cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 11-01-2017
Executado por Max (administrador) em MAX-PC (12-01-2017 14:30:25)
Executando a partir de C:\Users\Max\Desktop
Perfis Carregados: Max (Perfis Disponíveis: Max)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-23] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-12-18] (AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
HKU\S-1-5-21-1609208802-3496273775-3842438155-1000\...\Run: [AdobeBridge] => [X]
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-12-18] (AVAST Software)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9A5AA7A8-6222-4BBB-B678-D9D83BE81692}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1609208802-3496273775-3842438155-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1609208802-3496273775-3842438155-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={2EB68D8C-85A6-4A8A-A3AC-1CC1B3FD1292}&mid=aefc1469f3b447cfa64495c31d70d090-2f19093a930774a7b301a61d27ea8cdef9badaa2&lang=pt-br&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2016-12-09 01:36:00&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-09-13] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-12-18] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-09-13] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-12-18] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-10-11] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-12-18]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-12-18]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-09-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-09-13] (Microsoft Corporation)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/_/chrome/newtab?espv=2&ie=UTF-8
CHR StartupUrls: Default -> "hxxps://www.facebook.com/msdivulgacoes.oficial/"
CHR Profile: C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default [2017-01-12]
CHR Extension: (Google Apresentações) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-08]
CHR Extension: (Google Docs) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-08]
CHR Extension: (Google Drive) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-08]
CHR Extension: (YouTube) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-08]
CHR Extension: (Mogicons) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgpffljkgjmijjdmjbdppndoojdgboe [2017-01-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-10]
CHR Extension: (Friend Remover PRO - Delete Facebook™ Friends) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekjblaihiicbgjibfipjoepkmondnnbd [2016-12-12]
CHR Extension: (Planilhas do Google) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-08]
CHR Extension: (Documentos Google off-line) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-09]
CHR Extension: (Mogicons.com) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdlcejbjnnmjgajjjfenejacioiimpp [2016-12-08]
CHR Extension: (GamingWonderland) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\ianibjjlmopilahjckdaimnghbdlngkh [2017-01-09]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-08]
CHR Extension: (Gmail) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-08]
CHR Extension: (Chrome Media Router) - C:\Users\Max\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-08]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-12-18] (AVAST Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2015-06-23] (Intel Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-12-18] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-12-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-12-18] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-12-18] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-12-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-12-18] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-12-18] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-12-18] (AVAST Software)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-12-09] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-12-09] (Disc Soft Ltd)
S3 aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-01-12 14:30 - 2017-01-12 14:31 - 00014993 _____ C:\Users\Max\Desktop\FRST.txt
2017-01-12 14:29 - 2017-01-12 14:30 - 00000000 ____D C:\FRST
2017-01-12 14:29 - 2017-01-12 14:29 - 02419200 _____ (Farbar) C:\Users\Max\Desktop\FRST64.exe
2017-01-12 14:24 - 2017-01-12 14:24 - 00002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2017.lnk
2017-01-12 14:19 - 2017-01-12 14:24 - 00000000 ___HD C:\adobeTemp
2017-01-12 14:17 - 2017-01-12 14:17 - 00001225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-01-12 14:17 - 2017-01-12 14:17 - 00001213 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2017-01-12 12:12 - 2017-01-12 12:16 - 03312904 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Max\Desktop\AVG_Protection_Free_1598.exe
