Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 05-07-2017
Executado por Mara (administrador) em MARA-PC (06-07-2017 20:03:11)
Executando a partir de C:\Users\Mara\Desktop
Perfis Carregados: Mara (Perfis Disponíveis: Mara)
Platform: Windows 7 Professional (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATII4E.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
( Beijing WatchData System Co., Ltd.) C:\Windows\SysWOW64\WatchData\Watchdata Brazil CSP v1.0\BBCertM32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [954416 2017-03-21] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [wdbraz_certm] => C:\Windows\SysWOW64\WatchData\Watchdata Brazil CSP v1.0\BBCertM32.exe [59440 2013-01-28] ( Beijing WatchData System Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-07] (Banco do Brasil)
HKU\S-1-5-21-3672480547-4243693506-1214664836-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3672480547-4243693506-1214664836-1000\...\MountPoints2: {ae2ae0ad-62ac-11e7-b2a1-806e6f6e6963} - D:\setup.exe
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1947872 2016-06-07] (Banco do Brasil)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 201.21.192.119 201.21.192.123
Tcpip\..\Interfaces\{52B26651-50BB-4576-A6A2-A95F03923FFA}: [DhcpNameServer] 201.21.192.119 201.21.192.123
Internet Explorer:
==================
HKU\S-1-5-21-3672480547-4243693506-1214664836-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-06-07] (Oracle Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-07] (Banco do Brasil)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-07] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-12-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-12-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-12-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-12-21] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: fqmhc3lz.default
FF ProfilePath: C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\fqmhc3lz.default [2017-07-06]
FF HKLM\...\Firefox\Extensions: [bbassdigital@bb.com.br] - C:\Program Files\Banco do Brasil\Assinatura Digital\ext
FF Extension: (Banco do Brasil - Assinatura Digital) - C:\Program Files\Banco do Brasil\Assinatura Digital\ext [2017-06-07]
FF HKLM-x32\...\Firefox\Extensions: [bbassdigital@bb.com.br] - C:\Program Files\Banco do Brasil\Assinatura Digital\ext
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-07] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default [2017-07-06]
CHR Extension: (Google Apresentações) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-11]
CHR Extension: (Banco do Brasil - Assinatura Digital) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\adllellfifhkdgekblogkphpalcbfooh [2017-06-07]
CHR Extension: (Google Docs) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-11]
CHR Extension: (Google Drive) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-11]
CHR Extension: (YouTube) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-11]
CHR Extension: (Planilhas do Google) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-11]
CHR Extension: (Documentos Google off-line) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-11]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-11]
CHR Extension: (Gmail) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-11]
CHR Extension: (Chrome Media Router) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-15]
CHR HKLM\...\Chrome\Extension: [adllellfifhkdgekblogkphpalcbfooh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [adllellfifhkdgekblogkphpalcbfooh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [631520 2016-06-07] (GAS Tecnologia)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Arquivo não assinado]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [954416 2017-03-21] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2017-07-06] (GAS Tecnologia)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg64.sys [29816 2017-07-06] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2016-05-09] (GAS Tecnologia)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2016-05-09] (GAS Tecnologia LTDA)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [28376 2017-07-06] (GAS Tecnologia)
R1 wsddntf; C:\Windows\System32\DRIVERS\wsddntf.sys [36984 2016-06-16] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [25184 2016-06-08] (GAS Tecnologia)
R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [25184 2016-11-07] (GAS Tecnologia)
========================== MD5 dos Drivers =======================
C:\Windows\system32\DRIVERS\1394ohci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ACPI.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\acpipmi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\afd.sys B9384E03479D2506BC924C16A3DB87BC
C:\Windows\system32\DRIVERS\agp440.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\aliide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdsata.sys 7A4B413614C055935567CF88A9734D38
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\amdxata.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\appid.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\atapi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bxvbda.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Beep.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\bowser.sys 91CE0D3DC57DD377E690A2D324022B08
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 é legítimo
C:\Windows\System32\CLFS.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\cmdide.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\cng.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\csc.sys 4A6173C2279B498CD8F57CAE504564CB
C:\Windows\System32\Drivers\dfsc.sys 3F1DC527070ACB87E40AFE46EF6DA749
C:\Windows\System32\drivers\discache.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\dxgkrnl.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\evbda.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\errdev.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\exfat.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\filetrace.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Fs_Rec.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\fvevol.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\gbpddfac64.sys 2C4EBDC89887B46652883224B017516E
C:\Windows\System32\drivers\gbpddreg64.sys A3BD9C007056C99F7AEF8EE904723E67
C:\Program Files (x86)\GbPlugin\gbprcm64.sys 6E7E53635127C96B52E0636F36D89D14
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\HdAudio.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HpSAMD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\HTTP.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\iaStorV.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\igdkmd64.sys CEFA6BDB4789F3DA003ACBDCC64F5877
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\RTKVHD64.sys C2F868881D48A568B525255F084EF063
C:\Windows\System32\DRIVERS\IntcDAud.sys 87871AB7AC797F922A6F3D4C874CED96
C:\Windows\system32\DRIVERS\intelide.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\IPMIDrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ipnat.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\irenum.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\isapnp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\msiscsi.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\ksecdd.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\ksecpkg.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\luafv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\HECIx64.sys A6518DCC42F7A6E999BB3BEA8FD87567
C:\Windows\System32\drivers\modem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\mpio.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\mrxdav.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mrxsmb.sys CFDCD8CA87C2A657DEBC150AC35B5E08
C:\Windows\System32\DRIVERS\mrxsmb10.sys 1BEE517B220B7F024F411AEC1571DD5A
C:\Windows\System32\DRIVERS\mrxsmb20.sys 6B2D5FEF385828B6E485C1C90AFB8195
C:\Windows\system32\DRIVERS\msahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\msdsm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\msisadrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\mup.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ndis.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Ntfs.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Null.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nvraid.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nvstor.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\nv_agp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ohci1394.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\partmgr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pciide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\pcw.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\peauth.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpdr.sys 9706B84DBABFC4B4CA46C5A82B14DFA3
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\RDPWD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\Rt64win7.sys 439F755B450CF66B139742CA32AACF9F
C:\Windows\system32\DRIVERS\vms3cap.sys 88AF6E02AB19DF7FD07ECDF9C91E9AF6
C:\Windows\system32\DRIVERS\sbp2port.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffdisk.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_mmc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_sd.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\spldr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\srv.sys EC8F67289105BF270498095F14963464
C:\Windows\System32\DRIVERS\srv2.sys F773D2ED090B7BAA1C1A034F3CA476C8
C:\Windows\System32\DRIVERS\srvnet.sys 26E84D3649019C3244622E654DFCD75B
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vmstorfl.sys FFD7A6F15B14234B5B0E5D49E7961895
C:\Windows\system32\DRIVERS\storvsc.sys 8FCCBEFC5C440B3C23454656E551B09A
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tcpip.sys 912107716BAB424C7870E8E6AF5E07E1
C:\Windows\System32\DRIVERS\tcpip.sys 912107716BAB424C7870E8E6AF5E07E1
C:\Windows\System32\drivers\tcpipreg.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tdtcp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\tssecsrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uliagpkx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbccgp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbcir.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbehci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbhub.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbohci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\usbscan.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\USBSTOR.SYS ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbuhci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vdrvroot.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\vga.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vhdmp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\viaide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vmbus.sys 1501699D7EDA984ABC4155A7DA5738D1
C:\Windows\system32\DRIVERS\VMBusHID.sys AE10C35761889E65A6F7176937C5592C
C:\Windows\System32\DRIVERS\volmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\volsnap.sys 9E425AC5C9A5A973273D169F43B4F5E1
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Program Files (x86)\GbPlugin\wsftprp64.sys 9B06D67FEDAABE253A2A68B68F5CBD2A
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\Wdf01000.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\wimmount.sys ==> MD5 é legítimo
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\WinUSB.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wmiacpi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\wsddfac.sys 02553BF9B625B0C2FC2715B42BBD1C74
C:\Windows\System32\DRIVERS\wsddntf.sys 5A8B59CD77EA00E591825F8344729307
C:\Windows\system32\drivers\wsddpp.sys D63BE5540FFD39ACFB31E6E1F61D902B
C:\Windows\system32\drivers\wsddprm.sys F162B757F5AECF5839A5B75364BEB905
C:\Windows\System32\drivers\WudfPf.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\WUDFRd.sys ==> MD5 é legítimo
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-07-06 20:02 - 2017-07-06 20:03 - 00027336 _____ C:\Users\Mara\Desktop\FRST.txt
2017-07-06 20:02 - 2017-07-06 20:02 - 00000290 _____ C:\Users\Mara\Downloads\SearchReg.txt
2017-07-06 20:01 - 2017-07-06 20:01 - 00000290 _____ C:\Users\Mara\Downloads\Search.txt
2017-07-06 19:58 - 2017-07-06 19:58 - 00018050 _____ C:\Users\Mara\Downloads\Addition.txt
2017-07-06 19:57 - 2017-07-06 20:02 - 00000000 ____D C:\FRST
2017-07-06 19:57 - 2017-07-06 19:58 - 00027146 _____ C:\Users\Mara\Downloads\FRST.txt
2017-07-06 19:57 - 2017-07-06 19:57 - 02436608 _____ (Farbar) C:\Users\Mara\Desktop\FRST64.exe
2017-07-06 19:40 - 2017-07-06 19:42 - 00001908 _____ C:\Windows\diagwrn.xml
2017-07-06 19:40 - 2017-07-06 19:42 - 00001908 _____ C:\Windows\diagerr.xml
2017-07-06 19:15 - 2017-07-06 19:15 - 00000000 _____ C:\Users\Mara\AppData\Local\{581BA3CF-2C54-4C8F-B132-58A29457727D}
2017-06-22 18:46 - 2017-06-22 18:46 - 00036044 _____ C:\Program Files (x86)\CMS Setup Log.txt
2017-06-22 18:46 - 2017-06-22 18:46 - 00001797 _____ C:\Users\Mara\Desktop\CMS.lnk
2017-06-22 18:46 - 2017-06-22 18:46 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CMS
2017-06-22 18:46 - 2017-06-22 18:46 - 00000000 ____D C:\Program Files (x86)\CMS
2017-06-22 18:40 - 2017-06-22 18:40 - 06630636 _____ C:\Users\Mara\Downloads\750366325__03_CMS__ProBasic_2013__V3.0.9.9 (1).rar
2017-06-22 18:38 - 2017-06-22 18:39 - 66843874 _____ ( ) C:\Users\Mara\Downloads\NVMS1000__English_for_Windows__V3.3.0.51103.exe
2017-06-22 18:38 - 2017-06-22 18:39 - 19563918 _____ C:\Users\Mara\Downloads\NVMS_1200__CMS_Venetian_Super_for_MAC_OS.pkg
2017-06-22 18:25 - 2017-06-22 18:25 - 00001935 _____ C:\Users\Public\Desktop\CMS3.lnk
2017-06-22 18:25 - 2017-06-22 18:25 - 00000000 ____D C:\Windows\CMS3.0
2017-06-22 18:25 - 2017-06-22 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CMS3.0
2017-06-22 18:25 - 2017-06-22 18:25 - 00000000 ____D C:\Program Files (x86)\CMS3.0
2017-06-22 18:22 - 2017-06-22 18:23 - 54010148 _____ C:\Users\Mara\Downloads\CMS_3.0__English_for_Windows__V1.0.0.40_16.08.11.exe
2017-06-20 14:51 - 2017-06-20 14:51 - 00001285 _____ C:\Users\Mara\Desktop\ShowMyPC.lnk
2017-06-20 14:51 - 2017-06-20 14:51 - 00000000 ____D C:\Users\Mara\AppData\Local\ShowMyPC
2017-06-20 14:50 - 2017-06-20 14:50 - 02577304 _____ C:\Users\Mara\Downloads\ShowMyPC3515.exe
2017-06-20 14:49 - 2017-06-20 14:52 - 00000000 ____D C:\Program Files (x86)\ShowMyPCService
2017-06-20 14:47 - 2017-06-20 14:47 - 02292816 _____ C:\Users\Mara\Downloads\ShowMyPC3161.exe
2017-06-20 14:26 - 2017-06-20 14:26 - 00000000 ____D C:\Users\Mara\Desktop\PONTOS
2017-06-20 14:23 - 2017-06-20 14:23 - 00001514 _____ C:\Users\Mara\Desktop\Ponto 5.0.0 - Atalho.lnk
2017-06-20 14:23 - 2017-06-20 14:23 - 00000050 _____ C:\Windows\SysWOW64\Dkjp91.dll
2017-06-20 14:23 - 2017-06-20 14:23 - 00000027 _____ C:\uylt.dll
2017-06-20 14:21 - 2017-06-22 15:36 - 00000000 ____D C:\Program Files (x86)\Ponto Passo
2017-06-20 14:21 - 2017-06-20 14:21 - 00000000 ____D C:\Users\Mara\AppData\Roaming\WinRAR
2017-06-20 14:21 - 2017-06-20 14:21 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-06-20 14:21 - 2017-06-20 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-06-20 14:21 - 2017-06-20 14:21 - 00000000 ____D C:\Program Files\WinRAR
2017-06-20 14:21 - 2017-06-20 14:15 - 76140548 _____ C:\Program Files (x86)\Ponto Passo.rar
2017-06-20 14:20 - 2017-06-20 14:21 - 02185400 _____ C:\Users\Mara\Downloads\winrar-x64-540.exe
2017-06-20 14:02 - 2017-06-20 14:02 - 00001083 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ponto Passo.LNK
2017-06-20 14:02 - 2017-06-20 14:02 - 00000000 ____D C:\Windows\SysWOW64\driverlinx
2017-06-20 14:02 - 2017-06-20 14:02 - 00000000 ____D C:\Windows\Crystal
2017-06-20 14:02 - 2017-06-20 14:02 - 00000000 ____D C:\Program Files (x86)\Ponto Passoold
2017-06-20 14:02 - 2007-01-18 16:33 - 00066560 _____ (Passo Automação) C:\Windows\SysWOW64\papontoip.dll
2017-06-20 14:02 - 2006-07-21 17:43 - 00073216 _____ (Passo Automação) C:\Windows\SysWOW64\paponto.dll
2017-06-20 14:02 - 2004-06-17 00:49 - 12216512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSO.DLL
2017-06-20 14:02 - 2004-03-05 19:10 - 00733888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CDO.DLL
2017-06-20 14:02 - 2000-05-22 01:00 - 00203976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2017-06-20 14:02 - 2000-04-18 01:23 - 00609584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2017-06-20 14:02 - 1999-04-13 12:40 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCAL.OCX
2017-06-20 14:02 - 1998-11-06 00:00 - 00113152 _____ (Stephen Darlington) C:\Windows\SysWOW64\aunzip32.dll
2017-06-20 14:02 - 1998-06-24 00:00 - 00140096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2017-06-20 14:02 - 1997-09-25 14:18 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DBGRID32.OCX
2017-06-20 14:02 - 1997-07-19 16:01 - 00192784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2017-06-20 14:02 - 1997-07-19 16:00 - 00227600 _____ (Microsoft) C:\Windows\SysWOW64\msflxgrd.ocx
2017-06-20 14:02 - 1997-07-19 16:00 - 00166160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmask32.ocx
2017-06-20 14:02 - 1997-07-19 16:00 - 00134416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmapi32.ocx
2017-06-20 14:02 - 1997-01-23 23:00 - 00078608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.dll
2017-06-20 14:02 - 1997-01-15 23:00 - 00187664 _____ (Seagate Software Information Management Group, Inc.) C:\Windows\SysWOW64\CRYSTL32.OCX
2017-06-20 14:02 - 1997-01-12 23:00 - 00037136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJInt35.dll
2017-06-20 14:02 - 1997-01-12 01:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ADME.DLL
2017-06-20 14:02 - 1996-12-20 23:00 - 01039360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJet35.dll
2017-06-20 14:02 - 1996-12-10 18:21 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCAL1.OCX
2017-06-20 14:02 - 1996-12-06 14:00 - 00018740 _____ C:\Windows\SysWOW64\MDISP32.TLB
2017-06-20 14:02 - 1996-12-04 23:00 - 00403216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRepl35.dll
2017-06-20 14:02 - 1996-12-04 23:00 - 00251664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSRD2x35.dll
2017-06-20 14:02 - 1996-12-04 23:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ODBCTL32.dll
2017-06-20 14:02 - 1996-12-04 23:00 - 00024336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJtEr35.dll
2017-06-20 14:02 - 1996-11-19 23:00 - 01846784 _____ (Seagate Software Information Management Group, Inc.) C:\Windows\SysWOW64\CRPE32.DLL
2017-06-20 14:02 - 1996-11-19 23:00 - 00087040 _____ (Seagate Software Information Management Group, Inc.) C:\Windows\SysWOW64\P2BDAO.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00979456 _____ (Three D Graphics) C:\Windows\SysWOW64\PG32.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00748160 _____ C:\Windows\SysWOW64\CO2C40EN.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00131072 _____ C:\Windows\SysWOW64\P2SODBC.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00054272 _____ C:\Windows\SysWOW64\P2IRDAO.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00050176 _____ C:\Windows\SysWOW64\P2CTDAO.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00036352 _____ C:\Windows\SysWOW64\P2BBND.DLL
2017-06-20 14:02 - 1996-11-17 23:00 - 00018944 _____ ( ) C:\Windows\SysWOW64\IMPLODE.DLL
2017-06-20 13:38 - 2017-06-20 13:38 - 00024530 _____ C:\Users\Mara\Documents\emissaoBoletoRedirecionar09
2017-06-20 12:43 - 2017-06-20 12:42 - 00024530 _____ C:\Users\Mara\Documents\emissaoBoletoRedirecionar.pdf
2017-06-20 12:08 - 2017-06-20 12:08 - 00000014 _____ C:\Users\Mara\Desktop\senha_wifi.txt
2017-06-14 13:43 - 2017-06-14 13:43 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú
2017-06-14 11:53 - 2017-06-14 11:53 - 00028678 _____ C:\Users\Mara\Downloads\NFE43150902826846000100550010001656451234331866.pdf
2017-06-08 12:11 - 2017-06-08 12:11 - 00033160 _____ C:\Users\Mara\Downloads\Embratel.htm
2017-06-08 12:11 - 2017-06-08 12:11 - 00000000 ____D C:\Users\Mara\Downloads\Embratel_arquivos
2017-06-07 10:44 - 2017-06-16 08:48 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-06-07 10:44 - 2017-06-16 08:48 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-07 10:44 - 2017-06-16 08:48 - 00004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-06-07 10:44 - 2017-06-16 08:48 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-06-07 10:44 - 2017-06-16 08:48 - 00000000 ____D C:\Windows\system32\Macromed
2017-06-07 10:42 - 2017-06-07 10:42 - 04616192 _____ C:\Users\Mara\Downloads\bb_modulo_assinatura_x64(2).msi
2017-06-07 10:39 - 2017-06-07 10:40 - 04616192 _____ C:\Users\Mara\Downloads\bb_modulo_assinatura_x64 (1).msi
2017-06-07 10:38 - 2017-06-07 10:38 - 04616192 _____ C:\Users\Mara\Downloads\bb_modulo_assinatura_x64(1).msi
2017-06-07 10:34 - 2017-06-07 10:34 - 04616192 _____ C:\Users\Mara\Downloads\bb_modulo_assinatura_x64.msi
2017-06-07 10:34 - 2017-06-07 10:34 - 00000000 ____D C:\Program Files\Banco do Brasil
2017-06-07 10:32 - 2017-07-06 19:54 - 00029816 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg64.sys
2017-06-07 10:32 - 2017-07-06 19:54 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2017-06-07 10:32 - 2017-07-06 19:54 - 00028376 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2017-06-07 10:32 - 2017-07-06 19:54 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2017-06-07 10:32 - 2017-07-06 19:54 - 00000000 ____D C:\ProgramData\GbPlugin
2017-06-07 10:32 - 2017-07-06 19:54 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2017-06-07 10:32 - 2017-06-07 10:32 - 00000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2017-06-07 10:32 - 2017-06-07 10:32 - 00000000 ___HD C:\Program Files (x86)\Diebold
2017-06-07 10:32 - 2017-06-07 10:32 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2017-06-07 10:32 - 2017-06-07 10:32 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2017-06-07 10:32 - 2017-06-07 10:32 - 00000000 ____D C:\Program Files\Diebold
2017-06-07 10:32 - 2016-11-07 14:54 - 00025184 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddprm.sys
2017-06-07 10:32 - 2016-06-16 18:43 - 00036984 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddntf.sys
2017-06-07 10:32 - 2016-06-16 18:43 - 00008811 _____ C:\Windows\system32\Drivers\wsddntf.cat
2017-06-07 10:32 - 2016-06-08 18:43 - 00025184 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2017-06-07 10:31 - 2017-06-07 10:31 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-06-07 10:31 - 2017-06-07 10:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-06-07 10:31 - 2017-06-07 10:31 - 00000000 ____D C:\Program Files (x86)\Java
2017-06-07 10:30 - 2017-06-07 10:30 - 00738880 _____ (Oracle Corporation) C:\Users\Mara\Downloads\jxpiinstall(1).exe
2017-06-07 10:29 - 2017-06-07 10:30 - 07887920 _____ (Banco do Brasil SA) C:\Users\Mara\Downloads\DiagnosticoBB.exe
2017-06-02 14:48 - 2017-06-02 14:48 - 00000522 _____ C:\Users\Mara\Desktop\CLREP - Atalho.lnk
2017-06-01 10:52 - 2017-06-01 10:52 - 00208384 _____ C:\Users\Mara\Documents\Cópia de TABELA FESTANÇA.xls
2017-05-29 16:42 - 2017-05-29 16:42 - 00150602 _____ C:\Users\Mara\Downloads\convencao-coletiva-de-trabalho-20162017.pdf
2017-05-19 15:15 - 2017-05-19 15:15 - 00137207 _____ C:\Users\Mara\Documents\Boletos.pdf
2017-05-12 14:05 - 2017-05-12 14:05 - 00037436 _____ C:\Users\Mara\Downloads\NF 68803 LACASA (BARELLA).pdf
2017-05-08 18:10 - 2017-05-08 18:10 - 00111235 _____ C:\Users\Mara\Downloads\sale_order_77709.pdf
2017-04-27 16:17 - 2017-04-27 16:18 - 00000000 ____D C:\Users\Mara\Desktop\PONTO DE ABRIL 2017
2017-04-27 16:03 - 2017-06-01 13:07 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-04-27 16:03 - 2017-06-01 13:07 - 00000959 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2017-04-27 16:03 - 2017-04-27 19:23 - 00000000 ____D C:\Users\Mara\AppData\Roaming\TeamViewer
2017-04-27 16:02 - 2017-07-06 21:46 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-04-27 15:49 - 2017-04-27 15:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-04-27 15:43 - 2017-04-27 15:44 - 14725904 _____ (TeamViewer GmbH) C:\Users\Mara\Downloads\TeamViewer_Setup.exe
2017-04-26 10:04 - 2017-04-26 10:04 - 00000000 ____D C:\Users\Mara\AppData\LocalLow\Temp
2017-04-24 14:59 - 2017-04-24 14:59 - 00065666 _____ C:\Users\Mara\Downloads\HORARIOS DE ONIBUS POA-TRAMANDAI.pdf
2017-04-24 14:59 - 2017-04-24 14:59 - 00065666 _____ C:\Users\Mara\Downloads\HORARIOS DE ONIBUS POA-TRAMANDAI (1).pdf
2017-04-20 08:19 - 2017-04-20 08:19 - 01533836 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-04-19 18:53 - 2017-04-19 18:54 - 00738880 _____ (Oracle Corporation) C:\Users\Mara\Downloads\jxpiinstall.exe
2017-04-19 18:50 - 2017-07-06 19:18 - 00000000 ____D C:\Users\Mara\AppData\LocalLow\Mozilla
2017-04-19 18:50 - 2017-06-07 19:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-19 18:50 - 2017-06-07 10:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-04-19 18:50 - 2017-05-02 11:48 - 00000000 ____D C:\Users\Mara\AppData\Local\Mozilla
2017-04-19 18:50 - 2017-04-19 18:50 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-04-19 18:50 - 2017-04-19 18:50 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-04-19 18:50 - 2017-04-19 18:50 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Mozilla
2017-04-19 18:49 - 2017-04-19 18:49 - 00246176 _____ (Mozilla) C:\Users\Mara\Downloads\Firefox Setup Stub 53.0 (1).exe
2017-04-19 18:48 - 2017-04-19 18:48 - 00246176 _____ (Mozilla) C:\Users\Mara\Downloads\Firefox Setup Stub 53.0.exe
2017-04-19 18:46 - 2017-06-07 10:31 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2017-04-19 18:46 - 2017-06-07 10:31 - 00000000 ____D C:\ProgramData\Oracle
2017-04-19 18:46 - 2017-04-19 18:46 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Sun
2017-04-19 18:46 - 2017-04-19 18:46 - 00000000 ____D C:\Users\Mara\AppData\LocalLow\Sun
2017-04-19 18:42 - 2017-04-19 18:42 - 00001297 _____ C:\Users\Public\Desktop\Ferramenta de Diagnóstico do BB Token.lnk
2017-04-19 18:42 - 2017-04-19 18:42 - 00001232 _____ C:\Users\Public\Desktop\BB Token Admin Tool.lnk
2017-04-19 18:42 - 2017-04-19 18:42 - 00000000 ____D C:\Windows\SysWOW64\WatchData
2017-04-19 18:42 - 2017-04-19 18:42 - 00000000 ____D C:\Windows\system32\WatchData
2017-04-19 18:42 - 2017-04-19 18:42 - 00000000 ____D C:\Users\Public\Documents\TEMP
2017-04-19 18:42 - 2017-04-19 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BB Token Tool
2017-04-19 18:42 - 2017-04-19 18:42 - 00000000 ____D C:\Program Files (x86)\Brazil
2017-04-19 18:41 - 2017-04-19 18:41 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2017-04-19 18:38 - 2017-04-19 18:38 - 00001423 _____ C:\Users\Mara\Desktop\Internet Explorer.lnk
2017-04-19 18:29 - 2017-04-19 18:29 - 00099912 _____ C:\Users\Mara\Downloads\archive.zip
2017-04-19 18:28 - 2017-06-14 13:43 - 00002128 _____ C:\Users\Mara\Desktop\Itaú.lnk
2017-04-19 18:28 - 2017-06-14 13:43 - 00000000 ____D C:\Users\Mara\AppData\Local\Aplicativo Itau
2017-04-19 17:04 - 2017-04-19 17:25 - 59092992 _____ C:\Users\Mara\Downloads\aplicativoitau.msi
2017-04-19 16:55 - 2017-06-13 18:50 - 00000000 ____D C:\Users\Mara\Desktop\Digitalizações
2017-04-13 19:37 - 2017-04-13 19:37 - 00370792 _____ C:\Users\Mara\Downloads\GRRF+SIMONE.pdf
2017-04-13 19:37 - 2017-04-13 19:37 - 00171804 _____ C:\Users\Mara\Downloads\CHAVE+FGTS.pdf
2017-04-13 19:37 - 2017-04-13 19:37 - 00111047 _____ C:\Users\Mara\Downloads\CHAVE+2.pdf
2017-04-13 19:37 - 2017-04-13 19:37 - 00035038 _____ C:\Users\Mara\Downloads\TERMO+DE+RESCISAO.pdf
2017-04-13 19:37 - 2017-04-13 19:37 - 00033253 _____ C:\Users\Mara\Downloads\FICHA+SAIDA.pdf
2017-04-13 19:37 - 2017-04-13 19:37 - 00032035 _____ C:\Users\Mara\Downloads\TERMO_DE_QUITAÇÃO_RESCISAO.pdf
2017-04-13 19:37 - 2017-04-13 19:37 - 00028118 _____ C:\Users\Mara\Downloads\AVISO+TERMINO+CONTRATO+EXPER.pdf
2017-04-13 19:04 - 2017-04-13 19:04 - 00000042 _____ C:\Windows\L355.ini
2017-04-13 19:04 - 2017-04-13 19:04 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Leadertech
2017-04-13 19:02 - 2017-04-13 19:02 - 00002705 _____ C:\Users\Mara\Desktop\Microsoft Office Outlook 2007.lnk
2017-04-13 19:00 - 2017-04-13 19:00 - 00002685 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Novo Documento do Microsoft Office.lnk
2017-04-13 19:00 - 2017-04-13 19:00 - 00002671 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Abrir Documento do Microsoft Office.lnk
2017-04-13 19:00 - 2017-04-13 19:00 - 00000934 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2017-04-13 19:00 - 2017-04-13 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-04-13 19:00 - 2017-04-13 19:00 - 00000000 ____D C:\Program Files (x86)\epson
2017-04-13 19:00 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2017-04-13 19:00 - 2011-12-12 00:00 - 00135824 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe
2017-04-13 18:59 - 2017-04-15 07:59 - 00000000 ____D C:\Users\Todos os Usuários\EPSON
2017-04-13 18:59 - 2017-04-15 07:59 - 00000000 ____D C:\ProgramData\EPSON
2017-04-13 18:59 - 2017-04-13 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2017-04-13 18:59 - 2017-04-13 18:59 - 00000000 ____D C:\Windows\PCHEALTH
2017-04-13 18:59 - 2017-04-13 18:59 - 00000000 ____D C:\Program Files\EpsonNet
2017-04-13 18:59 - 2017-04-13 18:59 - 00000000 ____D C:\Program Files\Common Files\EPSON
2017-04-13 18:59 - 2017-04-13 18:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2017-04-13 18:59 - 2017-04-13 18:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2017-04-13 18:59 - 2011-08-30 13:40 - 00535040 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2017-04-13 18:59 - 2011-08-30 13:40 - 00535040 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2017-04-13 18:59 - 2011-08-30 13:38 - 00558080 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2017-04-13 18:59 - 2011-08-30 13:38 - 00558080 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2017-04-13 18:59 - 2011-08-01 18:24 - 00252416 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
2017-04-13 18:59 - 2011-08-01 18:24 - 00252416 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
2017-04-13 18:59 - 2011-04-19 03:03 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YLMI4E.DLL
2017-04-13 18:59 - 2011-03-14 03:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YD4BI4E.DLL
2017-04-13 18:59 - 2007-04-10 01:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2017-04-13 18:58 - 2017-04-13 18:58 - 00000000 ____D C:\Program Files\Microsoft Office
2017-04-13 18:57 - 2017-04-13 19:00 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-04-13 18:57 - 2017-04-13 18:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-04-13 18:57 - 2017-04-13 18:57 - 00000000 __RHD C:\MSOCache
2017-04-13 18:57 - 2017-04-13 18:57 - 00000000 ____D C:\Users\Mara\AppData\Local\Microsoft Help
2017-04-13 18:57 - 2017-04-13 18:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2017-04-13 18:57 - 2017-04-13 18:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2017-04-13 18:57 - 2017-04-13 18:57 - 00000000 ____D C:\IDE
2017-04-13 18:56 - 2017-04-13 18:57 - 132032800 _____ C:\Users\Mara\Downloads\L355_Lite_Installer_Win_3.0ASP_GM.exe
2017-04-13 18:54 - 2017-04-13 18:54 - 00000000 ____D C:\Users\Mara\Desktop\Office2007
2017-04-13 18:51 - 2017-06-22 15:27 - 00000000 ____D C:\CLREP
2017-04-13 18:51 - 2017-04-13 18:51 - 00000000 ____D C:\Users\Mara\Desktop\Ponto Passo
2017-04-11 20:32 - 2009-11-25 12:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-04-11 20:32 - 2009-11-25 12:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2017-04-11 20:32 - 2009-11-25 12:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2017-04-11 20:32 - 2009-11-25 12:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-04-11 20:27 - 2017-07-06 19:54 - 00000000 __SHD C:\Users\Mara\IntelGraphicsProfiles
2017-04-11 20:27 - 2017-04-11 20:27 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-04-11 20:24 - 2010-09-14 03:45 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2017-04-11 20:24 - 2010-09-14 03:07 - 00276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll
2017-04-11 20:21 - 2009-10-10 00:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2017-04-11 20:20 - 2017-04-11 20:21 - 00000000 ____D C:\Windows\system32\MRT
2017-04-11 20:20 - 2017-04-11 20:20 - 148601744 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-11 20:19 - 2012-09-06 14:38 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2017-04-11 20:19 - 2011-08-30 02:21 - 14164480 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-04-11 20:19 - 2011-08-30 01:28 - 12868096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-04-11 20:19 - 2011-01-26 03:53 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-04-11 20:19 - 2011-01-26 03:53 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-04-11 20:19 - 2011-01-26 03:31 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-04-11 20:19 - 2010-12-21 03:16 - 01197056 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-04-11 20:19 - 2010-12-21 03:16 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-04-11 20:19 - 2010-12-21 03:16 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2017-04-11 20:19 - 2010-12-21 03:16 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2017-04-11 20:19 - 2010-12-21 03:16 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2017-04-11 20:19 - 2010-12-21 03:15 - 01498112 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-04-11 20:19 - 2010-12-21 03:15 - 00264192 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2017-04-11 20:19 - 2010-12-21 03:15 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2017-04-11 20:19 - 2010-12-21 03:13 - 02003968 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-04-11 20:19 - 2010-12-21 03:13 - 01880576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-04-11 20:19 - 2010-12-21 03:11 - 12369408 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-04-11 20:19 - 2010-12-21 03:10 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 01228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 00981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2017-04-11 20:19 - 2010-12-21 02:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll
2017-04-11 20:19 - 2010-12-21 02:36 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-04-11 20:19 - 2010-12-21 02:36 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-04-11 20:19 - 2010-12-21 02:35 - 10989056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-04-11 20:19 - 2010-12-21 02:34 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2017-04-11 20:19 - 2010-11-04 03:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-04-11 20:19 - 2010-11-04 03:31 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-04-11 20:19 - 2010-11-04 02:48 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-04-11 20:19 - 2010-11-04 02:48 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-04-11 20:19 - 2010-11-02 02:18 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2017-04-11 20:19 - 2010-11-02 02:18 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2017-04-11 20:19 - 2010-11-02 02:18 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2017-04-11 20:19 - 2010-11-02 02:12 - 01837568 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-04-11 20:19 - 2010-11-02 02:12 - 01540608 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-04-11 20:19 - 2010-11-02 02:12 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-04-11 20:19 - 2010-11-02 02:12 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-04-11 20:19 - 2010-11-02 02:12 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-04-11 20:19 - 2010-11-02 02:12 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-04-11 20:19 - 2010-11-02 01:41 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2017-04-11 20:19 - 2010-11-02 01:41 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2017-04-11 20:19 - 2010-11-02 01:41 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2017-04-11 20:19 - 2010-11-02 01:35 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2017-04-11 20:19 - 2010-11-02 01:35 - 01074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-04-11 20:19 - 2010-11-02 01:35 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-04-11 20:19 - 2010-11-02 01:35 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2017-04-11 20:19 - 2010-11-02 01:35 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2017-04-11 20:19 - 2010-06-26 02:31 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-04-11 20:19 - 2010-06-26 02:14 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-04-11 20:19 - 2010-05-23 07:15 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2017-04-11 20:19 - 2010-05-23 07:11 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-04-11 20:19 - 2010-05-23 07:11 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2017-04-11 20:19 - 2010-05-23 05:37 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-04-11 20:19 - 2010-05-23 05:35 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-04-11 20:19 - 2010-05-23 05:35 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2017-04-11 20:19 - 2010-05-23 05:35 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-04-11 20:19 - 2010-03-24 03:59 - 01736608 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-04-11 20:19 - 2010-03-24 03:37 - 01289528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-04-11 20:19 - 2010-03-04 01:32 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2017-04-11 20:19 - 2010-01-19 06:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2017-04-11 20:19 - 2010-01-19 06:05 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2017-04-11 20:19 - 2010-01-19 06:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2017-04-11 20:19 - 2010-01-19 06:05 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2017-04-11 20:19 - 2010-01-19 06:00 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2017-04-11 20:19 - 2010-01-19 06:00 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2017-04-11 20:19 - 2010-01-19 06:00 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2017-04-11 20:19 - 2010-01-19 06:00 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2017-04-11 20:19 - 2010-01-18 20:29 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2017-04-11 20:19 - 2010-01-18 20:29 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2017-04-11 20:19 - 2010-01-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2017-04-11 20:19 - 2010-01-18 20:29 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2017-04-11 20:19 - 2010-01-18 20:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2017-04-11 20:19 - 2010-01-18 20:28 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2017-04-11 20:19 - 2010-01-18 20:28 - 00280064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2017-04-11 20:19 - 2010-01-18 20:28 - 00277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2017-04-11 20:19 - 2009-12-11 07:29 - 00153160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-04-11 20:19 - 2009-12-11 06:24 - 01446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-04-11 20:19 - 2009-12-11 04:39 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-04-11 20:19 - 2009-12-11 04:36 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-04-11 20:19 - 2009-10-31 03:34 - 02870272 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-04-11 20:19 - 2009-10-31 02:45 - 02614272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-04-11 20:19 - 2009-10-28 03:24 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2017-04-11 20:15 - 2011-04-09 03:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-04-11 20:15 - 2011-04-09 02:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2017-04-11 20:13 - 2016-06-25 13:03 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2017-04-11 20:13 - 2015-03-19 00:07 - 05503416 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-04-11 20:13 - 2015-03-18 23:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-04-11 20:13 - 2015-03-18 23:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-04-11 20:13 - 2014-09-14 21:44 - 03195392 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-04-11 20:13 - 2013-03-19 02:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-04-11 20:13 - 2013-03-19 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-04-11 20:13 - 2013-03-19 00:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-04-11 20:07 - 2012-06-02 19:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-04-11 20:07 - 2012-06-02 19:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-04-11 20:07 - 2012-06-02 19:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-04-11 20:07 - 2012-06-02 19:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-04-11 20:07 - 2012-06-02 19:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-04-11 20:07 - 2012-06-02 19:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-04-11 20:07 - 2012-06-02 19:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-04-11 20:06 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-04-11 20:06 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-04-11 17:43 - 2017-05-06 15:44 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-04-11 17:43 - 2017-04-11 17:43 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-11 17:43 - 2017-04-11 17:43 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-04-11 17:43 - 2017-04-11 17:43 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Adobe
2017-04-11 17:43 - 2017-04-11 17:43 - 00000000 ____D C:\Users\Mara\AppData\LocalLow\Adobe
2017-04-11 17:43 - 2017-04-11 17:43 - 00000000 ____D C:\Users\Mara\AppData\Local\CEF
2017-04-11 17:42 - 2017-06-07 10:44 - 00000000 ____D C:\Users\Mara\AppData\Local\Adobe
2017-04-11 17:42 - 2017-04-11 20:20 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2017-04-11 17:42 - 2017-04-11 20:20 - 00000000 ____D C:\ProgramData\Adobe
2017-04-11 17:42 - 2017-04-11 17:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-04-11 16:55 - 2017-07-06 22:10 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-11 16:55 - 2017-07-06 22:10 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-11 16:54 - 2017-06-08 18:03 - 00109632 _____ C:\Users\Mara\AppData\Local\GDIPFONTCACHEV1.DAT
2017-04-11 16:54 - 2017-04-28 19:07 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-11 16:54 - 2017-04-28 19:07 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-11 16:54 - 2017-04-11 17:30 - 00000000 ____D C:\Users\Mara\AppData\Local\Google
2017-04-11 16:54 - 2017-04-11 16:55 - 00000000 ____D C:\Program Files (x86)\Google
2017-04-11 16:54 - 2017-04-11 16:54 - 00000000 ____D C:\Users\Mara\AppData\Local\Deployment
2017-04-11 16:54 - 2017-04-11 16:54 - 00000000 ____D C:\Users\Mara\AppData\Local\Apps\2.0
2017-04-11 15:22 - 2017-05-15 10:27 - 00000000 ____D C:\Users\Mara\AppData\Local\ElevatedDiagnostics
2017-04-11 15:20 - 2014-06-17 09:13 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-04-11 15:20 - 2014-06-17 09:13 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2017-04-11 15:20 - 2014-06-17 09:13 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-04-11 15:18 - 2017-04-13 18:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-11 15:18 - 2017-04-11 15:20 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-04-11 15:18 - 2017-04-11 15:18 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-04-11 15:18 - 2017-04-11 15:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-04-11 15:18 - 2017-04-11 15:18 - 00000000 ____D C:\Program Files\Realtek
2017-04-11 15:18 - 2012-06-19 05:54 - 04065296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-04-11 15:18 - 2012-06-19 02:31 - 00293889 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-11 15:18 - 2012-06-08 05:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2017-04-11 15:18 - 2012-06-08 05:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2017-04-11 15:18 - 2012-06-08 05:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2017-04-11 15:18 - 2012-06-08 05:18 - 03615888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2017-04-11 15:18 - 2012-06-05 23:44 - 00869520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-04-11 15:18 - 2012-05-31 22:37 - 02674320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-04-11 15:18 - 2012-05-31 07:08 - 00105616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-04-11 15:18 - 2012-05-25 07:06 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2017-04-11 15:18 - 2012-05-10 04:22 - 01262696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-04-11 15:18 - 2012-04-10 03:40 - 02533952 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-04-11 15:18 - 2012-04-03 07:42 - 01015640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2017-04-11 15:18 - 2012-03-08 00:47 - 00202336 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-04-11 15:18 - 2012-03-08 00:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-04-11 15:18 - 2012-02-21 08:45 - 02605400 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2017-04-11 15:18 - 2011-12-20 04:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-04-11 15:18 - 2011-12-18 06:58 - 02131288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2017-04-11 15:18 - 2011-12-16 03:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2017-04-11 15:18 - 2011-12-13 05:58 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-04-11 15:18 - 2011-11-22 05:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-04-11 15:18 - 2010-11-07 20:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-04-11 15:18 - 2010-11-07 20:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-04-11 15:18 - 2010-11-07 20:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-04-11 15:18 - 2010-11-07 20:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-04-11 15:18 - 2010-11-07 20:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-04-11 15:18 - 2010-11-07 20:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-04-11 15:18 - 2010-11-03 07:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-04-11 15:18 - 2010-09-26 22:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-04-11 15:18 - 2009-11-23 22:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-04-11 15:18 - 2009-11-23 22:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-04-11 15:18 - 2009-11-23 22:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-04-11 15:18 - 2009-11-23 22:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-04-11 15:18 - 2009-11-17 20:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2017-04-11 15:17 - 2017-04-11 15:17 - 00015460 _____ C:\Windows\system32\results.xml
2017-04-11 15:15 - 2017-04-11 15:15 - 00000000 ____D C:\Program Files\Intel
2017-04-11 15:15 - 2015-08-27 18:20 - 00072704 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2017-04-11 15:15 - 2015-08-27 18:20 - 00069120 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2017-04-11 15:14 - 2015-08-27 18:20 - 12335600 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2017-04-11 15:14 - 2015-08-27 18:20 - 04637640 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2017-04-11 15:14 - 2015-08-27 18:20 - 00395168 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2017-04-11 15:14 - 2015-08-27 18:20 - 00102912 _____ C:\Windows\system32\IccLibDll_x64.dll
2017-04-11 15:14 - 2013-10-28 19:13 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3345.dll
2017-04-11 15:14 - 2013-10-28 19:06 - 09081856 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2017-04-11 15:14 - 2013-10-28 19:06 - 02384896 _____ C:\Windows\system32\GfxRes.dll
2017-04-11 15:14 - 2013-10-28 19:06 - 00224256 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2017-04-11 15:14 - 2013-10-28 19:06 - 00001806 _____ C:\Windows\system32\GfxUIEx.exe.config
2017-04-11 15:14 - 2013-10-28 19:01 - 00492032 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2017-04-11 15:14 - 2013-10-07 19:52 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa
2017-04-11 15:14 - 2013-10-07 19:52 - 00044025 _____ C:\Windows\system32\iglhxo64.vp
2017-04-11 15:14 - 2013-10-07 19:52 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp
2017-04-11 15:14 - 2013-10-07 19:52 - 00043494 _____ C:\Windows\system32\iglhxc64.vp
2017-04-11 15:14 - 2013-10-07 19:52 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp
2017-04-11 15:14 - 2013-10-07 19:52 - 00043256 _____ C:\Windows\system32\iglhxg64.vp
2017-04-11 15:14 - 2013-10-07 19:52 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp
2017-04-11 15:14 - 2013-10-07 19:52 - 00001125 _____ C:\Windows\system32\iglhxa64.vp
2017-04-11 15:10 - 2017-04-11 15:19 - 00000000 ____D C:\Install
2017-04-11 15:10 - 2017-04-11 15:15 - 00000000 ____D C:\Program Files (x86)\Intel
2017-04-11 15:10 - 2017-04-11 15:14 - 00000000 ____D C:\Intel
2017-04-11 15:10 - 2013-08-21 04:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2017-04-11 14:49 - 2017-04-19 18:46 - 00000000 ____D C:\Users\Mara\AppData\Local\VirtualStore
2017-04-11 14:49 - 2017-04-19 16:55 - 00000000 ____D C:\Users\Mara
2017-04-11 14:49 - 2017-04-11 14:49 - 00001423 _____ C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-04-11 14:49 - 2017-04-11 14:49 - 00001389 _____ C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2017-04-11 14:49 - 2017-04-11 14:49 - 00000020 ___SH C:\Users\Mara\ntuser.ini
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Modelos
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Meus documentos
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Menu Iniciar
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Documents\Minhas músicas
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Documents\Minhas imagens
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Documents\Meus vídeos
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Dados de aplicativos
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Configurações locais
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\AppData\Local\Histórico
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\AppData\Local\Dados de aplicativos
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Ambiente de rede
2017-04-11 14:49 - 2017-04-11 14:49 - 00000000 _SHDL C:\Users\Mara\Ambiente de impressão
2017-04-11 14:49 - 2009-07-14 15:12 - 00000000 ____D C:\Users\Mara\AppData\Roaming\Media Center Programs
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Usuário Padrão
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Todos os Usuários
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Modelos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Meus documentos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Configurações locais
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Ambiente de rede
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\ProgramData\Modelos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\ProgramData\Menu Iniciar
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\ProgramData\Favoritos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\ProgramData\Documentos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Program Files\Common Files\Sistema
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Program Files\Arquivos Comuns
2017-04-11 14:48 - 2017-04-11 14:48 - 00000000 _SHDL C:\Arquivos de Programas
2017-04-11 14:45 - 2017-04-11 14:45 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-04-11 14:45 - 2017-04-11 14:45 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-04-11 14:42 - 2017-04-11 14:48 - 00000000 ____D C:\Windows\Panther
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-07-06 19:58 - 2009-07-14 14:55 - 00666510 _____ C:\Windows\system32\prfh0416.dat
2017-07-06 19:58 - 2009-07-14 14:55 - 00128740 _____ C:\Windows\system32\prfc0416.dat
2017-07-06 19:58 - 2009-07-14 02:13 - 01524858 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-06 19:58 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2017-07-06 19:53 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-06 19:43 - 2009-07-14 01:45 - 00014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-06 19:43 - 2009-07-14 01:45 - 00014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-09 08:41 - 2009-07-14 01:45 - 00413288 _____ C:\Windows\system32\FNTCACHE.DAT
==================== Arquivos na raiz de alguns diretórios =======
2017-06-22 18:46 - 2017-06-22 18:46 - 0036044 _____ () C:\Program Files (x86)\CMS Setup Log.txt
2017-06-20 14:21 - 2017-06-20 14:15 - 76140548 _____ () C:\Program Files (x86)\Ponto Passo.rar
2017-04-19 18:47 - 2017-04-19 18:58 - 0009020 _____ () C:\Users\Mara\AppData\Roaming\BB_WATCH.log
2017-07-06 19:15 - 2017-07-06 19:15 - 0000000 _____ () C:\Users\Mara\AppData\Local\{581BA3CF-2C54-4C8F-B132-58A29457727D}
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
==================== BCD ================================
Gerenciador de Inicializa‡Æo do Windows
--------------------
identificador {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale pt-BR
inherit {globalsettings}
default {current}
resumeobject {3ba05d51-1ede-11e7-974e-a86ef105be84}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Carregador de Inicializa‡Æo do Windows
-------------------
identificador {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale pt-BR
inherit {bootloadersettings}
recoverysequence {3ba05d53-1ede-11e7-974e-a86ef105be84}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {3ba05d51-1ede-11e7-974e-a86ef105be84}
nx OptIn
Carregador de Inicializa‡Æo do Windows
-------------------
identificador {3ba05d53-1ede-11e7-974e-a86ef105be84}
device ramdisk=[C:]\Recovery\3ba05d53-1ede-11e7-974e-a86ef105be84\Winre.wim,{3ba05d54-1ede-11e7-974e-a86ef105be84}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\3ba05d53-1ede-11e7-974e-a86ef105be84\Winre.wim,{3ba05d54-1ede-11e7-974e-a86ef105be84}
systemroot \windows
nx OptIn
winpe Yes
Continuar da Hiberna‡Æo
---------------------
identificador {3ba05d51-1ede-11e7-974e-a86ef105be84}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale pt-BR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Testador de Mem¢ria do Windows
---------------------
identificador {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagn¢stico de Mem¢ria do Windows
locale pt-BR
inherit {globalsettings}
badmemoryaccess Yes
Configura‡äes de EMS
------------
identificador {emssettings}
bootems Yes
Configura‡äes do Depurador
-----------------
identificador {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Defeitos de RAM
-----------
identificador {badmemory}
Configura‡äes Globais
---------------
identificador {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Configura‡äes do Carregador de Inicializa‡Æo
--------------------
identificador {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Configura‡äes do Hypervisor
-------------------
identificador {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Configura‡äes do Carregador de Retorno
----------------------
identificador {resumeloadersettings}
inherit {globalsettings}
Op‡äes de dispositivo
--------------
identificador {3ba05d54-1ede-11e7-974e-a86ef105be84}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\3ba05d53-1ede-11e7-974e-a86ef105be84\boot.sdi
LastRegBack: 2017-06-22 09:20
==================== Fim de FRST.txt ============================