Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-04-2016 Executado por admin (administrador) em ADMIN-PC (27-04-2016 09:47:36) Executando a partir de C:\Users\admin\Desktop Perfis Carregados: admin (Perfis Disponíveis: admin) Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Português (Brasil) Internet Explorer Versão 9 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (BitTorrent Inc.) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (skype.cog.cc) C:\Program Files (x86)\SkypeUpdateEx\SkypeUpdateEx.exe (WFini LIMITED) C:\ProgramData\OwinpO\WFini.exe (Microsoft Corporation) C:\Users\admin\AppData\Roaming\XBox\XBLive.exe (BitTorrent Inc.) C:\Users\admin\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe (BitTorrent Inc.) C:\Users\admin\AppData\Roaming\uTorrent\updates\3.4.6_42094\utorrentie.exe (Microsoft Corporation) C:\Windows\System32\UI0Detect.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe (Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe (Razer, Inc.) C:\Users\admin\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe () C:\ProgramData\vreXjvX\protect\protect.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-09-29] (Razer Inc.) HKU\S-1-5-21-3702020577-1538537946-4074578640-1000\...\Run: [uTorrent] => C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe [1959424 2016-04-09] (BitTorrent Inc.) HKU\S-1-5-21-3702020577-1538537946-4074578640-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4290240 2016-03-01] (Disc Soft Ltd) HKU\S-1-5-21-3702020577-1538537946-4074578640-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [3077712 2016-03-31] (Valve Corporation) HKU\S-1-5-21-3702020577-1538537946-4074578640-1000\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\osmsg.exe [2041856 2016-03-31] () ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) ProxyServer: [S-1-5-21-3702020577-1538537946-4074578640-1000] => http=127.0.0.1:8080;https=127.0.0.1:8080 Winsock: Catalog5 07 C:\ProgramData\System32\SafeGuard32.dll Nenhum Arquivo Winsock: Catalog5-x64 07 C:\ProgramData\System32\SafeGuard64.dll Nenhum Arquivo Tcpip\..\Interfaces\{0D6D0A48-D0F4-483D-BA0A-DD945CA0F210}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{DFA63279-4BF4-4B5E-85AA-A9212539BABB}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO HKU\S-1-5-21-3702020577-1538537946-4074578640-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-3702020577-1538537946-4074578640-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKU\S-1-5-21-3702020577-1538537946-4074578640-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-24] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-24] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) Chrome: ======= CHR HomePage: Profile 1 -> hxxp://www.google.com/ CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/","hxxp://www.facebook.com/","hxxp://www.youtube.com/","hxxp://www.hotmail.com/","hxxp://www.orkut.com/","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=5497FB86F18EBC47A7617C0504263E05&v=20160405&ts=AHEpCHYsCHMqBk.." CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Search) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-12] CHR Extension: (Planilhas do Google) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-12] CHR Extension: (LoungeDestroyer) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-04-26] CHR Extension: (Documentos Google off-line) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (Ad Block - Chega de Publicidade) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjdkfeeffbfcoanbnkeedjccphcmpehm [2016-04-25] CHR Extension: (Chrome to Mobile) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\idknbmbdnapjicclomlijcgfpikmndhd [2015-12-12] CHR Extension: (Dingit Infinite HD App) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\llnhnfikffkjbdnfallfpgikamegbbag [2016-01-29] CHR Extension: (Boomerang for Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll [2016-03-09] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01] CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-12] CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Google Apresentações) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-27] CHR Extension: (Google Docs) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-27] CHR Extension: (Google Drive) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-27] CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-27] CHR Extension: (Gom VPN - Bypass and unblock) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ckiahbcmlmkpfiijecbpflfahoimklke [2016-04-27] CHR Extension: (Planilhas do Google) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-27] CHR Extension: (LoungeDestroyer) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-04-27] CHR Extension: (Documentos Google off-line) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-27] CHR Extension: (Ad Block - Chega de Publicidade) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hjdkfeeffbfcoanbnkeedjccphcmpehm [2016-04-27] CHR Extension: (Chrome to Mobile) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\idknbmbdnapjicclomlijcgfpikmndhd [2016-04-27] CHR Extension: (Dingit Infinite HD App) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\llnhnfikffkjbdnfallfpgikamegbbag [2016-04-27] CHR Extension: (Boomerang for Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll [2016-04-27] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-27] CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-27] ==================== Serviços (Whitelisted) ======================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1444544 2016-03-01] (Disc Soft Ltd) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [242448 2016-01-29] (EasyAntiCheat Ltd) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation) S2 ggbugreport; C:\Program Files (x86)\SearchesToYesbnd\bugreport.exe [1609744 2016-04-06] () R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation) R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] () R2 SkypeUpdateEx; C:\Program Files (x86)\SkypeUpdateEx\SkypeUpdateEx.exe [167352 2016-03-21] (skype.cog.cc) R2 vreXjvX_protect; C:\ProgramData\vreXjvX\protect\protect.exe [303000 2016-04-27] () R2 WdMan; C:\ProgramData\OwinpO\WFini.exe [582328 2016-04-13] (WFini LIMITED) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) S2 Winsere; C:\Program Files (x86)\Winsere\Winsere\Winsere.exe [316400 2016-04-06] () R2 XBox; C:\Users\admin\AppData\Roaming\XBox\XBLive.exe [5906904 2016-02-27] (Microsoft Corporation) S2 vreXjvX_update; "C:\Program Files (x86)\vreXjvX\vreXjvX\bin\vreXjvX_server.exe" [X] ===================== Drivers (Whitelisted) ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-03-13] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-03-13] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 egg_protect; C:\Windows\EProtect_amd64.sys [19856 2016-04-20] () S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation) S3 rt640x64; C:\Windows\System32\DRIVERS\rt640x64.sys [888064 2015-12-12] (Realtek ) R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [50392 2015-08-13] (Razer Inc) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-26] (Razer, Inc.) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 EasyAntiCheatSys; \??\C:\Windows\system32\drivers\EasyAntiCheat.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três Meses Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-04-27 09:47 - 2016-04-27 09:47 - 02376704 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe 2016-04-27 09:47 - 2016-04-27 09:47 - 00015862 _____ C:\Users\admin\Desktop\FRST.txt 2016-04-27 09:44 - 2016-04-27 09:44 - 00000000 ____D C:\Users\admin\AppData\LocalLow\uTorrent 2016-04-27 09:38 - 2016-04-27 07:32 - 00001988 _____ C:\Users\admin\Desktop\Primeiro usuário - Chrome.lnk 2016-04-27 09:35 - 2016-04-27 09:35 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2016-04-27 09:34 - 2016-04-27 09:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-04-27 09:34 - 2016-04-27 09:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2016-04-27 09:34 - 2016-04-27 09:34 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2016-04-27 09:33 - 2016-04-27 09:34 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2016-04-27 09:33 - 2016-04-27 09:33 - 00000000 ____D C:\Windows\PCHEALTH 2016-04-27 09:33 - 2016-04-27 09:33 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft 2016-04-27 09:33 - 2016-04-27 09:33 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-04-27 09:33 - 2016-04-27 09:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-04-27 09:31 - 2016-04-27 09:36 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help 2016-04-27 09:31 - 2016-04-27 09:33 - 00000000 ____D C:\Program Files\Microsoft Office 2016-04-27 09:31 - 2016-04-27 09:31 - 00000000 ____D C:\Users\admin\AppData\Local\Microsoft Help 2016-04-27 09:31 - 2016-04-27 09:31 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2016-04-27 09:31 - 2016-04-27 09:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-04-27 09:31 - 2016-04-27 09:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2016-04-27 09:30 - 2016-04-27 09:30 - 00000000 __RHD C:\MSOCache 2016-04-27 09:10 - 2016-04-27 09:10 - 00000000 ____D C:\Users\admin\AppData\Roaming\eCyber 2016-04-27 09:07 - 2016-04-27 09:07 - 00014549 _____ C:\ComboFix.txt 2016-04-27 08:56 - 2016-04-27 09:07 - 00000000 ____D C:\Qoobox 2016-04-27 08:56 - 2016-04-27 09:06 - 00000000 ____D C:\Windows\erdnt 2016-04-27 08:56 - 2011-06-26 03:45 - 00256000 _____ C:\Windows\PEV.exe 2016-04-27 08:56 - 2010-11-07 14:20 - 00208896 _____ C:\Windows\MBR.exe 2016-04-27 08:56 - 2009-04-20 01:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2016-04-27 08:56 - 2000-08-30 21:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2016-04-27 08:56 - 2000-08-30 21:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2016-04-27 08:56 - 2000-08-30 21:00 - 00098816 _____ C:\Windows\sed.exe 2016-04-27 08:56 - 2000-08-30 21:00 - 00080412 _____ C:\Windows\grep.exe 2016-04-27 08:56 - 2000-08-30 21:00 - 00068096 _____ C:\Windows\zip.exe 2016-04-27 07:34 - 2016-04-27 07:34 - 00000000 ____D C:\Windows\system32\log 2016-04-27 07:34 - 2016-04-27 07:34 - 00000000 ____D C:\Users\Todos os Usuários\vreXjvX 2016-04-27 07:34 - 2016-04-27 07:34 - 00000000 ____D C:\ProgramData\vreXjvX 2016-04-27 07:33 - 2016-04-27 07:33 - 00000000 ____D C:\Users\admin\AppData\Local\vreXjvX 2016-04-27 07:32 - 2016-04-27 09:06 - 00014744 _____ C:\Windows\System32\Tasks\vreXjvXBrowserUpdateUA 2016-04-27 07:32 - 2016-04-27 09:06 - 00014738 _____ C:\Windows\System32\Tasks\vreXjvXCheckTask 2016-04-27 07:32 - 2016-04-27 09:06 - 00003804 _____ C:\Windows\System32\Tasks\vreXjvXBrowserUpdateCore 2016-04-27 07:32 - 2016-04-27 07:32 - 00002108 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-04-27 07:32 - 2016-04-27 07:32 - 00000000 ____D C:\Users\Public\Documents\vreXjvX 2016-04-19 11:10 - 2016-04-19 11:10 - 00002083 _____ C:\Users\admin\Desktop\experiencia profissional.txt 2016-04-18 15:02 - 2016-04-18 15:02 - 00000000 ____D C:\Users\admin\Documents\Office 2013 Professional Plus VL Pt-Br x86 e x64. MJSconect 2016-04-18 15:01 - 2016-04-18 15:01 - 00055066 _____ C:\Users\admin\Documents\Office 2013 Professional Plus VL Pt-Br x86 e x64. MJSconect.torrent 2016-04-18 07:51 - 2016-04-19 09:24 - 00000001 _____ C:\Windows\SysWOW64\br.html 2016-04-14 02:42 - 2016-04-27 09:10 - 00000000 ____D C:\Program Files (x86)\WinZipper 2016-04-14 02:41 - 2016-04-14 02:41 - 00015128 _____ C:\Windows\System32\Tasks\Browser Updater Task(Core) 2016-04-14 02:41 - 2016-04-14 02:41 - 00000000 ____D C:\Users\Todos os Usuários\OwinpO 2016-04-14 02:41 - 2016-04-14 02:41 - 00000000 ____D C:\ProgramData\OwinpO 2016-04-14 02:41 - 2016-04-14 02:41 - 00000000 ____D C:\Program Files (x86)\QQBrowser 2016-04-11 07:42 - 2016-04-20 08:00 - 00019856 _____ C:\Windows\EProtect_amd64.sys 2016-04-07 08:35 - 2016-04-27 09:47 - 00000000 ____D C:\FRST 2016-04-06 21:53 - 2016-04-20 08:31 - 00000000 ____D C:\Program Files (x86)\SkypeUpdateEx 2016-04-06 21:44 - 2016-04-06 21:44 - 00000000 ____D C:\Program Files (x86)\EBA82F76-1459989870-8BE9-1FF3-AC9E17DEFD32 2016-04-06 21:43 - 2016-04-06 21:43 - 00002914 _____ C:\Windows\System32\Tasks\osTip 2016-04-06 21:43 - 2016-04-06 21:43 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg 2016-04-06 21:43 - 2016-04-06 21:43 - 00000000 ____D C:\ProgramData\WindowsMsg 2016-04-06 21:42 - 2016-04-06 21:42 - 00000000 ____D C:\Windows\system32\SSL 2016-04-06 21:41 - 2016-04-16 19:43 - 00000000 ____D C:\Program Files (x86)\SearchesToYesbnd 2016-04-06 21:41 - 2016-04-06 21:43 - 00000000 ____D C:\Users\admin\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108 2016-04-06 21:41 - 2016-04-06 21:41 - 00015160 _____ C:\Windows\System32\Tasks\WinTaske 2016-04-06 21:41 - 2016-04-06 21:41 - 00000000 ____D C:\Users\Public\Documents\dmp 2016-04-06 21:41 - 2016-04-06 21:41 - 00000000 ____D C:\Users\admin\AppData\Roaming\XBox 2016-04-06 21:41 - 2016-04-06 21:41 - 00000000 ____D C:\Program Files (x86)\WinTaske 2016-04-06 21:41 - 2016-04-06 21:41 - 00000000 ____D C:\Program Files (x86)\Winsere 2016-04-06 21:41 - 2016-04-06 21:41 - 00000000 ____D C:\extensions 2016-04-06 21:40 - 2016-04-06 21:40 - 00000034 ___SH C:\Users\Public\Documents\{DE764086-1C0A-4DD3-90BA-0B93BDD794BE} 2016-04-06 21:39 - 2016-04-06 21:39 - 02791840 _____ C:\Windows\chromebrowser.exe 2016-04-06 21:38 - 2016-04-06 21:45 - 00000000 ____D C:\Users\admin\AppData\Roaming\DivX 2016-04-06 21:35 - 2016-04-06 21:45 - 00000000 ____D C:\Users\Todos os Usuários\DivX 2016-04-06 21:35 - 2016-04-06 21:45 - 00000000 ____D C:\ProgramData\DivX 2016-04-06 19:11 - 2016-04-06 19:11 - 00040549 _____ C:\Users\admin\Documents\Once.Upon.a.Time.S05E16.720p.HDTV.x264-AVS.torrent 2016-04-06 18:01 - 2016-04-06 18:01 - 00003794 _____ C:\Windows\System32\Tasks\klcp_update 2016-04-06 18:01 - 2016-04-06 18:01 - 00000000 ____D C:\Users\admin\AppData\Roaming\MPC-HC 2016-04-06 18:01 - 2016-04-06 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2016-04-06 18:01 - 2016-04-06 18:01 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2016-04-06 18:01 - 2015-12-18 07:00 - 00755200 _____ C:\Windows\system32\xvidcore.dll 2016-04-06 18:01 - 2015-12-18 07:00 - 00674816 _____ C:\Windows\SysWOW64\xvidcore.dll 2016-04-06 18:01 - 2015-12-18 07:00 - 00309248 _____ C:\Windows\system32\xvidvfw.dll 2016-04-06 18:01 - 2015-12-18 07:00 - 00282112 _____ C:\Windows\SysWOW64\xvidvfw.dll 2016-04-06 18:01 - 2015-10-24 14:00 - 00126976 _____ C:\Windows\system32\ff_vfw.dll 2016-04-06 18:01 - 2015-10-24 14:00 - 00112128 _____ C:\Windows\SysWOW64\ff_vfw.dll 2016-04-06 18:01 - 2015-02-28 13:22 - 03571200 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll 2016-04-06 18:01 - 2015-02-28 13:21 - 03591680 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll 2016-04-06 18:01 - 2012-07-21 08:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm 2016-04-06 18:01 - 2012-07-21 08:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm 2016-04-06 18:01 - 2011-12-07 15:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll 2016-04-06 18:01 - 2011-12-07 15:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll 2016-04-06 17:59 - 2016-04-06 17:59 - 42013590 _____ ( ) C:\Users\admin\Downloads\K-Lite_Codec_Pack_1180_Mega.exe 2016-04-06 16:18 - 2016-04-06 16:18 - 00132729 _____ C:\Users\admin\Documents\Once.Upon.a.Time.S05E15.1080p.WEB-DL.DD5.1.H.264-VietHD.torrent 2016-04-06 15:01 - 2016-04-06 15:01 - 00000222 _____ C:\Users\admin\Desktop\EasyAntiCheat eSports.url 2016-04-06 11:20 - 2016-04-06 11:20 - 00000219 _____ C:\Users\admin\Desktop\Counter-Strike Global Offensive.url 2016-04-06 11:11 - 2016-04-06 11:11 - 00000000 ____D C:\Program Files (x86)\dumps 2016-04-06 10:50 - 2016-04-06 10:50 - 00065852 _____ C:\Users\admin\Documents\Once.Upon.a.Time.S05E14.rar 2016-04-06 10:49 - 2016-04-06 10:49 - 00022649 _____ C:\Users\admin\Documents\[kat.cr]once.upon.a.time.s05e14.hdtv.x264.fleet.rartv.torrent 2016-04-06 10:46 - 2016-04-06 10:46 - 00235748 _____ C:\Users\admin\Documents\Once.Upon.a.Time.S05E12.rar 2016-04-06 10:46 - 2016-04-06 10:46 - 00144607 _____ C:\Users\admin\Documents\Once.Upon.a.Time.S05E13.rar 2016-04-06 10:45 - 2016-04-06 10:45 - 00023331 _____ C:\Users\admin\Documents\[kat.cr]once.upon.a.time.s05e13.hdtv.x264.fleet.rartv.torrent 2016-04-06 10:45 - 2016-04-06 10:45 - 00020860 _____ C:\Users\admin\Documents\[kat.cr]once.upon.a.time.s05e12.hdtv.x264.leralouf.torrent 2016-04-06 10:19 - 2016-04-27 09:44 - 00000000 ____D C:\Program Files (x86)\Steam 2016-04-06 10:19 - 2016-04-06 10:19 - 00000917 _____ C:\Users\Public\Desktop\Steam.lnk 2016-04-06 10:19 - 2016-04-06 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2016-04-06 10:18 - 2016-04-06 10:18 - 00000000 ____D C:\Windows\system32\appmgmt 2016-03-18 08:40 - 2016-03-18 08:40 - 00000024 _____ C:\Users\admin\Desktop\senha wifi.txt 2016-03-13 17:38 - 2016-03-13 17:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf 2016-03-13 17:18 - 2016-03-13 17:18 - 00000000 ____D C:\Users\admin\AppData\Roaming\Steam 2016-03-13 11:08 - 2016-03-13 11:08 - 00001216 _____ C:\Users\admin\Desktop\NARUTO SHIPPUDEN Ultimate Ninja STORM 4.lnk 2016-03-13 11:07 - 2016-03-13 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NARUTO SHIPPUDEN Ultimate Ninja STORM 4 2016-03-13 11:02 - 2016-03-13 11:02 - 00000000 ____D C:\Users\admin\AppData\Local\Disc_Soft_Ltd 2016-03-13 10:48 - 2016-03-13 11:11 - 00000000 ____D C:\Program Files (x86)\NARUTO SHIPPUDEN Ultimate Ninja STORM 4 2016-03-13 10:48 - 2016-03-13 10:48 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2016-03-13 10:47 - 2016-03-13 10:47 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2016-03-13 10:46 - 2016-03-13 10:48 - 00000000 ____D C:\Users\admin\AppData\Roaming\DAEMON Tools Lite 2016-03-13 10:46 - 2016-03-13 10:47 - 00000000 ____D C:\Program Files\DAEMON Tools Lite 2016-03-13 10:46 - 2016-03-13 10:46 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2016-03-13 10:46 - 2016-03-13 10:46 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite 2016-03-13 10:46 - 2016-03-13 10:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2016-03-13 10:46 - 2016-03-13 10:46 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2016-03-12 04:38 - 2016-03-12 04:38 - 00000000 ____D C:\Users\admin\AppData\Local\ali213GameLauncher 2016-03-11 21:33 - 2016-04-06 15:01 - 00000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-03-11 15:12 - 2016-03-11 20:53 - 00335662 _____ C:\Windows\ntbtlog.txt 2016-03-09 11:50 - 2016-04-25 12:41 - 00000000 ____D C:\Users\admin\AppData\Local\ElevatedDiagnostics 2016-03-08 12:17 - 2015-12-18 03:11 - 00047760 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-03-08 12:17 - 2015-12-18 03:10 - 00099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-03-08 12:17 - 2015-12-18 03:10 - 00090768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-03-01 14:01 - 2016-03-01 14:01 - 00001043 _____ C:\Users\admin\Desktop\mira.cfg 2016-02-26 15:55 - 2016-02-26 15:55 - 00041882 _____ C:\Users\admin\Desktop\23791671900000899003380250173213587800633330.pdf 2016-02-24 14:36 - 2016-02-24 14:41 - 00000000 ____D C:\Users\admin\Downloads\Henrique & Juliano - Ao Vivo Em Brasília (Deluxe) 2016-02-23 14:20 - 2016-02-23 14:20 - 00000000 ____D C:\Users\admin\Downloads\Programas 2016-02-23 14:19 - 2016-03-01 18:39 - 00000000 ____D C:\Users\admin\Downloads\Torrents 2016-02-22 12:45 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2016-02-22 12:45 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2016-02-22 12:45 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2016-02-22 12:45 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2016-02-22 12:45 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2016-02-22 12:45 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2016-02-22 12:45 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2016-02-22 12:45 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2016-02-22 12:45 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2016-02-22 12:45 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2016-02-22 12:45 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2016-02-22 12:45 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2016-02-22 12:45 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2016-02-22 12:45 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2016-02-22 12:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2016-02-22 12:45 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2016-02-22 12:45 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2016-02-22 12:45 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2016-02-22 12:45 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2016-02-22 12:45 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2016-02-22 12:45 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2016-02-22 12:45 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2016-02-22 12:45 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2016-02-22 12:45 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2016-02-22 12:45 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2016-02-22 12:45 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2016-02-22 12:45 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2016-02-22 12:45 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2016-02-22 12:45 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2016-02-22 12:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2016-02-22 12:45 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2016-02-22 12:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2016-02-22 12:45 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2016-02-22 12:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2016-02-22 12:45 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2016-02-22 12:45 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2016-02-22 12:45 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2016-02-22 12:45 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2016-02-22 12:45 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2016-02-22 12:45 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2016-02-22 12:45 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2016-02-22 12:45 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2016-02-22 12:45 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2016-02-22 12:45 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2016-02-22 12:45 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2016-02-22 12:45 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2016-02-22 12:45 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2016-02-22 12:45 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2016-02-22 12:45 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2016-02-22 12:45 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2016-02-22 12:45 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2016-02-22 12:45 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2016-02-22 12:45 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2016-02-22 12:45 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2016-02-22 12:45 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2016-02-22 12:45 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2016-02-22 12:45 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2016-02-22 12:45 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2016-02-22 12:45 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2016-02-22 12:45 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2016-02-22 12:45 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2016-02-22 12:45 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2016-02-22 12:45 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2016-02-22 12:45 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2016-02-22 12:45 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2016-02-22 12:45 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2016-02-22 12:45 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2016-02-22 12:45 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2016-02-22 12:45 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2016-02-22 12:45 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2016-02-22 12:45 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2016-02-22 12:45 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2016-02-22 12:45 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2016-02-22 12:45 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2016-02-22 12:45 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2016-02-22 12:45 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2016-02-22 12:45 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2016-02-22 12:45 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2016-02-22 12:45 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2016-02-22 12:45 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2016-02-22 12:45 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2016-02-22 12:45 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2016-02-22 12:45 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2016-02-22 12:45 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2016-02-22 12:45 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2016-02-22 12:45 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2016-02-22 12:45 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2016-02-22 12:45 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2016-02-22 12:45 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2016-02-22 12:45 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2016-02-22 12:45 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2016-02-22 12:45 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2016-02-22 12:45 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2016-02-22 12:45 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2016-02-22 12:45 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2016-02-22 12:45 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2016-02-22 12:45 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2016-02-22 12:45 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2016-02-22 12:45 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2016-02-22 12:45 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2016-02-22 12:45 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2016-02-22 12:45 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2016-02-22 12:45 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2016-02-22 12:45 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2016-02-22 12:45 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2016-02-22 12:45 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2016-02-22 12:45 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2016-02-22 12:45 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2016-02-22 12:45 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2016-02-22 12:45 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2016-02-22 12:45 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2016-02-22 12:45 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2016-02-22 12:45 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2016-02-22 12:45 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2016-02-22 12:45 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2016-02-22 12:45 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2016-02-22 12:45 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2016-02-22 12:45 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2016-02-22 12:45 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2016-02-22 12:44 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2016-02-22 12:44 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2016-02-22 12:44 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2016-02-22 12:44 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2016-02-22 12:44 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2016-02-22 12:44 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2016-02-22 12:44 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2016-02-22 12:44 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2016-02-22 12:44 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2016-02-22 12:44 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2016-02-22 12:44 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2016-02-22 12:44 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2016-02-22 12:44 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2016-02-22 12:44 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2016-02-22 12:44 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2016-02-22 12:44 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2016-02-22 12:44 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2016-02-22 12:44 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2016-02-22 12:44 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2016-02-22 12:44 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2016-02-22 12:44 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2016-02-22 12:44 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2016-02-22 12:44 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2016-02-22 12:44 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2016-02-22 12:44 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2016-02-22 12:44 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2016-02-22 12:44 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2016-02-22 12:44 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2016-02-22 12:44 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2016-02-22 12:44 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2016-02-18 16:22 - 2016-04-27 08:52 - 00000000 ___SD C:\Users\admin\AppData\LocalLow\Temp 2016-02-18 16:16 - 2016-04-27 09:46 - 00000000 ____D C:\Users\admin\AppData\Roaming\uTorrent 2016-02-18 16:16 - 2016-02-18 16:16 - 00002601 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2016-02-17 01:06 - 2016-02-17 01:06 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2016-01-29 22:42 - 2016-04-10 21:35 - 00000000 ____D C:\Users\admin\AppData\Local\CrashDumps 2016-01-29 19:12 - 2016-01-29 19:11 - 00242448 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe ==================== Três Meses Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-04-27 09:44 - 2015-12-12 17:31 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA 2016-04-27 09:44 - 2015-12-12 17:31 - 00000000 ____D C:\ProgramData\NVIDIA 2016-04-27 09:44 - 2015-12-12 16:21 - 00111520 _____ C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT 2016-04-27 09:44 - 2015-12-12 16:21 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-04-27 09:44 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-27 09:44 - 2009-07-14 01:45 - 00441896 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-27 09:40 - 2015-12-12 16:23 - 00000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome 2016-04-27 09:37 - 2015-12-12 16:21 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-04-27 09:36 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf 2016-04-27 09:34 - 2010-11-21 06:48 - 00000000 ____D C:\Windows\ShellNew 2016-04-27 09:34 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2016-04-27 09:32 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\System 2016-04-27 09:32 - 2009-07-13 23:34 - 00000478 _____ C:\Windows\win.ini 2016-04-27 09:11 - 2009-07-14 01:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-04-27 09:11 - 2009-07-14 01:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-04-27 09:04 - 2009-07-13 23:34 - 00000215 _____ C:\Windows\system.ini 2016-04-27 09:03 - 2009-07-13 23:34 - 45875200 _____ C:\Windows\system32\config\SOFTWARE.bak 2016-04-27 09:03 - 2009-07-13 23:34 - 16515072 _____ C:\Windows\system32\config\SYSTEM.bak 2016-04-27 09:03 - 2009-07-13 23:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak 2016-04-27 09:03 - 2009-07-13 23:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak 2016-04-27 09:03 - 2009-07-13 23:34 - 00262144 _____ C:\Windows\system32\config\DEFAULT.bak 2016-04-27 07:32 - 2015-12-12 16:22 - 00001988 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-04-25 19:58 - 2015-12-14 21:45 - 00000000 ____D C:\Users\admin\AppData\Roaming\TS3Client 2016-04-16 20:13 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-04-10 21:35 - 2015-12-12 17:30 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation 2016-04-10 21:35 - 2015-12-12 17:30 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-04-06 21:38 - 2015-12-12 17:29 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache 2016-04-06 21:38 - 2015-12-12 17:29 - 00000000 ____D C:\ProgramData\Package Cache 2016-04-06 09:58 - 2010-11-21 06:37 - 00705572 _____ C:\Windows\system32\prfh0416.dat 2016-04-06 09:58 - 2010-11-21 06:37 - 00147412 _____ C:\Windows\system32\prfc0416.dat 2016-04-06 09:58 - 2009-07-14 02:13 - 01634914 _____ C:\Windows\system32\PerfStringBackup.INI Alguns arquivos em TEMP: ==================== C:\Users\admin\AppData\Local\Temp\ose00000.exe ==================== Bamital & volsnap ================= (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2016-04-18 00:57 ==================== Fim de FRST.txt ============================