2017-01-11 19:23 - 2017-01-11 19:31 - 00000000 ____D C:\Users\Max\Desktop\Fotos Emily Kayyanne & Max Saile
2017-01-03 13:47 - 2017-01-03 13:47 - 00000000 ____D C:\Windows\system32\appmgmt
2016-12-30 10:19 - 2016-12-30 10:19 - 00110645 _____ C:\Users\Max\Desktop\15781905_1371084119631574_668514849_n.jpg
2016-12-29 12:35 - 2017-01-06 11:25 - 00000000 ____D C:\Users\Max\Desktop\Forró Atualizado
2016-12-28 21:05 - 2016-12-28 21:05 - 04737542 _____ C:\Users\Max\Desktop\WhatsApp Image 2016-12-28 at 20.45.29.psd
2016-12-28 21:01 - 2016-12-28 21:01 - 00355368 _____ C:\Users\Max\Desktop\WhatsApp Image 2016-12-28 at 20.45.jpg
2016-12-28 20:51 - 2016-12-28 20:51 - 00034404 _____ C:\Users\Max\Desktop\1200_1118121178238798_7320114588125895220_n.jpg
2016-12-28 20:45 - 2016-12-28 20:45 - 00055936 _____ C:\Users\Max\Desktop\WhatsApp Image 2016-12-28 at 20.45.29.jpeg
2016-12-28 20:44 - 2016-12-28 20:44 - 00375001 _____ C:\Users\Max\Desktop\JUNIOR GRAVÇÕES.jpg
2016-12-28 20:42 - 2016-12-28 20:42 - 00022927 _____ C:\Users\Max\Desktop\sua musica logo.png
2016-12-28 20:38 - 2016-12-28 20:38 - 00533800 _____ C:\Users\Max\Desktop\Manchas-de-Tintas-png-Queroimagem.com (3).png
2016-12-28 20:31 - 2016-12-28 20:31 - 00034800 _____ C:\Users\Max\Desktop\QVS 2.jpg
2016-12-28 20:26 - 2016-12-28 20:26 - 00002650 _____ C:\Users\Max\Desktop\play-256.png
2016-12-28 20:05 - 2016-12-28 20:05 - 00021634 _____ C:\Users\Max\Desktop\fundos-3d-laranja (1).jpg
2016-12-27 12:17 - 2016-12-27 12:17 - 00206145 _____ C:\Users\Max\Desktop\15625624_1882444635321779_4911919631687093318_o.jpg
2016-12-27 00:18 - 2016-12-27 00:18 - 00000313 _____ C:\Windows\SysWOW64\swhealthex.log
2016-12-24 17:40 - 2016-12-24 17:40 - 00272462 _____ C:\Users\Max\Desktop\Sem Título-1.jpg
2016-12-24 17:32 - 2016-12-24 17:32 - 00022537 _____ C:\Users\Max\Desktop\QVS.jpg
2016-12-23 23:32 - 2016-12-24 17:41 - 07949240 _____ C:\Users\Max\Desktop\Sem Título-1.psd
2016-12-23 23:32 - 2016-12-23 23:32 - 04595402 _____ C:\Users\Max\Desktop\Perfil da pagina.psd
2016-12-23 19:23 - 2016-12-23 19:23 - 00109720 _____ C:\Users\Max\Desktop\15665791_1156534807788118_7496148522524727029_n.jpg
2016-12-21 19:51 - 2016-12-21 19:51 - 00066412 _____ C:\Users\Max\Desktop\15541625_1052463198197247_5242970892330979410_n.jpg
2016-12-21 13:16 - 2017-01-03 13:47 - 00000000 ____D C:\Users\Max\AppData\Roaming\WhatsApp
2016-12-21 13:16 - 2017-01-03 13:47 - 00000000 ____D C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2016-12-21 13:15 - 2017-01-03 13:47 - 00000000 ____D C:\Users\Max\AppData\Local\WhatsApp
2016-12-21 13:15 - 2016-12-21 13:16 - 00000000 ____D C:\Users\Max\AppData\Local\SquirrelTemp
2016-12-20 11:30 - 2016-12-20 11:30 - 00113633 _____ C:\Users\Max\Desktop\2016-12-19-PHOTO-00000570.jpg
2016-12-20 10:29 - 2016-12-20 10:29 - 00000705 _____ C:\Users\Max\Desktop\MAX DESIGNER.lnk
2016-12-18 17:48 - 2017-01-12 14:17 - 02486669 ____H C:\Users\Max\AppData\Local\IconCache.db
2016-12-18 13:00 - 2016-12-18 13:00 - 00000000 ____D C:\Users\Max\AppData\Roaming\AVAST Software
2016-12-18 12:59 - 2017-01-07 10:52 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-12-18 12:59 - 2016-12-18 12:59 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-12-18 12:59 - 2016-12-18 12:59 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-12-18 12:59 - 2016-12-18 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-12-18 12:59 - 2016-12-18 12:58 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-12-18 12:59 - 2016-12-18 12:58 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-12-18 12:59 - 2016-12-18 12:58 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-12-18 12:59 - 2016-12-18 12:58 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-12-18 12:59 - 2016-12-18 12:58 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-12-18 12:58 - 2016-12-18 12:59 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-12-18 12:58 - 2016-12-18 12:58 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-12-18 12:58 - 2016-12-18 12:58 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-12-18 12:55 - 2016-12-18 12:55 - 00000000 ____D C:\Program Files\AVAST Software
2016-12-18 12:44 - 2016-12-18 12:52 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-12-18 12:42 - 2016-12-18 12:42 - 00000000 ___SD C:\Windows\SysWOW64\Microsoft
2016-12-15 20:04 - 2016-12-15 20:04 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-12-15 20:04 - 2016-12-15 20:04 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-15 20:03 - 2016-12-15 20:03 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-12-15 20:03 - 2016-12-15 20:03 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-12-15 20:00 - 2016-12-18 12:54 - 00000000 ____D C:\Users\Todos os Usuários\AVAST Software
2016-12-15 20:00 - 2016-12-18 12:54 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-15 19:45 - 2016-12-18 12:46 - 00000000 ____D C:\Users\Todos os Usuários\McAfee
2016-12-15 19:45 - 2016-12-18 12:46 - 00000000 ____D C:\ProgramData\McAfee
2016-12-15 19:33 - 2016-12-15 19:33 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2016-12-15 19:33 - 2016-12-15 19:33 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-12-15 19:24 - 2017-01-12 14:27 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{3bc92335-c30c-11e6-a373-448a5b943963}.TMContainer00000000000000000001.regtrans-ms
2016-12-15 19:24 - 2017-01-12 14:27 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{3bc92335-c30c-11e6-a373-448a5b943963}.TM.blf
2016-12-15 19:24 - 2016-12-15 19:34 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{3bc92335-c30c-11e6-a373-448a5b943963}.TMContainer00000000000000000002.regtrans-ms
2016-12-15 19:04 - 2016-12-15 19:04 - 00167884 _____ C:\Windows\ntbtlog.txt
2016-12-10 10:45 - 2016-12-10 10:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-12-10 07:57 - 2016-12-10 07:57 - 00000000 ____D C:\Program Files\Microsoft.NET
2016-12-10 07:44 - 2016-12-15 14:59 - 00000000 ____D C:\Windows\system32\MRT
2016-12-10 07:43 - 2016-12-15 14:55 - 135632432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-10 07:05 - 2011-04-09 04:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-12-10 07:05 - 2011-04-09 03:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-12-09 21:49 - 2016-12-20 10:43 - 00009628 _____ C:\Users\Max\Desktop\PAGAMENTOS.xlsx
2016-12-09 21:48 - 2016-12-09 21:48 - 00000000 ____D C:\Users\Max\Documents\Modelos Personalizados do Office
2016-12-09 19:50 - 2016-12-09 19:50 - 00000000 ____D C:\Users\Max\AppData\Roaming\Innovative Solutions
2016-12-09 19:50 - 2016-12-09 19:50 - 00000000 ____D C:\Users\Max\AppData\Local\Programs
2016-12-09 19:50 - 2016-12-09 19:50 - 00000000 ____D C:\Users\Max\AppData\Local\Innovative Solutions
2016-12-09 19:13 - 2016-12-09 19:13 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\Microsoft Help
2016-12-09 19:13 - 2016-12-09 19:13 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-12-09 19:13 - 2016-12-09 19:13 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-12-09 18:48 - 2017-01-10 16:17 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-12-09 18:47 - 2017-01-10 17:03 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-12-09 15:23 - 2016-12-09 15:23 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-12-09 14:10 - 2016-12-10 15:59 - 00000000 ____D C:\Users\Max\AppData\Roaming\Apple Computer
2016-12-09 14:10 - 2016-12-09 14:10 - 00000000 ____D C:\Users\Max\AppData\Local\Apple Computer
2016-12-09 14:10 - 2016-12-09 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-12-09 14:09 - 2016-12-09 14:10 - 00000000 ____D C:\Program Files\iTunes
2016-12-09 14:09 - 2016-12-09 14:09 - 00000000 ____D C:\Users\Todos os Usuários\Apple Computer
2016-12-09 14:09 - 2016-12-09 14:09 - 00000000 ____D C:\ProgramData\Apple Computer
2016-12-09 14:09 - 2016-12-09 14:09 - 00000000 ____D C:\Program Files\iPod
2016-12-09 14:08 - 2016-12-09 14:08 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-12-09 14:08 - 2016-12-09 14:08 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-12-09 14:08 - 2016-12-09 14:08 - 00000000 ____D C:\Users\Max\AppData\Local\Apple
2016-12-09 14:08 - 2016-12-09 14:08 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-12-09 14:07 - 2016-12-09 14:09 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-12-09 14:06 - 2016-12-09 14:08 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-12-09 14:06 - 2016-12-09 14:08 - 00000000 ____D C:\ProgramData\Apple
2016-12-09 13:42 - 2016-12-09 13:42 - 00000000 ____D C:\Windows\pss
2016-12-09 13:17 - 2016-12-09 13:17 - 00000000 ____D C:\Windows\Migration
2016-12-09 13:03 - 2017-01-12 14:16 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-12-09 13:03 - 2017-01-12 14:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-09 12:50 - 2016-12-09 12:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2016-12-09 12:50 - 2015-03-23 14:34 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2016-12-09 12:49 - 2015-03-23 14:34 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2016-12-09 12:49 - 2015-03-23 14:34 - 00800016 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-12-09 12:49 - 2015-03-23 14:34 - 00390416 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2016-12-09 12:49 - 2015-03-23 14:34 - 00022800 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2016-12-09 12:26 - 2017-01-06 18:43 - 00000132 _____ C:\Users\Max\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-12-09 11:50 - 2016-12-09 12:11 - 00000000 ____D C:\Windows\AutoKMS
2016-12-09 11:50 - 2016-12-09 11:50 - 00003606 _____ C:\Windows\System32\Tasks\AutoKMS
2016-12-09 11:48 - 2016-12-09 11:48 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Toolkit
2016-12-09 11:48 - 2016-12-09 11:48 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2016-12-09 11:45 - 2016-12-09 11:45 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-12-09 11:42 - 2017-01-10 19:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-12-09 11:41 - 2016-12-09 11:41 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-12-09 11:40 - 2016-12-09 11:40 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-12-09 11:40 - 2016-12-09 11:40 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-09 11:40 - 2016-12-09 11:40 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-12-09 11:39 - 2016-12-09 11:40 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-12-09 11:39 - 2016-12-09 11:39 - 00000000 ____D C:\Windows\PCHEALTH
2016-12-09 11:35 - 2016-12-09 11:35 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-12-09 11:35 - 2016-12-09 11:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-12-09 11:34 - 2017-01-10 19:39 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-12-09 11:34 - 2017-01-10 19:39 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-12-09 11:34 - 2016-12-09 11:39 - 00000000 ____D C:\Program Files\Microsoft Office
2016-12-09 11:34 - 2016-12-09 11:34 - 00000000 ____D C:\Users\Max\AppData\Local\Microsoft Help
2016-12-09 11:34 - 2016-12-09 11:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-09 11:29 - 2016-12-09 11:29 - 00000000 ____D C:\Users\Max\AppData\Local\Disc_Soft_Ltd
2016-12-09 11:26 - 2016-12-09 11:26 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-12-09 11:24 - 2016-12-09 11:24 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-12-09 11:23 - 2016-12-09 11:31 - 00000000 ____D C:\Users\Max\AppData\Roaming\DAEMON Tools Lite
2016-12-09 11:23 - 2016-12-09 11:23 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-12-09 11:22 - 2016-12-09 11:22 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-12-09 11:22 - 2016-12-09 11:22 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-12-09 10:33 - 2016-12-09 10:34 - 01598152 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-09 10:32 - 2016-12-10 07:57 - 00000000 ____D C:\Program Files (x86)\Microsoft.NET
2016-12-09 10:25 - 2009-11-25 11:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2016-12-09 10:25 - 2009-11-25 11:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2016-12-09 10:25 - 2009-11-25 11:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2016-12-09 10:25 - 2009-11-25 11:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2016-12-09 09:46 - 2016-12-09 19:03 - 00000000 ____D C:\Users\Max\AppData\LocalLow\Adobe
2016-12-09 09:37 - 2016-12-09 09:37 - 00000000 ____D C:\Users\Max\AppData\Roaming\WinRAR
2016-12-09 09:36 - 2016-12-09 09:36 - 00001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2016-12-09 09:36 - 2016-12-09 09:36 - 00000000 ____D C:\Users\Todos os Usuários\regid.1986-12.com.adobe
2016-12-09 09:36 - 2016-12-09 09:36 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-12-09 09:35 - 2016-12-09 09:35 - 00001211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk
2016-12-09 09:34 - 2016-12-09 09:34 - 00001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2016-12-09 09:33 - 2017-01-12 14:19 - 00000000 ____D C:\Program Files\Adobe
2016-12-09 09:33 - 2016-12-09 09:33 - 00001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk
2016-12-09 09:29 - 2017-01-12 14:10 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-09 09:29 - 2016-12-09 09:29 - 00001523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2016-12-09 09:29 - 2016-12-09 09:29 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2016-12-09 09:26 - 2016-12-09 09:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-09 09:24 - 2017-01-12 14:24 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-12-09 09:23 - 2016-06-25 14:03 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2016-12-09 09:23 - 2015-03-19 01:07 - 05503416 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-12-09 09:23 - 2015-03-19 00:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-12-09 09:23 - 2015-03-19 00:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-12-09 09:23 - 2014-09-14 22:44 - 03195392 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-09 09:23 - 2013-03-19 03:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-12-09 09:23 - 2013-03-19 02:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-12-09 09:23 - 2013-03-19 01:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-12-09 09:17 - 2016-12-09 09:17 - 00000000 ____D C:\Users\Max\AppData\Roaming\Macromedia
2016-12-09 09:16 - 2016-12-09 19:04 - 00000000 ____D C:\Users\Max\AppData\Local\Adobe
2016-12-09 09:16 - 2016-12-09 09:16 - 00000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-12-09 09:14 - 2017-01-07 10:55 - 00643012 _____ C:\Windows\PFRO.log
2016-12-08 23:51 - 2017-01-12 13:49 - 00000000 ____D C:\Users\Max\AppData\Roaming\uTorrent
2016-12-08 23:47 - 2017-01-12 14:24 - 00000000 ____D C:\Users\Max\AppData\Roaming\Adobe
2016-12-08 23:47 - 2017-01-12 14:10 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-12-08 23:47 - 2017-01-12 14:10 - 00000000 ____D C:\ProgramData\Adobe
2016-12-08 23:45 - 2016-12-08 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-08 23:45 - 2016-12-08 23:45 - 00000000 ____D C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-08 23:45 - 2016-12-08 23:45 - 00000000 ____D C:\Program Files\WinRAR
2016-12-08 23:44 - 2016-12-08 18:27 - 00000000 ____D C:\Windows\Panther
2016-12-08 23:43 - 2012-06-02 20:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-12-08 23:43 - 2012-06-02 20:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-12-08 23:43 - 2012-06-02 20:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-12-08 23:43 - 2012-06-02 20:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-12-08 23:43 - 2012-06-02 20:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-12-08 23:43 - 2012-06-02 20:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-12-08 23:43 - 2012-06-02 20:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-12-08 23:42 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-12-08 23:42 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-12-08 23:36 - 2016-12-10 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-08 23:33 - 2016-12-08 23:33 - 00000000 ____D C:\Users\Max\AppData\Roaming\AVG
2016-12-08 23:32 - 2016-12-08 23:32 - 00000000 ____D C:\Users\Max\AppData\Roaming\TuneUp Software
2016-12-08 23:31 - 2016-12-15 19:17 - 00000000 ___HD C:\$AVG
2016-12-08 23:30 - 2016-12-15 19:20 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-12-08 23:30 - 2016-12-15 19:20 - 00000000 ____D C:\ProgramData\MFAData
2016-12-08 23:30 - 2016-12-08 23:30 - 00000000 ____D C:\Users\Max\AppData\Local\MFAData
2016-12-08 23:24 - 2016-12-08 23:24 - 00000000 ____D C:\Windows.old
2016-12-08 23:20 - 2016-12-08 23:20 - 00000000 ____D C:\Users\Max\AppData\Local\CEF
2016-12-08 23:19 - 2016-12-15 19:22 - 00000000 ____D C:\Users\Todos os Usuários\Avg
2016-12-08 23:19 - 2016-12-15 19:22 - 00000000 ____D C:\Users\Max\AppData\Local\AvgSetupLog
2016-12-08 23:19 - 2016-12-15 19:22 - 00000000 ____D C:\ProgramData\Avg
2016-12-08 23:19 - 2016-12-15 19:20 - 00000000 ____D C:\Users\Max\AppData\Local\Avg
2016-12-08 23:19 - 2016-12-08 23:19 - 00000000 ___HD C:\Users\Todos os Usuários\Common Files
2016-12-08 23:19 - 2016-12-08 23:19 - 00000000 ___HD C:\ProgramData\Common Files
2016-12-08 23:16 - 2016-10-26 16:29 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-12-08 23:07 - 2017-01-12 14:16 - 00000000 __SHD C:\Windows\Installer
2016-12-08 23:03 - 2016-12-09 20:13 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-08 23:02 - 2016-12-16 20:08 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-08 23:02 - 2016-12-16 20:08 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-08 23:02 - 2016-12-08 23:03 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-08 23:01 - 2016-12-10 10:44 - 00133112 _____ C:\Users\Max\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-08 23:01 - 2016-12-08 23:13 - 00000000 ____D C:\Users\Max\AppData\Local\Google
2016-12-08 23:01 - 2016-12-08 23:01 - 00000000 ____D C:\Users\Max\AppData\Local\Deployment
2016-12-08 23:01 - 2016-12-08 23:01 - 00000000 ____D C:\Users\Max\AppData\Local\Apps\2.0
2016-12-08 23:01 - 2016-12-08 23:01 - 00000000 ____D C:\Users\Max\AppData\Local\Apps
2016-12-08 23:00 - 2016-12-08 23:00 - 00000000 __SHD C:\Users\Max\AppData\LocalLow\Microsoft
2016-12-08 22:57 - 2016-12-08 22:57 - 00014646 _____ C:\Windows\system32\results.xml
2016-12-08 22:56 - 2017-01-12 10:10 - 00000000 __SHD C:\Users\Max\IntelGraphicsProfiles
2016-12-08 22:56 - 2016-12-08 22:56 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-12-08 22:54 - 2016-12-09 13:04 - 00000000 ____D C:\Program Files\Intel
2016-12-08 22:54 - 2016-12-09 12:50 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-08 22:54 - 2015-06-23 12:35 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2016-12-08 22:54 - 2015-06-23 12:35 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2016-12-08 22:53 - 2015-06-23 12:36 - 00187844 _____ C:\Windows\system32\resTHA.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00180644 _____ C:\Windows\system32\resELL.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00176500 _____ C:\Windows\system32\resRUS.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00162356 _____ C:\Windows\system32\resARA.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00161812 _____ C:\Windows\system32\resHEB.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00161764 _____ C:\Windows\system32\resJPN.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00157172 _____ C:\Windows\system32\resFRA.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00157156 _____ C:\Windows\system32\resHUN.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00155460 _____ C:\Windows\system32\resKOR.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00155364 _____ C:\Windows\system32\resITA.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00155364 _____ C:\Windows\system32\resDEU.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00155204 _____ C:\Windows\system32\resROM.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00155092 _____ C:\Windows\system32\resESN.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00154660 _____ C:\Windows\system32\resPLK.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00154532 _____ C:\Windows\system32\resSKY.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00154324 _____ C:\Windows\system32\resNLD.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00153764 _____ C:\Windows\system32\resPTB.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00153636 _____ C:\Windows\system32\resTRK.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00153604 _____ C:\Windows\system32\resCSY.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00153476 _____ C:\Windows\system32\resPTG.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00153060 _____ C:\Windows\system32\resFIN.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00152628 _____ C:\Windows\system32\resHRV.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00152164 _____ C:\Windows\system32\resSVE.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00152004 _____ C:\Windows\system32\resSLV.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00151060 _____ C:\Windows\system32\resNOR.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00150548 _____ C:\Windows\system32\resDAN.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00149236 _____ C:\Windows\system32\resENU.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00147460 _____ C:\Windows\system32\resCHT.cui
2016-12-08 22:53 - 2015-06-23 12:36 - 00146628 _____ C:\Windows\system32\resCHS.cui
2016-12-08 22:53 - 2015-06-23 12:35 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 12218376 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 11793480 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 10948400 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 10474552 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 08520192 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 06503424 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 04587608 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 04362344 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 04358760 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 03789240 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-12-08 22:53 - 2015-06-23 12:35 - 03628160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa
2016-12-08 22:53 - 2015-06-23 12:35 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 01985536 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 01784320 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00959592 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00734720 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00670208 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00545896 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00545384 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00530536 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00399976 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00399464 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00384104 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00384000 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00365568 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00320512 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00319080 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00280680 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00276480 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2016-12-08 22:53 - 2015-06-23 12:35 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00247400 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00224256 _____ C:\Windows\system32\igdde64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00220160 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00194664 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00185856 _____ C:\Windows\SysWOW64\igdde32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00183296 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4242.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00162304 _____ C:\Windows\system32\igdail64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00154728 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-12-08 22:53 - 2015-06-23 12:35 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00059392 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00044025 _____ C:\Windows\system32\iglhxo64.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00043494 _____ C:\Windows\system32\iglhxc64.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00043256 _____ C:\Windows\system32\iglhxg64.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2016-12-08 22:53 - 2015-06-23 12:35 - 00002564 _____ C:\Windows\system32\iglhxs64.vp
2016-12-08 22:53 - 2015-06-23 12:35 - 00000895 _____ C:\Windows\system32\Gfxv2_0.exe.config
2016-12-08 22:53 - 2015-06-23 12:35 - 00000895 _____ C:\Windows\system32\DPTopologyAppv2_0.exe.config
2016-12-08 22:53 - 2015-06-23 12:35 - 00000895 _____ C:\Windows\system32\CustomModeAppv2_0.exe.config
2016-12-08 22:53 - 2015-06-23 12:35 - 00000889 _____ C:\Windows\system32\Gfxv4_0.exe.config
2016-12-08 22:53 - 2015-06-23 12:35 - 00000889 _____ C:\Windows\system32\DPTopologyApp.exe.config
2016-12-08 22:53 - 2015-06-23 12:35 - 00000889 _____ C:\Windows\system32\CustomModeApp.exe.config
2016-12-08 22:52 - 2016-12-09 12:28 - 00007605 _____ C:\Users\Max\AppData\Local\Resmon.ResmonCfg
2016-12-08 22:52 - 2015-06-23 12:35 - 00454416 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-12-08 22:48 - 2016-12-08 22:48 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-08 22:48 - 2016-12-08 22:48 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-12-08 22:48 - 2016-05-07 07:12 - 01030400 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-12-08 22:48 - 2016-05-07 07:12 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-12-08 22:48 - 2016-05-07 07:09 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-12-08 22:45 - 2017-01-12 13:06 - 00000000 ____D C:\Users\Max\AppData\Local\Diagnostics
2016-12-08 18:31 - 2017-01-12 13:06 - 00000000 ____D C:\Users\Max\AppData\Local\ElevatedDiagnostics
2016-12-08 18:29 - 2016-12-08 18:29 - 00001389 _____ C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-12-08 18:28 - 2017-01-12 14:31 - 00000000 ____D C:\Users\Max\AppData\Local\Temp
2016-12-08 18:28 - 2017-01-12 14:30 - 00000000 ___RD C:\Users\Max\Desktop
2016-12-08 18:28 - 2017-01-12 14:29 - 01572864 ___SH C:\Users\Max\NTUSER.DAT
2016-12-08 18:28 - 2017-01-12 14:29 - 00262144 ___SH C:\Users\Max\ntuser.dat.LOG1
2016-12-08 18:28 - 2017-01-12 14:17 - 00000000 ____D C:\Users\Max
2016-12-08 18:28 - 2017-01-12 13:49 - 00000000 ____D C:\Users\Max\AppData\LocalLow
2016-12-08 18:28 - 2017-01-12 11:28 - 00000000 ____D C:\Users\Max\AppData\Local\Microsoft
2016-12-08 18:28 - 2017-01-09 16:43 - 00000000 ___RD C:\Users\Max\Downloads
2016-12-08 18:28 - 2017-01-08 18:16 - 00000000 ____D C:\Users\Max\AppData\Local
2016-12-08 18:28 - 2016-12-21 13:16 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-08 18:28 - 2016-12-21 13:16 - 00000000 ____D C:\Users\Max\AppData\Roaming
2016-12-08 18:28 - 2016-12-19 14:12 - 00000392 ___SH C:\Users\Max\Desktop\desktop.ini
2016-12-08 18:28 - 2016-12-11 19:54 - 00000000 ___RD C:\Users\Max\Pictures
2016-12-08 18:28 - 2016-12-09 21:48 - 00000000 ___RD C:\Users\Max\Documents
2016-12-08 18:28 - 2016-12-09 19:03 - 00000000 ___SD C:\Users\Max\AppData\Roaming\Microsoft
2016-12-08 18:28 - 2016-12-09 14:11 - 00000000 ___RD C:\Users\Max\Music
2016-12-08 18:28 - 2016-12-08 18:32 - 00524288 ___SH C:\Users\Max\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
2016-12-08 18:28 - 2016-12-08 18:32 - 00524288 ___SH C:\Users\Max\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
2016-12-08 18:28 - 2016-12-08 18:32 - 00065536 ___SH C:\Users\Max\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
2016-12-08 18:28 - 2016-12-08 18:29 - 00001423 _____ C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-08 18:28 - 2016-12-08 18:29 - 00000476 ___SH C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-08 18:28 - 2016-12-08 18:28 - 00000402 ___SH C:\Users\Max\Documents\desktop.ini
2016-12-08 18:28 - 2016-12-08 18:28 - 00000282 ___SH C:\Users\Max\Downloads\desktop.ini
2016-12-08 18:28 - 2016-12-08 18:28 - 00000174 ___SH C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-08 18:28 - 2016-12-08 18:28 - 00000020 ___SH C:\Users\Max\ntuser.ini
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\SendTo
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Recent
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Modelos
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Meus documentos
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Menu Iniciar
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Documents\Minhas músicas
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Documents\Minhas imagens
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Documents\Meus vídeos
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Dados de aplicativos
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Cookies
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Configurações locais
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\AppData\Local\Temporary Internet Files
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\AppData\Local\Histórico
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\AppData\Local\Dados de aplicativos
