07-19 19:21 - 00000000 ____D C:\Windows\PCHEALTH
2016-07-19 19:21 - 2016-07-19 19:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-07-19 19:21 - 2016-07-19 19:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2016-07-19 19:20 - 2016-07-19 19:20 - 00000000 ____D C:\Program Files\Microsoft Office
2016-07-19 19:19 - 2016-07-19 19:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-07-19 19:17 - 2016-07-19 19:17 - 00003230 _____ C:\Windows\System32\Tasks\{39FAE2EE-A4A6-4754-8EEA-1D560C2C2196}
2016-07-19 19:04 - 2016-07-19 19:26 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-07-19 19:04 - 2016-07-19 19:04 - 00000000 ____D C:\Users\HDsilva\AppData\Local\Microsoft Help
2016-07-19 19:03 - 2016-07-19 19:03 - 00000000 __RHD C:\MSOCache
2016-07-19 17:39 - 2016-07-19 17:39 - 00000000 ____D C:\Users\HDsilva\AppData\Local\YSearchUtil
2016-07-19 17:39 - 2016-07-19 17:39 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2016-07-19 17:36 - 2016-07-19 17:36 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-07-19 17:36 - 2016-07-19 17:36 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Sun
2016-07-19 17:36 - 2016-07-19 17:36 - 00000000 ____D C:\Users\HDsilva\AppData\LocalLow\Sun
2016-07-19 17:36 - 2016-07-19 17:36 - 00000000 ____D C:\Users\HDsilva\.oracle_jre_usage
2016-07-19 17:36 - 2016-07-19 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-07-19 17:35 - 2016-07-19 17:35 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-07-19 17:35 - 2016-07-19 17:35 - 00000000 ____D C:\ProgramData\Oracle
2016-07-19 17:35 - 2016-07-19 17:35 - 00000000 ____D C:\Program Files (x86)\Java
2016-07-19 17:28 - 2016-07-19 17:28 - 00000000 ____D C:\Users\HDsilva\AppData\LocalLow\Oracle
2016-07-19 17:26 - 2016-07-23 14:26 - 00000000 ____D C:\Users\HDsilva\AppData\LocalLow\uTorrent
2016-07-19 17:25 - 2016-07-19 17:25 - 00000000 __SHD C:\Users\HDsilva\AppData\LocalLow\EmieUserList
2016-07-19 17:25 - 2016-07-19 17:25 - 00000000 __SHD C:\Users\HDsilva\AppData\LocalLow\EmieSiteList
2016-07-19 17:25 - 2016-07-19 17:25 - 00000000 __SHD C:\Users\HDsilva\AppData\LocalLow\EmieBrowserModeList
2016-07-19 17:22 - 2016-07-23 15:57 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\uTorrent
2016-07-19 17:21 - 2016-07-19 17:21 - 02530304 _____ (BitTorrent Inc.) C:\Users\HDsilva\Desktop\uTorrent.exe
2016-07-19 17:17 - 2016-07-19 17:17 - 00001922 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2016-07-19 17:17 - 2016-07-19 17:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-07-19 17:16 - 2016-07-19 17:16 - 00572120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2016-07-19 17:16 - 2016-07-19 17:16 - 00028312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2016-07-19 17:16 - 2016-07-19 17:10 - 00390984 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-07-19 17:14 - 2016-07-19 17:14 - 00000000 ____D C:\Users\HDsilva\AppData\Local\CEF
2016-07-19 17:14 - 2016-07-19 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-07-19 17:14 - 2016-07-19 17:14 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-07-19 17:14 - 2014-03-24 15:00 - 00127488 _____ C:\Windows\system32\ff_vfw.dll
2016-07-19 17:14 - 2014-03-24 15:00 - 00112640 _____ C:\Windows\SysWOW64\ff_vfw.dll
2016-07-19 17:14 - 2013-12-01 10:10 - 00257624 _____ C:\Windows\system32\unrar64.dll
2016-07-19 17:14 - 2013-12-01 10:10 - 00218200 _____ C:\Windows\SysWOW64\unrar.dll
2016-07-19 17:14 - 2013-03-17 15:22 - 03554304 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll
2016-07-19 17:14 - 2013-03-17 14:21 - 03649536 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2016-07-19 17:14 - 2012-07-21 08:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2016-07-19 17:14 - 2012-07-21 08:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2016-07-19 17:14 - 2011-12-07 15:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2016-07-19 17:14 - 2011-12-07 15:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2016-07-19 17:14 - 2011-06-24 12:45 - 00258560 _____ C:\Windows\system32\xvidvfw.dll
2016-07-19 17:14 - 2011-06-24 12:44 - 00243200 _____ C:\Windows\SysWOW64\xvidvfw.dll
2016-07-19 17:14 - 2011-06-24 12:31 - 00703488 _____ C:\Windows\system32\xvidcore.dll
2016-07-19 17:14 - 2011-06-24 12:28 - 00650752 _____ C:\Windows\SysWOW64\xvidcore.dll
2016-07-19 17:13 - 2016-07-19 17:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-07-19 17:12 - 2016-07-19 17:17 - 00003900 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1468959173
2016-07-19 17:12 - 2016-07-19 17:12 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-07-19 17:12 - 2016-07-19 17:12 - 00001037 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-07-19 17:12 - 2016-07-19 17:12 - 00001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-07-19 17:12 - 2016-07-19 17:12 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-19 17:12 - 2016-07-19 17:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-07-19 17:11 - 2016-07-19 17:16 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-07-19 17:11 - 2016-07-19 17:11 - 00473592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-07-19 17:11 - 2016-07-19 17:11 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-07-19 17:11 - 2016-07-19 17:11 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\AVAST Software
2016-07-19 17:11 - 2016-07-19 17:11 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-19 17:11 - 2016-07-19 17:10 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-07-19 17:11 - 2016-07-19 17:10 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-07-19 17:11 - 2016-07-19 17:10 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-07-19 17:11 - 2016-07-19 17:10 - 00290088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-07-19 17:11 - 2016-07-19 17:10 - 00162904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-07-19 17:11 - 2016-07-19 17:10 - 00108304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-07-19 17:11 - 2016-07-19 17:10 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-07-19 17:11 - 2016-07-19 17:10 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-07-19 17:11 - 2016-07-19 17:10 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-07-19 17:10 - 2016-07-19 17:10 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-07-19 17:09 - 2016-07-19 17:12 - 00000000 ____D C:\Users\Todos os Usuários\AVAST Software
2016-07-19 17:09 - 2016-07-19 17:12 - 00000000 ____D C:\ProgramData\AVAST Software
2016-07-19 17:09 - 2016-07-19 17:12 - 00000000 ____D C:\Program Files\AVAST Software
2016-07-19 17:09 - 2016-07-19 17:09 - 00016138 _____ C:\Windows\system32\results.xml
2016-07-19 17:07 - 2016-07-19 17:07 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e
2016-07-19 17:06 - 2011-08-11 14:54 - 00104560 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\L1C62x64.sys
2016-07-19 17:05 - 2016-07-19 17:05 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-07-19 17:02 - 2016-07-25 08:17 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-07-19 17:02 - 2016-07-19 17:02 - 00001214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-07-19 17:02 - 2016-07-19 17:02 - 00001202 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-07-19 17:02 - 2010-08-04 21:17 - 01342064 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2016-07-19 17:02 - 2010-08-04 21:17 - 00992368 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2016-07-19 17:02 - 2010-08-04 21:17 - 00549488 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2016-07-19 17:02 - 2010-08-04 21:17 - 00199280 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2016-07-19 17:02 - 2010-08-04 21:17 - 00091760 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2016-07-19 17:02 - 2010-08-04 21:17 - 00083056 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2016-07-19 17:02 - 2007-12-04 10:28 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2016-07-19 17:02 - 2007-12-04 10:28 - 00082432 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
2016-07-19 17:01 - 2016-07-19 17:02 - 00000000 ____D C:\Program Files (x86)\VIA
2016-07-19 17:01 - 2007-04-11 15:35 - 00414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll
2016-07-19 16:59 - 2016-07-19 16:59 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\WinRAR
2016-07-19 16:59 - 2010-08-04 21:17 - 00248944 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2016-07-19 16:58 - 2016-07-19 16:58 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-19 16:58 - 2016-07-19 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-19 16:58 - 2016-07-19 16:58 - 00000000 ____D C:\Program Files\WinRAR
2016-07-19 16:57 - 2016-07-19 17:05 - 00000000 ____D C:\Program Files (x86)\Intel
2016-07-19 16:57 - 2016-07-19 17:05 - 00000000 ____D C:\Intel
2016-07-19 16:57 - 2011-04-15 16:00 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2016-07-19 16:56 - 2016-07-19 16:56 - 00000000 ____D C:\Users\Todos os Usuários\HP
2016-07-19 16:56 - 2016-07-19 16:56 - 00000000 ____D C:\ProgramData\HP
2016-07-19 16:48 - 2016-07-19 16:48 - 00002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-19 16:48 - 2016-07-19 16:48 - 00002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-19 16:47 - 2016-07-25 15:59 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-19 16:47 - 2016-07-25 15:06 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-19 16:47 - 2016-07-19 20:56 - 00000000 ____D C:\Users\HDsilva\AppData\Local\Google
2016-07-19 16:47 - 2016-07-19 16:54 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-19 16:47 - 2016-07-19 16:54 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-19 16:47 - 2016-07-19 16:48 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-19 16:46 - 2016-07-19 16:46 - 00000000 __SHD C:\Users\HDsilva\AppData\Local\EmieUserList
2016-07-19 16:46 - 2016-07-19 16:46 - 00000000 __SHD C:\Users\HDsilva\AppData\Local\EmieSiteList
2016-07-19 16:46 - 2016-07-19 16:46 - 00000000 __SHD C:\Users\HDsilva\AppData\Local\EmieBrowserModeList
2016-07-19 16:45 - 2016-07-19 16:45 - 00002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
2016-07-19 16:45 - 2016-07-19 16:45 - 00000000 ____D C:\Program Files (x86)\Belarc
2016-07-19 16:30 - 2016-07-23 10:28 - 00117792 _____ C:\Users\HDsilva\AppData\Local\GDIPFONTCACHEV1.DAT
2016-07-19 16:30 - 2016-07-19 16:30 - 00000017 _____ C:\Users\HDsilva\AppData\Local\resmon.resmoncfg
2016-07-19 16:27 - 2016-07-19 16:27 - 00338604 __RSH C:\VRMQL
2016-07-19 16:16 - 2016-07-20 09:22 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Adobe
2016-07-19 16:16 - 2016-07-19 17:36 - 00000000 ____D C:\Users\HDsilva
2016-07-19 16:16 - 2016-07-19 16:16 - 00001389 _____ C:\Users\HDsilva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-07-19 16:16 - 2016-07-19 16:16 - 00000020 ___SH C:\Users\HDsilva\ntuser.ini
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Modelos
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Meus documentos
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Menu Iniciar
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Documents\Minhas músicas
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Documents\Minhas imagens
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Documents\Meus vídeos
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Dados de aplicativos
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Configurações locais
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\AppData\Local\Histórico
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\AppData\Local\Dados de aplicativos
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Ambiente de rede
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 _SHDL C:\Users\HDsilva\Ambiente de impressão
2016-07-19 16:16 - 2016-07-19 16:16 - 00000000 ____D C:\Users\HDsilva\AppData\Local\VirtualStore
2016-07-19 16:16 - 2011-04-12 05:28 - 00000000 ____D C:\Users\HDsilva\AppData\Roaming\Media Center Programs
2016-07-19 16:14 - 2015-03-11 18:48 - 122905856 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Modelos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\ProgramData\Modelos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\ProgramData\Documentos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-07-19 16:11 - 2016-07-19 16:11 - 00000000 _SHDL C:\Arquivos de Programas
2016-07-19 16:07 - 2016-07-19 16:07 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-07-19 16:06 - 2016-07-19 16:06 - 00000000 ____D C:\Windows\CSC

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-25 15:43 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-07-25 15:15 - 2009-07-14 01:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-25 15:15 - 2009-07-14 01:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-25 15:06 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-25 08:17 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-23 12:21 - 2015-04-09 06:54 - 00720208 _____ C:\Windows\system32\prfh0816.dat
2016-07-23 12:21 - 2015-04-09 06:54 - 00152160 _____ C:\Windows\system32\prfc0816.dat
2016-07-23 12:21 - 2015-04-09 06:53 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2016-07-23 12:21 - 2015-04-09 06:53 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2016-07-23 12:21 - 2015-04-09 06:51 - 00734688 _____ C:\Windows\system32\perfh013.dat
2016-07-23 12:21 - 2015-04-09 06:51 - 00152356 _____ C:\Windows\system32\perfc013.dat
2016-07-23 12:21 - 2015-04-09 06:50 - 00731236 _____ C:\Windows\system32\perfh010.dat
2016-07-23 12:21 - 2015-04-09 06:50 - 00146100 _____ C:\Windows\system32\perfc010.dat
2016-07-23 12:21 - 2015-04-09 06:48 - 00736906 _____ C:\Windows\system32\perfh00C.dat
2016-07-23 12:21 - 2015-04-09 06:48 - 00148834 _____ C:\Windows\system32\perfc00C.dat
2016-07-23 12:21 - 2015-04-09 06:47 - 00736646 _____ C:\Windows\system32\perfh00A.dat
2016-07-23 12:21 - 2015-04-09 06:47 - 00157728 _____ C:\Windows\system32\perfc00A.dat
2016-07-23 12:21 - 2015-04-09 06:45 - 00688398 _____ C:\Windows\system32\perfh007.dat
2016-07-23 12:21 - 2015-04-09 06:45 - 00148370 _____ C:\Windows\system32\perfc007.dat
2016-07-23 12:21 - 2009-07-14 02:13 - 06888690 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-23 12:21 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-23 10:26 - 2009-07-14 01:45 - 00416048 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-19 21:05 - 2009-07-14 02:32 - 00032768 _____ C:\Windows\system32\config\BCD-Template
2016-07-19 19:40 - 2009-07-14 02:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2016-07-19 19:29 - 2015-04-09 08:48 - 06731096 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-07-19 19:29 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-19 19:25 - 2011-04-12 05:28 - 00000000 ____D C:\Windows\ShellNew
2016-07-19 19:19 - 2009-07-13 23:34 - 00000478 _____ C:\Windows\win.ini
2016-07-19 19:15 - 2009-07-14 02:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-07-19 16:32 - 2009-07-14 00:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-07-19 16:16 - 2015-04-09 18:41 - 00000000 ____D C:\Windows\Panther
2016-07-19 16:16 - 2009-07-14 01:45 - 00000000 ____D C:\Windows\Setup
2016-07-19 16:11 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache
2016-07-19 16:11 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Windows NT

==================== Arquivos na raiz de alguns diretórios =======

2016-07-19 16:30 - 2016-07-19 16:30 - 0000017 _____ () C:\Users\HDsilva\AppData\Local\resmon.resmoncfg
2016-07-19 19:40 - 2016-07-19 19:40 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Alguns arquivos em TEMP:
====================
C:\Users\HDsilva\AppData\Local\Temp\AcDeltree.exe
C:\Users\HDsilva\AppData\Local\Temp\EAD146A.exe
C:\Users\HDsilva\AppData\Local\Temp\nsqC544.tmp.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2015-04-09 08:41

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité