Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 13-07-2016 02
Executado por Icaro (administrador) em MICRO-PC (15-07-2016 14:36:05)
Executando a partir de C:\Users\Icaro\Desktop\Downloads
Perfis Carregados: Icaro (Perfis Disponíveis: UpdatusUser & Marinangelo & Familia & Icaro & Convidado)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe
(ServiceEx) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe
(The PHP Group) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\ews-dashboard.exe
() C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\dbserver\bin\ews-mysqld.exe
(Apache Software Foundation) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Apache Software Foundation) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wusa.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [856800 2015-08-21] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [4958320 2011-09-13] (VIA)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-06-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [EaseUS Cleanup] => "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\CleanUpUI.exe" 10 300
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-18] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2016-07-09] (Caixa Economica Federal)
HKU\S-1-5-21-2034886435-2999545992-2267086242-1010\...\Run: [OHI Start] => C:\ProgramData\OHI\OHI.exe
HKU\S-1-5-21-2034886435-2999545992-2267086242-1010\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2034886435-2999545992-2267086242-1010\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1947872 2016-06-18] (Banco do Brasil)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1903328 2016-07-09] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Nenhum Arquivo
GroupPolicy: Restrição - Chrome <======= ATENÇÃO
GroupPolicyUsers\S-1-5-21-2034886435-2999545992-2267086242-1003\User: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: O arquivo Hosts não foi detectado no seu diretório padrão
Tcpip\Parameters: [DhcpNameServer] 200.222.145.84 200.222.122.133
Tcpip\..\Interfaces\{144CABF1-B5FE-4A78-AC93-88C9FD42C32A}: [DhcpNameServer] 200.222.145.84 200.222.122.133
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2034886435-2999545992-2267086242-1010 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2034886435-2999545992-2267086242-1010 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation)
BHO-x32: Auxiliar de Conexão de Conta da Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2016-06-18] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2016-07-09] (Caixa Economica Federal)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Icaro\AppData\Roaming\Mozilla\Firefox\Profiles\uoysyng5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-13] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-28]
CHR Extension: (Google Docs) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-28]
CHR Extension: (Google Drive) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-28]
CHR Extension: (YouTube) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-28]
CHR Extension: (Planilhas do Google) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-28]
CHR Extension: (Gmail) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-28]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1080080 2016-06-21] (AVG Technologies CZ, s.r.o.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe [76616 2016-06-20] (Google Inc.)
R2 ews-dashboard; C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe [114688 2014-04-06] (ServiceEx) [Arquivo não assinado]
R2 ews-dbserver; C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\dbserver\bin\ews-mysqld.exe [10958848 2014-05-06] () [Arquivo não assinado]
R2 ews-httpserver; C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe [20992 2014-07-19] (Apache Software Foundation) [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [631520 2016-06-18] (GAS Tecnologia)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3398544 2014-11-11] (INCA Internet Co., Ltd.)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4803344 2016-06-01] (AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [56080 2016-06-01] (AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [49424 2016-06-01] (AVG Technologies CZ, s.r.o.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-09-07] (VIA Technologies, Inc.)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [856800 2015-08-21] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-07-26] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2014-10-10] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2014-10-10] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2014-10-10] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93696 2014-10-09] (LG Electronics Inc.)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GBPRCM; C:\PROGRAM FILES (X86)\GBPLUGIN\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2016-07-15] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-03-29] (AVG Netherlands B.V.)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2014-05-27] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [28160 2014-05-27] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [34816 2014-05-27] (LG Electronics Inc.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-07-26] (Microsoft Corporation)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [119712 2016-06-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [192864 2016-06-28] (Oracle Corporation)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2014-10-31] (GAS Tecnologia LTDA)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-07-15] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 X6va023; \??\C:\Windows\SysWOW64\Drivers\X6va023 [X]
S3 X6va025; \??\C:\Windows\SysWOW64\Drivers\X6va025 [X]
S3 X6va028; \??\C:\Windows\SysWOW64\Drivers\X6va028 [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
S3 xspirit; \??\C:\Windows\xspirit.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-07-15 14:28 - 2016-07-15 14:36 - 00000000 ____D C:\FRST
2016-07-15 14:27 - 2016-07-15 14:27 - 02390528 _____ (Farbar) C:\Users\Icaro\Desktop\FRST64.exe
2016-07-15 13:43 - 2016-07-15 13:43 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Sublime Text 3
2016-07-15 13:43 - 2016-07-15 13:43 - 00000000 ____D C:\Users\Icaro\AppData\Local\Sublime Text 3
2016-07-15 13:21 - 2016-07-15 13:21 - 00000000 ___HT C:\Windows\wusa.lock
2016-07-15 13:21 - 2016-07-15 13:21 - 00000000 ____D C:\d161ad15ac263957f529
2016-07-15 13:12 - 2016-07-15 13:12 - 00000000 ____D C:\Users\Icaro\.PyCharm2016.1
2016-07-15 12:48 - 2016-07-15 13:06 - 220390904 _____ C:\Users\Icaro\Downloads\pycharm-professional-2016.1.4.exe
2016-07-14 17:30 - 2016-07-14 17:30 - 00001618 _____ C:\Users\Icaro\Desktop\Daybreak.lnk
2016-07-14 17:30 - 2016-07-14 17:30 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GlobalGames
2016-07-14 17:28 - 2016-07-14 17:28 - 00000000 ____D C:\GlobalGames
2016-07-14 14:54 - 2016-07-14 16:09 - 765354248 ____R C:\Users\Icaro\Downloads\DayBreak_Brasil_20140425.exe
2016-07-14 14:53 - 2016-07-14 14:53 - 00015813 _____ C:\Users\Icaro\Downloads\DayBreak_Brasil_20140425.exe.torrent
2016-07-14 14:24 - 2016-07-14 14:25 - 00000000 ____D C:\Users\Icaro\Documents\Cross Fire
2016-07-14 14:19 - 2016-07-14 14:19 - 00002601 _____ C:\Users\Icaro\Desktop\µTorrent.lnk
2016-07-14 14:19 - 2016-07-14 14:19 - 00000000 ____D C:\Users\Icaro\AppData\LocalLow\uTorrent
2016-07-14 14:18 - 2016-07-14 17:37 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\uTorrent
2016-07-14 14:17 - 2016-07-14 14:17 - 00068176 _____ C:\Users\Icaro\Downloads\HeroesWoWClient.torrent
2016-07-14 13:56 - 2016-07-14 14:00 - 00000000 ____D C:\Users\Icaro\Desktop\Extrair Arquivos zip,tar Aqui
2016-07-14 13:23 - 2016-07-15 13:18 - 00000000 ____D C:\Users\Icaro\.idea
2016-07-14 13:14 - 2016-07-15 13:12 - 00000000 ____D C:\Users\Icaro\.oracle_jre_usage
2016-07-14 13:14 - 2016-07-14 13:14 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\JetBrains
2016-07-14 13:14 - 2016-07-14 13:14 - 00000000 ____D C:\Users\Icaro\.PhpStorm2016.1
2016-07-14 13:09 - 2016-07-14 13:12 - 40328071 _____ (EasyPHP Team ) C:\Users\Icaro\Downloads\EasyPHP-Webserver-14.1b2-setup.exe
2016-07-13 22:38 - 2016-07-13 22:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP Devserver 14.1 beta 2
2016-07-13 22:38 - 2016-07-13 22:38 - 00000000 ____D C:\Program Files (x86)\EasyPHP-Webserver-14.1b2
2016-07-13 22:27 - 2016-07-13 22:35 - 40328071 _____ (EasyPHP Team ) C:\Users\Familia\Desktop\EasyPHP-Webserver-14.1b2-setup.exe
2016-07-13 22:17 - 2016-07-13 22:17 - 00001306 _____ C:\Users\Familia\Desktop\EasyPHP Devserver 16.1.1.lnk
2016-07-13 22:17 - 2016-07-13 22:17 - 00000000 ____D C:\Program Files (x86)\EasyPHP-Devserver-16.1
2016-07-13 21:47 - 2016-07-13 22:16 - 57234826 _____ (Laurent Abbal ) C:\Users\Familia\Desktop\EasyPHP-Devserver-16.1.1-setup.exe
2016-07-13 18:10 - 2016-07-13 18:10 - 01059832 _____ (ROBLOX Corporation) C:\Users\Familia\Desktop\RobloxPlayerLauncher.exe
2016-07-13 17:52 - 2016-07-13 17:54 - 00000000 ____D C:\Users\Familia\Desktop\Gang Beasts_Data
2016-07-13 17:52 - 2014-02-17 01:47 - 11283968 _____ C:\Users\Familia\Desktop\Gang Beasts.exe
2016-07-13 17:48 - 2016-07-13 17:52 - 44024622 _____ C:\Users\Familia\Desktop\Gang_Beasts_0.0.1_Windows.zip
2016-07-13 15:56 - 2016-07-13 15:57 - 00000000 ____D C:\Users\Familia\Desktop\Lenno
2016-07-13 14:09 - 2016-07-13 14:09 - 00655872 _____ (Microsoft) C:\Users\Familia\Desktop\GERADOR CONTAS FAKES - BY DALSIN9807.exe
2016-07-12 21:04 - 2016-07-12 21:04 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-12 20:57 - 2016-07-12 22:17 - 00000000 ____D C:\Users\Icaro\Desktop\Programação
2016-07-12 15:44 - 2016-07-12 15:44 - 26671784 _____ C:\Users\Icaro\AppData\Roaming\gameboxsetup.exe
2016-07-12 15:44 - 2016-07-12 15:44 - 00001069 _____ C:\Users\Public\Desktop\NarutoOnline.lnk
2016-07-12 15:44 - 2016-07-12 15:44 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Brotsoft
2016-07-12 15:44 - 2016-07-12 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NarutoOnline
2016-07-12 15:44 - 2016-07-12 15:44 - 00000000 ____D C:\Program Files (x86)\NarutoOnline
2016-07-12 15:38 - 2016-07-12 15:42 - 27190808 _____ C:\Users\Icaro\Downloads\NarutoOnline_pt_2.3.0.6072_oas.exe
2016-07-11 14:33 - 2013-08-25 13:49 - 50102315 _____ (McRip ) C:\Users\Familia\Desktop\VC Redist Installer 1.5.7.exe
2016-07-11 14:29 - 2016-07-11 14:32 - 50098198 _____ C:\Users\Familia\Desktop\VC Redist Installer 1.5.7.rar
2016-07-11 00:10 - 2016-07-11 00:10 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\epm
2016-07-10 18:34 - 2016-07-10 18:34 - 00000000 ____D C:\Users\Familia\AppData\Local\Vitalwerks
2016-07-10 18:33 - 2016-07-10 18:33 - 00241736 _____ C:\Users\Familia\Desktop\DUCSetup_v4_1_1.exe
2016-07-10 18:33 - 2016-07-10 18:33 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC
2016-07-09 21:03 - 2016-07-09 21:03 - 00290752 _____ C:\Windows\Minidump\070916-16296-01.dmp
2016-07-09 17:38 - 2016-07-09 17:38 - 00001028 _____ C:\Users\Familia\Desktop\Play FantasyCF.lnk
2016-07-09 17:34 - 2016-07-09 17:38 - 00000000 ____D C:\Program Files (x86)\FantasyCF
2016-07-09 13:42 - 2016-07-13 21:56 - 00000000 ____D C:\Users\Familia\PhpstormProjects
2016-07-09 12:53 - 2016-07-09 12:53 - 00000000 ____D C:\Users\Familia\AppData\Roaming\epm
2016-07-08 21:37 - 2016-07-08 21:37 - 00804450 _____ C:\Users\Familia\Desktop\LB2LUEHOOFYQWUPCA8VX.rar
2016-07-08 20:46 - 2016-07-12 13:18 - 00000000 ____D C:\Users\Icaro\Desktop\Isos
2016-07-08 20:45 - 2016-07-13 13:54 - 00000000 ____D C:\Users\Icaro\Desktop\Icaro
2016-07-08 20:31 - 2016-07-08 20:31 - 00002611 _____ C:\Users\Familia\Desktop\µTorrent.lnk
2016-07-08 20:31 - 2016-07-08 20:31 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\uTorrent
2016-07-08 20:30 - 2016-07-09 04:12 - 00000000 ____D C:\Users\Familia\AppData\Roaming\uTorrent
2016-07-08 20:29 - 2016-07-08 20:29 - 02530304 _____ (BitTorrent Inc.) C:\Users\Familia\Desktop\uTorrent.exe
2016-07-08 20:28 - 2016-07-08 20:28 - 00014316 _____ C:\Users\Familia\Desktop\FantasyCF.torrent
2016-07-08 18:24 - 2016-07-08 18:24 - 00000000 ____D C:\Program Files (x86)\EaseUS
2016-07-08 18:19 - 2016-07-08 18:23 - 50340704 _____ (EaseUS ) C:\Users\Familia\Desktop\epm_trial.exe
2016-07-07 19:43 - 2015-09-17 21:39 - 00001457 _____ C:\Users\Familia\Desktop\Internet Explorer.lnk
2016-07-07 19:42 - 2016-07-03 13:12 - 00002193 _____ C:\Users\Familia\Desktop\Google Chrome.lnk
2016-07-07 19:33 - 2016-07-07 19:33 - 00000000 ____D C:\Users\Familia\Desktop\Textos
2016-07-07 19:28 - 2016-07-07 19:39 - 00000000 ____D C:\Users\Familia\Desktop\Fotos
2016-07-07 19:24 - 2016-07-08 16:16 - 00000000 ____D C:\Users\Familia\AppData\Roaming\JetBrains
2016-07-07 19:23 - 2016-07-07 19:23 - 00000000 ____D C:\Users\Familia\.PhpStorm2016.1
2016-07-07 12:44 - 2016-07-07 12:44 - 00007365 _____ C:\Users\Familia\Desktop\Boleto de ADRIANA.pdf
2016-07-06 22:51 - 2016-07-06 22:51 - 02382317 _____ C:\Users\Familia\Downloads\Mark lighting blue.rar
2016-07-06 22:34 - 2016-07-06 22:34 - 00813623 _____ C:\Users\Familia\Downloads\ALX_KM_CyberZ.rar
2016-07-06 22:30 - 2016-07-06 22:30 - 00685044 _____ C:\Users\Familia\Downloads\Kill Mark Blue Advanced.rar
2016-07-06 22:19 - 2016-07-06 22:19 - 01305819 _____ C:\Users\Familia\Downloads\Kill Mark RED BIG.rar
2016-07-06 20:50 - 2016-07-08 15:51 - 00000000 ____D C:\Users\Familia\Desktop\Nova pasta
2016-07-06 20:42 - 2016-07-06 20:42 - 01100104 _____ C:\Users\Familia\Downloads\RazerKillmark+ Life Wings.rar
2016-07-06 12:16 - 2016-07-06 12:21 - 00000000 ____D C:\Fraps
2016-07-06 12:16 - 2016-07-06 12:16 - 00000562 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-07-06 12:16 - 2016-07-06 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-07-06 12:14 - 2016-07-06 12:15 - 02496800 _____ (Beepa Pty Ltd) C:\Users\Familia\Downloads\setup (1).exe
2016-07-05 21:12 - 2016-07-05 21:13 - 00000000 ____D C:\Users\Familia\Documents\Visual Studio 2012
2016-07-05 14:18 - 2016-07-11 14:12 - 00000000 ___HD C:\Windows\2522c1842fi3
2016-07-05 14:16 - 2016-07-05 14:16 - 00000000 ___HD C:\Windows\2522c1842f9a
2016-07-05 10:56 - 2016-07-05 10:56 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\MPC-HC
2016-07-04 15:06 - 2016-07-04 15:32 - 00000000 ____D C:\Program Files (x86)\Tales of Pirates II
2016-07-04 13:28 - 2016-07-04 13:31 - 00000000 __RHD C:\ESD
2016-07-04 13:24 - 2016-07-04 13:25 - 01483336 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\mediacreationtool.exe
2016-07-04 03:25 - 2011-09-29 09:22 - 00032256 _____ (Mandiant) C:\Users\Icaro\Desktop\apateDNS.exe
2016-07-04 03:24 - 2016-07-04 03:25 - 00244495 _____ C:\Users\Icaro\Downloads\sdl-apatedns.zip
2016-07-04 02:46 - 2016-07-04 02:46 - 00555008 _____ (ByIcaro) C:\Users\Icaro\Desktop\UDP Flooder.exe
2016-07-04 02:21 - 2016-07-04 02:21 - 00552448 _____ (ByIcaro) C:\Users\Icaro\Desktop\Port Scan ByIcaro.exe
2016-07-04 00:27 - 2016-07-04 00:27 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC
2016-07-04 00:19 - 2016-07-04 00:19 - 00000000 ____D C:\Users\Icaro\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
2016-07-03 23:33 - 2016-07-03 23:33 - 00001163 _____ C:\Users\Icaro\Desktop\Mozilla Firefox.lnk
2016-07-03 16:10 - 2016-07-03 16:10 - 01088000 _____ (Icaro) C:\Users\Icaro\Desktop\Navegador ByIcaro.exe
2016-07-03 16:07 - 2012-06-15 14:16 - 00001262 _____ C:\Users\Icaro\Downloads\Comandos Web.txt
2016-07-03 13:17 - 2016-07-03 13:17 - 00262144 ____N C:\Windows\Minidump\070316-49828-01.dmp
2016-07-02 22:47 - 2016-07-02 22:56 - 00412160 _____ (Icaro) C:\Users\Icaro\Desktop\Icon Change ByIcaro.exe
2016-07-02 22:11 - 2016-07-02 22:52 - 00410624 _____ (Icaro) C:\Users\Icaro\Desktop\Gerador De Strings ByIcaro.exe
2016-07-02 20:31 - 2016-07-02 20:31 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Microsoft FxCop
2016-07-02 17:22 - 2016-07-02 17:23 - 13730024 _____ (Daring Development Inc.) C:\Users\Icaro\Downloads\Horizon-Setup (1).exe
2016-07-02 16:50 - 2016-07-03 13:12 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Horizon.lnk
2016-07-02 16:48 - 2016-07-02 16:49 - 13730024 _____ (Daring Development Inc.) C:\Users\Icaro\Downloads\Horizon-Setup.exe
2016-07-02 16:44 - 2016-07-02 16:50 - 00000000 ____D C:\Users\Icaro\AppData\Local\Daring_Development_Inc
2016-07-02 16:43 - 2016-07-03 13:12 - 00001092 _____ C:\Users\Public\Desktop\Horizon.lnk
2016-07-02 16:43 - 2016-07-02 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Horizon
2016-07-02 16:43 - 2016-07-02 16:43 - 00000000 ____D C:\Program Files (x86)\Daring Development
2016-07-02 16:28 - 2016-07-02 16:38 - 122536127 _____ C:\Users\Icaro\Downloads\ARQUIVOS DO MOD.rar
2016-07-02 16:20 - 2016-07-02 16:20 - 00000000 ____D C:\Users\Icaro\AppData\Local\Apple
2016-07-02 15:45 - 2016-07-02 15:45 - 00003168 _____ C:\Windows\System32\Tasks\{D4A3D52A-6D68-4245-B4BE-30E7A19041BD}
2016-07-02 14:40 - 2016-07-04 23:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-02 12:08 - 2016-07-02 12:08 - 00000000 ____D C:\Program Files (x86)\NuGet
2016-07-02 11:53 - 2016-07-02 11:53 - 00000000 ____D C:\Windows\symbols
2016-07-02 11:42 - 2016-07-02 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-07-02 11:37 - 2016-07-03 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012 Express
2016-07-02 11:37 - 2016-07-03 13:12 - 00001536 _____ C:\Users\Icaro\Desktop\VS Express for Desktop.lnk
2016-07-02 11:36 - 2016-07-02 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
2016-07-02 11:16 - 2016-07-09 15:18 - 00000000 ____D C:\Users\Icaro\Documents\Visual Studio 2012
2016-07-01 23:01 - 2016-07-01 23:01 - 00000000 _____ C:\Users\Todos os Usuários\ Explorer.exe.tmp
2016-07-01 23:01 - 2016-07-01 23:01 - 00000000 _____ C:\ProgramData\ Explorer.exe.tmp
2016-07-01 19:46 - 2016-07-01 19:46 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\WinRAR
2016-07-01 19:45 - 2016-07-01 19:45 - 00000000 ____D C:\Users\Icaro\AppData\Local\Macromedia
2016-07-01 17:50 - 2016-07-01 17:50 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\NuGet
2016-07-01 16:21 - 2016-07-01 16:21 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-07-01 16:15 - 2016-07-01 16:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-07-01 16:08 - 2016-07-02 10:42 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-07-01 16:08 - 2016-07-02 10:42 - 00000000 ____D C:\Windows\system32\1033
2016-07-01 16:05 - 2016-07-02 10:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-07-01 16:05 - 2016-07-01 16:53 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-07-01 15:59 - 2016-07-01 15:59 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-07-01 15:52 - 2016-07-01 15:53 - 00934728 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\wdexpress_full.exe
2016-07-01 15:35 - 2016-07-02 11:22 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-07-01 15:35 - 2016-07-02 11:22 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-07-01 15:21 - 2016-07-02 11:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-07-01 15:20 - 2016-07-02 11:15 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-07-01 14:45 - 2016-07-03 13:12 - 00001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2016-07-01 14:45 - 2016-07-03 13:12 - 00001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2016-07-01 14:45 - 2016-07-03 13:12 - 00001139 _____ C:\Users\Public\Desktop\Security Task Manager.lnk
2016-07-01 14:45 - 2016-07-01 15:05 - 00000000 ____D C:\Users\Todos os Usuários\SecTaskMan
2016-07-01 14:45 - 2016-07-01 15:05 - 00000000 ____D C:\ProgramData\SecTaskMan
2016-07-01 14:45 - 2016-07-01 14:45 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2016-07-01 14:44 - 2016-07-01 14:44 - 02844712 _____ C:\Users\Icaro\Downloads\SecurityTaskManager_Setup.exe
2016-07-01 14:42 - 2016-07-01 14:42 - 00003140 _____ C:\Windows\System32\Tasks\{EAC5A2A3-3CAB-402F-B045-6D5D093E881C}
2016-07-01 14:31 - 2016-07-01 14:31 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Notepad++
2016-07-01 14:04 - 2016-07-01 14:04 - 00000000 ____D C:\b95d636c3093aa74db1f
2016-07-01 13:55 - 2016-07-01 13:56 - 09973552 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\NDP1.0sp3-KB867461-X86-PTB.exe
2016-07-01 13:45 - 2016-07-01 13:46 - 10703680 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\NDP1.1sp1-KB867460-X86.exe
2016-06-30 19:01 - 2016-06-30 19:01 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Ahead
2016-06-30 15:20 - 2016-06-30 15:20 - 01424328 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\NDP461-KB3102438-Web.exe
2016-06-30 13:27 - 2016-06-30 13:27 - 02333184 _____ C:\Users\Icaro\Downloads\Setup.msi
2016-06-30 13:24 - 2016-06-30 13:24 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Mozilla
2016-06-30 13:24 - 2016-06-30 13:24 - 00000000 ____D C:\Users\Icaro\AppData\Local\Mozilla
2016-06-30 11:46 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\LocalLow\Adobe
2016-06-30 11:46 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\Local\CEF
2016-06-30 11:46 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\Local\Adobe
2016-06-30 11:45 - 2016-06-30 11:45 - 00007575 _____ C:\Users\Icaro\Downloads\c9a4bafb-6879-44ed-88d5-3e4ede23335c.pdf
2016-06-30 09:22 - 2016-06-30 09:22 - 00014373 _____ C:\Users\Familia\Downloads\41869cfb-c0b6-46ea-8b4b-9d586850dc72.pdf
2016-06-30 09:22 - 2016-06-30 09:22 - 00014373 _____ C:\Users\Familia\Downloads\41869cfb-c0b6-46ea-8b4b-9d586850dc72 (1).pdf
2016-06-29 19:38 - 2016-06-29 19:38 - 00014373 _____ C:\Users\Familia\Downloads\13cf67fd-532c-4610-8343-69aa04468a41.pdf
2016-06-29 19:36 - 2016-06-29 19:36 - 00014373 _____ C:\Users\Familia\Downloads\1ddc5aaf-2f28-4645-9698-73f3b5f00dd1.pdf
2016-06-29 19:35 - 2016-06-29 19:35 - 00014373 _____ C:\Users\Familia\Downloads\d9d3abbb-0586-47f8-b736-89c97640f671.pdf
2016-06-29 19:29 - 2016-06-29 19:29 - 00014584 _____ C:\Users\Familia\Downloads\63953c38-8c53-4cc0-9622-05ee1a026937.pdf
2016-06-29 13:59 - 2016-07-03 13:12 - 00001076 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2016-06-29 13:59 - 2016-06-29 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-06-29 13:59 - 2016-06-29 13:59 - 00000000 ____D C:\Program Files\Oracle
2016-06-29 13:59 - 2016-06-28 17:21 - 00917032 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2016-06-29 13:59 - 2016-06-28 17:21 - 00143568 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2016-06-29 13:48 - 2016-06-29 13:49 - 00000000 ____D C:\Users\Icaro\AppData\Local\Microsoft Games
2016-06-29 13:46 - 2016-06-29 13:56 - 113455072 _____ (Oracle Corporation) C:\Users\Icaro\Downloads\VirtualBox-5.0.24-108355-Win.exe
2016-06-29 13:45 - 2016-07-10 18:33 - 00000000 ____D C:\Program Files (x86)\No-IP
2016-06-29 13:45 - 2016-06-29 13:45 - 00000000 ____D C:\Users\Icaro\AppData\Local\Vitalwerks
2016-06-29 13:35 - 2016-07-07 19:32 - 00000000 ____D C:\Users\Familia\Desktop\Mateus
2016-06-28 17:21 - 2016-06-28 17:21 - 00192864 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys
2016-06-28 17:21 - 2016-06-28 17:21 - 00119712 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp6.sys
2016-06-28 13:26 - 2016-06-28 13:26 - 00064136 _____ C:\Users\Icaro\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-28 13:11 - 2016-07-12 13:40 - 00000000 ____D C:\Users\Icaro\VirtualBox VMs
2016-06-28 13:11 - 2016-07-12 13:40 - 00000000 ____D C:\Users\Icaro\.VirtualBox
2016-06-28 13:11 - 2016-07-03 13:12 - 00000914 _____ C:\Users\Icaro\Desktop\Gerenc. De Tarefas.lnk
2016-06-28 13:03 - 2016-06-28 13:03 - 00000000 ____D C:\Users\Icaro\AppData\Local\GWX
2016-06-28 13:02 - 2016-07-15 13:12 - 00000000 ____D C:\Users\Icaro
2016-06-28 13:02 - 2016-07-03 13:12 - 00002257 _____ C:\Users\Icaro\Desktop\Google Chrome.lnk
2016-06-28 13:02 - 2016-07-03 13:12 - 00001393 _____ C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-28 13:02 - 2016-07-03 13:12 - 00001304 _____ C:\Users\Icaro\Desktop\Notepad.lnk
2016-06-28 13:02 - 2016-07-03 13:12 - 00001280 _____ C:\Users\Icaro\Desktop\Prompt de Comando.lnk
2016-06-28 13:02 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Adobe
2016-06-28 13:02 - 2016-06-28 14:55 - 00000000 ____D C:\Users\Icaro\AppData\Local\Google
2016-06-28 13:02 - 2016-06-28 13:02 - 00000660 __RSH C:\Users\Icaro\ntuser.pol
2016-06-28 13:02 - 2016-06-28 13:02 - 00000020 ___SH C:\Users\Icaro\ntuser.ini
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Modelos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Meus documentos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Menu Iniciar
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Documents\Minhas músicas
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Documents\Minhas imagens
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Documents\Meus vídeos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Dados de aplicativos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Configurações locais
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\AppData\Local\Histórico
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\AppData\Local\Dados de aplicativos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Ambiente de rede
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Ambiente de impressão
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Motorola Mobility
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 ____D C:\Users\Icaro\AppData\Local\VirtualStore
2016-06-28 13:02 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Icaro\AppData\Local\AVG
2016-06-28 13:02 - 2014-08-28 12:48 - 00000000 ____D C:\Users\Icaro\AppData\Local\Microsoft Help
2016-06-28 13:02 - 2014-07-29 17:31 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Macromedia
2016-06-28 13:02 - 2010-11-21 06:47 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Media Center Programs
2016-06-28 11:39 - 2016-06-28 11:39 - 00001024 _____ C:\Windows\SysWOW64\%TMP%
2016-06-28 09:58 - 2016-06-28 12:34 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2016-06-28 09:58 - 2016-06-28 12:34 - 00000000 ____D C:\ProgramData\VMware
2016-06-24 04:49 - 2016-06-24 04:49 - 00000418 _____ C:\Windows\Tasks\Opera scheduled Autoupdate 1466754548.job
2016-06-24 04:38 - 2016-06-24 04:38 - 00000000 ____D C:\Users\Todos os Usuários\Apple Computer
2016-06-24 04:38 - 2016-06-24 04:38 - 00000000 ____D C:\ProgramData\Apple Computer
2016-06-24 03:53 - 2016-06-24 04:23 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-06-24 01:37 - 2016-06-24 04:23 - 00000000 ____D C:\Users\Todos os Usuários\GZG
2016-06-24 01:37 - 2016-06-24 04:23 - 00000000 ____D C:\ProgramData\GZG
2016-06-23 23:50 - 2016-06-23 23:50 - 00000000 ____D C:\Users\Todos os Usuários\Vitalwerks
2016-06-23 23:50 - 2016-06-23 23:50 - 00000000 ____D C:\ProgramData\Vitalwerks
2016-06-23 18:06 - 2016-06-27 16:25 - 00000000 ____D C:\Program Files (x86)\Safari
2016-06-23 18:05 - 2016-06-23 18:05 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-06-23 18:05 - 2016-06-23 18:05 - 00000000 ____D C:\ProgramData\Apple
2016-06-23 16:41 - 2016-07-15 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2016-06-23 16:00 - 2016-06-24 04:23 - 00000000 ____D C:\Program Files (x86)\Torrent Search
2016-06-23 15:42 - 2016-07-15 13:07 - 00000000 ____D C:\Program Files (x86)\JetBrains
2016-06-23 14:54 - 2016-06-28 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2016-06-23 14:05 - 2016-06-23 14:05 - 00000000 ____D C:\Ruby23
2016-06-23 13:11 - 2016-07-03 13:12 - 00001023 _____ C:\Users\Public\Desktop\Notepad++.lnk
2016-06-21 21:50 - 2016-06-22 10:54 - 00000000 ____D C:\Users\Familia\Desktop\HTML5 and CSS3
2016-06-21 20:09 - 2016-07-06 22:35 - 00000000 ____D C:\Users\Familia\Desktop\HTML and CSS
2016-06-18 12:46 - 2016-06-18 12:46 - 765061373 _____ C:\Users\Familia\Downloads\www.stockrom.net_MotoG3_XT1543_OSPREY_RETLA_DS_2GB_5.1.1_LPI23.72-33_cid12_subsidy-DEFAULT_CFC.xml.zip
2016-06-18 12:40 - 2016-06-18 12:45 - 02656855 _____ C:\Users\Familia\Downloads\ARQUIVOS MOTO G3 (2).rar
2016-06-18 11:30 - 2016-06-18 11:30 - 00000000 ____D C:\Users\Familia\Desktop\META-INF
2016-06-18 11:28 - 2016-06-18 11:28 - 472451165 _____ C:\Users\Familia\Downloads\www.stockrom.net-Moto_G_XT1543.zip
2016-06-18 10:53 - 2016-06-18 10:57 - 02656855 _____ C:\Users\Familia\Downloads\ARQUIVOS MOTO G3 (1).rar
2016-06-18 00:07 - 2016-06-18 00:07 - 02656855 _____ C:\Users\Familia\Downloads\ARQUIVOS MOTO G3.rar
2016-06-16 14:38 - 2016-06-16 14:53 - 162637696 _____ C:\Users\Familia\Downloads\Lenno promo 2016.zip
2016-06-10 09:59 - 2016-06-10 09:59 - 00000000 ___HD C:\Windows\002522c1842fc3b
2016-06-09 12:53 - 2016-06-09 12:53 - 00000000 ____D C:\Users\Marinangelo\AppData\Roaming\Motorola Mobility
2016-06-03 10:13 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\AVG
2016-06-03 10:13 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Default\AppData\Local\AVG
2016-06-03 10:13 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Default User\AppData\Local\AVG
2016-06-03 10:13 - 2016-06-01 15:05 - 00056080 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\uxtuneup.dll
2016-06-03 10:13 - 2016-06-01 15:05 - 00049424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\SysWOW64\uxtuneup.dll
2016-06-03 10:13 - 2016-06-01 15:05 - 00044304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\authuitu.dll
2016-06-03 10:13 - 2016-06-01 15:05 - 00039696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\SysWOW64\authuitu.dll
2016-05-31 22:33 - 2016-05-31 22:33 - 00638540 _____ C:\Users\Familia\Downloads\adb (2).zip
2016-05-31 22:31 - 2016-05-31 22:32 - 07958528 _____ C:\Users\Familia\Downloads\twrp-osprey-2.8.7-r5 (2).img
2016-05-31 22:04 - 2016-05-31 22:05 - 07958528 _____ C:\Users\Familia\Downloads\twrp-osprey-2.8.7-r5 (1).img
2016-05-31 21:36 - 2016-05-31 21:38 - 04225692 _____ C:\Users\Familia\Downloads\BETA-SuperSU-v2.62-3-20151211162651.zip
2016-05-31 21:24 - 2016-05-31 21:24 - 00472951 _____ C:\Users\Familia\Downloads\apagar mensagem desbloqueio.zip
2016-05-31 20:53 - 2016-07-15 12:26 - 00000000 ____D C:\Temp
2016-05-31 20:53 - 2016-07-01 23:17 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Motorola Mobility
2016-05-31 20:52 - 2016-06-24 04:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2016-05-31 20:52 - 2016-05-31 20:53 - 00000000 ____D C:\Program Files (x86)\Motorola Mobility
2016-05-31 20:52 - 2016-05-31 20:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2016-05-31 20:52 - 2016-05-31 20:52 - 00000000 ____D C:\Program Files (x86)\Motorola
2016-05-31 20:50 - 2016-05-31 20:50 - 00000000 ____D C:\Program Files\Motorola Mobility LLC
2016-05-31 20:50 - 2016-05-31 20:50 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2016-05-31 20:40 - 2016-05-31 20:40 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Motorola
2016-05-31 20:37 - 2016-05-31 20:37 - 00638540 _____ C:\Users\Familia\Downloads\adb (1).zip
2016-05-31 20:36 - 2016-05-31 20:40 - 34236544 _____ (Motorola Mobility) C:\Users\Familia\Downloads\MotorolaDeviceManager_2.5.4.exe
2016-05-30 17:09 - 2016-06-23 16:29 - 00000000 ____D C:\Users\Marinangelo\Documents\MSDCSC
2016-05-28 21:19 - 2016-06-23 16:28 - 00000000 ____D C:\Users\Familia\Documents\MSDCSC
2016-05-28 16:52 - 2016-05-28 16:57 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-05-28 16:52 - 2016-05-28 16:57 - 00000000 ____D C:\ProgramData\MFAData
2016-05-28 16:52 - 2016-05-28 16:52 - 00000000 ____D C:\Users\Familia\AppData\Local\MFAData
2016-05-28 16:40 - 2016-07-03 13:12 - 00001109 _____ C:\Users\Public\Desktop\K-Meleon.lnk
2016-05-28 16:40 - 2016-07-01 23:17 - 00000000 ____D C:\Users\Familia\AppData\Roaming\K-Meleon
2016-05-28 16:40 - 2016-06-24 04:23 - 00000000 ____D C:\Program Files (x86)\K-Meleon
2016-05-28 16:40 - 2016-06-10 10:03 - 00000000 ____D C:\Users\Familia\AppData\Local\K-Meleon
2016-05-28 16:37 - 2016-05-28 16:40 - 17993612 _____ (kmeleonbrowser.org) C:\Users\Familia\Downloads\K-Meleon74.0.exe
2016-05-28 11:15 - 2016-07-09 21:03 - 501688418 _____ C:\Windows\MEMORY.DMP
2016-05-28 11:15 - 2016-05-28 11:15 - 00290736 _____ C:\Windows\Minidump\052816-21953-01.dmp
2016-05-28 10:31 - 2016-05-28 10:31 - 00000274 _____ C:\Windows\Tasks\WinThruster.job
2016-05-28 10:29 - 2016-05-28 16:51 - 00000000 ____D C:\Users\Familia\AppData\Local\AvgSetupLog
2016-05-27 23:51 - 2016-05-27 23:51 - 00889416 _____ (Microsoft Corporation) C:\Users\Familia\Downloads\dotNetFx40_Full_setup (1).exe
2016-05-27 23:44 - 2016-05-27 23:45 - 07186992 _____ (Microsoft Corporation) C:\Users\Familia\Downloads\vcredist_x64.exe
2016-05-26 14:19 - 2016-07-03 13:12 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Solvusoft
2016-05-26 14:19 - 2016-05-26 14:19 - 03901072 _____ C:\Users\Familia\Downloads\WinThruster_2016_Setup.exe
2016-05-26 14:19 - 2015-11-25 13:01 - 00021624 _____ C:\Windows\system32\roboot64.exe
2016-05-23 11:23 - 2015-03-30 00:25 - 00000619 _____ C:\Users\Familia\Downloads\Leia-me! antes .vbs
2016-05-21 16:17 - 2016-07-05 18:37 - 00001357 _____ C:\Users\Public\Desktop\UmmyVideoDownloader.lnk
2016-05-21 16:17 - 2016-07-01 23:17 - 00000000 ____D C:\Users\Familia\AppData\Local\UmmyVideoDownloader
2016-05-21 16:17 - 2016-06-24 04:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader
2016-05-21 16:16 - 2016-05-21 16:16 - 00897888 _____ ( ) C:\Users\Familia\Downloads\UmmyVD-Web-Loader-[113-yt-idc7mo9JT8o].exe
2016-05-21 16:14 - 2016-05-21 16:14 - 11886060 _____ C:\Users\Familia\Downloads\Tim Maia - Bom Senso.mp4
2016-05-21 13:30 - 2016-07-03 13:12 - 00000930 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2016-05-21 13:30 - 2016-05-21 13:30 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Sublime Text 3
2016-05-21 13:30 - 2016-05-21 13:30 - 00000000 ____D C:\Users\Familia\AppData\Local\Sublime Text 3
2016-05-21 13:30 - 2016-05-21 13:30 - 00000000 ____D C:\Program Files\Sublime Text 3
2016-05-21 13:21 - 2016-05-21 13:21 - 08412624 _____ (Sublime HQ Pty Ltd ) C:\Users\Familia\Downloads\Sublime Text Build 3114 x64 Setup.exe
2016-05-11 11:21 - 2016-05-11 11:21 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1ab9070aea813.job
2016-05-08 15:38 - 2016-07-08 13:19 - 00000000 ____D C:\Users\Familia\Desktop\(4) Adriana Sibele_files
2016-04-28 10:46 - 2016-04-28 10:46 - 00075359 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (15).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (14).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (13).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (12).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (11).pdf
2016-04-28 10:39 - 2016-04-28 10:39 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (10).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (9).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (8).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (7).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (6).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (5).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (4).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (3).pdf
2016-04-28 10:37 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (2).pdf
2016-04-28 10:17 - 2016-04-28 10:17 - 00125544 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (1).pdf
2016-04-28 09:12 - 2016-04-28 09:12 - 00133896 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170.pdf
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-07-15 14:33 - 2015-08-23 18:43 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-15 14:27 - 2015-07-27 12:09 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-15 14:01 - 2015-04-29 16:43 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-15 14:01 - 2015-04-29 16:42 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-15 13:41 - 2015-01-30 19:21 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-15 13:41 - 2015-01-30 19:21 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-15 13:32 - 2009-07-14 01:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-15 13:32 - 2009-07-14 01:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-15 12:26 - 2016-01-19 13:08 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-07-15 12:26 - 2014-12-17 17:10 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-07-15 12:26 - 2014-12-17 17:10 - 00000000 ____D C:\ProgramData\GbPlugin
2016-07-15 12:26 - 2014-12-17 17:10 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-07-15 12:25 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-14 14:29 - 2015-07-27 12:09 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-14 14:29 - 2015-06-25 20:17 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-14 14:29 - 2015-06-25 20:17 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-13 18:17 - 2015-03-21 16:08 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\RbxLogs
2016-07-13 18:16 - 2015-03-21 16:07 - 00000173 _____ C:\Users\Familia\AppData\LocalLow\rbxcsettings.rbx
2016-07-13 12:27 - 2014-06-30 14:46 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-07-13 12:27 - 2014-06-30 14:46 - 00000000 ____D C:\Windows\system32\Macromed
2016-07-12 21:04 - 2014-06-30 14:33 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-12 21:03 - 2016-03-04 21:32 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-10 15:16 - 2015-08-16 04:21 - 00000000 ____D C:\Users\Familia\Documents\Cross Fire
2016-07-10 13:29 - 2013-07-26 14:44 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-07-10 13:20 - 2013-07-26 14:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-07-09 21:03 - 2015-10-10 11:04 - 00000000 ____D C:\Windows\Minidump
2016-07-09 19:14 - 2014-06-30 16:10 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-07-09 19:14 - 2014-06-30 16:10 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-09 13:42 - 2014-09-09 18:46 - 00000000 ____D C:\Users\Familia
2016-07-08 17:54 - 2016-01-14 20:17 - 00000000 ____D C:\Users\Familia\Desktop\Adriana
2016-07-07 19:23 - 2016-01-21 14:36 - 00000000 ____D C:\Users\Familia\.oracle_jre_usage
2016-07-05 23:55 - 2009-07-14 02:08 - 00032552 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-07-05 18:37 - 2015-12-16 16:12 - 00002240 _____ C:\Users\Marinangelo\Desktop\The Duel.lnk
2016-07-05 11:06 - 2010-11-21 06:37 - 00706174 _____ C:\Windows\system32\prfh0416.dat
2016-07-05 11:06 - 2010-11-21 06:37 - 00148014 _____ C:\Windows\system32\prfc0416.dat
2016-07-05 11:06 - 2009-07-14 02:13 - 01634498 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-05 11:06 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-04 23:40 - 2014-06-30 14:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-03 13:13 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\L2Schemas
2016-07-03 13:12 - 2016-03-31 21:12 - 00002156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2016-07-03 13:12 - 2016-03-31 21:08 - 00000862 _____ C:\Users\Public\Desktop\AVG.lnk
2016-07-03 13:12 - 2016-03-04 21:32 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-07-03 13:12 - 2015-11-29 20:27 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2016-07-03 13:12 - 2015-09-26 14:58 - 00002127 _____ C:\Users\Public\Desktop\Smart Switch.lnk
2016-07-03 13:12 - 2015-08-23 18:43 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-03 13:12 - 2015-08-23 13:12 - 00002006 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2016-07-03 13:12 - 2015-08-23 13:12 - 00001996 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2016-07-03 13:12 - 2015-08-02 14:07 - 00001973 _____ C:\Users\Public\Desktop\Samsung Kies 3.lnk
2016-07-03 13:12 - 2015-07-12 13:34 - 00001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-07-03 13:12 - 2015-07-12 13:34 - 00001305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-07-03 13:12 - 2015-04-29 16:46 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-03 13:12 - 2014-08-02 19:06 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-07-03 13:12 - 2014-08-02 19:06 - 00001206 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-07-03 13:12 - 2014-07-16 16:25 - 00002272 _____ C:\Users\Public\Desktop\HP Deskjet 3050 J610 series.lnk
2016-07-03 13:12 - 2014-07-16 16:25 - 00001995 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2016-07-03 13:12 - 2014-07-16 16:25 - 00001194 _____ C:\Users\Public\Desktop\Comprar suprimentos - HP Deskjet 3050 J610 series.lnk
2016-07-03 13:12 - 2014-07-06 19:01 - 00002008 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2016-07-03 13:12 - 2014-06-30 14:55 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-03 13:12 - 2014-06-30 14:23 - 00002786 _____ C:\Users\Public\Desktop\Nero StartSmart.lnk
2016-07-03 13:12 - 2013-07-26 23:33 - 00001869 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Center.lnk
2016-07-03 13:12 - 2009-07-14 02:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-07-03 13:12 - 2009-07-14 01:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-03 13:12 - 2009-07-14 01:57 - 00001330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-07-03 13:12 - 2009-07-14 01:57 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-07-03 13:12 - 2009-07-14 01:54 - 00001242 _____ C:\Users\Icaro\Desktop\Paint.lnk
2016-07-03 13:12 - 2009-07-14 01:54 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-07-03 13:12 - 2009-07-14 01:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-07-02 11:53 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-02 11:35 - 2009-07-14 02:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-07-01 23:17 - 2016-01-24 20:45 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2.0
2016-07-01 23:17 - 2015-12-17 10:56 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-01 23:17 - 2015-11-02 18:19 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Oracle
2016-07-01 23:17 - 2015-10-13 17:08 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Legend Of Glory
2016-07-01 23:17 - 2015-08-23 13:12 - 00000000 ____D C:\Users\Familia\AppData\Local\Samsung
2016-07-01 23:17 - 2015-08-23 12:54 - 00000000 ____D C:\Users\Familia\AppData\Local\Downloaded Installations
2016-07-01 23:17 - 2015-08-22 20:28 - 00000000 ____D C:\Users\Familia\AppData\Local\AAA_Internet_Publishing,_
2016-07-01 23:17 - 2015-08-21 21:50 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-07-01 23:17 - 2015-08-21 21:50 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
2016-07-01 23:17 - 2015-08-16 00:39 - 00000000 ____D C:\Users\Familia\Desktop\CrossFire
2016-07-01 23:17 - 2015-08-01 16:57 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-01 23:17 - 2015-07-27 12:23 - 00000000 ____D C:\Users\Familia\Desktop\Adobe Acrobat Reader (Version 11.0.10)
2016-07-01 23:17 - 2015-07-25 22:32 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Downloaded Installations
2016-07-01 23:17 - 2015-07-08 22:12 - 00000000 ____D C:\Users\Familia\AppData\Local\MiniService
2016-07-01 23:17 - 2015-06-25 21:55 - 00000000 ____D C:\Users\Familia\AppData\Roaming\raidcall
2016-07-01 23:17 - 2015-06-25 21:55 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\raidcall
2016-07-01 23:17 - 2015-04-04 12:51 - 00000000 ___SD C:\Windows\system32\GWX
2016-07-01 23:17 - 2015-03-13 19:35 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Skype
2016-07-01 23:17 - 2015-01-24 23:50 - 00000000 ____D C:\Users\Familia\AppData\Local\YoYo_Games_Ltd
2016-07-01 23:17 - 2014-09-16 20:10 - 00000000 ____D C:\Users\Familia\AppData\Local\Unity
2016-07-01 23:17 - 2014-09-16 11:06 - 00000000 ____D C:\Users\Familia\AppData\Local\HP
2016-07-01 23:17 - 2014-09-09 18:48 - 00000000 ____D C:\Users\Convidado
2016-07-01 23:17 - 2014-09-09 18:46 - 00000000 ____D C:\Users\Familia\AppData\Local\Microsoft Help
2016-07-01 23:17 - 2014-09-09 18:42 - 00000000 ____D C:\Users\Marinangelo
2016-07-01 23:17 - 2014-06-30 16:10 - 00000000 ____D C:\Users\UpdatusUser
2016-07-01 23:16 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\registration
2016-07-01 23:13 - 2015-07-25 22:51 - 00000000 ____D C:\Users\Familia\Documents\AutoPlay Media Studio 8
2016-07-01 23:12 - 2016-01-21 14:36 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Sun
2016-07-01 23:12 - 2015-10-13 17:09 - 00000000 ____D C:\Users\Familia\AppData\Roaming\s3_web
2016-07-01 23:12 - 2015-08-01 17:51 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Google
2016-07-01 23:12 - 2015-07-20 10:57 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Notepad++
2016-07-01 23:12 - 2015-06-25 00:16 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Easeware
2016-07-01 23:12 - 2014-09-21 22:40 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Mozilla
2016-07-01 23:12 - 2014-09-16 20:10 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Unity
2016-07-01 23:12 - 2014-09-09 18:47 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Adobe
2016-07-01 23:12 - 2014-09-09 18:47 - 00000000 ____D C:\Users\Familia\AppData\Local\VirtualStore
2016-07-01 23:12 - 2014-09-09 18:46 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Macromedia
2016-07-01 23:11 - 2015-08-04 12:53 - 00000000 ____D C:\Users\Familia\AppData\Local\CEF
2016-07-01 23:11 - 2015-03-13 19:35 - 00000000 ____D C:\Users\Familia\AppData\Local\Skype
2016-07-01 23:11 - 2014-11-29 15:34 - 00000000 ____D C:\Users\Familia\AppData\Local\Microsoft Games
2016-07-01 23:11 - 2014-09-21 22:40 - 00000000 ____D C:\Users\Familia\AppData\Local\Mozilla
2016-07-01 23:11 - 2014-09-09 18:47 - 00000000 ____D C:\Users\Familia\AppData\Local\Google
2016-07-01 15:59 - 2015-07-12 13:34 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-06-30 16:31 - 2014-06-30 17:04 - 01601788 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-06-30 11:54 - 2016-03-31 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-06-29 13:41 - 2015-08-10 10:45 - 00000000 ____D C:\Users\Familia\.VirtualBox
2016-06-28 12:53 - 2015-08-21 22:51 - 00000000 ____D C:\Program Files (x86)\Opera
2016-06-28 12:45 - 2014-07-14 11:48 - 00000000 ____D C:\Windows\system32\appmgmt
2016-06-28 09:58 - 2015-01-30 19:22 - 00001024 _____ C:\.rnd
2016-06-27 16:17 - 2014-06-30 14:28 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-27 16:17 - 2014-06-30 14:27 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-06-27 16:17 - 2014-06-30 14:27 - 00000000 ____D C:\ProgramData\Adobe
2016-06-27 16:15 - 2014-07-01 18:23 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2016-06-27 16:15 - 2014-07-01 18:23 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-06-25 09:57 - 2015-06-27 23:34 - 00000660 __RSH C:\Users\Marinangelo\ntuser.pol
2016-06-24 04:30 - 2015-06-24 16:26 - 00001066 __RSH C:\Users\Familia\ntuser.pol
2016-06-24 04:23 - 2016-03-31 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp
2016-06-24 04:23 - 2016-01-23 00:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-06-24 04:23 - 2015-12-19 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-24 04:23 - 2015-12-17 07:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-06-24 04:23 - 2015-12-16 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Duel
2016-06-24 04:23 - 2015-12-05 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pivot Animator
2016-06-24 04:23 - 2015-11-29 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2016-06-24 04:23 - 2015-08-23 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-06-24 04:23 - 2015-08-23 18:43 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-06-24 04:23 - 2015-06-24 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 No-Steam 2015
2016-06-24 04:23 - 2015-01-20 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool
2016-06-24 04:23 - 2014-08-02 18:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Device Doctor
2016-06-24 04:23 - 2014-07-15 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PointBlank
2016-06-24 04:23 - 2014-06-30 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-06-24 04:23 - 2014-06-30 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-06-24 04:23 - 2014-06-30 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2016-06-24 04:23 - 2014-06-30 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-24 04:23 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-24 04:15 - 2010-11-21 06:47 - 00000000 ____D C:\Windows\CSC
2016-06-24 00:46 - 2015-08-21 22:48 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Company
2016-06-23 16:29 - 2014-09-08 19:57 - 00000000 ____D C:\Windows\Hewlett-Packard
2016-06-23 15:59 - 2015-07-07 19:38 - 00003934 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-06-23 15:59 - 2015-07-07 19:38 - 00003934 __RSH C:\ProgramData\ntuser.pol
2016-06-23 15:59 - 2009-07-14 00:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-06-23 15:38 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-06-18 18:35 - 2015-07-27 11:56 - 00000000 ____D C:\Users\Familia\AppData\Local\Adobe
==================== Arquivos na raiz de alguns diretórios =======
2016-07-12 15:44 - 2016-07-12 15:44 - 26671784 _____ () C:\Users\Icaro\AppData\Roaming\gameboxsetup.exe
2016-07-01 23:01 - 2016-07-01 23:01 - 0000000 _____ () C:\ProgramData\ Explorer.exe.tmp
2014-07-16 16:24 - 2014-07-16 16:24 - 0000057 _____ () C:\ProgramData\Ament.ini
Arquivos para serem movidos ou deletados:
====================
C:\Windows\Tasks\{41678B6D-1E28-40A9-A692-BC92E2EA9402}.job
Alguns arquivos em TEMP:
====================
C:\Users\Familia\AppData\Local\Temp\11e11e5c57223f56c67ee0098813abce.dll
C:\Users\Familia\AppData\Local\Temp\1436404600.exe
C:\Users\Familia\AppData\Local\Temp\1436814377.exe
C:\Users\Familia\AppData\Local\Temp\287c499808bcff52a39d16f78044882a.dll
C:\Users\Familia\AppData\Local\Temp\avguirn_081413236038.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_081600673741.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_082096085004.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_0837236069.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_08860357834.exe
C:\Users\Familia\AppData\Local\Temp\bdfilters.dll
C:\Users\Familia\AppData\Local\Temp\cfPT_launcher.exe
C:\Users\Familia\AppData\Local\Temp\Execute2App.exe
C:\Users\Familia\AppData\Local\Temp\Gerador ZP - VIP.exe
C:\Users\Familia\AppData\Local\Temp\ICReinstall_Pivot.exe
C:\Users\Familia\AppData\Local\Temp\ICReinstall_pivot_v4-1.exe
C:\Users\Familia\AppData\Local\Temp\ICReinstall_terraria.exe
C:\Users\Familia\AppData\Local\Temp\InstallHelper.exe
C:\Users\Familia\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Familia\AppData\Local\Temp\Kies2RemoveAll.exe
C:\Users\Familia\AppData\Local\Temp\Kies3RemoveAll.exe
C:\Users\Familia\AppData\Local\Temp\msvcp90.dll
C:\Users\Familia\AppData\Local\Temp\msvcr90.dll
C:\Users\Familia\AppData\Local\Temp\msxml6-KB927977-enu-amd64.exe
C:\Users\Familia\AppData\Local\Temp\msxml6-KB927977-enu-x86.exe
C:\Users\Familia\AppData\Local\Temp\ovo_de_codorna.dll
C:\Users\Familia\AppData\Local\Temp\patcher_cf.exe
C:\Users\Familia\AppData\Local\Temp\proxy_vole2109455847078296724.dll
C:\Users\Familia\AppData\Local\Temp\spark_install.exe
C:\Users\Familia\AppData\Local\Temp\SpOrder.dll
C:\Users\Familia\AppData\Local\Temp\Uninstall.exe
C:\Users\Familia\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Icaro\AppData\Local\Temp\Encriptado.exe
C:\Users\Icaro\AppData\Local\Temp\proxy_vole492729640672690416.dll
C:\Users\Marinangelo\AppData\Local\Temp\jre-8u91-windows-au.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2015-08-23 13:32
==================== Fim de FRST.txt ============================
Executado por Icaro (administrador) em MICRO-PC (15-07-2016 14:36:05)
Executando a partir de C:\Users\Icaro\Desktop\Downloads
Perfis Carregados: Icaro (Perfis Disponíveis: UpdatusUser & Marinangelo & Familia & Icaro & Convidado)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe
(ServiceEx) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe
(The PHP Group) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\ews-dashboard.exe
() C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\dbserver\bin\ews-mysqld.exe
(Apache Software Foundation) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Apache Software Foundation) C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wusa.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [856800 2015-08-21] (GAS Tecnologia LTDA)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [4958320 2011-09-13] (VIA)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-06-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [EaseUS Cleanup] => "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\CleanUpUI.exe" 10 300
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2016-06-18] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2016-07-09] (Caixa Economica Federal)
HKU\S-1-5-21-2034886435-2999545992-2267086242-1010\...\Run: [OHI Start] => C:\ProgramData\OHI\OHI.exe
HKU\S-1-5-21-2034886435-2999545992-2267086242-1010\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2034886435-2999545992-2267086242-1010\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1947872 2016-06-18] (Banco do Brasil)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1903328 2016-07-09] (Caixa Economica Federal)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Nenhum Arquivo
GroupPolicy: Restrição - Chrome <======= ATENÇÃO
GroupPolicyUsers\S-1-5-21-2034886435-2999545992-2267086242-1003\User: Restrição <======= ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: O arquivo Hosts não foi detectado no seu diretório padrão
Tcpip\Parameters: [DhcpNameServer] 200.222.145.84 200.222.122.133
Tcpip\..\Interfaces\{144CABF1-B5FE-4A78-AC93-88C9FD42C32A}: [DhcpNameServer] 200.222.145.84 200.222.122.133
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2034886435-2999545992-2267086242-1010 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2034886435-2999545992-2267086242-1010 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation)
BHO-x32: Auxiliar de Conexão de Conta da Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2016-06-18] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2016-07-09] (Caixa Economica Federal)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Icaro\AppData\Roaming\Mozilla\Firefox\Profiles\uoysyng5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-13] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-28]
CHR Extension: (Google Docs) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-28]
CHR Extension: (Google Drive) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-28]
CHR Extension: (YouTube) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-28]
CHR Extension: (Planilhas do Google) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-28]
CHR Extension: (Documentos Google off-line) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-28]
CHR Extension: (Gmail) - C:\Users\Icaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-28]
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1080080 2016-06-21] (AVG Technologies CZ, s.r.o.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\52.0.2743.48\remoting_host.exe [76616 2016-06-20] (Google Inc.)
R2 ews-dashboard; C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe [114688 2014-04-06] (ServiceEx) [Arquivo não assinado]
R2 ews-dbserver; C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\dbserver\bin\ews-mysqld.exe [10958848 2014-05-06] () [Arquivo não assinado]
R2 ews-httpserver; C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe [20992 2014-07-19] (Apache Software Foundation) [Arquivo não assinado]
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [631520 2016-06-18] (GAS Tecnologia)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3398544 2014-11-11] (INCA Internet Co., Ltd.)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4803344 2016-06-01] (AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [56080 2016-06-01] (AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [49424 2016-06-01] (AVG Technologies CZ, s.r.o.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-09-07] (VIA Technologies, Inc.)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [856800 2015-08-21] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-07-26] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2014-10-10] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2014-10-10] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2014-10-10] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93696 2014-10-09] (LG Electronics Inc.)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GBPRCM; C:\PROGRAM FILES (X86)\GBPLUGIN\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2016-07-15] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-03-29] (AVG Netherlands B.V.)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2014-05-27] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [28160 2014-05-27] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [34816 2014-05-27] (LG Electronics Inc.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-07-26] (Microsoft Corporation)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [119712 2016-06-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [192864 2016-06-28] (Oracle Corporation)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2014-10-31] (GAS Tecnologia LTDA)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-07-15] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S1 gbpddfac; system32\drivers\gbpddfac64.sys [X]
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 X6va023; \??\C:\Windows\SysWOW64\Drivers\X6va023 [X]
S3 X6va025; \??\C:\Windows\SysWOW64\Drivers\X6va025 [X]
S3 X6va028; \??\C:\Windows\SysWOW64\Drivers\X6va028 [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
S3 xspirit; \??\C:\Windows\xspirit.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-07-15 14:28 - 2016-07-15 14:36 - 00000000 ____D C:\FRST
2016-07-15 14:27 - 2016-07-15 14:27 - 02390528 _____ (Farbar) C:\Users\Icaro\Desktop\FRST64.exe
2016-07-15 13:43 - 2016-07-15 13:43 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Sublime Text 3
2016-07-15 13:43 - 2016-07-15 13:43 - 00000000 ____D C:\Users\Icaro\AppData\Local\Sublime Text 3
2016-07-15 13:21 - 2016-07-15 13:21 - 00000000 ___HT C:\Windows\wusa.lock
2016-07-15 13:21 - 2016-07-15 13:21 - 00000000 ____D C:\d161ad15ac263957f529
2016-07-15 13:12 - 2016-07-15 13:12 - 00000000 ____D C:\Users\Icaro\.PyCharm2016.1
2016-07-15 12:48 - 2016-07-15 13:06 - 220390904 _____ C:\Users\Icaro\Downloads\pycharm-professional-2016.1.4.exe
2016-07-14 17:30 - 2016-07-14 17:30 - 00001618 _____ C:\Users\Icaro\Desktop\Daybreak.lnk
2016-07-14 17:30 - 2016-07-14 17:30 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GlobalGames
2016-07-14 17:28 - 2016-07-14 17:28 - 00000000 ____D C:\GlobalGames
2016-07-14 14:54 - 2016-07-14 16:09 - 765354248 ____R C:\Users\Icaro\Downloads\DayBreak_Brasil_20140425.exe
2016-07-14 14:53 - 2016-07-14 14:53 - 00015813 _____ C:\Users\Icaro\Downloads\DayBreak_Brasil_20140425.exe.torrent
2016-07-14 14:24 - 2016-07-14 14:25 - 00000000 ____D C:\Users\Icaro\Documents\Cross Fire
2016-07-14 14:19 - 2016-07-14 14:19 - 00002601 _____ C:\Users\Icaro\Desktop\µTorrent.lnk
2016-07-14 14:19 - 2016-07-14 14:19 - 00000000 ____D C:\Users\Icaro\AppData\LocalLow\uTorrent
2016-07-14 14:18 - 2016-07-14 17:37 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\uTorrent
2016-07-14 14:17 - 2016-07-14 14:17 - 00068176 _____ C:\Users\Icaro\Downloads\HeroesWoWClient.torrent
2016-07-14 13:56 - 2016-07-14 14:00 - 00000000 ____D C:\Users\Icaro\Desktop\Extrair Arquivos zip,tar Aqui
2016-07-14 13:23 - 2016-07-15 13:18 - 00000000 ____D C:\Users\Icaro\.idea
2016-07-14 13:14 - 2016-07-15 13:12 - 00000000 ____D C:\Users\Icaro\.oracle_jre_usage
2016-07-14 13:14 - 2016-07-14 13:14 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\JetBrains
2016-07-14 13:14 - 2016-07-14 13:14 - 00000000 ____D C:\Users\Icaro\.PhpStorm2016.1
2016-07-14 13:09 - 2016-07-14 13:12 - 40328071 _____ (EasyPHP Team ) C:\Users\Icaro\Downloads\EasyPHP-Webserver-14.1b2-setup.exe
2016-07-13 22:38 - 2016-07-13 22:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP Devserver 14.1 beta 2
2016-07-13 22:38 - 2016-07-13 22:38 - 00000000 ____D C:\Program Files (x86)\EasyPHP-Webserver-14.1b2
2016-07-13 22:27 - 2016-07-13 22:35 - 40328071 _____ (EasyPHP Team ) C:\Users\Familia\Desktop\EasyPHP-Webserver-14.1b2-setup.exe
2016-07-13 22:17 - 2016-07-13 22:17 - 00001306 _____ C:\Users\Familia\Desktop\EasyPHP Devserver 16.1.1.lnk
2016-07-13 22:17 - 2016-07-13 22:17 - 00000000 ____D C:\Program Files (x86)\EasyPHP-Devserver-16.1
2016-07-13 21:47 - 2016-07-13 22:16 - 57234826 _____ (Laurent Abbal ) C:\Users\Familia\Desktop\EasyPHP-Devserver-16.1.1-setup.exe
2016-07-13 18:10 - 2016-07-13 18:10 - 01059832 _____ (ROBLOX Corporation) C:\Users\Familia\Desktop\RobloxPlayerLauncher.exe
2016-07-13 17:52 - 2016-07-13 17:54 - 00000000 ____D C:\Users\Familia\Desktop\Gang Beasts_Data
2016-07-13 17:52 - 2014-02-17 01:47 - 11283968 _____ C:\Users\Familia\Desktop\Gang Beasts.exe
2016-07-13 17:48 - 2016-07-13 17:52 - 44024622 _____ C:\Users\Familia\Desktop\Gang_Beasts_0.0.1_Windows.zip
2016-07-13 15:56 - 2016-07-13 15:57 - 00000000 ____D C:\Users\Familia\Desktop\Lenno
2016-07-13 14:09 - 2016-07-13 14:09 - 00655872 _____ (Microsoft) C:\Users\Familia\Desktop\GERADOR CONTAS FAKES - BY DALSIN9807.exe
2016-07-12 21:04 - 2016-07-12 21:04 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-12 20:57 - 2016-07-12 22:17 - 00000000 ____D C:\Users\Icaro\Desktop\Programação
2016-07-12 15:44 - 2016-07-12 15:44 - 26671784 _____ C:\Users\Icaro\AppData\Roaming\gameboxsetup.exe
2016-07-12 15:44 - 2016-07-12 15:44 - 00001069 _____ C:\Users\Public\Desktop\NarutoOnline.lnk
2016-07-12 15:44 - 2016-07-12 15:44 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Brotsoft
2016-07-12 15:44 - 2016-07-12 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NarutoOnline
2016-07-12 15:44 - 2016-07-12 15:44 - 00000000 ____D C:\Program Files (x86)\NarutoOnline
2016-07-12 15:38 - 2016-07-12 15:42 - 27190808 _____ C:\Users\Icaro\Downloads\NarutoOnline_pt_2.3.0.6072_oas.exe
2016-07-11 14:33 - 2013-08-25 13:49 - 50102315 _____ (McRip ) C:\Users\Familia\Desktop\VC Redist Installer 1.5.7.exe
2016-07-11 14:29 - 2016-07-11 14:32 - 50098198 _____ C:\Users\Familia\Desktop\VC Redist Installer 1.5.7.rar
2016-07-11 00:10 - 2016-07-11 00:10 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\epm
2016-07-10 18:34 - 2016-07-10 18:34 - 00000000 ____D C:\Users\Familia\AppData\Local\Vitalwerks
2016-07-10 18:33 - 2016-07-10 18:33 - 00241736 _____ C:\Users\Familia\Desktop\DUCSetup_v4_1_1.exe
2016-07-10 18:33 - 2016-07-10 18:33 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC
2016-07-09 21:03 - 2016-07-09 21:03 - 00290752 _____ C:\Windows\Minidump\070916-16296-01.dmp
2016-07-09 17:38 - 2016-07-09 17:38 - 00001028 _____ C:\Users\Familia\Desktop\Play FantasyCF.lnk
2016-07-09 17:34 - 2016-07-09 17:38 - 00000000 ____D C:\Program Files (x86)\FantasyCF
2016-07-09 13:42 - 2016-07-13 21:56 - 00000000 ____D C:\Users\Familia\PhpstormProjects
2016-07-09 12:53 - 2016-07-09 12:53 - 00000000 ____D C:\Users\Familia\AppData\Roaming\epm
2016-07-08 21:37 - 2016-07-08 21:37 - 00804450 _____ C:\Users\Familia\Desktop\LB2LUEHOOFYQWUPCA8VX.rar
2016-07-08 20:46 - 2016-07-12 13:18 - 00000000 ____D C:\Users\Icaro\Desktop\Isos
2016-07-08 20:45 - 2016-07-13 13:54 - 00000000 ____D C:\Users\Icaro\Desktop\Icaro
2016-07-08 20:31 - 2016-07-08 20:31 - 00002611 _____ C:\Users\Familia\Desktop\µTorrent.lnk
2016-07-08 20:31 - 2016-07-08 20:31 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\uTorrent
2016-07-08 20:30 - 2016-07-09 04:12 - 00000000 ____D C:\Users\Familia\AppData\Roaming\uTorrent
2016-07-08 20:29 - 2016-07-08 20:29 - 02530304 _____ (BitTorrent Inc.) C:\Users\Familia\Desktop\uTorrent.exe
2016-07-08 20:28 - 2016-07-08 20:28 - 00014316 _____ C:\Users\Familia\Desktop\FantasyCF.torrent
2016-07-08 18:24 - 2016-07-08 18:24 - 00000000 ____D C:\Program Files (x86)\EaseUS
2016-07-08 18:19 - 2016-07-08 18:23 - 50340704 _____ (EaseUS ) C:\Users\Familia\Desktop\epm_trial.exe
2016-07-07 19:43 - 2015-09-17 21:39 - 00001457 _____ C:\Users\Familia\Desktop\Internet Explorer.lnk
2016-07-07 19:42 - 2016-07-03 13:12 - 00002193 _____ C:\Users\Familia\Desktop\Google Chrome.lnk
2016-07-07 19:33 - 2016-07-07 19:33 - 00000000 ____D C:\Users\Familia\Desktop\Textos
2016-07-07 19:28 - 2016-07-07 19:39 - 00000000 ____D C:\Users\Familia\Desktop\Fotos
2016-07-07 19:24 - 2016-07-08 16:16 - 00000000 ____D C:\Users\Familia\AppData\Roaming\JetBrains
2016-07-07 19:23 - 2016-07-07 19:23 - 00000000 ____D C:\Users\Familia\.PhpStorm2016.1
2016-07-07 12:44 - 2016-07-07 12:44 - 00007365 _____ C:\Users\Familia\Desktop\Boleto de ADRIANA.pdf
2016-07-06 22:51 - 2016-07-06 22:51 - 02382317 _____ C:\Users\Familia\Downloads\Mark lighting blue.rar
2016-07-06 22:34 - 2016-07-06 22:34 - 00813623 _____ C:\Users\Familia\Downloads\ALX_KM_CyberZ.rar
2016-07-06 22:30 - 2016-07-06 22:30 - 00685044 _____ C:\Users\Familia\Downloads\Kill Mark Blue Advanced.rar
2016-07-06 22:19 - 2016-07-06 22:19 - 01305819 _____ C:\Users\Familia\Downloads\Kill Mark RED BIG.rar
2016-07-06 20:50 - 2016-07-08 15:51 - 00000000 ____D C:\Users\Familia\Desktop\Nova pasta
2016-07-06 20:42 - 2016-07-06 20:42 - 01100104 _____ C:\Users\Familia\Downloads\RazerKillmark+ Life Wings.rar
2016-07-06 12:16 - 2016-07-06 12:21 - 00000000 ____D C:\Fraps
2016-07-06 12:16 - 2016-07-06 12:16 - 00000562 _____ C:\Users\Public\Desktop\Fraps.lnk
2016-07-06 12:16 - 2016-07-06 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-07-06 12:14 - 2016-07-06 12:15 - 02496800 _____ (Beepa Pty Ltd) C:\Users\Familia\Downloads\setup (1).exe
2016-07-05 21:12 - 2016-07-05 21:13 - 00000000 ____D C:\Users\Familia\Documents\Visual Studio 2012
2016-07-05 14:18 - 2016-07-11 14:12 - 00000000 ___HD C:\Windows\2522c1842fi3
2016-07-05 14:16 - 2016-07-05 14:16 - 00000000 ___HD C:\Windows\2522c1842f9a
2016-07-05 10:56 - 2016-07-05 10:56 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\MPC-HC
2016-07-04 15:06 - 2016-07-04 15:32 - 00000000 ____D C:\Program Files (x86)\Tales of Pirates II
2016-07-04 13:28 - 2016-07-04 13:31 - 00000000 __RHD C:\ESD
2016-07-04 13:24 - 2016-07-04 13:25 - 01483336 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\mediacreationtool.exe
2016-07-04 03:25 - 2011-09-29 09:22 - 00032256 _____ (Mandiant) C:\Users\Icaro\Desktop\apateDNS.exe
2016-07-04 03:24 - 2016-07-04 03:25 - 00244495 _____ C:\Users\Icaro\Downloads\sdl-apatedns.zip
2016-07-04 02:46 - 2016-07-04 02:46 - 00555008 _____ (ByIcaro) C:\Users\Icaro\Desktop\UDP Flooder.exe
2016-07-04 02:21 - 2016-07-04 02:21 - 00552448 _____ (ByIcaro) C:\Users\Icaro\Desktop\Port Scan ByIcaro.exe
2016-07-04 00:27 - 2016-07-04 00:27 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC
2016-07-04 00:19 - 2016-07-04 00:19 - 00000000 ____D C:\Users\Icaro\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
2016-07-03 23:33 - 2016-07-03 23:33 - 00001163 _____ C:\Users\Icaro\Desktop\Mozilla Firefox.lnk
2016-07-03 16:10 - 2016-07-03 16:10 - 01088000 _____ (Icaro) C:\Users\Icaro\Desktop\Navegador ByIcaro.exe
2016-07-03 16:07 - 2012-06-15 14:16 - 00001262 _____ C:\Users\Icaro\Downloads\Comandos Web.txt
2016-07-03 13:17 - 2016-07-03 13:17 - 00262144 ____N C:\Windows\Minidump\070316-49828-01.dmp
2016-07-02 22:47 - 2016-07-02 22:56 - 00412160 _____ (Icaro) C:\Users\Icaro\Desktop\Icon Change ByIcaro.exe
2016-07-02 22:11 - 2016-07-02 22:52 - 00410624 _____ (Icaro) C:\Users\Icaro\Desktop\Gerador De Strings ByIcaro.exe
2016-07-02 20:31 - 2016-07-02 20:31 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Microsoft FxCop
2016-07-02 17:22 - 2016-07-02 17:23 - 13730024 _____ (Daring Development Inc.) C:\Users\Icaro\Downloads\Horizon-Setup (1).exe
2016-07-02 16:50 - 2016-07-03 13:12 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Horizon.lnk
2016-07-02 16:48 - 2016-07-02 16:49 - 13730024 _____ (Daring Development Inc.) C:\Users\Icaro\Downloads\Horizon-Setup.exe
2016-07-02 16:44 - 2016-07-02 16:50 - 00000000 ____D C:\Users\Icaro\AppData\Local\Daring_Development_Inc
2016-07-02 16:43 - 2016-07-03 13:12 - 00001092 _____ C:\Users\Public\Desktop\Horizon.lnk
2016-07-02 16:43 - 2016-07-02 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Horizon
2016-07-02 16:43 - 2016-07-02 16:43 - 00000000 ____D C:\Program Files (x86)\Daring Development
2016-07-02 16:28 - 2016-07-02 16:38 - 122536127 _____ C:\Users\Icaro\Downloads\ARQUIVOS DO MOD.rar
2016-07-02 16:20 - 2016-07-02 16:20 - 00000000 ____D C:\Users\Icaro\AppData\Local\Apple
2016-07-02 15:45 - 2016-07-02 15:45 - 00003168 _____ C:\Windows\System32\Tasks\{D4A3D52A-6D68-4245-B4BE-30E7A19041BD}
2016-07-02 14:40 - 2016-07-04 23:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-02 12:08 - 2016-07-02 12:08 - 00000000 ____D C:\Program Files (x86)\NuGet
2016-07-02 11:53 - 2016-07-02 11:53 - 00000000 ____D C:\Windows\symbols
2016-07-02 11:42 - 2016-07-02 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-07-02 11:37 - 2016-07-03 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012 Express
2016-07-02 11:37 - 2016-07-03 13:12 - 00001536 _____ C:\Users\Icaro\Desktop\VS Express for Desktop.lnk
2016-07-02 11:36 - 2016-07-02 11:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
2016-07-02 11:16 - 2016-07-09 15:18 - 00000000 ____D C:\Users\Icaro\Documents\Visual Studio 2012
2016-07-01 23:01 - 2016-07-01 23:01 - 00000000 _____ C:\Users\Todos os Usuários\ Explorer.exe.tmp
2016-07-01 23:01 - 2016-07-01 23:01 - 00000000 _____ C:\ProgramData\ Explorer.exe.tmp
2016-07-01 19:46 - 2016-07-01 19:46 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\WinRAR
2016-07-01 19:45 - 2016-07-01 19:45 - 00000000 ____D C:\Users\Icaro\AppData\Local\Macromedia
2016-07-01 17:50 - 2016-07-01 17:50 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\NuGet
2016-07-01 16:21 - 2016-07-01 16:21 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-07-01 16:15 - 2016-07-01 16:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-07-01 16:08 - 2016-07-02 10:42 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-07-01 16:08 - 2016-07-02 10:42 - 00000000 ____D C:\Windows\system32\1033
2016-07-01 16:05 - 2016-07-02 10:50 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-07-01 16:05 - 2016-07-01 16:53 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-07-01 15:59 - 2016-07-01 15:59 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2016-07-01 15:52 - 2016-07-01 15:53 - 00934728 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\wdexpress_full.exe
2016-07-01 15:35 - 2016-07-02 11:22 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-07-01 15:35 - 2016-07-02 11:22 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-07-01 15:21 - 2016-07-02 11:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-07-01 15:20 - 2016-07-02 11:15 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-07-01 14:45 - 2016-07-03 13:12 - 00001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2016-07-01 14:45 - 2016-07-03 13:12 - 00001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2016-07-01 14:45 - 2016-07-03 13:12 - 00001139 _____ C:\Users\Public\Desktop\Security Task Manager.lnk
2016-07-01 14:45 - 2016-07-01 15:05 - 00000000 ____D C:\Users\Todos os Usuários\SecTaskMan
2016-07-01 14:45 - 2016-07-01 15:05 - 00000000 ____D C:\ProgramData\SecTaskMan
2016-07-01 14:45 - 2016-07-01 14:45 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2016-07-01 14:44 - 2016-07-01 14:44 - 02844712 _____ C:\Users\Icaro\Downloads\SecurityTaskManager_Setup.exe
2016-07-01 14:42 - 2016-07-01 14:42 - 00003140 _____ C:\Windows\System32\Tasks\{EAC5A2A3-3CAB-402F-B045-6D5D093E881C}
2016-07-01 14:31 - 2016-07-01 14:31 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Notepad++
2016-07-01 14:04 - 2016-07-01 14:04 - 00000000 ____D C:\b95d636c3093aa74db1f
2016-07-01 13:55 - 2016-07-01 13:56 - 09973552 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\NDP1.0sp3-KB867461-X86-PTB.exe
2016-07-01 13:45 - 2016-07-01 13:46 - 10703680 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\NDP1.1sp1-KB867460-X86.exe
2016-06-30 19:01 - 2016-06-30 19:01 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Ahead
2016-06-30 15:20 - 2016-06-30 15:20 - 01424328 _____ (Microsoft Corporation) C:\Users\Icaro\Downloads\NDP461-KB3102438-Web.exe
2016-06-30 13:27 - 2016-06-30 13:27 - 02333184 _____ C:\Users\Icaro\Downloads\Setup.msi
2016-06-30 13:24 - 2016-06-30 13:24 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Mozilla
2016-06-30 13:24 - 2016-06-30 13:24 - 00000000 ____D C:\Users\Icaro\AppData\Local\Mozilla
2016-06-30 11:46 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\LocalLow\Adobe
2016-06-30 11:46 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\Local\CEF
2016-06-30 11:46 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\Local\Adobe
2016-06-30 11:45 - 2016-06-30 11:45 - 00007575 _____ C:\Users\Icaro\Downloads\c9a4bafb-6879-44ed-88d5-3e4ede23335c.pdf
2016-06-30 09:22 - 2016-06-30 09:22 - 00014373 _____ C:\Users\Familia\Downloads\41869cfb-c0b6-46ea-8b4b-9d586850dc72.pdf
2016-06-30 09:22 - 2016-06-30 09:22 - 00014373 _____ C:\Users\Familia\Downloads\41869cfb-c0b6-46ea-8b4b-9d586850dc72 (1).pdf
2016-06-29 19:38 - 2016-06-29 19:38 - 00014373 _____ C:\Users\Familia\Downloads\13cf67fd-532c-4610-8343-69aa04468a41.pdf
2016-06-29 19:36 - 2016-06-29 19:36 - 00014373 _____ C:\Users\Familia\Downloads\1ddc5aaf-2f28-4645-9698-73f3b5f00dd1.pdf
2016-06-29 19:35 - 2016-06-29 19:35 - 00014373 _____ C:\Users\Familia\Downloads\d9d3abbb-0586-47f8-b736-89c97640f671.pdf
2016-06-29 19:29 - 2016-06-29 19:29 - 00014584 _____ C:\Users\Familia\Downloads\63953c38-8c53-4cc0-9622-05ee1a026937.pdf
2016-06-29 13:59 - 2016-07-03 13:12 - 00001076 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2016-06-29 13:59 - 2016-06-29 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-06-29 13:59 - 2016-06-29 13:59 - 00000000 ____D C:\Program Files\Oracle
2016-06-29 13:59 - 2016-06-28 17:21 - 00917032 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2016-06-29 13:59 - 2016-06-28 17:21 - 00143568 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2016-06-29 13:48 - 2016-06-29 13:49 - 00000000 ____D C:\Users\Icaro\AppData\Local\Microsoft Games
2016-06-29 13:46 - 2016-06-29 13:56 - 113455072 _____ (Oracle Corporation) C:\Users\Icaro\Downloads\VirtualBox-5.0.24-108355-Win.exe
2016-06-29 13:45 - 2016-07-10 18:33 - 00000000 ____D C:\Program Files (x86)\No-IP
2016-06-29 13:45 - 2016-06-29 13:45 - 00000000 ____D C:\Users\Icaro\AppData\Local\Vitalwerks
2016-06-29 13:35 - 2016-07-07 19:32 - 00000000 ____D C:\Users\Familia\Desktop\Mateus
2016-06-28 17:21 - 2016-06-28 17:21 - 00192864 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys
2016-06-28 17:21 - 2016-06-28 17:21 - 00119712 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp6.sys
2016-06-28 13:26 - 2016-06-28 13:26 - 00064136 _____ C:\Users\Icaro\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-28 13:11 - 2016-07-12 13:40 - 00000000 ____D C:\Users\Icaro\VirtualBox VMs
2016-06-28 13:11 - 2016-07-12 13:40 - 00000000 ____D C:\Users\Icaro\.VirtualBox
2016-06-28 13:11 - 2016-07-03 13:12 - 00000914 _____ C:\Users\Icaro\Desktop\Gerenc. De Tarefas.lnk
2016-06-28 13:03 - 2016-06-28 13:03 - 00000000 ____D C:\Users\Icaro\AppData\Local\GWX
2016-06-28 13:02 - 2016-07-15 13:12 - 00000000 ____D C:\Users\Icaro
2016-06-28 13:02 - 2016-07-03 13:12 - 00002257 _____ C:\Users\Icaro\Desktop\Google Chrome.lnk
2016-06-28 13:02 - 2016-07-03 13:12 - 00001393 _____ C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-28 13:02 - 2016-07-03 13:12 - 00001304 _____ C:\Users\Icaro\Desktop\Notepad.lnk
2016-06-28 13:02 - 2016-07-03 13:12 - 00001280 _____ C:\Users\Icaro\Desktop\Prompt de Comando.lnk
2016-06-28 13:02 - 2016-06-30 11:46 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Adobe
2016-06-28 13:02 - 2016-06-28 14:55 - 00000000 ____D C:\Users\Icaro\AppData\Local\Google
2016-06-28 13:02 - 2016-06-28 13:02 - 00000660 __RSH C:\Users\Icaro\ntuser.pol
2016-06-28 13:02 - 2016-06-28 13:02 - 00000020 ___SH C:\Users\Icaro\ntuser.ini
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Modelos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Meus documentos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Menu Iniciar
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Documents\Minhas músicas
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Documents\Minhas imagens
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Documents\Meus vídeos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Dados de aplicativos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Configurações locais
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\AppData\Local\Histórico
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\AppData\Local\Dados de aplicativos
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Ambiente de rede
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 _SHDL C:\Users\Icaro\Ambiente de impressão
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Motorola Mobility
2016-06-28 13:02 - 2016-06-28 13:02 - 00000000 ____D C:\Users\Icaro\AppData\Local\VirtualStore
2016-06-28 13:02 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Icaro\AppData\Local\AVG
2016-06-28 13:02 - 2014-08-28 12:48 - 00000000 ____D C:\Users\Icaro\AppData\Local\Microsoft Help
2016-06-28 13:02 - 2014-07-29 17:31 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Macromedia
2016-06-28 13:02 - 2010-11-21 06:47 - 00000000 ____D C:\Users\Icaro\AppData\Roaming\Media Center Programs
2016-06-28 11:39 - 2016-06-28 11:39 - 00001024 _____ C:\Windows\SysWOW64\%TMP%
2016-06-28 09:58 - 2016-06-28 12:34 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2016-06-28 09:58 - 2016-06-28 12:34 - 00000000 ____D C:\ProgramData\VMware
2016-06-24 04:49 - 2016-06-24 04:49 - 00000418 _____ C:\Windows\Tasks\Opera scheduled Autoupdate 1466754548.job
2016-06-24 04:38 - 2016-06-24 04:38 - 00000000 ____D C:\Users\Todos os Usuários\Apple Computer
2016-06-24 04:38 - 2016-06-24 04:38 - 00000000 ____D C:\ProgramData\Apple Computer
2016-06-24 03:53 - 2016-06-24 04:23 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-06-24 01:37 - 2016-06-24 04:23 - 00000000 ____D C:\Users\Todos os Usuários\GZG
2016-06-24 01:37 - 2016-06-24 04:23 - 00000000 ____D C:\ProgramData\GZG
2016-06-23 23:50 - 2016-06-23 23:50 - 00000000 ____D C:\Users\Todos os Usuários\Vitalwerks
2016-06-23 23:50 - 2016-06-23 23:50 - 00000000 ____D C:\ProgramData\Vitalwerks
2016-06-23 18:06 - 2016-06-27 16:25 - 00000000 ____D C:\Program Files (x86)\Safari
2016-06-23 18:05 - 2016-06-23 18:05 - 00000000 ____D C:\Users\Todos os Usuários\Apple
2016-06-23 18:05 - 2016-06-23 18:05 - 00000000 ____D C:\ProgramData\Apple
2016-06-23 16:41 - 2016-07-15 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2016-06-23 16:00 - 2016-06-24 04:23 - 00000000 ____D C:\Program Files (x86)\Torrent Search
2016-06-23 15:42 - 2016-07-15 13:07 - 00000000 ____D C:\Program Files (x86)\JetBrains
2016-06-23 14:54 - 2016-06-28 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2016-06-23 14:05 - 2016-06-23 14:05 - 00000000 ____D C:\Ruby23
2016-06-23 13:11 - 2016-07-03 13:12 - 00001023 _____ C:\Users\Public\Desktop\Notepad++.lnk
2016-06-21 21:50 - 2016-06-22 10:54 - 00000000 ____D C:\Users\Familia\Desktop\HTML5 and CSS3
2016-06-21 20:09 - 2016-07-06 22:35 - 00000000 ____D C:\Users\Familia\Desktop\HTML and CSS
2016-06-18 12:46 - 2016-06-18 12:46 - 765061373 _____ C:\Users\Familia\Downloads\www.stockrom.net_MotoG3_XT1543_OSPREY_RETLA_DS_2GB_5.1.1_LPI23.72-33_cid12_subsidy-DEFAULT_CFC.xml.zip
2016-06-18 12:40 - 2016-06-18 12:45 - 02656855 _____ C:\Users\Familia\Downloads\ARQUIVOS MOTO G3 (2).rar
2016-06-18 11:30 - 2016-06-18 11:30 - 00000000 ____D C:\Users\Familia\Desktop\META-INF
2016-06-18 11:28 - 2016-06-18 11:28 - 472451165 _____ C:\Users\Familia\Downloads\www.stockrom.net-Moto_G_XT1543.zip
2016-06-18 10:53 - 2016-06-18 10:57 - 02656855 _____ C:\Users\Familia\Downloads\ARQUIVOS MOTO G3 (1).rar
2016-06-18 00:07 - 2016-06-18 00:07 - 02656855 _____ C:\Users\Familia\Downloads\ARQUIVOS MOTO G3.rar
2016-06-16 14:38 - 2016-06-16 14:53 - 162637696 _____ C:\Users\Familia\Downloads\Lenno promo 2016.zip
2016-06-10 09:59 - 2016-06-10 09:59 - 00000000 ___HD C:\Windows\002522c1842fc3b
2016-06-09 12:53 - 2016-06-09 12:53 - 00000000 ____D C:\Users\Marinangelo\AppData\Roaming\Motorola Mobility
2016-06-03 10:13 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\AVG
2016-06-03 10:13 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Default\AppData\Local\AVG
2016-06-03 10:13 - 2016-06-03 10:13 - 00000000 ____D C:\Users\Default User\AppData\Local\AVG
2016-06-03 10:13 - 2016-06-01 15:05 - 00056080 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\uxtuneup.dll
2016-06-03 10:13 - 2016-06-01 15:05 - 00049424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\SysWOW64\uxtuneup.dll
2016-06-03 10:13 - 2016-06-01 15:05 - 00044304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\authuitu.dll
2016-06-03 10:13 - 2016-06-01 15:05 - 00039696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\SysWOW64\authuitu.dll
2016-05-31 22:33 - 2016-05-31 22:33 - 00638540 _____ C:\Users\Familia\Downloads\adb (2).zip
2016-05-31 22:31 - 2016-05-31 22:32 - 07958528 _____ C:\Users\Familia\Downloads\twrp-osprey-2.8.7-r5 (2).img
2016-05-31 22:04 - 2016-05-31 22:05 - 07958528 _____ C:\Users\Familia\Downloads\twrp-osprey-2.8.7-r5 (1).img
2016-05-31 21:36 - 2016-05-31 21:38 - 04225692 _____ C:\Users\Familia\Downloads\BETA-SuperSU-v2.62-3-20151211162651.zip
2016-05-31 21:24 - 2016-05-31 21:24 - 00472951 _____ C:\Users\Familia\Downloads\apagar mensagem desbloqueio.zip
2016-05-31 20:53 - 2016-07-15 12:26 - 00000000 ____D C:\Temp
2016-05-31 20:53 - 2016-07-01 23:17 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Motorola Mobility
2016-05-31 20:52 - 2016-06-24 04:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
2016-05-31 20:52 - 2016-05-31 20:53 - 00000000 ____D C:\Program Files (x86)\Motorola Mobility
2016-05-31 20:52 - 2016-05-31 20:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2016-05-31 20:52 - 2016-05-31 20:52 - 00000000 ____D C:\Program Files (x86)\Motorola
2016-05-31 20:50 - 2016-05-31 20:50 - 00000000 ____D C:\Program Files\Motorola Mobility LLC
2016-05-31 20:50 - 2016-05-31 20:50 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
2016-05-31 20:40 - 2016-05-31 20:40 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Motorola
2016-05-31 20:37 - 2016-05-31 20:37 - 00638540 _____ C:\Users\Familia\Downloads\adb (1).zip
2016-05-31 20:36 - 2016-05-31 20:40 - 34236544 _____ (Motorola Mobility) C:\Users\Familia\Downloads\MotorolaDeviceManager_2.5.4.exe
2016-05-30 17:09 - 2016-06-23 16:29 - 00000000 ____D C:\Users\Marinangelo\Documents\MSDCSC
2016-05-28 21:19 - 2016-06-23 16:28 - 00000000 ____D C:\Users\Familia\Documents\MSDCSC
2016-05-28 16:52 - 2016-05-28 16:57 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2016-05-28 16:52 - 2016-05-28 16:57 - 00000000 ____D C:\ProgramData\MFAData
2016-05-28 16:52 - 2016-05-28 16:52 - 00000000 ____D C:\Users\Familia\AppData\Local\MFAData
2016-05-28 16:40 - 2016-07-03 13:12 - 00001109 _____ C:\Users\Public\Desktop\K-Meleon.lnk
2016-05-28 16:40 - 2016-07-01 23:17 - 00000000 ____D C:\Users\Familia\AppData\Roaming\K-Meleon
2016-05-28 16:40 - 2016-06-24 04:23 - 00000000 ____D C:\Program Files (x86)\K-Meleon
2016-05-28 16:40 - 2016-06-10 10:03 - 00000000 ____D C:\Users\Familia\AppData\Local\K-Meleon
2016-05-28 16:37 - 2016-05-28 16:40 - 17993612 _____ (kmeleonbrowser.org) C:\Users\Familia\Downloads\K-Meleon74.0.exe
2016-05-28 11:15 - 2016-07-09 21:03 - 501688418 _____ C:\Windows\MEMORY.DMP
2016-05-28 11:15 - 2016-05-28 11:15 - 00290736 _____ C:\Windows\Minidump\052816-21953-01.dmp
2016-05-28 10:31 - 2016-05-28 10:31 - 00000274 _____ C:\Windows\Tasks\WinThruster.job
2016-05-28 10:29 - 2016-05-28 16:51 - 00000000 ____D C:\Users\Familia\AppData\Local\AvgSetupLog
2016-05-27 23:51 - 2016-05-27 23:51 - 00889416 _____ (Microsoft Corporation) C:\Users\Familia\Downloads\dotNetFx40_Full_setup (1).exe
2016-05-27 23:44 - 2016-05-27 23:45 - 07186992 _____ (Microsoft Corporation) C:\Users\Familia\Downloads\vcredist_x64.exe
2016-05-26 14:19 - 2016-07-03 13:12 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Solvusoft
2016-05-26 14:19 - 2016-05-26 14:19 - 03901072 _____ C:\Users\Familia\Downloads\WinThruster_2016_Setup.exe
2016-05-26 14:19 - 2015-11-25 13:01 - 00021624 _____ C:\Windows\system32\roboot64.exe
2016-05-23 11:23 - 2015-03-30 00:25 - 00000619 _____ C:\Users\Familia\Downloads\Leia-me! antes .vbs
2016-05-21 16:17 - 2016-07-05 18:37 - 00001357 _____ C:\Users\Public\Desktop\UmmyVideoDownloader.lnk
2016-05-21 16:17 - 2016-07-01 23:17 - 00000000 ____D C:\Users\Familia\AppData\Local\UmmyVideoDownloader
2016-05-21 16:17 - 2016-06-24 04:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader
2016-05-21 16:16 - 2016-05-21 16:16 - 00897888 _____ ( ) C:\Users\Familia\Downloads\UmmyVD-Web-Loader-[113-yt-idc7mo9JT8o].exe
2016-05-21 16:14 - 2016-05-21 16:14 - 11886060 _____ C:\Users\Familia\Downloads\Tim Maia - Bom Senso.mp4
2016-05-21 13:30 - 2016-07-03 13:12 - 00000930 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 3.lnk
2016-05-21 13:30 - 2016-05-21 13:30 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Sublime Text 3
2016-05-21 13:30 - 2016-05-21 13:30 - 00000000 ____D C:\Users\Familia\AppData\Local\Sublime Text 3
2016-05-21 13:30 - 2016-05-21 13:30 - 00000000 ____D C:\Program Files\Sublime Text 3
2016-05-21 13:21 - 2016-05-21 13:21 - 08412624 _____ (Sublime HQ Pty Ltd ) C:\Users\Familia\Downloads\Sublime Text Build 3114 x64 Setup.exe
2016-05-11 11:21 - 2016-05-11 11:21 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1ab9070aea813.job
2016-05-08 15:38 - 2016-07-08 13:19 - 00000000 ____D C:\Users\Familia\Desktop\(4) Adriana Sibele_files
2016-04-28 10:46 - 2016-04-28 10:46 - 00075359 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (15).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (14).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (13).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (12).pdf
2016-04-28 10:40 - 2016-04-28 10:40 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (11).pdf
2016-04-28 10:39 - 2016-04-28 10:39 - 00067003 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (10).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (9).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (8).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (7).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (6).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (5).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (4).pdf
2016-04-28 10:38 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (3).pdf
2016-04-28 10:37 - 2016-04-28 10:38 - 00066980 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (2).pdf
2016-04-28 10:17 - 2016-04-28 10:17 - 00125544 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170 (1).pdf
2016-04-28 09:12 - 2016-04-28 09:12 - 00133896 _____ C:\Users\Familia\Downloads\DAS-PGMEI-18392206000170.pdf
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-07-15 14:33 - 2015-08-23 18:43 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-15 14:27 - 2015-07-27 12:09 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-15 14:01 - 2015-04-29 16:43 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-15 14:01 - 2015-04-29 16:42 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-15 13:41 - 2015-01-30 19:21 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-15 13:41 - 2015-01-30 19:21 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-15 13:32 - 2009-07-14 01:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-15 13:32 - 2009-07-14 01:45 - 00021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-15 12:26 - 2016-01-19 13:08 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-07-15 12:26 - 2014-12-17 17:10 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-07-15 12:26 - 2014-12-17 17:10 - 00000000 ____D C:\ProgramData\GbPlugin
2016-07-15 12:26 - 2014-12-17 17:10 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-07-15 12:25 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-14 14:29 - 2015-07-27 12:09 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-07-14 14:29 - 2015-06-25 20:17 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-14 14:29 - 2015-06-25 20:17 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-13 18:17 - 2015-03-21 16:08 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\RbxLogs
2016-07-13 18:16 - 2015-03-21 16:07 - 00000173 _____ C:\Users\Familia\AppData\LocalLow\rbxcsettings.rbx
2016-07-13 12:27 - 2014-06-30 14:46 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-07-13 12:27 - 2014-06-30 14:46 - 00000000 ____D C:\Windows\system32\Macromed
2016-07-12 21:04 - 2014-06-30 14:33 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-12 21:03 - 2016-03-04 21:32 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-07-10 15:16 - 2015-08-16 04:21 - 00000000 ____D C:\Users\Familia\Documents\Cross Fire
2016-07-10 13:29 - 2013-07-26 14:44 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-07-10 13:20 - 2013-07-26 14:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-07-09 21:03 - 2015-10-10 11:04 - 00000000 ____D C:\Windows\Minidump
2016-07-09 19:14 - 2014-06-30 16:10 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-07-09 19:14 - 2014-06-30 16:10 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-09 13:42 - 2014-09-09 18:46 - 00000000 ____D C:\Users\Familia
2016-07-08 17:54 - 2016-01-14 20:17 - 00000000 ____D C:\Users\Familia\Desktop\Adriana
2016-07-07 19:23 - 2016-01-21 14:36 - 00000000 ____D C:\Users\Familia\.oracle_jre_usage
2016-07-05 23:55 - 2009-07-14 02:08 - 00032552 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-07-05 18:37 - 2015-12-16 16:12 - 00002240 _____ C:\Users\Marinangelo\Desktop\The Duel.lnk
2016-07-05 11:06 - 2010-11-21 06:37 - 00706174 _____ C:\Windows\system32\prfh0416.dat
2016-07-05 11:06 - 2010-11-21 06:37 - 00148014 _____ C:\Windows\system32\prfc0416.dat
2016-07-05 11:06 - 2009-07-14 02:13 - 01634498 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-05 11:06 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-07-04 23:40 - 2014-06-30 14:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-03 13:13 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\L2Schemas
2016-07-03 13:12 - 2016-03-31 21:12 - 00002156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2016-07-03 13:12 - 2016-03-31 21:08 - 00000862 _____ C:\Users\Public\Desktop\AVG.lnk
2016-07-03 13:12 - 2016-03-04 21:32 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-07-03 13:12 - 2015-11-29 20:27 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2016-07-03 13:12 - 2015-09-26 14:58 - 00002127 _____ C:\Users\Public\Desktop\Smart Switch.lnk
2016-07-03 13:12 - 2015-08-23 18:43 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-03 13:12 - 2015-08-23 13:12 - 00002006 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2016-07-03 13:12 - 2015-08-23 13:12 - 00001996 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2016-07-03 13:12 - 2015-08-02 14:07 - 00001973 _____ C:\Users\Public\Desktop\Samsung Kies 3.lnk
2016-07-03 13:12 - 2015-07-12 13:34 - 00001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-07-03 13:12 - 2015-07-12 13:34 - 00001305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-07-03 13:12 - 2015-04-29 16:46 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-03 13:12 - 2014-08-02 19:06 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-07-03 13:12 - 2014-08-02 19:06 - 00001206 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-07-03 13:12 - 2014-07-16 16:25 - 00002272 _____ C:\Users\Public\Desktop\HP Deskjet 3050 J610 series.lnk
2016-07-03 13:12 - 2014-07-16 16:25 - 00001995 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2016-07-03 13:12 - 2014-07-16 16:25 - 00001194 _____ C:\Users\Public\Desktop\Comprar suprimentos - HP Deskjet 3050 J610 series.lnk
2016-07-03 13:12 - 2014-07-06 19:01 - 00002008 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2016-07-03 13:12 - 2014-06-30 14:55 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-03 13:12 - 2014-06-30 14:23 - 00002786 _____ C:\Users\Public\Desktop\Nero StartSmart.lnk
2016-07-03 13:12 - 2013-07-26 23:33 - 00001869 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Center.lnk
2016-07-03 13:12 - 2009-07-14 02:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-07-03 13:12 - 2009-07-14 01:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-03 13:12 - 2009-07-14 01:57 - 00001330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-07-03 13:12 - 2009-07-14 01:57 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-07-03 13:12 - 2009-07-14 01:54 - 00001242 _____ C:\Users\Icaro\Desktop\Paint.lnk
2016-07-03 13:12 - 2009-07-14 01:54 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-07-03 13:12 - 2009-07-14 01:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-07-02 11:53 - 2009-07-14 00:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-02 11:35 - 2009-07-14 02:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-07-01 23:17 - 2016-01-24 20:45 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2.0
2016-07-01 23:17 - 2015-12-17 10:56 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-01 23:17 - 2015-11-02 18:19 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Oracle
2016-07-01 23:17 - 2015-10-13 17:08 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Legend Of Glory
2016-07-01 23:17 - 2015-08-23 13:12 - 00000000 ____D C:\Users\Familia\AppData\Local\Samsung
2016-07-01 23:17 - 2015-08-23 12:54 - 00000000 ____D C:\Users\Familia\AppData\Local\Downloaded Installations
2016-07-01 23:17 - 2015-08-22 20:28 - 00000000 ____D C:\Users\Familia\AppData\Local\AAA_Internet_Publishing,_
2016-07-01 23:17 - 2015-08-21 21:50 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-07-01 23:17 - 2015-08-21 21:50 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
2016-07-01 23:17 - 2015-08-16 00:39 - 00000000 ____D C:\Users\Familia\Desktop\CrossFire
2016-07-01 23:17 - 2015-08-01 16:57 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-07-01 23:17 - 2015-07-27 12:23 - 00000000 ____D C:\Users\Familia\Desktop\Adobe Acrobat Reader (Version 11.0.10)
2016-07-01 23:17 - 2015-07-25 22:32 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Downloaded Installations
2016-07-01 23:17 - 2015-07-08 22:12 - 00000000 ____D C:\Users\Familia\AppData\Local\MiniService
2016-07-01 23:17 - 2015-06-25 21:55 - 00000000 ____D C:\Users\Familia\AppData\Roaming\raidcall
2016-07-01 23:17 - 2015-06-25 21:55 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\raidcall
2016-07-01 23:17 - 2015-04-04 12:51 - 00000000 ___SD C:\Windows\system32\GWX
2016-07-01 23:17 - 2015-03-13 19:35 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Skype
2016-07-01 23:17 - 2015-01-24 23:50 - 00000000 ____D C:\Users\Familia\AppData\Local\YoYo_Games_Ltd
2016-07-01 23:17 - 2014-09-16 20:10 - 00000000 ____D C:\Users\Familia\AppData\Local\Unity
2016-07-01 23:17 - 2014-09-16 11:06 - 00000000 ____D C:\Users\Familia\AppData\Local\HP
2016-07-01 23:17 - 2014-09-09 18:48 - 00000000 ____D C:\Users\Convidado
2016-07-01 23:17 - 2014-09-09 18:46 - 00000000 ____D C:\Users\Familia\AppData\Local\Microsoft Help
2016-07-01 23:17 - 2014-09-09 18:42 - 00000000 ____D C:\Users\Marinangelo
2016-07-01 23:17 - 2014-06-30 16:10 - 00000000 ____D C:\Users\UpdatusUser
2016-07-01 23:16 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\registration
2016-07-01 23:13 - 2015-07-25 22:51 - 00000000 ____D C:\Users\Familia\Documents\AutoPlay Media Studio 8
2016-07-01 23:12 - 2016-01-21 14:36 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Sun
2016-07-01 23:12 - 2015-10-13 17:09 - 00000000 ____D C:\Users\Familia\AppData\Roaming\s3_web
2016-07-01 23:12 - 2015-08-01 17:51 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Google
2016-07-01 23:12 - 2015-07-20 10:57 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Notepad++
2016-07-01 23:12 - 2015-06-25 00:16 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Easeware
2016-07-01 23:12 - 2014-09-21 22:40 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Mozilla
2016-07-01 23:12 - 2014-09-16 20:10 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Unity
2016-07-01 23:12 - 2014-09-09 18:47 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Adobe
2016-07-01 23:12 - 2014-09-09 18:47 - 00000000 ____D C:\Users\Familia\AppData\Local\VirtualStore
2016-07-01 23:12 - 2014-09-09 18:46 - 00000000 ____D C:\Users\Familia\AppData\Roaming\Macromedia
2016-07-01 23:11 - 2015-08-04 12:53 - 00000000 ____D C:\Users\Familia\AppData\Local\CEF
2016-07-01 23:11 - 2015-03-13 19:35 - 00000000 ____D C:\Users\Familia\AppData\Local\Skype
2016-07-01 23:11 - 2014-11-29 15:34 - 00000000 ____D C:\Users\Familia\AppData\Local\Microsoft Games
2016-07-01 23:11 - 2014-09-21 22:40 - 00000000 ____D C:\Users\Familia\AppData\Local\Mozilla
2016-07-01 23:11 - 2014-09-09 18:47 - 00000000 ____D C:\Users\Familia\AppData\Local\Google
2016-07-01 15:59 - 2015-07-12 13:34 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-06-30 16:31 - 2014-06-30 17:04 - 01601788 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-06-30 11:54 - 2016-03-31 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-06-29 13:41 - 2015-08-10 10:45 - 00000000 ____D C:\Users\Familia\.VirtualBox
2016-06-28 12:53 - 2015-08-21 22:51 - 00000000 ____D C:\Program Files (x86)\Opera
2016-06-28 12:45 - 2014-07-14 11:48 - 00000000 ____D C:\Windows\system32\appmgmt
2016-06-28 09:58 - 2015-01-30 19:22 - 00001024 _____ C:\.rnd
2016-06-27 16:17 - 2014-06-30 14:28 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-27 16:17 - 2014-06-30 14:27 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-06-27 16:17 - 2014-06-30 14:27 - 00000000 ____D C:\ProgramData\Adobe
2016-06-27 16:15 - 2014-07-01 18:23 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2016-06-27 16:15 - 2014-07-01 18:23 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-06-25 09:57 - 2015-06-27 23:34 - 00000660 __RSH C:\Users\Marinangelo\ntuser.pol
2016-06-24 04:30 - 2015-06-24 16:26 - 00001066 __RSH C:\Users\Familia\ntuser.pol
2016-06-24 04:23 - 2016-03-31 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp
2016-06-24 04:23 - 2016-01-23 00:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-06-24 04:23 - 2015-12-19 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-24 04:23 - 2015-12-17 07:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-06-24 04:23 - 2015-12-16 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Duel
2016-06-24 04:23 - 2015-12-05 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pivot Animator
2016-06-24 04:23 - 2015-11-29 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2016-06-24 04:23 - 2015-08-23 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-06-24 04:23 - 2015-08-23 18:43 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-06-24 04:23 - 2015-06-24 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 No-Steam 2015
2016-06-24 04:23 - 2015-01-20 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool
2016-06-24 04:23 - 2014-08-02 18:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Device Doctor
2016-06-24 04:23 - 2014-07-15 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PointBlank
2016-06-24 04:23 - 2014-06-30 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-06-24 04:23 - 2014-06-30 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-06-24 04:23 - 2014-06-30 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2016-06-24 04:23 - 2014-06-30 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-06-24 04:23 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-24 04:15 - 2010-11-21 06:47 - 00000000 ____D C:\Windows\CSC
2016-06-24 00:46 - 2015-08-21 22:48 - 00000000 ____D C:\Users\Familia\AppData\LocalLow\Company
2016-06-23 16:29 - 2014-09-08 19:57 - 00000000 ____D C:\Windows\Hewlett-Packard
2016-06-23 15:59 - 2015-07-07 19:38 - 00003934 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-06-23 15:59 - 2015-07-07 19:38 - 00003934 __RSH C:\ProgramData\ntuser.pol
2016-06-23 15:59 - 2009-07-14 00:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-06-23 15:38 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-06-18 18:35 - 2015-07-27 11:56 - 00000000 ____D C:\Users\Familia\AppData\Local\Adobe
==================== Arquivos na raiz de alguns diretórios =======
2016-07-12 15:44 - 2016-07-12 15:44 - 26671784 _____ () C:\Users\Icaro\AppData\Roaming\gameboxsetup.exe
2016-07-01 23:01 - 2016-07-01 23:01 - 0000000 _____ () C:\ProgramData\ Explorer.exe.tmp
2014-07-16 16:24 - 2014-07-16 16:24 - 0000057 _____ () C:\ProgramData\Ament.ini
Arquivos para serem movidos ou deletados:
====================
C:\Windows\Tasks\{41678B6D-1E28-40A9-A692-BC92E2EA9402}.job
Alguns arquivos em TEMP:
====================
C:\Users\Familia\AppData\Local\Temp\11e11e5c57223f56c67ee0098813abce.dll
C:\Users\Familia\AppData\Local\Temp\1436404600.exe
C:\Users\Familia\AppData\Local\Temp\1436814377.exe
C:\Users\Familia\AppData\Local\Temp\287c499808bcff52a39d16f78044882a.dll
C:\Users\Familia\AppData\Local\Temp\avguirn_081413236038.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_081600673741.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_082096085004.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_0837236069.exe
C:\Users\Familia\AppData\Local\Temp\avguirn_08860357834.exe
C:\Users\Familia\AppData\Local\Temp\bdfilters.dll
C:\Users\Familia\AppData\Local\Temp\cfPT_launcher.exe
C:\Users\Familia\AppData\Local\Temp\Execute2App.exe
C:\Users\Familia\AppData\Local\Temp\Gerador ZP - VIP.exe
C:\Users\Familia\AppData\Local\Temp\ICReinstall_Pivot.exe
C:\Users\Familia\AppData\Local\Temp\ICReinstall_pivot_v4-1.exe
C:\Users\Familia\AppData\Local\Temp\ICReinstall_terraria.exe
C:\Users\Familia\AppData\Local\Temp\InstallHelper.exe
C:\Users\Familia\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Familia\AppData\Local\Temp\Kies2RemoveAll.exe
C:\Users\Familia\AppData\Local\Temp\Kies3RemoveAll.exe
C:\Users\Familia\AppData\Local\Temp\msvcp90.dll
C:\Users\Familia\AppData\Local\Temp\msvcr90.dll
C:\Users\Familia\AppData\Local\Temp\msxml6-KB927977-enu-amd64.exe
C:\Users\Familia\AppData\Local\Temp\msxml6-KB927977-enu-x86.exe
C:\Users\Familia\AppData\Local\Temp\ovo_de_codorna.dll
C:\Users\Familia\AppData\Local\Temp\patcher_cf.exe
C:\Users\Familia\AppData\Local\Temp\proxy_vole2109455847078296724.dll
C:\Users\Familia\AppData\Local\Temp\spark_install.exe
C:\Users\Familia\AppData\Local\Temp\SpOrder.dll
C:\Users\Familia\AppData\Local\Temp\Uninstall.exe
C:\Users\Familia\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Icaro\AppData\Local\Temp\Encriptado.exe
C:\Users\Icaro\AppData\Local\Temp\proxy_vole492729640672690416.dll
C:\Users\Marinangelo\AppData\Local\Temp\jre-8u91-windows-au.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2015-08-23 13:32
==================== Fim de FRST.txt ============================