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Ambiente de rede
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 _SHDL C:\Users\Max\Ambiente de impressão
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___SH C:\Users\Max\ntuser.dat.LOG2
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\Videos
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\Searches
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\Saved Games
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\Links
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\Favorites
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\Contacts
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ___HD C:\Users\Max\AppData
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ____D C:\Users\Max\AppData\Roaming\Identities
2016-12-08 18:28 - 2016-12-08 18:28 - 00000000 ____D C:\Users\Max\AppData\Local\VirtualStore
2016-12-08 18:28 - 2009-07-14 05:45 - 00000000 ____D C:\Users\Max\AppData\Roaming\Media Center Programs
2016-12-08 18:28 - 2009-07-14 02:54 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-08 18:28 - 2009-07-14 02:49 - 00000000 ___RD C:\Users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Usuário Padrão
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Todos os Usuários
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Modelos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Meus documentos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Configurações locais
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\ProgramData\Modelos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\ProgramData\Favoritos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\ProgramData\Documentos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2016-12-08 18:27 - 2016-12-08 18:27 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2016-12-08 17:50 - 2016-12-08 17:50 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-12-08 17:50 - 2016-12-08 17:50 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-12-08 17:49 - 2017-01-12 14:30 - 01149698 _____ C:\Windows\WindowsUpdate.log
2016-12-08 17:49 - 2016-12-09 10:25 - 00000000 ____D C:\Windows\SoftwareDistribution
2016-12-08 17:49 - 2016-12-08 17:49 - 00001313 _____ C:\Windows\TSSysprep.log
2016-12-08 17:46 - 2017-01-12 14:29 - 00000000 ____D C:\Windows\Prefetch
2016-12-04 13:16 - 2015-06-23 12:35 - 00001125 _____ C:\Windows\system32\iglhxa64.vp

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2017-01-12 14:08 - 2009-07-14 02:45 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-12 14:08 - 2009-07-14 02:45 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-12 11:35 - 2009-07-29 14:08 - 00705070 _____ C:\Windows\system32\prfh0416.dat
2017-01-12 11:35 - 2009-07-29 14:08 - 00146910 _____ C:\Windows\system32\prfc0416.dat
2017-01-12 11:35 - 2009-07-14 03:13 - 01633534 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-12 11:35 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\inf
2017-01-12 10:08 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-11 19:09 - 2009-07-14 03:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2017-01-11 11:33 - 2009-07-14 01:20 - 00000000 __RHD C:\Users\Public\Libraries
2017-01-10 19:38 - 2009-07-14 00:34 - 00000478 _____ C:\Windows\win.ini
2016-12-28 18:01 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\wdi
2016-12-27 00:18 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\drivers
2016-12-18 12:49 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\catroot
2016-12-18 12:44 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files
2016-12-18 12:44 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-18 12:30 - 2009-07-14 01:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-18 12:30 - 2009-07-14 00:34 - 00000826 _____ C:\Windows\system32\Drivers\etc\hosts
2016-12-16 20:08 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\Tasks
2016-12-15 20:21 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\system32\catroot2
2016-12-15 11:28 - 2009-07-14 02:54 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{016888b9-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
2016-12-15 11:28 - 2009-07-14 02:54 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{016888b9-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf

==================== Arquivos na raiz de alguns diretórios =======

2016-12-09 12:26 - 2017-01-06 18:43 - 0000132 _____ () C:\Users\Max\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-12-08 22:52 - 2016-12-09 12:28 - 0007605 _____ () C:\Users\Max\AppData\Local\Resmon.ResmonCfg

Alguns arquivos em TEMP:
====================
C:\Users\Max\AppData\Local\Temp\ose00000.exe
C:\Users\Max\AppData\Local\Temp\tmp-drivermax141586.exe


==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2017-01-03 14:07

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité