cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 15-08-2016 01
Executado por UniTecFoz (administrador) em UNITECFOZ-PC (15-08-2016 18:16:52)
Executando a partir de C:\Users\UniTecFoz\Downloads
Perfis Carregados: UniTecFoz (Perfis Disponíveis: UniTecFoz)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Innovative Solutions) C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
(Innovative Solutions) C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe
() C:\Program Files\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(BitTorrent Inc.) C:\Users\UniTecFoz\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\UniTecFoz\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe
(BitTorrent Inc.) C:\Users\UniTecFoz\AppData\Roaming\uTorrent\updates\3.4.8_42449\utorrentie.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-07-18] (Adobe Systems Incorporated)
HKU\S-1-5-21-3265571620-410194815-1194372197-1000\...\Run: [uTorrent] => C:\Users\UniTecFoz\AppData\Roaming\uTorrent\uTorrent.exe [2370560 2016-08-15] (BitTorrent Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-05-22] ()
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{18C32C2A-FDD4-47F0-BADA-F4C6D6DFC73D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B007ED28-29D7-41FE-AF2C-A22C2C87E1F5}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_iobitfs_16_32¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0FyCyDtBtCyB0EyC0AtB0Czz0F0DtN0D0Tzu0StCyCzzyCtN1L2XzutAtFtByEtFyCtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyB0Azy0A0D0CtC0EtGyCyEtCtAtG0EyC0DtDtGtByE0C0CtGyDtCyCtAtA0DtCyDtByC0FyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzztB0E0Azyzy0CyCtGyE0C0DyDtGyE0D0EtBtG0ByC0FyBtG0C0EtD0C0DzzyDyBtByD0DtB2QtN0A0LzuyE%26cr%3D401211349%26a%3Dwncy_iobitfs_16_32%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKU\S-1-5-21-3265571620-410194815-1194372197-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_iobitfs_16_32¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0FyCyDtBtCyB0EyC0AtB0Czz0F0DtN0D0Tzu0StCyCzzyCtN1L2XzutAtFtByEtFyCtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyB0Azy0A0D0CtC0EtGyCyEtCtAtG0EyC0DtDtGtByE0C0CtGyDtCyCtAtA0DtCyDtByC0FyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzztB0E0Azyzy0CyCtGyE0C0DyDtGyE0D0EtBtG0ByC0FyBtG0C0EtD0C0DzzyDyBtByD0DtB2QtN0A0LzuyE%26cr%3D401211349%26a%3Dwncy_iobitfs_16_32%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_iobitfs_16_32¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0FyCyDtBtCyB0EyC0AtB0Czz0F0DtN0D0Tzu0StCyCzzyCtN1L2XzutAtFtByEtFyCtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyB0Azy0A0D0CtC0EtGyCyEtCtAtG0EyC0DtDtGtByE0C0CtGyDtCyCtAtA0DtCyDtByC0FyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzztB0E0Azyzy0CyCtGyE0C0DyDtGyE0D0EtBtG0ByC0FyBtG0C0EtD0C0DzzyDyBtByD0DtB2QtN0A0LzuyE%26cr%3D401211349%26a%3Dwncy_iobitfs_16_32%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_iobitfs_16_32¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0FyCyDtBtCyB0EyC0AtB0Czz0F0DtN0D0Tzu0StCyCzzyCtN1L2XzutAtFtByEtFyCtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyB0Azy0A0D0CtC0EtGyCyEtCtAtG0EyC0DtDtGtByE0C0CtGyDtCyCtAtA0DtCyDtByC0FyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzztB0E0Azyzy0CyCtGyE0C0DyDtGyE0D0EtBtG0ByC0FyBtG0C0EtD0C0DzzyDyBtByD0DtB2QtN0A0LzuyE%26cr%3D401211349%26a%3Dwncy_iobitfs_16_32%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3265571620-410194815-1194372197-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_iobitfs_16_32¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0FyCyDtBtCyB0EyC0AtB0Czz0F0DtN0D0Tzu0StCyCzzyCtN1L2XzutAtFtByEtFyCtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyB0Azy0A0D0CtC0EtGyCyEtCtAtG0EyC0DtDtGtByE0C0CtGyDtCyCtAtA0DtCyDtByC0FyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzztB0E0Azyzy0CyCtGyE0C0DyDtGyE0D0EtBtG0ByC0FyBtG0C0EtD0C0DzzyDyBtByD0DtB2QtN0A0LzuyE%26cr%3D401211349%26a%3Dwncy_iobitfs_16_32%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3265571620-410194815-1194372197-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_iobitfs_16_32¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzuzytD0FyCyDtBtCyB0EyC0AtB0Czz0F0DtN0D0Tzu0StCyCzzyCtN1L2XzutAtFtByEtFyCtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyB0Azy0A0D0CtC0EtGyCyEtCtAtG0EyC0DtDtGtByE0C0CtGyDtCyCtAtA0DtCyDtByC0FyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzztB0E0Azyzy0CyCtGyE0C0DyDtGyE0D0EtBtG0ByC0FyBtG0C0EtD0C0DzzyDyBtByD0DtB2QtN0A0LzuyE%26cr%3D401211349%26a%3Dwncy_iobitfs_16_32%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-13] (Google Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-07-18] (Adobe Systems)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-13]
CHR Extension: (Google Docs) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-13]
CHR Extension: (Google Drive) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-13]
CHR Extension: (YouTube) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-13]
CHR Extension: (Planilhas do Google) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-13]
CHR Extension: (Documentos Google off-line) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-13]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-13]
CHR Extension: (Search Manager) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej [2016-08-13]
CHR Extension: (Gmail) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-13]
CHR Extension: (Chrome Media Router) - C:\Users\UniTecFoz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-13]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3265571620-410194815-1194372197-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [741568 2016-07-18] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159832 2016-08-12] (Adobe Systems, Incorporated)
R3 InnovativeSolutions_monitor; C:\Program Files\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe [1064520 2016-04-11] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 AR9271; C:\Windows\System32\DRIVERS\athuw.sys [1763584 2013-06-28] (Atheros Communications, Inc.)
R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [354040 2016-08-13] (ASMedia Technology Inc)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-08-13] (REALiX(tm))

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-15 18:13 - 2016-08-15 18:13 - 00021851 _____ C:\Users\UniTecFoz\Downloads\Addition.txt
2016-08-15 18:12 - 2016-08-15 18:16 - 00012740 _____ C:\Users\UniTecFoz\Downloads\FRST.txt
2016-08-15 18:12 - 2016-08-15 18:16 - 00000000 ____D C:\FRST
2016-08-15 18:11 - 2016-08-15 18:12 - 01744896 _____ (Farbar) C:\Users\UniTecFoz\Downloads\FRST.exe
2016-08-15 18:05 - 2016-08-15 18:05 - 00002719 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.3 (32 Bit).lnk
2016-08-15 17:49 - 2016-08-15 17:53 - 00000000 ____D C:\Users\UniTecFoz\AppData\LocalLow\uTorrent
2016-08-15 17:27 - 2016-08-15 17:27 - 00000034 _____ C:\Users\UniTecFoz\AppData\Roaming\AdobeWLCMCache.dat
2016-08-15 17:27 - 2016-08-15 17:27 - 00000000 ____D C:\Users\UniTecFoz\AppData\LocalLow\Adobe
2016-08-15 17:27 - 2016-08-15 17:27 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\AMD
2016-08-15 17:23 - 2016-08-15 17:23 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe
2016-08-15 17:23 - 2016-08-15 17:23 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-15 17:15 - 2016-08-15 17:15 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\Macromedia
2016-08-15 16:10 - 2016-08-15 17:13 - 00000000 ____D C:\Users\UniTecFoz\Downloads\Adobe Illustrator CC 2014
2016-08-15 16:09 - 2016-08-15 16:10 - 00000000 ___SD C:\Users\UniTecFoz\AppData\LocalLow\Temp
2016-08-15 16:06 - 2016-08-15 18:15 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\uTorrent
2016-08-15 16:05 - 2016-08-15 16:05 - 02370560 _____ (BitTorrent Inc.) C:\Users\UniTecFoz\Downloads\uTorrent.exe
2016-08-15 16:04 - 2016-08-15 16:04 - 00032940 _____ C:\Users\UniTecFoz\Downloads\Adobe_Illustrator_CC_2014.torrent
2016-08-15 15:59 - 2016-08-15 17:53 - 00000338 _____ C:\Windows\Tasks\Health-Check-auto.job
2016-08-15 15:59 - 2016-08-15 17:48 - 00000340 _____ C:\Windows\Tasks\Health-Check-deep.job
2016-08-15 15:59 - 2016-08-15 17:48 - 00000332 _____ C:\Windows\Tasks\Health-Check.job
2016-08-15 15:59 - 2016-08-15 15:59 - 00002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO 11.lnk
2016-08-15 15:59 - 2016-08-15 15:59 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\Innovative Solutions
2016-08-15 15:59 - 2016-08-15 15:59 - 00000000 ____D C:\Users\Todos os Usuários\Innovative Solutions
2016-08-15 15:59 - 2016-08-15 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO
2016-08-15 15:59 - 2016-08-15 15:59 - 00000000 ____D C:\ProgramData\Innovative Solutions
2016-08-15 15:59 - 2016-08-15 15:59 - 00000000 ____D C:\Program Files\Innovative Solutions
2016-08-15 15:59 - 2016-08-15 15:59 - 00000000 ____D C:\Program Files\Common Files\Innovative Solutions
2016-08-15 15:59 - 2014-03-07 10:25 - 00042496 _____ C:\Windows\system32\AdvUninstCPL.cpl
2016-08-15 15:58 - 2016-08-15 15:58 - 19316456 _____ (Innovative Solutions ) C:\Users\UniTecFoz\Downloads\Advanced_Uninstaller11.exe
2016-08-13 21:52 - 2016-08-13 17:16 - 00000000 ____D C:\Windows\Panther
2016-08-13 20:00 - 2016-08-13 20:00 - 00000000 ____D C:\Users\UniTecFoz\Documents\Adobe
2016-08-13 19:53 - 2016-08-13 19:54 - 00000000 ____D C:\Users\UniTecFoz\Downloads\Nova pasta
2016-08-13 19:06 - 2016-08-15 17:54 - 00000000 ___RD C:\Users\UniTecFoz\Creative Cloud Files
2016-08-13 19:06 - 2016-08-15 17:54 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2016-08-13 19:06 - 2016-08-15 17:54 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-08-13 19:05 - 2016-08-15 18:05 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\Adobe
2016-08-13 19:04 - 2016-08-13 19:04 - 00001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-08-13 19:04 - 2016-08-13 19:04 - 00001179 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-08-13 19:03 - 2016-08-13 19:04 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-08-13 19:03 - 2016-08-13 19:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-13 19:02 - 2016-08-15 18:05 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-08-13 19:02 - 2016-08-15 18:05 - 00000000 ____D C:\Program Files\Adobe
2016-08-13 19:02 - 2016-08-15 17:41 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-08-13 19:02 - 2016-08-15 17:41 - 00000000 ____D C:\ProgramData\Adobe
2016-08-13 18:58 - 2016-08-15 17:54 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\Adobe
2016-08-13 18:58 - 2016-08-13 18:58 - 00798912 _____ (Adobe Systems Incorporated) C:\Users\UniTecFoz\Downloads\CreativeCloudSet-Up.exe
2016-08-13 18:47 - 2016-08-13 18:47 - 00000047 _____ C:\Users\UniTecFoz\AppData\Roaming\WB.CFG
2016-08-13 18:32 - 2016-08-13 18:32 - 00000000 ____D C:\Users\UniTecFoz\Desktop\Nova pasta
2016-08-13 18:32 - 2016-08-13 18:32 - 00000000 ____D C:\Users\UniTecFoz\Desktop\DCIM
2016-08-13 18:26 - 2016-08-13 18:26 - 00000000 _____ C:\Windows\ativpsrm.bin
2016-08-13 18:03 - 2016-08-13 18:03 - 00771328 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2016-08-13 18:03 - 2016-08-13 18:03 - 00109648 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2016-08-13 18:03 - 2016-08-13 18:03 - 00085616 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2016-08-13 17:53 - 2016-08-13 17:53 - 00086016 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2016-08-13 17:53 - 2016-08-13 17:53 - 00078848 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys
2016-08-13 17:51 - 2016-08-13 17:51 - 39712768 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 25052160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 22318592 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 19581440 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-08-13 17:51 - 2016-08-13 17:51 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 09468448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 07898704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 07167416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 05129728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 03471376 _____ C:\Windows\system32\atiumdva.cap
2016-08-13 17:51 - 2016-08-13 17:51 - 01194928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00995342 _____ C:\Windows\system32\amdocl_as32.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00934400 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00842001 _____ C:\Windows\system32\amdicdxx.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00798734 _____ C:\Windows\system32\amdocl_ld32.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00737410 _____ C:\Windows\system32\atiicdxx.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00669696 _____ (AMD) C:\Windows\system32\coinst_15.20.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00662456 _____ C:\Windows\system32\atiapfxx.blb
2016-08-13 17:51 - 2016-08-13 17:51 - 00564224 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00385536 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00370688 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-08-13 17:51 - 2016-08-13 17:51 - 00354040 _____ (ASMedia Technology Inc) C:\Windows\system32\Drivers\asmtxhci.sys
2016-08-13 17:51 - 2016-08-13 17:51 - 00322868 _____ C:\Windows\system32\ativvaxy_vi.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00321200 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00259072 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00255808 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00250884 _____ C:\Windows\system32\ativvaxy_FJ.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00249088 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00234420 _____ C:\Windows\system32\ativvaxy_cik.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00232752 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00203776 _____ C:\Windows\system32\clinfo.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00201216 _____ C:\Windows\system32\amdgfxinfo32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00189440 _____ C:\Windows\system32\atieah32.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00177344 _____ C:\Windows\system32\ativce03.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00175648 _____ C:\Windows\system32\amde31a.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00164352 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00158208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00142848 _____ C:\Windows\system32\hsa-thunk.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00136624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00123240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00117760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00100816 _____ C:\Windows\system32\ativce02.dat
2016-08-13 17:51 - 2016-08-13 17:51 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00092328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00090624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00089600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl32.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00059392 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00051928 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\Rtnicxp.sys
2016-08-13 17:51 - 2016-08-13 17:51 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2016-08-13 17:51 - 2016-08-13 17:51 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00038400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00029184 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2016-08-13 17:51 - 2016-08-13 17:51 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-08-13 17:51 - 2016-08-13 17:51 - 00000000 ____D C:\Program Files\AMD
2016-08-13 17:47 - 2016-08-15 17:47 - 00000284 _____ C:\Windows\Tasks\{4C10535C-DC72-A10C-45BE-77E32B92E506}.job
2016-08-13 17:47 - 2016-08-15 15:47 - 00000000 ____D C:\Users\Todos os Usuários\{FF153A76-7557-B0B0-F391-2EF269D3A53C}
2016-08-13 17:47 - 2016-08-15 15:47 - 00000000 ____D C:\ProgramData\{FF153A76-7557-B0B0-F391-2EF269D3A53C}
2016-08-13 17:47 - 2016-08-13 18:47 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\{960AA0B1-B358-CDC7-D86E-EA1504BC172B}
2016-08-13 17:47 - 2016-08-13 17:47 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2016-08-13 17:47 - 2016-08-13 17:47 - 00002430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.html.lnk
2016-08-13 17:47 - 2016-08-13 17:47 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-08-13 17:47 - 2016-08-13 17:47 - 00000372 __RSH C:\ProgramData\ntuser.pol
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Windows\IObit
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\IObit
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Users\UniTecFoz\AppData\LocalLow\IObit
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\{9657A00B-B2FF-CCB3-DF67-E95BFB0F15C3}
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\ProgramData\ProductData
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\ProgramData\IObit
2016-08-13 17:47 - 2016-08-13 17:47 - 00000000 ____D C:\Program Files\IObit
2016-08-13 17:45 - 2016-08-13 17:45 - 16037440 _____ (IObit ) C:\Users\UniTecFoz\Downloads\driver_booster_setup.exe
2016-08-13 17:40 - 2016-08-15 17:53 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-13 17:40 - 2016-08-15 17:51 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-13 17:40 - 2016-08-13 19:10 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\Google
2016-08-13 17:40 - 2016-08-13 17:40 - 00002211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-13 17:40 - 2016-08-13 17:40 - 00002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-13 17:40 - 2016-08-13 17:40 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\Deployment
2016-08-13 17:40 - 2016-08-13 17:40 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\Apps\2.0
2016-08-13 17:40 - 2016-08-13 17:40 - 00000000 ____D C:\Program Files\Google
2016-08-13 17:38 - 2016-08-13 17:38 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\WinRAR
2016-08-13 17:38 - 2014-12-26 05:21 - 00000000 ____D C:\Users\UniTecFoz\Desktop\TL-WN722N_V1_140918
2016-08-13 17:38 - 2013-06-28 19:49 - 01763584 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athuw.sys
2016-08-13 17:37 - 2016-08-13 17:37 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-13 17:37 - 2016-08-13 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-13 17:37 - 2016-08-13 17:37 - 00000000 ____D C:\Program Files\WinRAR
2016-08-13 17:37 - 2014-11-14 13:50 - 676931367 _____ C:\Users\UniTecFoz\Desktop\M.O.2010P.P.x32-B.rar
2016-08-13 17:36 - 2016-03-15 14:57 - 07368965 _____ C:\Users\UniTecFoz\Desktop\TL-WN722N_V1_140918.zip
2016-08-13 17:35 - 2016-08-13 17:35 - 00057560 _____ C:\Users\UniTecFoz\AppData\Local\GDIPFONTCACHEV1.DAT
2016-08-13 17:17 - 2016-08-15 17:57 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-13 17:17 - 2016-08-13 17:17 - 00001389 _____ C:\Users\UniTecFoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-08-13 17:16 - 2016-08-13 20:02 - 00000000 ____D C:\Users\UniTecFoz
2016-08-13 17:16 - 2016-08-13 17:16 - 00000020 ___SH C:\Users\UniTecFoz\ntuser.ini
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Modelos
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Meus documentos
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Menu Iniciar
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Documents\Minhas músicas
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Documents\Minhas imagens
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Documents\Meus vídeos
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Dados de aplicativos
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Configurações locais
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\AppData\Local\Histórico
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\AppData\Local\Dados de aplicativos
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Ambiente de rede
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 _SHDL C:\Users\UniTecFoz\Ambiente de impressão
2016-08-13 17:16 - 2016-08-13 17:16 - 00000000 ____D C:\Users\UniTecFoz\AppData\Local\VirtualStore
2016-08-13 17:16 - 2009-07-14 04:48 - 00000000 ____D C:\Users\UniTecFoz\AppData\Roaming\Media Center Programs
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Modelos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\ProgramData\Modelos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\ProgramData\Documentos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-08-13 17:12 - 2016-08-13 17:12 - 00000000 _SHDL C:\Arquivos de Programas
2016-08-13 16:56 - 2016-08-13 16:56 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-08-13 16:56 - 2016-08-13 16:56 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-08-13 16:55 - 2016-08-13 16:55 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-08-15 17:57 - 2009-07-29 15:46 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2016-08-15 17:57 - 2009-07-29 15:46 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2016-08-15 17:57 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2016-08-15 17:53 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-15 17:51 - 2009-07-14 01:34 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-08-15 17:51 - 2009-07-14 01:34 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-08-13 21:52 - 2009-07-14 01:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-08-13 19:02 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-13 17:47 - 2009-07-13 23:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-08-13 17:12 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Windows NT
2016-08-13 17:11 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\rescache
2016-08-13 16:57 - 2009-07-14 01:33 - 00265944 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-13 16:56 - 2009-07-14 01:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-08-13 16:55 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\sysprep
2016-08-13 16:53 - 2009-07-14 04:49 - 00000000 ____D C:\Windows\CSC

==================== Arquivos na raiz de alguns diretórios =======

2016-08-15 17:27 - 2016-08-15 17:27 - 0000034 _____ () C:\Users\UniTecFoz\AppData\Roaming\AdobeWLCMCache.dat
2016-08-13 18:47 - 2016-08-13 18:47 - 0000047 _____ () C:\Users\UniTecFoz\AppData\Roaming\WB.CFG

Arquivos para serem movidos ou deletados:
====================
C:\Windows\Tasks\{4C10535C-DC72-A10C-45BE-77E32B92E506}.job


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-08-13 18:20

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité