Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 07-12-2016
Executado por celso (administrador) em CELSO-PC (16-12-2016 05:42:50)
Executando a partir de C:\Users\celso\Desktop
Perfis Carregados: celso & UpdatusUser (Perfis Disponíveis: celso & UpdatusUser)
Platform: Microsoft Windows 7 Professional (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(AnVir Software) C:\Program Files\AnVir Task Manager Free\anvirlauncher.exe
(AnVir Software) C:\Program Files\AnVir Task Manager Free\AnVir.exe
(VMware, Inc.) C:\Windows\System32\vmnat.exe
(VMware, Inc.) C:\Program Files\VMware\VMware Player\vmware-authd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files\AnVir Task Manager Free\OpenHardwareMonitor\OpenHardwareMonitor.exe
(HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8129056 2009-12-25] (Realtek Semiconductor)
HKLM\...\Run: [ClamWin] => C:\Program Files\ClamWin\bin\ClamTray.exe [86016 2016-03-19] (alch)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6889176 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\...\Run: [KSS] => C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Software Updater Beta.lnk [2016-12-15]
ShortcutTarget: Kaspersky Software Updater Beta.lnk -> C:\Program Files\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (AO Kaspersky Lab)
Startup: C:\Users\celso\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Deskjet 2540 series.lnk [2016-12-15]
ShortcutTarget: Monitorar alertas de tinta - HP Deskjet 2540 series.lnk -> C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{37B668A5-5715-4575-BE83-F1C48FACBA41}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2621311866-3612747600-1153048651-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-03-02] ()
FireFox:
========
FF DefaultProfile: 8ay4bxcb.default
FF ProfilePath: C:\Users\celso\AppData\Roaming\Mozilla\Firefox\Profiles\8ay4bxcb.default [2016-12-16]
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2012-12-29] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2012-12-29] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-12] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-12] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default [2016-12-16]
CHR Extension: (Google Apresentações) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-12]
CHR Extension: (Google Docs) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-12]
CHR Extension: (Google Drive) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-12]
CHR Extension: (YouTube) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-12]
CHR Extension: (Planilhas do Google) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-12]
CHR Extension: (Documentos Google off-line) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-12]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-12-12]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-12]
CHR Extension: (Gmail) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-12]
CHR Extension: (Chrome Media Router) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-12]
CHR HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [350528 2016-11-24] (Avira Operations GmbH & Co. KG)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2225368 2016-10-11] (ESET)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
S2 kss; C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
R2 VMAuthdService; C:\Program Files\VMware\VMware Player\vmware-authd.exe [86096 2013-08-27] (VMware, Inc.)
R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [358480 2013-08-27] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719416 2013-08-26] (VMware, Inc.)
R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [437328 2013-08-27] (VMware, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [179336 2016-10-13] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [164480 2016-10-13] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [139392 2016-10-13] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43144 2016-10-13] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [68232 2016-10-13] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [51848 2016-10-13] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [78472 2016-10-13] (ESET)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [43192 2013-08-26] (VMware, Inc.)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.)
R3 vmkbd; C:\Windows\system32\drivers\VMkbd.sys [25808 2013-08-27] (VMware, Inc.)
R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [17104 2013-08-27] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37456 2013-08-27] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26192 2013-08-27] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [24272 2013-08-27] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [65488 2013-08-27] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [63824 2013-08-15] (VMware, Inc.)
U0 aswVmm; não ImagePath
S3 catchme; \??\C:\Users\celso\AppData\Local\Temp\catchme.sys [X]
R3 WinRing0_1_2_0; \??\C:\Program Files\AnVir Task Manager Free\OpenHardwareMonitor\OpenHardwareMonitor.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-16 05:42 - 2016-12-16 05:43 - 00011181 _____ C:\Users\celso\Desktop\FRST.txt
2016-12-16 05:42 - 2016-12-16 05:42 - 00000000 ____D C:\FRST
2016-12-16 05:41 - 2016-12-16 05:41 - 01761792 _____ (Farbar) C:\Users\celso\Desktop\FRST.exe
2016-12-16 05:40 - 2016-12-16 05:41 - 01761792 _____ (Farbar) C:\Users\celso\Downloads\FRST.exe
2016-12-15 22:31 - 2016-12-15 22:46 - 00002629 _____ C:\runcheck.txt
2016-12-15 22:30 - 2016-12-15 22:30 - 00000176 _____ C:\Users\celso\Downloads\zascript (1).txt
2016-12-15 22:26 - 2016-12-15 22:26 - 00000000 ____D C:\zoek_backup
2016-12-15 22:23 - 2016-12-15 22:23 - 00899584 _____ (Farbar) C:\Users\celso\Downloads\FSS.exe
2016-12-15 22:21 - 2016-12-15 22:22 - 01370112 _____ C:\Users\celso\Downloads\ZA-Scan.exe
2016-12-15 22:21 - 2016-12-15 22:21 - 00000191 _____ C:\Users\celso\Desktop\za.txt
2016-12-15 22:15 - 2016-12-15 22:15 - 00000176 _____ C:\Users\celso\Downloads\zascript.txt
2016-12-15 21:30 - 2016-12-15 21:30 - 00000000 ____D C:\Users\celso\AppData\Local\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00002027 _____ C:\Users\Public\Desktop\Proteção de pagamento bancário.lnk
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\Users\Todos os Usuários\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\ProgramData\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\Program Files\ESET
2016-12-15 21:00 - 2016-12-15 21:08 - 106972288 _____ (ESET) C:\Users\celso\Downloads\ess_nt32_ptb.exe
2016-12-15 09:11 - 2016-12-15 09:11 - 00001065 _____ C:\Users\Public\Desktop\Kaspersky Software Updater Beta.lnk
2016-12-15 09:11 - 2016-12-15 09:11 - 00001025 _____ C:\Users\Public\Desktop\Kaspersky Security Scan.lnk
2016-12-15 09:11 - 2016-12-15 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Software Updater Beta
2016-12-15 09:11 - 2016-12-15 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2016-12-15 09:10 - 2016-12-15 09:11 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2016-12-15 09:10 - 2016-12-15 09:11 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-12-15 09:10 - 2016-12-15 09:11 - 00000000 ____D C:\Program Files\Kaspersky Lab
2016-12-15 09:03 - 2016-12-15 09:04 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2016-12-15 09:03 - 2016-12-15 09:04 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-12-15 09:03 - 2016-12-15 09:02 - 02623496 _____ C:\Users\celso\Desktop\kss16.0.0.1344mlg_9998.exe
2016-12-15 09:02 - 2016-12-15 09:02 - 02623496 _____ C:\Users\celso\Downloads\kss16.0.0.1344mlg_9998 (1).exe
2016-12-14 10:10 - 2016-12-14 10:10 - 00004249 _____ C:\Users\celso\Desktop\drawstatu.txt
2016-12-13 22:34 - 2016-12-13 22:35 - 00000000 ____D C:\Users\celso\Desktop\Banks_01_22_2014
2016-12-13 21:32 - 2016-12-13 21:32 - 161689600 _____ C:\Users\celso\Desktop\20161213_213010.iso
2016-12-13 19:43 - 2016-03-19 00:24 - 00706300 _____ C:\Users\celso\Desktop\Legend of Zelda, The - A Link to the Past (U) [!].zip
2016-12-13 19:43 - 2016-02-16 21:36 - 00940937 _____ C:\Users\celso\Desktop\Mega Man X (U) (V1.0) [!].zip
2016-12-13 19:43 - 2004-08-23 11:24 - 01572864 _____ C:\Users\celso\Desktop\Mega Man X (U) (V1.0) [!].smc
2016-12-13 19:43 - 1996-12-24 23:32 - 02097152 _____ C:\Users\celso\Desktop\Megaman X3 (USA).sfc
2016-12-13 19:41 - 2010-08-05 17:58 - 00114688 _____ (Lunarian Concepts) C:\Users\celso\Desktop\Lunar Address - Cópia.exe
2016-12-13 19:41 - 2010-05-22 01:51 - 00094720 _____ (Lunarian Concepts) C:\Users\celso\Desktop\Lunar Expand - Cópia.exe
2016-12-13 19:38 - 2016-12-13 19:42 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (10)
2016-12-13 19:36 - 2016-10-04 06:47 - 00524288 _____ C:\Users\celso\Desktop\smw.smc
2016-12-13 19:35 - 2010-08-05 17:58 - 00114688 _____ (Lunarian Concepts) C:\Users\celso\Desktop\Lunar Address.exe
2016-12-13 07:09 - 2016-12-13 07:10 - 03135696 _____ (AVG Technologies CZ, s.r.o.) C:\Users\celso\Downloads\AVG_PCTuneUp_917.exe
2016-12-13 07:07 - 2016-12-13 07:11 - 51969976 _____ (Malwarebytes ) C:\Users\celso\Downloads\mb3-setup-consumer-3.0.4.1269.exe
2016-12-13 07:02 - 2016-12-13 07:03 - 01631928 _____ (Malwarebytes) C:\Users\celso\Downloads\JRT.exe
2016-12-13 06:52 - 2016-12-13 06:52 - 00058688 _____ C:\Users\celso\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-13 06:50 - 2016-12-13 06:51 - 00270856 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-13 05:24 - 2016-12-13 05:24 - 00001079 _____ C:\Users\celso\AppData\Roaming\Microsoft\Windows\Start Menu\AnVir Task Manager Free.lnk
2016-12-13 05:24 - 2016-12-13 05:24 - 00001055 _____ C:\Users\celso\Desktop\AnVir Task Manager Free.lnk
2016-12-13 05:24 - 2016-12-13 05:24 - 00000000 ____D C:\Users\celso\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnVir Task Manager Free
2016-12-13 05:23 - 2016-12-13 05:33 - 00000000 ____D C:\Users\celso\AppData\Local\AnVir
2016-12-13 05:23 - 2016-12-13 05:24 - 00000000 ____D C:\Program Files\AnVir Task Manager Free
2016-12-13 05:22 - 2016-12-13 05:23 - 01617696 _____ C:\Users\celso\Downloads\taskfree.exe
2016-12-13 05:21 - 2016-12-14 10:03 - 00000219 _____ C:\Users\celso\Desktop\windhex.cfg
2016-12-12 20:57 - 2016-12-12 20:57 - 06771840 _____ (ESET spol. s r.o.) C:\Users\celso\Downloads\esetonlinescanner_enu (1).exe
2016-12-12 06:17 - 2016-12-12 06:17 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-12 06:17 - 2016-12-12 06:17 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-12 06:13 - 2016-12-12 06:13 - 01065376 _____ (Google Inc.) C:\Users\celso\Downloads\ChromeSetup.exe
2016-12-12 06:04 - 2016-12-12 06:04 - 03029593 _____ C:\Users\celso\Downloads\fceux-2.2.2-win32.zip
2016-12-11 20:22 - 2016-12-11 20:22 - 00001094 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2016-12-11 20:21 - 2016-12-13 06:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-12-11 20:21 - 2016-12-11 20:22 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-12-11 20:21 - 2016-12-11 20:22 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-11 19:52 - 2016-12-13 06:57 - 00000000 ____D C:\Program Files\Avira
2016-12-11 19:50 - 2016-12-11 19:50 - 166133240 _____ C:\Users\celso\Documents\avira_free_antivirus_ptbr.exe
2016-12-11 19:37 - 2016-12-11 19:50 - 166133240 _____ C:\Users\celso\Downloads\avira_free_antivirus_ptbr(1).exe
2016-12-11 19:29 - 2016-12-11 19:32 - 00000000 ____D C:\AdwCleaner
2016-12-11 19:21 - 2016-12-11 19:22 - 05658636 _____ (Swearware) C:\Users\celso\Downloads\ComboFix.exe
2016-12-11 19:20 - 2016-12-11 19:26 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\celso\Downloads\spybot-2.4.exe
2016-12-11 19:14 - 2016-12-11 19:14 - 03968464 _____ C:\Users\celso\Downloads\AdwCleaner.exe
2016-12-11 16:46 - 2016-12-11 16:46 - 00025619 _____ C:\Users\celso\Documents\Backgrounds in SNES Development.xhtml
2016-12-11 16:45 - 2016-12-11 16:45 - 00010165 _____ C:\Users\celso\Documents\Bubsy in Claws Encounters of the Furred Kind in SNES Development.xhtml
2016-12-11 16:45 - 2016-12-11 16:45 - 00007678 _____ C:\Users\celso\Documents\Breath of Fire 2 in SNES Development.xhtml
2016-12-11 16:34 - 2016-12-14 20:15 - 00000000 ___RD C:\Users\celso\Google Drive
2016-12-11 16:34 - 2016-12-11 16:34 - 00001687 _____ C:\Users\celso\Desktop\Google Drive.lnk
2016-12-11 16:19 - 2016-12-11 16:20 - 01065376 _____ (Google Inc.) C:\Users\celso\Downloads\googledrivesync.exe
2016-12-11 16:19 - 2016-12-11 16:20 - 01065376 _____ (Google Inc.) C:\Users\celso\Downloads\googledrivesync(1).exe
2016-12-10 22:09 - 2016-06-09 15:35 - 07995200 _____ C:\Users\celso\Desktop\SMWDisC.txt
2016-12-10 18:15 - 2016-12-10 18:15 - 01811806 _____ C:\Users\celso\Documents\wdc_65816_programming_manual.pdf
2016-12-10 17:45 - 2016-12-11 16:13 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (9)
2016-12-10 17:02 - 2016-12-10 17:02 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (5)
2016-12-10 16:40 - 2016-12-10 16:40 - 01105062 _____ C:\Users\celso\Downloads\vSNES291_exec.zip
2016-12-10 16:39 - 2016-12-10 16:40 - 00218369 _____ C:\Users\celso\Downloads\SNEStuff121.zip
2016-12-10 16:38 - 2016-12-10 16:38 - 00125141 _____ C:\Users\celso\Downloads\hm104.zip
2016-12-10 16:35 - 2016-12-10 16:35 - 00563506 _____ C:\Users\celso\Downloads\yy-chr20120407_en.zip
2016-12-10 16:22 - 2016-12-10 16:22 - 01284398 _____ C:\Users\celso\Documents\fullsnes.txt
2016-12-10 16:17 - 2016-12-10 16:17 - 00146009 _____ C:\Users\celso\Documents\snes.txt
2016-12-10 16:16 - 2016-12-10 16:16 - 00073676 _____ C:\Users\celso\Documents\SNES Graphics Information.htm
2016-12-10 16:16 - 2016-12-10 16:16 - 00033886 _____ C:\Users\celso\Documents\snestech.txt
2016-12-10 16:11 - 2016-12-10 16:11 - 01192080 _____ C:\Users\celso\Downloads\SNES9Xdebugger(2).zip
2016-12-10 16:09 - 2016-12-10 16:09 - 01141551 _____ C:\Users\celso\Downloads\st141(1).zip
2016-12-10 16:08 - 2016-12-10 16:09 - 01236202 _____ C:\Users\celso\Downloads\lm242(2).zip
2016-12-10 16:00 - 2016-12-10 16:00 - 00031311 _____ C:\Users\celso\Downloads\pic2snes(1).zip
2016-12-10 15:37 - 2016-12-10 15:37 - 00107009 _____ C:\Users\celso\Documents\Registers in SNES Development.xhtml
2016-12-10 15:34 - 2016-12-10 15:34 - 00039788 _____ C:\Users\celso\Documents\snesmap.txt
2016-12-10 13:14 - 2016-12-10 13:14 - 00143437 _____ C:\Users\celso\Documents\6502.org Tutorial 65C816 Opcodes.htm
2016-12-10 13:08 - 2016-12-10 13:15 - 00000000 ____D C:\Users\celso\Documents\Nova pasta (2)
2016-12-09 20:46 - 2016-12-09 20:46 - 00007443 _____ C:\Users\celso\Downloads\controller(1).zip
2016-12-09 19:43 - 2016-12-09 11:50 - 167347213 _____ C:\Users\celso\Desktop\26 Boleros Sertanejos.mp4
2016-12-09 19:42 - 2016-12-09 19:42 - 00000969 _____ C:\Users\Public\Desktop\UltraISO.lnk
2016-12-09 19:42 - 2016-12-09 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
2016-12-09 19:42 - 2016-12-09 19:42 - 00000000 ____D C:\Program Files\UltraISO
2016-12-09 19:42 - 2016-12-09 19:42 - 00000000 ____D C:\Program Files\Common Files\EZB Systems
2016-12-09 19:41 - 2016-12-09 19:41 - 04452881 _____ C:\Users\celso\Downloads\uiso9_pe.zip
2016-12-09 19:27 - 2016-12-09 20:44 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (2)
2016-12-08 23:44 - 2016-12-08 23:44 - 00006188 _____ C:\Users\celso\Downloads\background.zip
2016-12-08 23:32 - 2016-12-08 23:32 - 00029317 _____ C:\Users\celso\Desktop\neshdr20.txt
2016-12-08 22:54 - 2016-12-08 22:54 - 00002560 _____ C:\Users\celso\Desktop\sprites.asm
2016-12-08 22:18 - 2016-12-08 22:18 - 00043566 _____ C:\Users\celso\Desktop\gun_volt.asm
2016-12-06 19:53 - 2016-12-06 19:53 - 00107910 _____ C:\Users\celso\Downloads\FaturaOnline.pdf
2016-12-05 21:06 - 2016-12-05 21:08 - 00000000 ____D C:\Nova pasta (3)
2016-12-04 23:39 - 2016-12-04 23:39 - 00000000 ____D C:\Users\Todos os Usuários\Hewlett-Packard
2016-12-04 23:39 - 2016-12-04 23:39 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-12-04 23:34 - 2016-12-12 13:58 - 00000000 ____D C:\Users\celso\AppData\Roaming\HpUpdate
2016-12-04 23:34 - 2016-12-04 23:34 - 00002212 _____ C:\Users\Public\Desktop\HP Deskjet 2540 series.lnk
2016-12-04 23:34 - 2016-12-04 23:34 - 00001953 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2016-12-04 23:34 - 2016-12-04 23:34 - 00001159 _____ C:\Users\Public\Desktop\Comprar suprimentos - HP Deskjet 2540 series.lnk
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\Users\Todos os Usuários\Visan
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\Users\Todos os Usuários\HP Photo Creations
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\ProgramData\Visan
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\ProgramData\HP Photo Creations
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\Program Files\HP Photo Creations
2016-12-04 23:34 - 2014-03-06 11:48 - 00597512 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPMC211.dll
2016-12-04 23:33 - 2016-12-04 23:34 - 00000000 ____D C:\Users\celso\AppData\Local\HP
2016-12-04 23:33 - 2016-12-04 23:34 - 00000000 ____D C:\Program Files\HP
2016-12-04 23:33 - 2016-12-04 23:33 - 00000057 _____ C:\Users\Todos os Usuários\Ament.ini
2016-12-04 23:33 - 2016-12-04 23:33 - 00000057 _____ C:\ProgramData\Ament.ini
2016-12-04 23:33 - 2016-12-04 23:33 - 00000000 ____D C:\Users\Todos os Usuários\HP
2016-12-04 23:33 - 2016-12-04 23:33 - 00000000 ____D C:\ProgramData\HP
2016-12-04 23:23 - 2016-12-12 21:53 - 00000000 ____D C:\Users\celso\Downloads\HP Downloads
2016-12-04 23:23 - 2016-12-04 23:34 - 00000000 ____D C:\Program Files\Hewlett-Packard
2016-12-04 23:23 - 2016-12-04 23:23 - 00000000 ____D C:\Users\celso\AppData\Local\Hewlett-Packard
2016-12-04 23:19 - 2016-12-04 23:22 - 04039392 _____ (Oleg N. Scherbakov) C:\Users\celso\Downloads\HPSupportSolutionsFramework-12.5.26.37.exe
2016-12-04 22:51 - 2016-12-04 22:51 - 00003432 _____ C:\Users\celso\Desktop\mammxs.asm
2016-12-04 22:25 - 2016-12-04 22:25 - 00028070 _____ C:\Users\celso\Documents\fotae.xps
2016-12-04 22:22 - 2016-12-04 22:22 - 00063463 _____ C:\Users\celso\Documents\foto.xps
2016-12-04 22:20 - 2016-12-04 22:20 - 00063465 _____ C:\Users\celso\Documents\mab.xps
2016-12-04 21:49 - 2016-12-04 21:52 - 00000000 ____D C:\Nova pasta (2)
2016-12-04 20:06 - 2016-12-04 20:06 - 00000000 ____D C:\Users\celso\Desktop\lunarcompress
2016-12-04 17:24 - 2005-08-23 21:10 - 01237504 _____ () C:\Users\celso\Desktop\WindHex32.exe
2016-12-04 16:26 - 2016-12-04 16:26 - 00009270 _____ C:\Users\celso\Desktop\mega.BMP
2016-12-04 15:32 - 2016-12-04 23:39 - 00000000 ____D C:\Users\celso\Desktop\SMSPOWER
2016-12-04 15:31 - 2016-12-04 15:32 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (8)
2016-12-04 13:50 - 2016-12-04 13:50 - 01081360 _____ C:\Users\celso\Documents\megao.usage
2016-12-04 13:49 - 2016-12-04 13:27 - 04194304 _____ C:\Users\celso\Documents\megao.smc
2016-12-04 13:46 - 2016-12-04 13:46 - 01236202 _____ C:\Users\celso\Downloads\lm242(1).zip
2016-12-04 13:46 - 2016-12-04 13:46 - 01192080 _____ C:\Users\celso\Downloads\SNES9Xdebugger(1).zip
2016-12-04 13:45 - 2016-12-04 13:45 - 01245458 _____ C:\Users\celso\Downloads\snes9x-1.54.1-win32.zip
2016-12-04 13:45 - 2016-12-04 13:45 - 01141551 _____ C:\Users\celso\Downloads\st141.zip
2016-12-03 16:11 - 2016-12-03 16:11 - 00529255 _____ C:\Users\celso\Desktop\dissmmx bwass
2016-12-03 14:52 - 2016-12-03 14:52 - 00529255 _____ C:\Users\celso\Desktop\dissmmx.asm
2016-12-02 22:51 - 2016-12-11 16:32 - 00000000 ____D C:\Users\celso\Desktop\XKAS
2016-12-02 22:48 - 2016-12-02 22:48 - 00813919 _____ C:\Users\celso\Downloads\avira_fusebundlegen-win32-en.zip
2016-12-02 22:47 - 2016-12-02 22:47 - 01164890 _____ C:\Users\celso\Downloads\avira_fusebundlegen-linux_glibc22-en.zip
2016-12-02 22:12 - 2016-12-02 22:12 - 00001571 _____ C:\Users\celso\Desktop\megaman x 3 decomp.cpp
2016-12-02 22:06 - 2016-12-13 06:57 - 00000000 ____D C:\Users\celso\AppData\Roaming\Avira
2016-12-02 21:40 - 2016-12-02 22:04 - 166133240 _____ C:\Users\celso\Downloads\avira_free_antivirus_ptbr.exe
2016-12-02 19:07 - 2016-12-02 19:07 - 00120580 _____ C:\Users\celso\Desktop\mark.xps
2016-12-02 19:07 - 2016-12-02 19:07 - 00000000 ____D C:\Users\celso\AppData\LocalLow\Temp
2016-12-02 19:01 - 2016-12-13 06:57 - 00000000 ____D C:\Users\Todos os Usuários\Avira
2016-12-02 19:01 - 2016-12-13 06:57 - 00000000 ____D C:\ProgramData\Avira
2016-12-02 15:54 - 2016-12-02 17:20 - 00000000 ____D C:\Users\celso\Documents\MEGAsync Downloads
2016-12-02 15:50 - 2016-12-02 15:50 - 06761600 _____ (ESET spol. s r.o.) C:\Users\celso\Downloads\esetonlinescanner_enu.exe
2016-12-01 09:36 - 2016-12-01 09:54 - 00000000 ____D C:\Users\celso\AppData\Roaming\.clamwin
2016-12-01 09:36 - 2016-12-01 09:36 - 00001079 _____ C:\Users\Public\Desktop\ClamWin Antivirus.lnk
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\Users\Todos os Usuários\.clamwin
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClamWin Antivirus
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\ProgramData\.clamwin
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\Program Files\ClamWin
2016-11-30 12:10 - 2016-11-30 12:11 - 04216840 _____ (Microsoft Corporation) C:\Users\celso\Downloads\vcredist_x86.exe
2016-11-29 21:23 - 2016-11-29 21:23 - 00793536 _____ (Symantec) C:\Users\celso\Downloads\Setup.exe
2016-11-29 21:15 - 2016-11-29 21:34 - 256536440 _____ C:\Users\celso\Downloads\EmsisoftEmergencyKit.exe
2016-11-29 21:15 - 2016-11-29 21:16 - 00524248 _____ (F-Secure Corporation) C:\Users\celso\Downloads\F-SecureOnlineScanner.exe
2016-11-29 20:01 - 2016-11-29 20:03 - 22851472 _____ (Malwarebytes ) C:\Users\celso\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-11-29 19:41 - 2016-11-29 19:50 - 97375872 _____ (ESET) C:\Users\celso\Downloads\eav_nt32_ptb.exe
2016-11-29 07:26 - 2016-11-29 07:26 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2016-11-29 07:26 - 2016-11-29 07:26 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-11-29 07:25 - 2012-07-26 01:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-11-29 07:25 - 2012-07-26 01:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-11-29 07:25 - 2012-07-26 00:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-11-29 07:25 - 2012-06-02 12:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-11-29 06:52 - 2016-11-29 06:52 - 00000772 _____ C:\Users\celso\Desktop\zelda.TPL
2016-11-29 06:43 - 2016-11-29 06:46 - 25541991 _____ C:\Users\celso\Downloads\SNESDevManual.rar
2016-11-29 00:01 - 2016-11-29 00:01 - 00007222 _____ C:\Users\celso\Desktop\coração1.BMP
2016-11-28 22:42 - 2016-11-28 22:42 - 00007443 _____ C:\Users\celso\Downloads\controller.zip
2016-11-28 22:20 - 2016-11-28 22:20 - 00512785 _____ C:\Users\celso\Downloads\TileMolesterv015a-BR(T-Welblade).rar
2016-11-28 22:16 - 2016-11-28 22:16 - 00000000 ____D C:\Users\celso\AppData\LocalLow\Sun
2016-11-28 21:56 - 2016-11-28 21:57 - 00000934 _____ C:\DelFix.txt
2016-11-28 21:41 - 2016-11-28 21:42 - 18864464 _____ (BreakPoint Software) C:\Users\celso\Downloads\hw_v680.exe
2016-11-28 21:19 - 2016-11-28 21:29 - 00000000 ____D C:\Windows\erdnt
2016-11-28 21:12 - 2016-11-28 21:13 - 18617467 _____ C:\Users\celso\Downloads\HEX WORKSHOP v6.80.rar
2016-11-28 21:08 - 2016-11-28 21:08 - 00384148 _____ C:\Users\celso\Downloads\Translhextion16c.zip
2016-11-28 21:07 - 2016-11-28 21:07 - 00061016 _____ C:\Users\celso\Downloads\HEXPOSEv3_666.ZIP
2016-11-28 18:59 - 2015-12-25 07:42 - 00075264 _____ (Lunarian Concepts) C:\Users\celso\Desktop\zcompress.exe
2016-11-28 18:58 - 2009-07-13 23:14 - 00301568 _____ (Microsoft Corporation) C:\Users\celso\Desktop\cmd.exe
2016-11-28 18:57 - 1996-03-28 14:00 - 01049088 _____ C:\Users\celso\Desktop\zelda.smc
2016-11-27 22:54 - 2016-12-13 06:31 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (4)
2016-11-27 22:29 - 2016-07-08 22:28 - 01241684 _____ C:\Users\celso\Desktop\SMWDisC.zip
2016-11-27 22:26 - 2016-12-10 17:01 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (3)
2016-11-27 22:23 - 2016-11-27 22:23 - 00193801 _____ C:\Users\celso\Downloads\lazynds-master.zip
2016-11-27 14:27 - 2016-11-27 14:28 - 09166799 _____ C:\Users\celso\Downloads\xMvCEvilRyux.rar
2016-11-27 14:22 - 2016-11-27 14:23 - 06328744 _____ C:\Users\celso\Downloads\mugen-1.1b1.zip
2016-11-27 14:22 - 2016-11-27 14:23 - 02842243 _____ C:\Users\celso\Downloads\mugen-2002-04-14.tar.gz
2016-11-27 14:22 - 2016-11-27 14:22 - 01631441 _____ C:\Users\celso\Downloads\mug10414.zip
2016-11-27 14:02 - 2016-11-27 14:04 - 06783286 _____ C:\Users\celso\Downloads\lara_vrot_nude.rar
2016-11-27 13:53 - 2016-11-27 13:53 - 01642738 _____ C:\Users\celso\Downloads\azumi_pacific.zip
2016-11-27 13:53 - 2016-11-27 13:53 - 00987240 _____ C:\Users\celso\Downloads\mexicossf2.zip
2016-11-27 13:52 - 2016-11-27 13:53 - 00403929 _____ C:\Users\celso\Downloads\vf_desert.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 01248014 _____ C:\Users\celso\Downloads\versailles.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00882757 _____ C:\Users\celso\Downloads\airforce.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00840454 _____ C:\Users\celso\Downloads\kof95korea.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00790890 _____ C:\Users\celso\Downloads\gpgalleon.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00653673 _____ C:\Users\celso\Downloads\bloodskull.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00507822 _____ C:\Users\celso\Downloads\sf2india.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00485348 _____ C:\Users\celso\Downloads\abtemple.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00446355 _____ C:\Users\celso\Downloads\surreal.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00295855 _____ C:\Users\celso\Downloads\greenhell.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00176132 _____ C:\Users\celso\Downloads\desertmk3.zip
2016-11-27 13:51 - 2016-11-27 13:52 - 00016846 _____ C:\Users\celso\Downloads\skypalace.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00173982 _____ C:\Users\celso\Downloads\romenia.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00075848 _____ C:\Users\celso\Downloads\polosul.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00039947 _____ C:\Users\celso\Downloads\cyberbitstage.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00012186 _____ C:\Users\celso\Downloads\vrfight.zip
2016-11-27 13:50 - 2016-11-27 13:51 - 03313515 _____ C:\Users\celso\Downloads\Huitzil.zip
2016-11-27 13:50 - 2016-11-27 13:50 - 01278306 _____ C:\Users\celso\Downloads\TamtamSS.zip
2016-11-27 13:50 - 2016-11-27 13:50 - 00842413 _____ C:\Users\celso\Downloads\BalrogSF2.zip
2016-11-27 13:49 - 2016-11-27 13:49 - 05277907 _____ C:\Users\celso\Downloads\Sp-X.zip
2016-11-27 13:49 - 2016-11-27 13:49 - 03322004 _____ C:\Users\celso\Downloads\Vertigo.zip
2016-11-27 13:49 - 2016-11-27 13:49 - 01585463 _____ C:\Users\celso\Downloads\HaohmaruSS.zip
2016-11-27 13:48 - 2016-11-27 13:48 - 01432995 _____ C:\Users\celso\Downloads\Joemove10.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00817395 _____ C:\Users\celso\Downloads\Hoppy.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00713011 _____ C:\Users\celso\Downloads\ScorpionMK.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00606377 _____ C:\Users\celso\Downloads\HwaJai.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00292214 _____ C:\Users\celso\Downloads\MichaelMax.zip
2016-11-26 22:05 - 2016-11-26 22:05 - 00001063 _____ C:\Users\celso\Downloads\compression.zip
2016-11-26 22:04 - 2016-11-26 22:04 - 00096216 _____ C:\Users\celso\Downloads\clib12(1).zip
2016-11-26 22:04 - 2016-11-26 22:04 - 00025421 _____ C:\Users\celso\Downloads\compress.zip
2016-11-26 22:02 - 2016-11-26 22:02 - 00096216 _____ C:\Users\celso\Downloads\clib12.zip
2016-11-26 22:02 - 2016-11-26 22:02 - 00006331 _____ C:\Users\celso\Downloads\Compression - Sylvan Tale.zip
2016-11-26 22:01 - 2016-11-26 22:01 - 00029035 _____ C:\Users\celso\Downloads\Compression - SFG ~ Final Conflict.zip
2016-11-26 22:01 - 2016-11-26 22:01 - 00006457 _____ C:\Users\celso\Downloads\Compression - Phantasy Star Gaiden.zip
2016-11-26 22:01 - 2016-11-26 22:01 - 00002216 _____ C:\Users\celso\Downloads\Compression - River City Ransom Zero.zip
2016-11-26 22:00 - 2016-11-26 22:00 - 00005176 _____ C:\Users\celso\Downloads\Compression - Phantasy Star.zip
2016-11-26 21:59 - 2016-11-26 21:59 - 00009633 _____ C:\Users\celso\Downloads\Compression - Cyber Knight II.zip
2016-11-26 21:58 - 2016-11-26 21:58 - 00247540 _____ C:\Users\celso\Downloads\Columns_Disasm.zip
2016-11-26 21:58 - 2016-11-26 21:58 - 00150765 _____ C:\Users\celso\Downloads\Columns-GG-source.zip
2016-11-26 21:58 - 2016-11-26 21:58 - 00018799 _____ C:\Users\celso\Downloads\CDNESPM(1).zip
2016-11-26 21:54 - 2016-11-26 21:54 - 00018799 _____ C:\Users\celso\Downloads\CDNESPM.zip
2016-11-26 21:52 - 2016-11-26 21:52 - 02953759 _____ C:\Users\celso\Downloads\CliffhangerSegaGenesis.zip
2016-11-26 21:51 - 2016-11-26 21:51 - 00103863 _____ C:\Users\celso\Downloads\Chrono Trigger Database.7z
2016-11-26 21:50 - 2016-11-26 21:50 - 00104582 _____ C:\Users\celso\Downloads\Chrono Trigger Data Offsets Spreadsheets.zip
2016-11-26 21:50 - 2016-11-26 21:50 - 00010055 _____ C:\Users\celso\Downloads\ctcompression.zip
2016-11-26 21:49 - 2016-11-26 21:49 - 01381329 _____ C:\Users\celso\Downloads\CLGRH Volume I Background Insertion.zip
2016-11-26 21:43 - 2016-11-26 21:43 - 00088540 _____ C:\Users\celso\Downloads\BC-ROMHacking.html
2016-11-26 21:42 - 2016-11-26 21:42 - 00364152 _____ C:\Users\celso\Downloads\Hexadecimal and Binary guide by mevoid.rar
2016-11-26 21:35 - 2016-11-26 21:36 - 02740829 _____ C:\Users\celso\Downloads\ff6_bank_c3.zip
2016-11-26 21:30 - 2016-11-26 21:30 - 01104866 _____ C:\Users\celso\Downloads\Art_Alive_Disasm.zip
2016-11-26 21:30 - 2016-11-26 21:30 - 00022307 _____ C:\Users\celso\Downloads\asmtutor.zip
2016-11-26 21:30 - 2016-11-26 21:30 - 00017286 _____ C:\Users\celso\Downloads\asmhack09.txt
2016-11-26 21:29 - 2016-11-26 21:29 - 00026684 _____ C:\Users\celso\Downloads\anusp.htm
2016-11-26 21:29 - 2016-11-26 21:29 - 00007620 _____ C:\Users\celso\Downloads\ports.txt
2016-11-26 21:28 - 2016-11-26 21:28 - 00106387 _____ C:\Users\celso\Downloads\regs.txt
2016-11-26 21:17 - 2016-11-26 21:17 - 00059508 _____ C:\Users\celso\Downloads\AIGtHNWC.7z
2016-11-26 19:18 - 2016-11-26 19:18 - 00007228 _____ C:\Users\celso\Downloads\sprite.txt
2016-11-26 19:11 - 2016-11-26 19:11 - 00227277 _____ C:\Users\celso\Downloads\alter_ego_src.zip
2016-11-26 19:10 - 2016-11-26 19:10 - 00167581 _____ C:\Users\celso\Downloads\romdoc.zip
2016-11-26 19:10 - 2016-11-26 19:10 - 00129846 _____ C:\Users\celso\Downloads\65816info.txt
2016-11-26 19:10 - 2016-11-26 19:10 - 00010285 _____ C:\Users\celso\Downloads\68000insset.txt
2016-11-26 19:09 - 2016-11-26 19:09 - 00017623 _____ C:\Users\celso\Downloads\65816 ASM Tutorial.txt
2016-11-26 19:08 - 2016-11-26 19:08 - 00005772 _____ C:\Users\celso\Downloads\asmcode.zip
2016-11-26 19:06 - 2016-11-26 19:20 - 198406712 _____ (Oracle Corporation) C:\Users\celso\Downloads\jdk-8u111-windows-i586.exe
2016-11-26 19:01 - 2016-11-27 17:30 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta
2016-11-26 14:19 - 2016-11-26 14:19 - 00099834 _____ C:\Users\celso\Downloads\zcompress110.zip
2016-11-25 21:33 - 2016-11-25 21:33 - 00000000 ____D C:\Users\celso\Nova pasta
2016-11-25 13:19 - 2016-11-25 13:19 - 02623496 _____ C:\Users\celso\Downloads\kss16.0.0.1344mlg_9998.exe
2016-11-24 15:04 - 2016-11-24 15:04 - 00575504 _____ C:\Users\celso\Downloads\[SMD] Landstalker - The Treasures of King Nole (U) [!] [T-BR] [T-Unknown Master G-Monkey's Traduções] [V-1.0 P-100% A-2013](1).rar
2016-11-24 13:27 - 2015-09-14 14:03 - 00038520 _____ C:\Windows\system32\Drivers\DasPtct.SYS
2016-11-23 20:45 - 2016-11-23 20:45 - 01107017 _____ C:\Users\celso\Downloads\Asterix and the Power of The Gods (E) (M4) [!].zip
2016-11-23 14:06 - 2016-11-23 14:06 - 00054531 _____ C:\Users\celso\Desktop\ajuda para inserir intro em rom de snes (erro set,col,map ).htm
2016-11-23 14:05 - 2016-11-23 14:05 - 00066825 _____ C:\Users\celso\Desktop\[PS2] Revenge of The Sith -) extrair modelos 3D.htm
2016-11-23 14:03 - 2016-11-23 14:03 - 00017522 _____ C:\Users\celso\Desktop\Ponteiros.htm
2016-11-23 12:06 - 2016-11-23 12:06 - 01406979 _____ C:\Users\celso\Downloads\Landstalker - The Treasures of King Nole (U) [!].zip
2016-11-23 12:05 - 2016-11-23 12:05 - 00575504 _____ C:\Users\celso\Downloads\[SMD] Landstalker - The Treasures of King Nole (U) [!] [T-BR] [T-Unknown Master G-Monkey's Traduções] [V-1.0 P-100% A-2013].rar
2016-11-23 11:53 - 2016-11-23 11:53 - 00136092 _____ C:\Users\celso\Downloads\Nemesis_MD_Programs.7z
2016-11-22 21:01 - 2016-11-22 21:02 - 03803296 _____ C:\Users\celso\Downloads\Space_Funky_BOB_Source_Code.7z
2016-11-22 20:38 - 2016-11-22 20:38 - 00005184 _____ C:\Users\celso\Downloads\rareRle-master.zip
2016-11-22 20:16 - 2016-11-22 20:16 - 00017548 _____ C:\Users\celso\Downloads\RNC(1).rar
2016-11-22 19:55 - 2016-11-22 19:56 - 09479789 _____ C:\Users\celso\Downloads\quickbms.zip
2016-11-22 19:28 - 2016-11-22 19:29 - 03714462 _____ C:\Users\celso\Downloads\[TUTORIAL] Qbasic para Romhack [PT-BR] [A-Kaito Sama G-Monkey's Traduções] [A-2013](1).7z
2016-11-22 19:24 - 2016-11-22 19:24 - 00082709 _____ C:\Users\celso\Downloads\The_Sega_Data_Compressor_v2.2(1).7z
2016-11-22 19:09 - 2016-11-22 19:09 - 00082709 _____ C:\Users\celso\Downloads\The_Sega_Data_Compressor_v2.2.7z
2016-11-21 20:31 - 2005-01-23 22:09 - 00483840 _____ C:\Users\celso\Desktop\tlp.exe
2016-11-20 20:19 - 2016-11-20 20:20 - 00017548 _____ C:\Users\celso\Downloads\RNC.rar
2016-11-20 20:02 - 2016-11-20 20:03 - 12315285 _____ C:\Users\celso\Downloads\Python easy_install & Pip install(1).mp4
2016-11-20 19:57 - 2016-12-13 05:31 - 00000000 ___RD C:\Users\celso\Documents\MEGA
2016-11-20 19:44 - 2016-11-20 19:45 - 13049800 _____ (MEGA Limited) C:\Users\celso\Downloads\MEGAsyncSetup.exe
2016-11-20 19:42 - 2016-11-20 19:44 - 11543501 _____ C:\Users\celso\Downloads\اختراق الفايسبوك باستعمال ابونتو Hack Facebook Using Ubuntu.mp4
2016-11-20 19:41 - 2016-11-20 19:44 - 18836109 _____ C:\Users\celso\Downloads\How To Use facebook.py in Ubuntu 14.04 (By Zakir).mp4
2016-11-20 15:46 - 2016-11-20 15:46 - 00012746 _____ C:\Users\celso\Downloads\ez_setup.py
2016-11-20 15:40 - 2016-11-20 15:45 - 64570763 _____ C:\Users\celso\Downloads\How to install python27 on windows7 (no step skipped).mp4
2016-11-20 15:39 - 2016-11-20 15:40 - 12315285 _____ C:\Users\celso\Downloads\Python easy_install & Pip install.mp4
2016-11-20 15:38 - 2016-11-20 15:38 - 06029861 _____ C:\Users\celso\Downloads\How to Install Python Modules.mp4
2016-11-20 14:52 - 2016-11-20 14:53 - 14524094 _____ C:\Users\celso\Downloads\Python 2 Install Mechanize.mp4
2016-11-20 13:05 - 2016-11-20 13:05 - 00445338 _____ C:\Users\celso\Downloads\mechanize-0.2.5(1).zip
2016-11-19 20:14 - 2016-11-19 20:15 - 01295714 _____ C:\Users\celso\Downloads\Megaman X3 (USA).zip
2016-11-19 20:12 - 2016-11-19 20:12 - 00940937 _____ C:\Users\celso\Downloads\Mega Man X (U) (V1.0) [!].zip
2016-11-19 20:09 - 2016-11-19 20:09 - 00929719 _____ C:\Users\celso\Downloads\mega_man_x.7z
2016-11-19 20:07 - 2016-11-19 20:07 - 01192080 _____ C:\Users\celso\Downloads\SNES9Xdebugger.zip
2016-11-19 16:06 - 2016-11-19 16:06 - 00083990 _____ C:\Users\celso\Downloads\Bio2_dis.zip
2016-11-19 16:05 - 2016-11-19 16:06 - 04320141 _____ C:\Users\celso\Downloads\MAIN.ZIP
2016-11-19 15:39 - 2016-11-19 15:39 - 00026420 _____ C:\Users\celso\Downloads\gunvolt.zip
2016-11-18 19:10 - 2016-11-18 19:11 - 00445338 _____ C:\Users\celso\Downloads\mechanize-0.2.5.zip
2016-11-18 13:29 - 2016-11-18 19:37 - 00000000 ____D C:\Users\celso\AppData\Roaming\Dev-Cpp
2016-11-18 13:29 - 2016-11-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
2016-11-18 13:29 - 2016-11-18 13:29 - 00000000 ____D C:\Dev-Cpp
2016-11-18 13:27 - 2016-11-18 13:28 - 09326468 _____ C:\Users\celso\Downloads\devcpp-4.9.9.2_setup.exe
2016-11-17 06:27 - 2016-11-20 15:47 - 00000000 ____D C:\Users\celso\.idlerc
2016-11-17 06:26 - 2016-11-29 20:18 - 00000000 ____D C:\Python27
2016-11-17 06:26 - 2016-11-17 06:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2016-11-17 06:22 - 2016-11-17 06:24 - 16703488 _____ C:\Users\celso\Downloads\python-2.7.8.msi
2016-11-16 15:10 - 2016-11-16 15:10 - 00000000 ____D C:\Users\celso\Documents\Virtual Machines
2016-11-16 14:13 - 2016-11-16 14:13 - 00001501 _____ C:\Users\UpdatusUser\Desktop\MSYS.lnk
2016-11-16 14:13 - 2016-11-16 14:13 - 00001501 _____ C:\Users\celso\Desktop\MSYS.lnk
2016-11-16 14:13 - 2016-11-16 14:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinGW
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-15 22:56 - 2009-07-14 02:34 - 00014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-15 22:56 - 2009-07-14 02:34 - 00014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-15 22:53 - 2016-11-11 23:21 - 01500050 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-15 22:53 - 2009-07-14 06:31 - 00656956 _____ C:\Windows\system32\prfh0416.dat
2016-12-15 22:53 - 2009-07-14 06:31 - 00125934 _____ C:\Windows\system32\prfc0416.dat
2016-12-15 22:53 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2016-12-15 22:49 - 2016-11-11 23:48 - 00000000 ____D C:\Users\UpdatusUser
2016-12-15 22:48 - 2016-11-12 12:39 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2016-12-15 22:48 - 2016-11-12 12:39 - 00000000 ____D C:\ProgramData\VMware
2016-12-15 22:48 - 2016-11-11 23:48 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-12-15 22:48 - 2016-11-11 23:48 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-15 22:48 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-15 19:31 - 2009-07-14 06:53 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-12-15 06:42 - 2016-11-12 00:13 - 00000000 ____D C:\Users\celso\AppData\Local\Google
2016-12-15 06:42 - 2016-11-12 00:13 - 00000000 ____D C:\Program Files\Google
2016-12-13 19:41 - 2016-11-12 17:33 - 00000000 ____D C:\Users\celso\Desktop\lunar
2016-12-13 18:44 - 2016-11-12 00:45 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-13 18:44 - 2016-11-12 00:45 - 00001050 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-12 06:23 - 2016-11-15 18:09 - 00000000 ____D C:\Users\celso\AppData\LocalLow\Mozilla
2016-12-11 23:20 - 2016-11-11 16:58 - 00000000 ____D C:\Users\celso\Documents\Nova pasta
2016-12-11 23:02 - 2016-11-11 23:45 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-11 19:04 - 2016-11-14 04:53 - 00000000 ____D C:\Users\celso\AppData\Roaming\XnView
2016-12-11 16:34 - 2016-11-11 23:16 - 00000000 ____D C:\Users\celso
2016-12-01 09:26 - 2016-11-14 05:43 - 120690586 _____ (alch ) C:\Users\celso\Downloads\clamwin-0.99.1-setup.exe
2016-11-30 17:53 - 2016-11-11 23:16 - 00000000 ____D C:\Users\celso\AppData\Local\VirtualStore
2016-11-29 11:20 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\rescache
2016-11-28 21:28 - 2009-07-14 00:04 - 00000215 _____ C:\Windows\system.ini
2016-11-28 16:11 - 2016-11-12 15:33 - 00000000 ____D C:\Program Files\ConTEXT
2016-11-18 16:49 - 2007-08-23 09:37 - 00000000 ____D C:\Users\celso\iop
2016-11-18 13:08 - 2016-11-12 17:23 - 00000000 ____D C:\Program Files\WinRAR
2016-11-17 06:10 - 2016-11-15 21:19 - 00000000 ____D C:\snesdev
2016-11-16 20:34 - 2016-11-15 14:41 - 00000000 ____D C:\Users\celso\AppData\Roaming\VMware
2016-11-16 14:13 - 2016-11-15 18:17 - 00000047 _____ C:\Windows\MSYS.INI
2016-11-16 13:13 - 2016-11-15 17:22 - 00000000 ____D C:\Windows\system32\appmgmt
==================== Arquivos na raiz de alguns diretórios =======
2016-12-04 23:33 - 2016-12-04 23:33 - 0000057 _____ () C:\ProgramData\Ament.ini
Alguns arquivos em TEMP:
====================
C:\Users\celso\AppData\Local\Temp\7za.exe
C:\Users\celso\AppData\Local\Temp\AnVir.exe
C:\Users\celso\AppData\Local\Temp\DaS_21.exe
C:\Users\celso\AppData\Local\Temp\hijackthis.exe
C:\Users\celso\AppData\Local\Temp\NirCmd.exe
C:\Users\celso\AppData\Local\Temp\PEVZ.EXE
C:\Users\celso\AppData\Local\Temp\remove.exe
C:\Users\celso\AppData\Local\Temp\sed.exe
C:\Users\celso\AppData\Local\Temp\shortcut.exe
C:\Users\celso\AppData\Local\Temp\swreg.exe
C:\Users\celso\AppData\Local\Temp\swxcacls.exe
C:\Users\celso\AppData\Local\Temp\wget.exe
C:\Users\celso\AppData\Local\Temp\ZAScan.exe
C:\Users\celso\AppData\Local\Temp\zoek-delete.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-12-14 03:38
==================== Fim de FRST.txt ============================
Executado por celso (administrador) em CELSO-PC (16-12-2016 05:42:50)
Executando a partir de C:\Users\celso\Desktop
Perfis Carregados: celso & UpdatusUser (Perfis Disponíveis: celso & UpdatusUser)
Platform: Microsoft Windows 7 Professional (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(AnVir Software) C:\Program Files\AnVir Task Manager Free\anvirlauncher.exe
(AnVir Software) C:\Program Files\AnVir Task Manager Free\AnVir.exe
(VMware, Inc.) C:\Windows\System32\vmnat.exe
(VMware, Inc.) C:\Program Files\VMware\VMware Player\vmware-authd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files\AnVir Task Manager Free\OpenHardwareMonitor\OpenHardwareMonitor.exe
(HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8129056 2009-12-25] (Realtek Semiconductor)
HKLM\...\Run: [ClamWin] => C:\Program Files\ClamWin\bin\ClamTray.exe [86016 2016-03-19] (alch)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6889176 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\...\Run: [KSS] => C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Software Updater Beta.lnk [2016-12-15]
ShortcutTarget: Kaspersky Software Updater Beta.lnk -> C:\Program Files\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (AO Kaspersky Lab)
Startup: C:\Users\celso\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Deskjet 2540 series.lnk [2016-12-15]
ShortcutTarget: Monitorar alertas de tinta - HP Deskjet 2540 series.lnk -> C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{37B668A5-5715-4575-BE83-F1C48FACBA41}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2621311866-3612747600-1153048651-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-03-02] ()
FireFox:
========
FF DefaultProfile: 8ay4bxcb.default
FF ProfilePath: C:\Users\celso\AppData\Roaming\Mozilla\Firefox\Profiles\8ay4bxcb.default [2016-12-16]
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2012-12-29] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2012-12-29] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-12] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-12] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default [2016-12-16]
CHR Extension: (Google Apresentações) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-12]
CHR Extension: (Google Docs) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-12]
CHR Extension: (Google Drive) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-12]
CHR Extension: (YouTube) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-12]
CHR Extension: (Planilhas do Google) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-12]
CHR Extension: (Documentos Google off-line) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-12]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-12-12]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-12]
CHR Extension: (Gmail) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-12]
CHR Extension: (Chrome Media Router) - C:\Users\celso\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-12]
CHR HKU\S-1-5-21-2621311866-3612747600-1153048651-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [350528 2016-11-24] (Avira Operations GmbH & Co. KG)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2225368 2016-10-11] (ESET)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
S2 kss; C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
R2 VMAuthdService; C:\Program Files\VMware\VMware Player\vmware-authd.exe [86096 2013-08-27] (VMware, Inc.)
R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [358480 2013-08-27] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719416 2013-08-26] (VMware, Inc.)
R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [437328 2013-08-27] (VMware, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [179336 2016-10-13] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [164480 2016-10-13] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [139392 2016-10-13] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43144 2016-10-13] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [68232 2016-10-13] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [51848 2016-10-13] (ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [78472 2016-10-13] (ESET)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [43192 2013-08-26] (VMware, Inc.)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.)
R3 vmkbd; C:\Windows\system32\drivers\VMkbd.sys [25808 2013-08-27] (VMware, Inc.)
R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [17104 2013-08-27] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37456 2013-08-27] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26192 2013-08-27] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [24272 2013-08-27] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [65488 2013-08-27] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [63824 2013-08-15] (VMware, Inc.)
U0 aswVmm; não ImagePath
S3 catchme; \??\C:\Users\celso\AppData\Local\Temp\catchme.sys [X]
R3 WinRing0_1_2_0; \??\C:\Program Files\AnVir Task Manager Free\OpenHardwareMonitor\OpenHardwareMonitor.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-16 05:42 - 2016-12-16 05:43 - 00011181 _____ C:\Users\celso\Desktop\FRST.txt
2016-12-16 05:42 - 2016-12-16 05:42 - 00000000 ____D C:\FRST
2016-12-16 05:41 - 2016-12-16 05:41 - 01761792 _____ (Farbar) C:\Users\celso\Desktop\FRST.exe
2016-12-16 05:40 - 2016-12-16 05:41 - 01761792 _____ (Farbar) C:\Users\celso\Downloads\FRST.exe
2016-12-15 22:31 - 2016-12-15 22:46 - 00002629 _____ C:\runcheck.txt
2016-12-15 22:30 - 2016-12-15 22:30 - 00000176 _____ C:\Users\celso\Downloads\zascript (1).txt
2016-12-15 22:26 - 2016-12-15 22:26 - 00000000 ____D C:\zoek_backup
2016-12-15 22:23 - 2016-12-15 22:23 - 00899584 _____ (Farbar) C:\Users\celso\Downloads\FSS.exe
2016-12-15 22:21 - 2016-12-15 22:22 - 01370112 _____ C:\Users\celso\Downloads\ZA-Scan.exe
2016-12-15 22:21 - 2016-12-15 22:21 - 00000191 _____ C:\Users\celso\Desktop\za.txt
2016-12-15 22:15 - 2016-12-15 22:15 - 00000176 _____ C:\Users\celso\Downloads\zascript.txt
2016-12-15 21:30 - 2016-12-15 21:30 - 00000000 ____D C:\Users\celso\AppData\Local\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00002027 _____ C:\Users\Public\Desktop\Proteção de pagamento bancário.lnk
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\Users\Todos os Usuários\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\ProgramData\ESET
2016-12-15 21:17 - 2016-12-15 21:17 - 00000000 ____D C:\Program Files\ESET
2016-12-15 21:00 - 2016-12-15 21:08 - 106972288 _____ (ESET) C:\Users\celso\Downloads\ess_nt32_ptb.exe
2016-12-15 09:11 - 2016-12-15 09:11 - 00001065 _____ C:\Users\Public\Desktop\Kaspersky Software Updater Beta.lnk
2016-12-15 09:11 - 2016-12-15 09:11 - 00001025 _____ C:\Users\Public\Desktop\Kaspersky Security Scan.lnk
2016-12-15 09:11 - 2016-12-15 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Software Updater Beta
2016-12-15 09:11 - 2016-12-15 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2016-12-15 09:10 - 2016-12-15 09:11 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab
2016-12-15 09:10 - 2016-12-15 09:11 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-12-15 09:10 - 2016-12-15 09:11 - 00000000 ____D C:\Program Files\Kaspersky Lab
2016-12-15 09:03 - 2016-12-15 09:04 - 00000000 ____D C:\Users\Todos os Usuários\Kaspersky Lab Setup Files
2016-12-15 09:03 - 2016-12-15 09:04 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-12-15 09:03 - 2016-12-15 09:02 - 02623496 _____ C:\Users\celso\Desktop\kss16.0.0.1344mlg_9998.exe
2016-12-15 09:02 - 2016-12-15 09:02 - 02623496 _____ C:\Users\celso\Downloads\kss16.0.0.1344mlg_9998 (1).exe
2016-12-14 10:10 - 2016-12-14 10:10 - 00004249 _____ C:\Users\celso\Desktop\drawstatu.txt
2016-12-13 22:34 - 2016-12-13 22:35 - 00000000 ____D C:\Users\celso\Desktop\Banks_01_22_2014
2016-12-13 21:32 - 2016-12-13 21:32 - 161689600 _____ C:\Users\celso\Desktop\20161213_213010.iso
2016-12-13 19:43 - 2016-03-19 00:24 - 00706300 _____ C:\Users\celso\Desktop\Legend of Zelda, The - A Link to the Past (U) [!].zip
2016-12-13 19:43 - 2016-02-16 21:36 - 00940937 _____ C:\Users\celso\Desktop\Mega Man X (U) (V1.0) [!].zip
2016-12-13 19:43 - 2004-08-23 11:24 - 01572864 _____ C:\Users\celso\Desktop\Mega Man X (U) (V1.0) [!].smc
2016-12-13 19:43 - 1996-12-24 23:32 - 02097152 _____ C:\Users\celso\Desktop\Megaman X3 (USA).sfc
2016-12-13 19:41 - 2010-08-05 17:58 - 00114688 _____ (Lunarian Concepts) C:\Users\celso\Desktop\Lunar Address - Cópia.exe
2016-12-13 19:41 - 2010-05-22 01:51 - 00094720 _____ (Lunarian Concepts) C:\Users\celso\Desktop\Lunar Expand - Cópia.exe
2016-12-13 19:38 - 2016-12-13 19:42 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (10)
2016-12-13 19:36 - 2016-10-04 06:47 - 00524288 _____ C:\Users\celso\Desktop\smw.smc
2016-12-13 19:35 - 2010-08-05 17:58 - 00114688 _____ (Lunarian Concepts) C:\Users\celso\Desktop\Lunar Address.exe
2016-12-13 07:09 - 2016-12-13 07:10 - 03135696 _____ (AVG Technologies CZ, s.r.o.) C:\Users\celso\Downloads\AVG_PCTuneUp_917.exe
2016-12-13 07:07 - 2016-12-13 07:11 - 51969976 _____ (Malwarebytes ) C:\Users\celso\Downloads\mb3-setup-consumer-3.0.4.1269.exe
2016-12-13 07:02 - 2016-12-13 07:03 - 01631928 _____ (Malwarebytes) C:\Users\celso\Downloads\JRT.exe
2016-12-13 06:52 - 2016-12-13 06:52 - 00058688 _____ C:\Users\celso\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-13 06:50 - 2016-12-13 06:51 - 00270856 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-13 05:24 - 2016-12-13 05:24 - 00001079 _____ C:\Users\celso\AppData\Roaming\Microsoft\Windows\Start Menu\AnVir Task Manager Free.lnk
2016-12-13 05:24 - 2016-12-13 05:24 - 00001055 _____ C:\Users\celso\Desktop\AnVir Task Manager Free.lnk
2016-12-13 05:24 - 2016-12-13 05:24 - 00000000 ____D C:\Users\celso\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnVir Task Manager Free
2016-12-13 05:23 - 2016-12-13 05:33 - 00000000 ____D C:\Users\celso\AppData\Local\AnVir
2016-12-13 05:23 - 2016-12-13 05:24 - 00000000 ____D C:\Program Files\AnVir Task Manager Free
2016-12-13 05:22 - 2016-12-13 05:23 - 01617696 _____ C:\Users\celso\Downloads\taskfree.exe
2016-12-13 05:21 - 2016-12-14 10:03 - 00000219 _____ C:\Users\celso\Desktop\windhex.cfg
2016-12-12 20:57 - 2016-12-12 20:57 - 06771840 _____ (ESET spol. s r.o.) C:\Users\celso\Downloads\esetonlinescanner_enu (1).exe
2016-12-12 06:17 - 2016-12-12 06:17 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-12 06:17 - 2016-12-12 06:17 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-12 06:13 - 2016-12-12 06:13 - 01065376 _____ (Google Inc.) C:\Users\celso\Downloads\ChromeSetup.exe
2016-12-12 06:04 - 2016-12-12 06:04 - 03029593 _____ C:\Users\celso\Downloads\fceux-2.2.2-win32.zip
2016-12-11 20:22 - 2016-12-11 20:22 - 00001094 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2016-12-11 20:21 - 2016-12-13 06:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-12-11 20:21 - 2016-12-11 20:22 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-12-11 20:21 - 2016-12-11 20:22 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-11 19:52 - 2016-12-13 06:57 - 00000000 ____D C:\Program Files\Avira
2016-12-11 19:50 - 2016-12-11 19:50 - 166133240 _____ C:\Users\celso\Documents\avira_free_antivirus_ptbr.exe
2016-12-11 19:37 - 2016-12-11 19:50 - 166133240 _____ C:\Users\celso\Downloads\avira_free_antivirus_ptbr(1).exe
2016-12-11 19:29 - 2016-12-11 19:32 - 00000000 ____D C:\AdwCleaner
2016-12-11 19:21 - 2016-12-11 19:22 - 05658636 _____ (Swearware) C:\Users\celso\Downloads\ComboFix.exe
2016-12-11 19:20 - 2016-12-11 19:26 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\celso\Downloads\spybot-2.4.exe
2016-12-11 19:14 - 2016-12-11 19:14 - 03968464 _____ C:\Users\celso\Downloads\AdwCleaner.exe
2016-12-11 16:46 - 2016-12-11 16:46 - 00025619 _____ C:\Users\celso\Documents\Backgrounds in SNES Development.xhtml
2016-12-11 16:45 - 2016-12-11 16:45 - 00010165 _____ C:\Users\celso\Documents\Bubsy in Claws Encounters of the Furred Kind in SNES Development.xhtml
2016-12-11 16:45 - 2016-12-11 16:45 - 00007678 _____ C:\Users\celso\Documents\Breath of Fire 2 in SNES Development.xhtml
2016-12-11 16:34 - 2016-12-14 20:15 - 00000000 ___RD C:\Users\celso\Google Drive
2016-12-11 16:34 - 2016-12-11 16:34 - 00001687 _____ C:\Users\celso\Desktop\Google Drive.lnk
2016-12-11 16:19 - 2016-12-11 16:20 - 01065376 _____ (Google Inc.) C:\Users\celso\Downloads\googledrivesync.exe
2016-12-11 16:19 - 2016-12-11 16:20 - 01065376 _____ (Google Inc.) C:\Users\celso\Downloads\googledrivesync(1).exe
2016-12-10 22:09 - 2016-06-09 15:35 - 07995200 _____ C:\Users\celso\Desktop\SMWDisC.txt
2016-12-10 18:15 - 2016-12-10 18:15 - 01811806 _____ C:\Users\celso\Documents\wdc_65816_programming_manual.pdf
2016-12-10 17:45 - 2016-12-11 16:13 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (9)
2016-12-10 17:02 - 2016-12-10 17:02 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (5)
2016-12-10 16:40 - 2016-12-10 16:40 - 01105062 _____ C:\Users\celso\Downloads\vSNES291_exec.zip
2016-12-10 16:39 - 2016-12-10 16:40 - 00218369 _____ C:\Users\celso\Downloads\SNEStuff121.zip
2016-12-10 16:38 - 2016-12-10 16:38 - 00125141 _____ C:\Users\celso\Downloads\hm104.zip
2016-12-10 16:35 - 2016-12-10 16:35 - 00563506 _____ C:\Users\celso\Downloads\yy-chr20120407_en.zip
2016-12-10 16:22 - 2016-12-10 16:22 - 01284398 _____ C:\Users\celso\Documents\fullsnes.txt
2016-12-10 16:17 - 2016-12-10 16:17 - 00146009 _____ C:\Users\celso\Documents\snes.txt
2016-12-10 16:16 - 2016-12-10 16:16 - 00073676 _____ C:\Users\celso\Documents\SNES Graphics Information.htm
2016-12-10 16:16 - 2016-12-10 16:16 - 00033886 _____ C:\Users\celso\Documents\snestech.txt
2016-12-10 16:11 - 2016-12-10 16:11 - 01192080 _____ C:\Users\celso\Downloads\SNES9Xdebugger(2).zip
2016-12-10 16:09 - 2016-12-10 16:09 - 01141551 _____ C:\Users\celso\Downloads\st141(1).zip
2016-12-10 16:08 - 2016-12-10 16:09 - 01236202 _____ C:\Users\celso\Downloads\lm242(2).zip
2016-12-10 16:00 - 2016-12-10 16:00 - 00031311 _____ C:\Users\celso\Downloads\pic2snes(1).zip
2016-12-10 15:37 - 2016-12-10 15:37 - 00107009 _____ C:\Users\celso\Documents\Registers in SNES Development.xhtml
2016-12-10 15:34 - 2016-12-10 15:34 - 00039788 _____ C:\Users\celso\Documents\snesmap.txt
2016-12-10 13:14 - 2016-12-10 13:14 - 00143437 _____ C:\Users\celso\Documents\6502.org Tutorial 65C816 Opcodes.htm
2016-12-10 13:08 - 2016-12-10 13:15 - 00000000 ____D C:\Users\celso\Documents\Nova pasta (2)
2016-12-09 20:46 - 2016-12-09 20:46 - 00007443 _____ C:\Users\celso\Downloads\controller(1).zip
2016-12-09 19:43 - 2016-12-09 11:50 - 167347213 _____ C:\Users\celso\Desktop\26 Boleros Sertanejos.mp4
2016-12-09 19:42 - 2016-12-09 19:42 - 00000969 _____ C:\Users\Public\Desktop\UltraISO.lnk
2016-12-09 19:42 - 2016-12-09 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
2016-12-09 19:42 - 2016-12-09 19:42 - 00000000 ____D C:\Program Files\UltraISO
2016-12-09 19:42 - 2016-12-09 19:42 - 00000000 ____D C:\Program Files\Common Files\EZB Systems
2016-12-09 19:41 - 2016-12-09 19:41 - 04452881 _____ C:\Users\celso\Downloads\uiso9_pe.zip
2016-12-09 19:27 - 2016-12-09 20:44 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (2)
2016-12-08 23:44 - 2016-12-08 23:44 - 00006188 _____ C:\Users\celso\Downloads\background.zip
2016-12-08 23:32 - 2016-12-08 23:32 - 00029317 _____ C:\Users\celso\Desktop\neshdr20.txt
2016-12-08 22:54 - 2016-12-08 22:54 - 00002560 _____ C:\Users\celso\Desktop\sprites.asm
2016-12-08 22:18 - 2016-12-08 22:18 - 00043566 _____ C:\Users\celso\Desktop\gun_volt.asm
2016-12-06 19:53 - 2016-12-06 19:53 - 00107910 _____ C:\Users\celso\Downloads\FaturaOnline.pdf
2016-12-05 21:06 - 2016-12-05 21:08 - 00000000 ____D C:\Nova pasta (3)
2016-12-04 23:39 - 2016-12-04 23:39 - 00000000 ____D C:\Users\Todos os Usuários\Hewlett-Packard
2016-12-04 23:39 - 2016-12-04 23:39 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-12-04 23:34 - 2016-12-12 13:58 - 00000000 ____D C:\Users\celso\AppData\Roaming\HpUpdate
2016-12-04 23:34 - 2016-12-04 23:34 - 00002212 _____ C:\Users\Public\Desktop\HP Deskjet 2540 series.lnk
2016-12-04 23:34 - 2016-12-04 23:34 - 00001953 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2016-12-04 23:34 - 2016-12-04 23:34 - 00001159 _____ C:\Users\Public\Desktop\Comprar suprimentos - HP Deskjet 2540 series.lnk
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\Users\Todos os Usuários\Visan
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\Users\Todos os Usuários\HP Photo Creations
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\ProgramData\Visan
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\ProgramData\HP Photo Creations
2016-12-04 23:34 - 2016-12-04 23:34 - 00000000 ____D C:\Program Files\HP Photo Creations
2016-12-04 23:34 - 2014-03-06 11:48 - 00597512 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPMC211.dll
2016-12-04 23:33 - 2016-12-04 23:34 - 00000000 ____D C:\Users\celso\AppData\Local\HP
2016-12-04 23:33 - 2016-12-04 23:34 - 00000000 ____D C:\Program Files\HP
2016-12-04 23:33 - 2016-12-04 23:33 - 00000057 _____ C:\Users\Todos os Usuários\Ament.ini
2016-12-04 23:33 - 2016-12-04 23:33 - 00000057 _____ C:\ProgramData\Ament.ini
2016-12-04 23:33 - 2016-12-04 23:33 - 00000000 ____D C:\Users\Todos os Usuários\HP
2016-12-04 23:33 - 2016-12-04 23:33 - 00000000 ____D C:\ProgramData\HP
2016-12-04 23:23 - 2016-12-12 21:53 - 00000000 ____D C:\Users\celso\Downloads\HP Downloads
2016-12-04 23:23 - 2016-12-04 23:34 - 00000000 ____D C:\Program Files\Hewlett-Packard
2016-12-04 23:23 - 2016-12-04 23:23 - 00000000 ____D C:\Users\celso\AppData\Local\Hewlett-Packard
2016-12-04 23:19 - 2016-12-04 23:22 - 04039392 _____ (Oleg N. Scherbakov) C:\Users\celso\Downloads\HPSupportSolutionsFramework-12.5.26.37.exe
2016-12-04 22:51 - 2016-12-04 22:51 - 00003432 _____ C:\Users\celso\Desktop\mammxs.asm
2016-12-04 22:25 - 2016-12-04 22:25 - 00028070 _____ C:\Users\celso\Documents\fotae.xps
2016-12-04 22:22 - 2016-12-04 22:22 - 00063463 _____ C:\Users\celso\Documents\foto.xps
2016-12-04 22:20 - 2016-12-04 22:20 - 00063465 _____ C:\Users\celso\Documents\mab.xps
2016-12-04 21:49 - 2016-12-04 21:52 - 00000000 ____D C:\Nova pasta (2)
2016-12-04 20:06 - 2016-12-04 20:06 - 00000000 ____D C:\Users\celso\Desktop\lunarcompress
2016-12-04 17:24 - 2005-08-23 21:10 - 01237504 _____ () C:\Users\celso\Desktop\WindHex32.exe
2016-12-04 16:26 - 2016-12-04 16:26 - 00009270 _____ C:\Users\celso\Desktop\mega.BMP
2016-12-04 15:32 - 2016-12-04 23:39 - 00000000 ____D C:\Users\celso\Desktop\SMSPOWER
2016-12-04 15:31 - 2016-12-04 15:32 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (8)
2016-12-04 13:50 - 2016-12-04 13:50 - 01081360 _____ C:\Users\celso\Documents\megao.usage
2016-12-04 13:49 - 2016-12-04 13:27 - 04194304 _____ C:\Users\celso\Documents\megao.smc
2016-12-04 13:46 - 2016-12-04 13:46 - 01236202 _____ C:\Users\celso\Downloads\lm242(1).zip
2016-12-04 13:46 - 2016-12-04 13:46 - 01192080 _____ C:\Users\celso\Downloads\SNES9Xdebugger(1).zip
2016-12-04 13:45 - 2016-12-04 13:45 - 01245458 _____ C:\Users\celso\Downloads\snes9x-1.54.1-win32.zip
2016-12-04 13:45 - 2016-12-04 13:45 - 01141551 _____ C:\Users\celso\Downloads\st141.zip
2016-12-03 16:11 - 2016-12-03 16:11 - 00529255 _____ C:\Users\celso\Desktop\dissmmx bwass
2016-12-03 14:52 - 2016-12-03 14:52 - 00529255 _____ C:\Users\celso\Desktop\dissmmx.asm
2016-12-02 22:51 - 2016-12-11 16:32 - 00000000 ____D C:\Users\celso\Desktop\XKAS
2016-12-02 22:48 - 2016-12-02 22:48 - 00813919 _____ C:\Users\celso\Downloads\avira_fusebundlegen-win32-en.zip
2016-12-02 22:47 - 2016-12-02 22:47 - 01164890 _____ C:\Users\celso\Downloads\avira_fusebundlegen-linux_glibc22-en.zip
2016-12-02 22:12 - 2016-12-02 22:12 - 00001571 _____ C:\Users\celso\Desktop\megaman x 3 decomp.cpp
2016-12-02 22:06 - 2016-12-13 06:57 - 00000000 ____D C:\Users\celso\AppData\Roaming\Avira
2016-12-02 21:40 - 2016-12-02 22:04 - 166133240 _____ C:\Users\celso\Downloads\avira_free_antivirus_ptbr.exe
2016-12-02 19:07 - 2016-12-02 19:07 - 00120580 _____ C:\Users\celso\Desktop\mark.xps
2016-12-02 19:07 - 2016-12-02 19:07 - 00000000 ____D C:\Users\celso\AppData\LocalLow\Temp
2016-12-02 19:01 - 2016-12-13 06:57 - 00000000 ____D C:\Users\Todos os Usuários\Avira
2016-12-02 19:01 - 2016-12-13 06:57 - 00000000 ____D C:\ProgramData\Avira
2016-12-02 15:54 - 2016-12-02 17:20 - 00000000 ____D C:\Users\celso\Documents\MEGAsync Downloads
2016-12-02 15:50 - 2016-12-02 15:50 - 06761600 _____ (ESET spol. s r.o.) C:\Users\celso\Downloads\esetonlinescanner_enu.exe
2016-12-01 09:36 - 2016-12-01 09:54 - 00000000 ____D C:\Users\celso\AppData\Roaming\.clamwin
2016-12-01 09:36 - 2016-12-01 09:36 - 00001079 _____ C:\Users\Public\Desktop\ClamWin Antivirus.lnk
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\Users\Todos os Usuários\.clamwin
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClamWin Antivirus
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\ProgramData\.clamwin
2016-12-01 09:36 - 2016-12-01 09:36 - 00000000 ____D C:\Program Files\ClamWin
2016-11-30 12:10 - 2016-11-30 12:11 - 04216840 _____ (Microsoft Corporation) C:\Users\celso\Downloads\vcredist_x86.exe
2016-11-29 21:23 - 2016-11-29 21:23 - 00793536 _____ (Symantec) C:\Users\celso\Downloads\Setup.exe
2016-11-29 21:15 - 2016-11-29 21:34 - 256536440 _____ C:\Users\celso\Downloads\EmsisoftEmergencyKit.exe
2016-11-29 21:15 - 2016-11-29 21:16 - 00524248 _____ (F-Secure Corporation) C:\Users\celso\Downloads\F-SecureOnlineScanner.exe
2016-11-29 20:01 - 2016-11-29 20:03 - 22851472 _____ (Malwarebytes ) C:\Users\celso\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-11-29 19:41 - 2016-11-29 19:50 - 97375872 _____ (ESET) C:\Users\celso\Downloads\eav_nt32_ptb.exe
2016-11-29 07:26 - 2016-11-29 07:26 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2016-11-29 07:26 - 2016-11-29 07:26 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-11-29 07:25 - 2012-07-26 01:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-11-29 07:25 - 2012-07-26 01:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-11-29 07:25 - 2012-07-26 00:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-11-29 07:25 - 2012-06-02 12:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-11-29 06:52 - 2016-11-29 06:52 - 00000772 _____ C:\Users\celso\Desktop\zelda.TPL
2016-11-29 06:43 - 2016-11-29 06:46 - 25541991 _____ C:\Users\celso\Downloads\SNESDevManual.rar
2016-11-29 00:01 - 2016-11-29 00:01 - 00007222 _____ C:\Users\celso\Desktop\coração1.BMP
2016-11-28 22:42 - 2016-11-28 22:42 - 00007443 _____ C:\Users\celso\Downloads\controller.zip
2016-11-28 22:20 - 2016-11-28 22:20 - 00512785 _____ C:\Users\celso\Downloads\TileMolesterv015a-BR(T-Welblade).rar
2016-11-28 22:16 - 2016-11-28 22:16 - 00000000 ____D C:\Users\celso\AppData\LocalLow\Sun
2016-11-28 21:56 - 2016-11-28 21:57 - 00000934 _____ C:\DelFix.txt
2016-11-28 21:41 - 2016-11-28 21:42 - 18864464 _____ (BreakPoint Software) C:\Users\celso\Downloads\hw_v680.exe
2016-11-28 21:19 - 2016-11-28 21:29 - 00000000 ____D C:\Windows\erdnt
2016-11-28 21:12 - 2016-11-28 21:13 - 18617467 _____ C:\Users\celso\Downloads\HEX WORKSHOP v6.80.rar
2016-11-28 21:08 - 2016-11-28 21:08 - 00384148 _____ C:\Users\celso\Downloads\Translhextion16c.zip
2016-11-28 21:07 - 2016-11-28 21:07 - 00061016 _____ C:\Users\celso\Downloads\HEXPOSEv3_666.ZIP
2016-11-28 18:59 - 2015-12-25 07:42 - 00075264 _____ (Lunarian Concepts) C:\Users\celso\Desktop\zcompress.exe
2016-11-28 18:58 - 2009-07-13 23:14 - 00301568 _____ (Microsoft Corporation) C:\Users\celso\Desktop\cmd.exe
2016-11-28 18:57 - 1996-03-28 14:00 - 01049088 _____ C:\Users\celso\Desktop\zelda.smc
2016-11-27 22:54 - 2016-12-13 06:31 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (4)
2016-11-27 22:29 - 2016-07-08 22:28 - 01241684 _____ C:\Users\celso\Desktop\SMWDisC.zip
2016-11-27 22:26 - 2016-12-10 17:01 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta (3)
2016-11-27 22:23 - 2016-11-27 22:23 - 00193801 _____ C:\Users\celso\Downloads\lazynds-master.zip
2016-11-27 14:27 - 2016-11-27 14:28 - 09166799 _____ C:\Users\celso\Downloads\xMvCEvilRyux.rar
2016-11-27 14:22 - 2016-11-27 14:23 - 06328744 _____ C:\Users\celso\Downloads\mugen-1.1b1.zip
2016-11-27 14:22 - 2016-11-27 14:23 - 02842243 _____ C:\Users\celso\Downloads\mugen-2002-04-14.tar.gz
2016-11-27 14:22 - 2016-11-27 14:22 - 01631441 _____ C:\Users\celso\Downloads\mug10414.zip
2016-11-27 14:02 - 2016-11-27 14:04 - 06783286 _____ C:\Users\celso\Downloads\lara_vrot_nude.rar
2016-11-27 13:53 - 2016-11-27 13:53 - 01642738 _____ C:\Users\celso\Downloads\azumi_pacific.zip
2016-11-27 13:53 - 2016-11-27 13:53 - 00987240 _____ C:\Users\celso\Downloads\mexicossf2.zip
2016-11-27 13:52 - 2016-11-27 13:53 - 00403929 _____ C:\Users\celso\Downloads\vf_desert.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 01248014 _____ C:\Users\celso\Downloads\versailles.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00882757 _____ C:\Users\celso\Downloads\airforce.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00840454 _____ C:\Users\celso\Downloads\kof95korea.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00790890 _____ C:\Users\celso\Downloads\gpgalleon.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00653673 _____ C:\Users\celso\Downloads\bloodskull.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00507822 _____ C:\Users\celso\Downloads\sf2india.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00485348 _____ C:\Users\celso\Downloads\abtemple.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00446355 _____ C:\Users\celso\Downloads\surreal.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00295855 _____ C:\Users\celso\Downloads\greenhell.zip
2016-11-27 13:52 - 2016-11-27 13:52 - 00176132 _____ C:\Users\celso\Downloads\desertmk3.zip
2016-11-27 13:51 - 2016-11-27 13:52 - 00016846 _____ C:\Users\celso\Downloads\skypalace.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00173982 _____ C:\Users\celso\Downloads\romenia.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00075848 _____ C:\Users\celso\Downloads\polosul.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00039947 _____ C:\Users\celso\Downloads\cyberbitstage.zip
2016-11-27 13:51 - 2016-11-27 13:51 - 00012186 _____ C:\Users\celso\Downloads\vrfight.zip
2016-11-27 13:50 - 2016-11-27 13:51 - 03313515 _____ C:\Users\celso\Downloads\Huitzil.zip
2016-11-27 13:50 - 2016-11-27 13:50 - 01278306 _____ C:\Users\celso\Downloads\TamtamSS.zip
2016-11-27 13:50 - 2016-11-27 13:50 - 00842413 _____ C:\Users\celso\Downloads\BalrogSF2.zip
2016-11-27 13:49 - 2016-11-27 13:49 - 05277907 _____ C:\Users\celso\Downloads\Sp-X.zip
2016-11-27 13:49 - 2016-11-27 13:49 - 03322004 _____ C:\Users\celso\Downloads\Vertigo.zip
2016-11-27 13:49 - 2016-11-27 13:49 - 01585463 _____ C:\Users\celso\Downloads\HaohmaruSS.zip
2016-11-27 13:48 - 2016-11-27 13:48 - 01432995 _____ C:\Users\celso\Downloads\Joemove10.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00817395 _____ C:\Users\celso\Downloads\Hoppy.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00713011 _____ C:\Users\celso\Downloads\ScorpionMK.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00606377 _____ C:\Users\celso\Downloads\HwaJai.zip
2016-11-27 13:47 - 2016-11-27 13:47 - 00292214 _____ C:\Users\celso\Downloads\MichaelMax.zip
2016-11-26 22:05 - 2016-11-26 22:05 - 00001063 _____ C:\Users\celso\Downloads\compression.zip
2016-11-26 22:04 - 2016-11-26 22:04 - 00096216 _____ C:\Users\celso\Downloads\clib12(1).zip
2016-11-26 22:04 - 2016-11-26 22:04 - 00025421 _____ C:\Users\celso\Downloads\compress.zip
2016-11-26 22:02 - 2016-11-26 22:02 - 00096216 _____ C:\Users\celso\Downloads\clib12.zip
2016-11-26 22:02 - 2016-11-26 22:02 - 00006331 _____ C:\Users\celso\Downloads\Compression - Sylvan Tale.zip
2016-11-26 22:01 - 2016-11-26 22:01 - 00029035 _____ C:\Users\celso\Downloads\Compression - SFG ~ Final Conflict.zip
2016-11-26 22:01 - 2016-11-26 22:01 - 00006457 _____ C:\Users\celso\Downloads\Compression - Phantasy Star Gaiden.zip
2016-11-26 22:01 - 2016-11-26 22:01 - 00002216 _____ C:\Users\celso\Downloads\Compression - River City Ransom Zero.zip
2016-11-26 22:00 - 2016-11-26 22:00 - 00005176 _____ C:\Users\celso\Downloads\Compression - Phantasy Star.zip
2016-11-26 21:59 - 2016-11-26 21:59 - 00009633 _____ C:\Users\celso\Downloads\Compression - Cyber Knight II.zip
2016-11-26 21:58 - 2016-11-26 21:58 - 00247540 _____ C:\Users\celso\Downloads\Columns_Disasm.zip
2016-11-26 21:58 - 2016-11-26 21:58 - 00150765 _____ C:\Users\celso\Downloads\Columns-GG-source.zip
2016-11-26 21:58 - 2016-11-26 21:58 - 00018799 _____ C:\Users\celso\Downloads\CDNESPM(1).zip
2016-11-26 21:54 - 2016-11-26 21:54 - 00018799 _____ C:\Users\celso\Downloads\CDNESPM.zip
2016-11-26 21:52 - 2016-11-26 21:52 - 02953759 _____ C:\Users\celso\Downloads\CliffhangerSegaGenesis.zip
2016-11-26 21:51 - 2016-11-26 21:51 - 00103863 _____ C:\Users\celso\Downloads\Chrono Trigger Database.7z
2016-11-26 21:50 - 2016-11-26 21:50 - 00104582 _____ C:\Users\celso\Downloads\Chrono Trigger Data Offsets Spreadsheets.zip
2016-11-26 21:50 - 2016-11-26 21:50 - 00010055 _____ C:\Users\celso\Downloads\ctcompression.zip
2016-11-26 21:49 - 2016-11-26 21:49 - 01381329 _____ C:\Users\celso\Downloads\CLGRH Volume I Background Insertion.zip
2016-11-26 21:43 - 2016-11-26 21:43 - 00088540 _____ C:\Users\celso\Downloads\BC-ROMHacking.html
2016-11-26 21:42 - 2016-11-26 21:42 - 00364152 _____ C:\Users\celso\Downloads\Hexadecimal and Binary guide by mevoid.rar
2016-11-26 21:35 - 2016-11-26 21:36 - 02740829 _____ C:\Users\celso\Downloads\ff6_bank_c3.zip
2016-11-26 21:30 - 2016-11-26 21:30 - 01104866 _____ C:\Users\celso\Downloads\Art_Alive_Disasm.zip
2016-11-26 21:30 - 2016-11-26 21:30 - 00022307 _____ C:\Users\celso\Downloads\asmtutor.zip
2016-11-26 21:30 - 2016-11-26 21:30 - 00017286 _____ C:\Users\celso\Downloads\asmhack09.txt
2016-11-26 21:29 - 2016-11-26 21:29 - 00026684 _____ C:\Users\celso\Downloads\anusp.htm
2016-11-26 21:29 - 2016-11-26 21:29 - 00007620 _____ C:\Users\celso\Downloads\ports.txt
2016-11-26 21:28 - 2016-11-26 21:28 - 00106387 _____ C:\Users\celso\Downloads\regs.txt
2016-11-26 21:17 - 2016-11-26 21:17 - 00059508 _____ C:\Users\celso\Downloads\AIGtHNWC.7z
2016-11-26 19:18 - 2016-11-26 19:18 - 00007228 _____ C:\Users\celso\Downloads\sprite.txt
2016-11-26 19:11 - 2016-11-26 19:11 - 00227277 _____ C:\Users\celso\Downloads\alter_ego_src.zip
2016-11-26 19:10 - 2016-11-26 19:10 - 00167581 _____ C:\Users\celso\Downloads\romdoc.zip
2016-11-26 19:10 - 2016-11-26 19:10 - 00129846 _____ C:\Users\celso\Downloads\65816info.txt
2016-11-26 19:10 - 2016-11-26 19:10 - 00010285 _____ C:\Users\celso\Downloads\68000insset.txt
2016-11-26 19:09 - 2016-11-26 19:09 - 00017623 _____ C:\Users\celso\Downloads\65816 ASM Tutorial.txt
2016-11-26 19:08 - 2016-11-26 19:08 - 00005772 _____ C:\Users\celso\Downloads\asmcode.zip
2016-11-26 19:06 - 2016-11-26 19:20 - 198406712 _____ (Oracle Corporation) C:\Users\celso\Downloads\jdk-8u111-windows-i586.exe
2016-11-26 19:01 - 2016-11-27 17:30 - 00000000 ____D C:\Users\celso\Desktop\Nova pasta
2016-11-26 14:19 - 2016-11-26 14:19 - 00099834 _____ C:\Users\celso\Downloads\zcompress110.zip
2016-11-25 21:33 - 2016-11-25 21:33 - 00000000 ____D C:\Users\celso\Nova pasta
2016-11-25 13:19 - 2016-11-25 13:19 - 02623496 _____ C:\Users\celso\Downloads\kss16.0.0.1344mlg_9998.exe
2016-11-24 15:04 - 2016-11-24 15:04 - 00575504 _____ C:\Users\celso\Downloads\[SMD] Landstalker - The Treasures of King Nole (U) [!] [T-BR] [T-Unknown Master G-Monkey's Traduções] [V-1.0 P-100% A-2013](1).rar
2016-11-24 13:27 - 2015-09-14 14:03 - 00038520 _____ C:\Windows\system32\Drivers\DasPtct.SYS
2016-11-23 20:45 - 2016-11-23 20:45 - 01107017 _____ C:\Users\celso\Downloads\Asterix and the Power of The Gods (E) (M4) [!].zip
2016-11-23 14:06 - 2016-11-23 14:06 - 00054531 _____ C:\Users\celso\Desktop\ajuda para inserir intro em rom de snes (erro set,col,map ).htm
2016-11-23 14:05 - 2016-11-23 14:05 - 00066825 _____ C:\Users\celso\Desktop\[PS2] Revenge of The Sith -) extrair modelos 3D.htm
2016-11-23 14:03 - 2016-11-23 14:03 - 00017522 _____ C:\Users\celso\Desktop\Ponteiros.htm
2016-11-23 12:06 - 2016-11-23 12:06 - 01406979 _____ C:\Users\celso\Downloads\Landstalker - The Treasures of King Nole (U) [!].zip
2016-11-23 12:05 - 2016-11-23 12:05 - 00575504 _____ C:\Users\celso\Downloads\[SMD] Landstalker - The Treasures of King Nole (U) [!] [T-BR] [T-Unknown Master G-Monkey's Traduções] [V-1.0 P-100% A-2013].rar
2016-11-23 11:53 - 2016-11-23 11:53 - 00136092 _____ C:\Users\celso\Downloads\Nemesis_MD_Programs.7z
2016-11-22 21:01 - 2016-11-22 21:02 - 03803296 _____ C:\Users\celso\Downloads\Space_Funky_BOB_Source_Code.7z
2016-11-22 20:38 - 2016-11-22 20:38 - 00005184 _____ C:\Users\celso\Downloads\rareRle-master.zip
2016-11-22 20:16 - 2016-11-22 20:16 - 00017548 _____ C:\Users\celso\Downloads\RNC(1).rar
2016-11-22 19:55 - 2016-11-22 19:56 - 09479789 _____ C:\Users\celso\Downloads\quickbms.zip
2016-11-22 19:28 - 2016-11-22 19:29 - 03714462 _____ C:\Users\celso\Downloads\[TUTORIAL] Qbasic para Romhack [PT-BR] [A-Kaito Sama G-Monkey's Traduções] [A-2013](1).7z
2016-11-22 19:24 - 2016-11-22 19:24 - 00082709 _____ C:\Users\celso\Downloads\The_Sega_Data_Compressor_v2.2(1).7z
2016-11-22 19:09 - 2016-11-22 19:09 - 00082709 _____ C:\Users\celso\Downloads\The_Sega_Data_Compressor_v2.2.7z
2016-11-21 20:31 - 2005-01-23 22:09 - 00483840 _____ C:\Users\celso\Desktop\tlp.exe
2016-11-20 20:19 - 2016-11-20 20:20 - 00017548 _____ C:\Users\celso\Downloads\RNC.rar
2016-11-20 20:02 - 2016-11-20 20:03 - 12315285 _____ C:\Users\celso\Downloads\Python easy_install & Pip install(1).mp4
2016-11-20 19:57 - 2016-12-13 05:31 - 00000000 ___RD C:\Users\celso\Documents\MEGA
2016-11-20 19:44 - 2016-11-20 19:45 - 13049800 _____ (MEGA Limited) C:\Users\celso\Downloads\MEGAsyncSetup.exe
2016-11-20 19:42 - 2016-11-20 19:44 - 11543501 _____ C:\Users\celso\Downloads\اختراق الفايسبوك باستعمال ابونتو Hack Facebook Using Ubuntu.mp4
2016-11-20 19:41 - 2016-11-20 19:44 - 18836109 _____ C:\Users\celso\Downloads\How To Use facebook.py in Ubuntu 14.04 (By Zakir).mp4
2016-11-20 15:46 - 2016-11-20 15:46 - 00012746 _____ C:\Users\celso\Downloads\ez_setup.py
2016-11-20 15:40 - 2016-11-20 15:45 - 64570763 _____ C:\Users\celso\Downloads\How to install python27 on windows7 (no step skipped).mp4
2016-11-20 15:39 - 2016-11-20 15:40 - 12315285 _____ C:\Users\celso\Downloads\Python easy_install & Pip install.mp4
2016-11-20 15:38 - 2016-11-20 15:38 - 06029861 _____ C:\Users\celso\Downloads\How to Install Python Modules.mp4
2016-11-20 14:52 - 2016-11-20 14:53 - 14524094 _____ C:\Users\celso\Downloads\Python 2 Install Mechanize.mp4
2016-11-20 13:05 - 2016-11-20 13:05 - 00445338 _____ C:\Users\celso\Downloads\mechanize-0.2.5(1).zip
2016-11-19 20:14 - 2016-11-19 20:15 - 01295714 _____ C:\Users\celso\Downloads\Megaman X3 (USA).zip
2016-11-19 20:12 - 2016-11-19 20:12 - 00940937 _____ C:\Users\celso\Downloads\Mega Man X (U) (V1.0) [!].zip
2016-11-19 20:09 - 2016-11-19 20:09 - 00929719 _____ C:\Users\celso\Downloads\mega_man_x.7z
2016-11-19 20:07 - 2016-11-19 20:07 - 01192080 _____ C:\Users\celso\Downloads\SNES9Xdebugger.zip
2016-11-19 16:06 - 2016-11-19 16:06 - 00083990 _____ C:\Users\celso\Downloads\Bio2_dis.zip
2016-11-19 16:05 - 2016-11-19 16:06 - 04320141 _____ C:\Users\celso\Downloads\MAIN.ZIP
2016-11-19 15:39 - 2016-11-19 15:39 - 00026420 _____ C:\Users\celso\Downloads\gunvolt.zip
2016-11-18 19:10 - 2016-11-18 19:11 - 00445338 _____ C:\Users\celso\Downloads\mechanize-0.2.5.zip
2016-11-18 13:29 - 2016-11-18 19:37 - 00000000 ____D C:\Users\celso\AppData\Roaming\Dev-Cpp
2016-11-18 13:29 - 2016-11-18 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
2016-11-18 13:29 - 2016-11-18 13:29 - 00000000 ____D C:\Dev-Cpp
2016-11-18 13:27 - 2016-11-18 13:28 - 09326468 _____ C:\Users\celso\Downloads\devcpp-4.9.9.2_setup.exe
2016-11-17 06:27 - 2016-11-20 15:47 - 00000000 ____D C:\Users\celso\.idlerc
2016-11-17 06:26 - 2016-11-29 20:18 - 00000000 ____D C:\Python27
2016-11-17 06:26 - 2016-11-17 06:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2016-11-17 06:22 - 2016-11-17 06:24 - 16703488 _____ C:\Users\celso\Downloads\python-2.7.8.msi
2016-11-16 15:10 - 2016-11-16 15:10 - 00000000 ____D C:\Users\celso\Documents\Virtual Machines
2016-11-16 14:13 - 2016-11-16 14:13 - 00001501 _____ C:\Users\UpdatusUser\Desktop\MSYS.lnk
2016-11-16 14:13 - 2016-11-16 14:13 - 00001501 _____ C:\Users\celso\Desktop\MSYS.lnk
2016-11-16 14:13 - 2016-11-16 14:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinGW
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-12-15 22:56 - 2009-07-14 02:34 - 00014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-15 22:56 - 2009-07-14 02:34 - 00014224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-15 22:53 - 2016-11-11 23:21 - 01500050 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-15 22:53 - 2009-07-14 06:31 - 00656956 _____ C:\Windows\system32\prfh0416.dat
2016-12-15 22:53 - 2009-07-14 06:31 - 00125934 _____ C:\Windows\system32\prfc0416.dat
2016-12-15 22:53 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2016-12-15 22:49 - 2016-11-11 23:48 - 00000000 ____D C:\Users\UpdatusUser
2016-12-15 22:48 - 2016-11-12 12:39 - 00000000 ____D C:\Users\Todos os Usuários\VMware
2016-12-15 22:48 - 2016-11-12 12:39 - 00000000 ____D C:\ProgramData\VMware
2016-12-15 22:48 - 2016-11-11 23:48 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-12-15 22:48 - 2016-11-11 23:48 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-15 22:48 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-15 19:31 - 2009-07-14 06:53 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-12-15 06:42 - 2016-11-12 00:13 - 00000000 ____D C:\Users\celso\AppData\Local\Google
2016-12-15 06:42 - 2016-11-12 00:13 - 00000000 ____D C:\Program Files\Google
2016-12-13 19:41 - 2016-11-12 17:33 - 00000000 ____D C:\Users\celso\Desktop\lunar
2016-12-13 18:44 - 2016-11-12 00:45 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-13 18:44 - 2016-11-12 00:45 - 00001050 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-12 06:23 - 2016-11-15 18:09 - 00000000 ____D C:\Users\celso\AppData\LocalLow\Mozilla
2016-12-11 23:20 - 2016-11-11 16:58 - 00000000 ____D C:\Users\celso\Documents\Nova pasta
2016-12-11 23:02 - 2016-11-11 23:45 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-11 19:04 - 2016-11-14 04:53 - 00000000 ____D C:\Users\celso\AppData\Roaming\XnView
2016-12-11 16:34 - 2016-11-11 23:16 - 00000000 ____D C:\Users\celso
2016-12-01 09:26 - 2016-11-14 05:43 - 120690586 _____ (alch ) C:\Users\celso\Downloads\clamwin-0.99.1-setup.exe
2016-11-30 17:53 - 2016-11-11 23:16 - 00000000 ____D C:\Users\celso\AppData\Local\VirtualStore
2016-11-29 11:20 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\rescache
2016-11-28 21:28 - 2009-07-14 00:04 - 00000215 _____ C:\Windows\system.ini
2016-11-28 16:11 - 2016-11-12 15:33 - 00000000 ____D C:\Program Files\ConTEXT
2016-11-18 16:49 - 2007-08-23 09:37 - 00000000 ____D C:\Users\celso\iop
2016-11-18 13:08 - 2016-11-12 17:23 - 00000000 ____D C:\Program Files\WinRAR
2016-11-17 06:10 - 2016-11-15 21:19 - 00000000 ____D C:\snesdev
2016-11-16 20:34 - 2016-11-15 14:41 - 00000000 ____D C:\Users\celso\AppData\Roaming\VMware
2016-11-16 14:13 - 2016-11-15 18:17 - 00000047 _____ C:\Windows\MSYS.INI
2016-11-16 13:13 - 2016-11-15 17:22 - 00000000 ____D C:\Windows\system32\appmgmt
==================== Arquivos na raiz de alguns diretórios =======
2016-12-04 23:33 - 2016-12-04 23:33 - 0000057 _____ () C:\ProgramData\Ament.ini
Alguns arquivos em TEMP:
====================
C:\Users\celso\AppData\Local\Temp\7za.exe
C:\Users\celso\AppData\Local\Temp\AnVir.exe
C:\Users\celso\AppData\Local\Temp\DaS_21.exe
C:\Users\celso\AppData\Local\Temp\hijackthis.exe
C:\Users\celso\AppData\Local\Temp\NirCmd.exe
C:\Users\celso\AppData\Local\Temp\PEVZ.EXE
C:\Users\celso\AppData\Local\Temp\remove.exe
C:\Users\celso\AppData\Local\Temp\sed.exe
C:\Users\celso\AppData\Local\Temp\shortcut.exe
C:\Users\celso\AppData\Local\Temp\swreg.exe
C:\Users\celso\AppData\Local\Temp\swxcacls.exe
C:\Users\celso\AppData\Local\Temp\wget.exe
C:\Users\celso\AppData\Local\Temp\ZAScan.exe
C:\Users\celso\AppData\Local\Temp\zoek-delete.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-12-14 03:38
==================== Fim de FRST.txt ============================