cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : text/plain

Prévisualisation

ÿþ[code]
OTS logfile created on: 09/03/2018 00:22:26 - Run 3
OTS by OldTimer - Version 3.1.47.2 Folder = C:\Users\Nickolas1993\Downloads
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 54,00% Memory free
7,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 930,94 Gb Total Space | 894,94 Gb Free Space | 96,13% Space Free | Partition Type: NTFS
Drive D: | 54,67 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NICKOLAS1993-PC
Current User Name: Nickolas1993
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days

[Processes - Safe List]
ots.exe -> C:\Users\Nickolas1993\Downloads\OTS.exe -> [2018/03/09 00:16:48 | 000,646,656 | ---- | M] (OldTimer Tools)
setupbootstrapper.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\{909CC275-9516-4833-88AC-657ACF4B03E4}\.be\SetupBootstrapper.exe -> [2018/03/09 00:13:12 | 000,916,600 | ---- | M] (IKARUS Security Software)
setup.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\{4408C07D-9A18-4FBA-807A-3B174212872D}\.cr\setup.exe -> [2018/03/09 00:13:10 | 000,916,600 | ---- | M] (IKARUS Security Software)
setup ikarus anti.virus vdb.exe -> C:\Users\Nickolas1993\Downloads\Setup IKARUS anti.virus VDB.exe -> [2018/03/08 05:00:29 | 257,007,192 | ---- | M] (Microsoft Corporation)
firefox.exe -> C:\Arquivos de programas\Mozilla Firefox\firefox.exe -> [2018/01/18 18:52:10 | 000,517,072 | ---- | M] (Mozilla Corporation)
setup.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\IXP000.TMP\setup.exe -> [2017/12/04 16:54:16 | 255,085,088 | ---- | M] (IKARUS Security Software)
vcredist140_x86.exe -> C:\ProgramData\Package Cache\BFB74E498C44D3A103CA3AA2831763FB417134D1\vcredist140_x86.exe -> [2017/12/04 16:53:12 | 013,767,776 | ---- | M] (Microsoft Corporation)
launcher.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\IXP000.TMP\launcher.exe -> [2017/11/28 10:37:48 | 003,801,112 | ---- | M] (TODO: <Company name>)
vdeck.exe -> C:\Arquivos de programas\VIA\VIAudioi\VDeck\VDeck.exe -> [2012/10/25 17:26:18 | 004,045,432 | R--- | M] (VIA)
rtwlan.exe -> C:\Arquivos de programas\MYMAX\11n USB Wireless LAN Utility\RtWLan.exe -> [2012/02/21 19:39:30 | 002,043,904 | ---- | M] (Realtek Semiconductor Corp.)
rtlservice.exe -> C:\Arquivos de programas\MYMAX\11n USB Wireless LAN Utility\RtlService.exe -> [2010/04/16 16:10:58 | 000,036,864 | ---- | M] (Realtek)
nsvcip.exe -> C:\Arquivos de programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -> [2009/08/10 15:59:50 | 000,178,720 | ---- | M] ()
nsvcappflt.exe -> C:\Arquivos de programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -> [2009/08/10 15:59:48 | 000,387,616 | ---- | M] ()
nvscpapisvr.exe -> C:\Arquivos de programas\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -> [2009/07/14 12:28:00 | 000,239,648 | ---- | M] (NVIDIA Corporation)
explorer.exe -> C:\Windows\explorer.exe -> [2009/04/11 10:19:30 | 002,926,592 | ---- | M] (Microsoft Corporation)
wusa.exe -> C:\Windows\System32\wusa.exe -> [2009/04/11 10:19:14 | 000,140,800 | ---- | M] (Microsoft Corporation)
sidebar.exe -> C:\Arquivos de programas\Windows Sidebar\sidebar.exe -> [2009/04/11 10:19:03 | 001,233,920 | ---- | M] (Microsoft Corporation)
msascui.exe -> C:\Arquivos de programas\Windows Defender\MSASCui.exe -> [2008/01/20 23:21:41 | 001,008,184 | ---- | M] (Microsoft Corporation)

[Modules - No Company Name]
dts2apoapi.dll -> C:\Arquivos de programas\VIA\VIAudioi\VDeck\Dts2ApoApi.dll -> [2012/10/25 17:25:48 | 000,113,272 | R--- | M] ()
qsapoapi.dll -> C:\Arquivos de programas\VIA\VIAudioi\VDeck\QsApoApi.dll -> [2012/10/25 17:25:48 | 000,080,504 | R--- | M] ()

[Win32 Services - Safe List]
(MozillaMaintenance) Mozilla Maintenance Service [On_Demand | Stopped] -> C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -> [2018/01/18 18:52:27 | 000,174,032 | ---- | M] (Mozilla Foundation)
(Realtek11nSU) Realtek11nSU [Auto | Running] -> C:\Arquivos de Programas\MYMAX\11n USB Wireless LAN Utility\RtlService.exe -> [2010/04/16 16:10:58 | 000,036,864 | ---- | M] (Realtek)
(nSvcIp) ForceWare IP service [Auto | Running] -> C:\Arquivos de Programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -> [2009/08/10 15:59:50 | 000,178,720 | ---- | M] ()
(ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) [Auto | Running] -> C:\Arquivos de Programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -> [2009/08/10 15:59:48 | 000,387,616 | ---- | M] ()
(Stereo Service) NVIDIA Stereoscopic 3D Driver Service [Auto | Running] -> C:\Arquivos de Programas\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -> [2009/07/14 12:28:00 | 000,239,648 | ---- | M] (NVIDIA Corporation)
(WinDefend) Windows Defender [Auto | Running] -> C:\Arquivos de Programas\Windows Defender\MpSvc.dll -> [2008/01/20 23:21:41 | 000,272,952 | ---- | M] (Microsoft Corporation)

[Driver Services - Safe List]
(VIAHdAudAddService) VIA High Definition Audio Driver Service [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\viahduaa.sys -> [2012/10/22 16:43:36 | 001,841,272 | ---- | M] (VIA Technologies, Inc.)
(RTL8192su) Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\rtl8192su.sys -> [2011/08/11 02:46:46 | 000,542,312 | R--- | M] (Realtek Semiconductor Corporation )
(nvstor32) nvstor32 [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\nvstor32.sys -> [2009/08/04 17:43:40 | 000,213,024 | ---- | M] (NVIDIA Corporation)
(NVNET) NVIDIA nForce 10/100 Mbps Ethernet [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\nvmfdx32.sys -> [2009/07/30 17:12:56 | 000,282,144 | ---- | M] (NVIDIA Corporation)
(nvlddmkm) nvlddmkm [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\nvlddmkm.sys -> [2009/07/14 11:54:00 | 009,557,216 | ---- | M] (NVIDIA Corporation)
(NVENETFD) Driver do NVIDIA nForce Networking Controller [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\nvm60x32.sys -> [2006/11/02 04:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation)

[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm ->
< Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> ->
< Internet Explorer Settings [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> ->
HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\: Main\\"StartPageCache" -> 1 ->
HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\: "ProxyEnable" -> 0 ->
< FireFox Settings [Prefs.js] > -> C:\Users\Nickolas1993\AppData\Roaming\Mozilla\FireFox\Profiles\xele3mtm.default\prefs.js ->
browser.search.countryCode -> "BR" ->
browser.search.region -> "BR" ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Mozilla Firefox 52.6.0 ESR\extensions -> ->
HKLM\software\mozilla\Mozilla Firefox 52.6.0 ESR\extensions\\Components -> C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS ->
HKLM\software\mozilla\Mozilla Firefox 52.6.0 ESR\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS ->
< FireFox Extensions [User Folders] > ->
-> C:\Users\Nickolas1993\AppData\Roaming\mozilla\Extensions -> [2018/03/07 23:49:25 | 000,000,000 | ---D | M]
-> C:\Users\Nickolas1993\AppData\Roaming\mozilla\Firefox\Profiles\xele3mtm.default\extensions -> [2018/03/07 23:58:24 | 000,000,000 | ---D | M]
< FireFox Extensions [Program Folders] > ->
-> C:\Arquivos de Programas\Mozilla Firefox\browser\extensions -> [2018/03/07 23:49:14 | 000,000,000 | ---D | M]
< HOSTS File > ([2006/09/18 18:41:30 | 000,000,761 | ---- | M] - 20 lines) -> C:\Windows\System32\drivers\etc\hosts ->
Reset Hosts
127.0.0.1 localhost
::1 localhost
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"Auto ShutDown" -> [Freeware Edition.exe] -> File not found
"HDAudDeck" -> C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r] -> [2012/10/25 17:26:18 | 004,045,432 | R--- | M] (VIA)
"Windows Defender" -> C:\Program Files\Windows Defender\MSASCui.exe [%ProgramFiles%\Windows Defender\MSASCui.exe -hide] -> [2008/01/20 23:21:41 | 001,008,184 | ---- | M] (Microsoft Corporation)
< RunOnce [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce ->
"{304174ee-de4c-494a-9291-b9194e1445d1}" -> C:\ProgramData\Package Cache\{304174ee-de4c-494a-9291-b9194e1445d1}\SetupBootstrapper.exe ["C:\ProgramData\Package Cache\{304174ee-de4c-494a-9291-b9194e1445d1}\SetupBootstrapper.exe" /burn.runonce] -> [2018/03/09 00:13:12 | 000,916,600 | ---- | M] (IKARUS Security Software)
"{74d0e5db-b326-4dae-a6b2-445b9de1836e}" -> C:\ProgramData\Package Cache\{74d0e5db-b326-4dae-a6b2-445b9de1836e}\VC_redist.x86.exe ["C:\ProgramData\Package Cache\{74d0e5db-b326-4dae-a6b2-445b9de1836e}\VC_redist.x86.exe" /burn.runonce] -> [2018/03/09 00:13:32 | 000,530,416 | ---- | M] (Microsoft Corporation)
< Run [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"WindowsWelcomeCenter" -> C:\Windows\System32\oobefldr.dll [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2009/04/11 10:19:05 | 002,153,472 | ---- | M] (Microsoft Corporation)
< Run [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"WindowsWelcomeCenter" -> C:\Windows\System32\oobefldr.dll [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2009/04/11 10:19:05 | 002,153,472 | ---- | M] (Microsoft Corporation)
< Run [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"WindowsWelcomeCenter" -> C:\Windows\System32\oobefldr.dll [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2009/04/11 10:19:05 | 002,153,472 | ---- | M] (Microsoft Corporation)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [255] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" -> [255] -> File not found
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 200.204.0.10 200.204.0.138 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{6459156A-7650-4454-9BDB-E855FC6AD06A}\\DhcpNameServer -> 200.204.0.10 200.204.0.138 (Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter) ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\explorer.exe -> [2009/04/11 10:19:30 | 002,926,592 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
*UserInit* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit ->
C:\Windows\system32\userinit.exe -> C:\Windows\System32\userinit.exe -> [2008/01/20 23:22:58 | 000,025,088 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 ->
"DisplayName" -> Driver de CD-ROM ->
"ImagePath" -> [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > -> ->
C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2006/09/18 18:43:36 | 000,000,024 | ---- | M] ()
D:\AutoRun.inf [[AutoRun] | open=\642U_Driver_XP_EN_15.0.0.591\setup.exe | icon=setup.ico | ] -> D:\AutoRun.inf [ CDFS ] -> [2012/07/31 00:10:52 | 000,000,074 | R--- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->
\{1c0f6632-2272-11e8-b335-806e6f6e6963}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell
\{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell\\"" -> [AutoRun] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell\AutoRun\command
\{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell\AutoRun\command\\"" -> [\642U_Driver_XP_EN_15.0.0.591\setup.exe] -> File not found
< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command ->
comfile [open] -> "%1" %* ->
exefile [open] -> "%1" %* ->
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
.com [@ = comfile] -> "%1" %* ->
.exe [@ = exefile] -> "%1" %* ->

[Registry - Additional Scans - Safe List]
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
.bat [@ = batfile] -> "%1" %* ->
.cmd [@ = cmdfile] -> "%1" %* ->
.com [@ = comfile] -> "%1" %* ->
.cpl [@ = cplfile] -> C:\Windows\System32\control.exe -> [2006/11/02 06:44:59 | 000,211,968 | ---- | M] (Microsoft Corporation)
.exe [@ = exefile] -> "%1" %* ->
.hlp [@ = hlpfile] -> C:\Windows\winhlp32.exe -> [2006/11/02 06:45:57 | 000,009,216 | ---- | M] (Microsoft Corporation)
.url [@ = InternetShortcut] -> rundll32.exe ieframe.dll,OpenURL %l ->
.pif [@ = piffile] -> "%1" %* ->
.scr [@ = scrfile] -> "%1" /S ->
< File Associations - Select to Repair > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Classes\<extension>\ ->
.html [@ = FirefoxHTML] -> C:\Program Files\Mozilla Firefox\firefox.exe -> [2018/01/18 18:52:10 | 000,517,072 | ---- | M] (Mozilla Corporation)
< Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
\\"cval" -> [1] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
\Svc\\"oobe_av" -> [1] -> File not found
\Svc\\"AntiVirusOverride" -> [0] -> File not found
\Svc\\"AntiSpywareOverride" -> [0] -> File not found
\Svc\\"FirewallOverride" -> [0] -> File not found
\Svc\\"VistaSp1" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found
\Svc\\"VistaSp2" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> ->
< Windows DomainProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile
\\"EnableFirewall" -> [1] -> File not found
\\"DisableNotifications" -> [0] -> File not found
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging\ -> ->
< Windows StandardProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
\\"EnableFirewall" -> [1] -> File not found
\\"DisableNotifications" -> [0] -> File not found
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> ->
< Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
ldap -> 4 = Restricted sites (Not a Default Protocol) ->
news -> 4 = Restricted sites (Not a Default Protocol) ->
nntp -> 4 = Restricted sites (Not a Default Protocol) ->
oecmd -> 4 = Restricted sites (Not a Default Protocol) ->
snews -> 4 = Restricted sites (Not a Default Protocol) ->
< Default Protocols [HKEY_USERS\S-1-5-19\] - Select to Repair > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
@ivt -> @ivt protocol not assigned ->
file -> file protocol not assigned ->
ftp -> ftp protocol not assigned ->
http -> http protocol not assigned ->
https -> https protocol not assigned ->
shell -> shell protocol not assigned ->
< Default Protocols [HKEY_USERS\S-1-5-20\] - Select to Repair > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
@ivt -> @ivt protocol not assigned ->
file -> file protocol not assigned ->
ftp -> ftp protocol not assigned ->
http -> http protocol not assigned ->
https -> https protocol not assigned ->
shell -> shell protocol not assigned ->
< Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
{20D4A895-748C-4D88-871C-FDB1695B0169} -> Platform
{304174ee-de4c-494a-9291-b9194e1445d1} -> IKARUS anti.virus
{51C7AD07-C3F6-4635-8E8A-231306D810FE} -> Cisco LEAP Module
{64BF0187-F3D2-498B-99EA-163AF9AE6EC9} -> Cisco EAP-FAST Module
{74d0e5db-b326-4dae-a6b2-445b9de1836e} -> Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
{7CFA46E3-CC2F-4355-82AE-6012DC3633FD} -> NVIDIA ForceWare Network Access Manager
{9C049499-055C-4a0c-A916-1D8CA1FF45EB} -> MYMAX Wireless LAN Driver and Utility
{A2563E55-3BEC-3828-8D67-E5E8B9E8B675} -> Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23026
{BE960C1C-7BAD-3DE6-8B1A-2616FE532845} -> Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23026
{ED5776D5-59B4-46B7-AF81-5F2D94D7C640} -> Cisco PEAP Module
Auto ShutDown_is1 -> Auto ShutDown 1.0
InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} -> VIA Gerenciador de dispositivo de plataforma
InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD} -> NVIDIA ForceWare Network Access Manager
Mozilla Firefox 52.6.0 ESR (x86 pt-BR) -> Mozilla Firefox 52.6.0 ESR (x86 pt-BR)
MozillaMaintenanceService -> Mozilla Maintenance Service
NVIDIA Drivers -> NVIDIA Drivers
NVIDIAStereo -> NVIDIA Stereoscopic 3D Driver
< Uninstall List [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
CabalOnline(Bra) -> CABAL Online (Brasil)
< EventViewer Logs - Last 10 Errors > -> Event Information -> Description
Application [ Error ] 07/03/2018 22:14:31 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:14:32 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:31:45 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:31:48 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:32:12 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:32:13 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:32:13 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:32:14 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.
Application [ Error ] 07/03/2018 22:39:11 Computer Name = Nickolas1993-PC | Source = VSS | ID = 8194 -> Description =
Application [ Error ] 08/03/2018 00:48:49 Computer Name = Nickolas1993-PC | Source = VSS | ID = 8194 -> Description =
System [ Error ] 08/03/2018 00:49:39 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7030 -> Description =
System [ Error ] 08/03/2018 00:52:57 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7011 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description =
System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7031 -> Description =
System [ Error ] 08/03/2018 11:08:12 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7011 -> Description =

[Files/Folders - Created Within 30 Days]
d2f565631fdaf1072003c5 -> C:\d2f565631fdaf1072003c5 -> [2018/03/09 00:14:24 | 000,000,000 | ---D | C]
Package Cache -> C:\ProgramData\Package Cache -> [2018/03/09 00:13:25 | 000,000,000 | ---D | C]
CABAL Online (Brasil) -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CABAL Online (Brasil) -> [2018/03/08 12:03:55 | 000,000,000 | ---D | C]
CABAL Online (Brasil) -> C:\Program Files\CABAL Online (Brasil) -> [2018/03/08 11:57:19 | 000,000,000 | ---D | C]
ZHP -> C:\Users\Nickolas1993\AppData\Roaming\ZHP -> [2018/03/08 04:42:08 | 000,000,000 | ---D | C]
ZHP -> C:\Users\Nickolas1993\AppData\Local\ZHP -> [2018/03/08 04:42:08 | 000,000,000 | ---D | C]
AdwCleaner -> C:\AdwCleaner -> [2018/03/08 04:37:36 | 000,000,000 | ---D | C]
Auto ShutDown -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto ShutDown -> [2018/03/08 04:32:18 | 000,000,000 | ---D | C]
Auto ShutDown -> C:\Program Files\Auto ShutDown -> [2018/03/08 04:32:18 | 000,000,000 | ---D | C]
Applications -> C:\ProgramData\Applications -> [2018/03/08 03:57:42 | 000,000,000 | ---D | C]
Panther -> C:\Windows\Panther -> [2018/03/08 03:42:54 | 000,000,000 | ---D | C]
Boot -> C:\Boot -> [2018/03/08 03:42:39 | 000,000,000 | -HSD | C]
FRST -> C:\FRST -> [2018/03/08 01:48:08 | 000,000,000 | ---D | C]
NVIDIA Corporation -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation -> [2018/03/08 01:48:04 | 000,000,000 | ---D | C]
NVIDIA -> C:\ProgramData\NVIDIA -> [2018/03/08 01:47:57 | 000,000,000 | ---D | C]
NVIDIA Corporation -> C:\Program Files\NVIDIA Corporation -> [2018/03/08 01:47:51 | 000,000,000 | ---D | C]
NVIDIA -> C:\NVIDIA -> [2018/03/08 01:44:35 | 000,000,000 | ---D | C]
adaware -> C:\ProgramData\adaware -> [2018/03/07 23:59:51 | 000,000,000 | ---D | C]
Mozilla -> C:\Users\Nickolas1993\AppData\Roaming\Mozilla -> [2018/03/07 23:49:20 | 000,000,000 | ---D | C]
Mozilla -> C:\Users\Nickolas1993\AppData\Local\Mozilla -> [2018/03/07 23:49:20 | 000,000,000 | ---D | C]
Mozilla Maintenance Service -> C:\Program Files\Mozilla Maintenance Service -> [2018/03/07 23:49:14 | 000,000,000 | ---D | C]
Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2018/03/07 23:49:13 | 000,000,000 | ---D | C]
ProcAlyzer Dumps -> C:\ProcAlyzer Dumps -> [2018/03/07 23:44:05 | 000,000,000 | ---D | C]
VIA -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIA -> [2018/03/07 23:40:34 | 000,000,000 | ---D | C]
SRSLabs -> C:\Windows\System32\SRSLabs -> [2018/03/07 23:40:30 | 000,000,000 | ---D | C]
EEP32H.dll -> C:\Windows\System32\EEP32H.dll -> [2018/03/07 23:40:24 | 007,161,696 | ---- | C] (Dolby Laboratories)
EEP32A.dll -> C:\Windows\System32\EEP32A.dll -> [2018/03/07 23:40:24 | 007,161,696 | ---- | C] (Dolby Laboratories)
MaxxAudioVIA.dll -> C:\Windows\System32\MaxxAudioVIA.dll -> [2018/03/07 23:40:24 | 002,911,096 | ---- | C] (Waves Audio Ltd.)
WavesGUILib.dll -> C:\Windows\System32\WavesGUILib.dll -> [2018/03/07 23:40:24 | 001,801,592 | ---- | C] (Waves Audio Ltd.)
MaxxAudioAPOShell.dll -> C:\Windows\System32\MaxxAudioAPOShell.dll -> [2018/03/07 23:40:24 | 000,735,608 | ---- | C] (Waves Audio Ltd.)
EED32H.dll -> C:\Windows\System32\EED32H.dll -> [2018/03/07 23:40:24 | 000,351,072 | ---- | C] (Dolby Laboratories)
EED32A.dll -> C:\Windows\System32\EED32A.dll -> [2018/03/07 23:40:24 | 000,351,072 | ---- | C] (Dolby Laboratories)
MaxxAudioAPO30.dll -> C:\Windows\System32\MaxxAudioAPO30.dll -> [2018/03/07 23:40:24 | 000,349,560 | ---- | C] (Waves Audio Ltd.)
Dts2APO.dll -> C:\Windows\System32\Dts2APO.dll -> [2018/03/07 23:40:24 | 000,218,232 | ---- | C] (Windows (R) Codename Longhorn DDK provider)
EEL32H.dll -> C:\Windows\System32\EEL32H.dll -> [2018/03/07 23:40:24 | 000,103,776 | ---- | C] (Dolby Laboratories)
EEL32A.dll -> C:\Windows\System32\EEL32A.dll -> [2018/03/07 23:40:24 | 000,103,776 | ---- | C] (Dolby Laboratories)
EEA32H.dll -> C:\Windows\System32\EEA32H.dll -> [2018/03/07 23:40:24 | 000,088,928 | ---- | C] (Dolby Laboratories)
EEA32A.dll -> C:\Windows\System32\EEA32A.dll -> [2018/03/07 23:40:24 | 000,088,928 | ---- | C] (Dolby Laboratories)
nQPropPageExt.dll -> C:\Windows\System32\nQPropPageExt.dll -> [2018/03/07 23:40:24 | 000,076,288 | ---- | C] (QSound Labs, Inc.)
nQAPO.dll -> C:\Windows\System32\nQAPO.dll -> [2018/03/07 23:40:24 | 000,073,728 | ---- | C] (QSound Labs, Inc.)
VtSrdAPO.dll -> C:\Windows\System32\VtSrdAPO.dll -> [2018/03/07 23:40:24 | 000,063,096 | ---- | C] (Windows (R) Codename Longhorn DDK provider)
EEG32H.dll -> C:\Windows\System32\EEG32H.dll -> [2018/03/07 23:40:24 | 000,062,304 | ---- | C] (Dolby Laboratories)
EEG32A.dll -> C:\Windows\System32\EEG32A.dll -> [2018/03/07 23:40:24 | 000,062,304 | ---- | C] (Dolby Laboratories)
PropPageExt.dll -> C:\Windows\System32\PropPageExt.dll -> [2018/03/07 23:40:24 | 000,047,736 | ---- | C] (TODO: <Company name>)
VIA -> C:\Program Files\VIA -> [2018/03/07 23:39:21 | 000,000,000 | ---D | C]
InstallShield -> C:\Program Files\Common Files\InstallShield -> [2018/03/07 23:39:09 | 000,000,000 | ---D | C]
Rem-VBSqt -> C:\Rem-VBSqt -> [2018/03/07 23:23:07 | 000,000,000 | ---D | C]
scancl-1.9.161.2 -> C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2 -> [2018/03/07 23:14:15 | 000,000,000 | ---D | C]
149253c103eeb98cb50f123927 -> C:\149253c103eeb98cb50f123927 -> [2018/03/07 23:05:40 | 000,000,000 | ---D | C]
Cisco -> C:\Program Files\Cisco -> [2018/03/07 22:54:22 | 000,000,000 | ---D | C]
Installer -> C:\Windows\Installer -> [2018/03/07 22:54:21 | 000,000,000 | -HSD | C]
MYMAX 11n USB Wireless LAN Utility -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MYMAX 11n USB Wireless LAN Utility -> [2018/03/07 22:54:20 | 000,000,000 | ---D | C]
RtlUI2.exe -> C:\Windows\RtlUI2.exe -> [2018/03/07 22:53:08 | 000,380,928 | ---- | C] (Realtek)
MYMAX -> C:\Program Files\MYMAX -> [2018/03/07 22:53:06 | 000,000,000 | ---D | C]
InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2018/03/07 22:53:03 | 000,000,000 | -H-D | C]
Startup -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup -> [2018/03/07 22:51:52 | 000,000,000 | R--D | C]
Searches -> C:\Users\Nickolas1993\Searches -> [2018/03/07 22:51:52 | 000,000,000 | R--D | C]
Administrative Tools -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools -> [2018/03/07 22:51:52 | 000,000,000 | R--D | C]
Identities -> C:\Users\Nickolas1993\AppData\Roaming\Identities -> [2018/03/07 22:51:44 | 000,000,000 | ---D | C]
Contacts -> C:\Users\Nickolas1993\Contacts -> [2018/03/07 22:51:43 | 000,000,000 | R--D | C]
VirtualStore -> C:\Users\Nickolas1993\AppData\Local\VirtualStore -> [2018/03/07 22:51:42 | 000,000,000 | ---D | C]
Microsoft -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft -> [2018/03/07 22:51:39 | 000,000,000 | --SD | C]
Videos -> C:\Users\Nickolas1993\Videos -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Saved Games -> C:\Users\Nickolas1993\Saved Games -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Pictures -> C:\Users\Nickolas1993\Pictures -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Music -> C:\Users\Nickolas1993\Music -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Maintenance -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Links -> C:\Users\Nickolas1993\Links -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Favorites -> C:\Users\Nickolas1993\Favorites -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Downloads -> C:\Users\Nickolas1993\Downloads -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Documents -> C:\Users\Nickolas1993\Documents -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Desktop -> C:\Users\Nickolas1993\Desktop -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Accessories -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C]
Temporary Internet Files -> C:\Users\Nickolas1993\AppData\Local\Temporary Internet Files -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
SendTo -> C:\Users\Nickolas1993\SendTo -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Recent -> C:\Users\Nickolas1993\Recent -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Modelos -> C:\Users\Nickolas1993\Modelos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Minhas músicas -> C:\Users\Nickolas1993\Documents\Minhas músicas -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Minhas imagens -> C:\Users\Nickolas1993\Documents\Minhas imagens -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Meus vídeos -> C:\Users\Nickolas1993\Documents\Meus vídeos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Meus documentos -> C:\Users\Nickolas1993\Meus documentos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Menu Iniciar -> C:\Users\Nickolas1993\Menu Iniciar -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Histórico -> C:\Users\Nickolas1993\AppData\Local\Histórico -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Dados de aplicativos -> C:\Users\Nickolas1993\Dados de aplicativos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Dados de aplicativos -> C:\Users\Nickolas1993\AppData\Local\Dados de aplicativos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Cookies -> C:\Users\Nickolas1993\Cookies -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Configurações locais -> C:\Users\Nickolas1993\Configurações locais -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Ambiente de rede -> C:\Users\Nickolas1993\Ambiente de rede -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
Ambiente de impressão -> C:\Users\Nickolas1993\Ambiente de impressão -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C]
AppData -> C:\Users\Nickolas1993\AppData -> [2018/03/07 22:51:39 | 000,000,000 | -H-D | C]
Temp -> C:\Users\Nickolas1993\AppData\Local\Temp -> [2018/03/07 22:51:39 | 000,000,000 | ---D | C]
Microsoft -> C:\Users\Nickolas1993\AppData\Local\Microsoft -> [2018/03/07 22:51:39 | 000,000,000 | ---D | C]
Media Center Programs -> C:\Users\Nickolas1993\AppData\Roaming\Media Center Programs -> [2018/03/07 22:51:39 | 000,000,000 | ---D | C]
Sistema -> C:\Program Files\Common Files\Sistema -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Modelos -> C:\ProgramData\Modelos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Minhas músicas -> C:\Users\Public\Documents\Minhas músicas -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Minhas imagens -> C:\Users\Public\Documents\Minhas imagens -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Meus vídeos -> C:\Users\Public\Documents\Meus vídeos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Menu Iniciar -> C:\ProgramData\Menu Iniciar -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Favoritos -> C:\ProgramData\Favoritos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Documentos -> C:\ProgramData\Documentos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Dados de aplicativos -> C:\ProgramData\Dados de aplicativos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Arquivos de programas -> C:\Arquivos de programas -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Arquivos Comuns -> C:\Program Files\Arquivos Comuns -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C]
Debug -> C:\Windows\Debug -> [2018/03/07 22:49:41 | 000,000,000 | ---D | C]
SoftwareDistribution -> C:\Windows\SoftwareDistribution -> [2018/03/07 22:46:04 | 000,000,000 | ---D | C]
CSC -> C:\Windows\CSC -> [2018/03/07 22:45:27 | 000,000,000 | ---D | C]
Prefetch -> C:\Windows\Prefetch -> [2018/03/07 22:43:52 | 000,000,000 | ---D | C]
System Volume Information -> C:\System Volume Information -> [2018/03/07 22:43:43 | 000,000,000 | -HSD | C]

[Files/Folders - Modified Within 30 Days]
wusa.lock -> C:\Windows\wusa.lock -> [2018/03/09 00:14:24 | 000,000,000 | -H-- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -> [2018/03/09 00:06:33 | 000,002,592 | -H-- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -> [2018/03/09 00:06:33 | 000,002,592 | -H-- | M] ()
prfh0416.dat -> C:\Windows\System32\prfh0416.dat -> [2018/03/08 12:13:52 | 000,628,814 | ---- | M] ()
perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2018/03/08 12:13:52 | 000,586,980 | ---- | M] ()
prfc0416.dat -> C:\Windows\System32\prfc0416.dat -> [2018/03/08 12:13:52 | 000,120,466 | ---- | M] ()
perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2018/03/08 12:13:52 | 000,101,052 | ---- | M] ()
nvModes.dat -> C:\ProgramData\nvModes.dat -> [2018/03/08 12:06:54 | 000,033,544 | ---- | M] ()
nvModes.001 -> C:\ProgramData\nvModes.001 -> [2018/03/08 12:06:54 | 000,033,544 | ---- | M] ()
bootstat.dat -> C:\Windows\bootstat.dat -> [2018/03/08 12:06:31 | 000,067,584 | --S- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2018/03/08 12:06:30 | 3488,878,592 | -HS- | M] ()
CABAL Online (Brasil).lnk -> C:\Users\Nickolas1993\Desktop\CABAL Online (Brasil).lnk -> [2018/03/08 12:03:55 | 000,000,876 | ---- | M] ()
ZHPCleaner.html -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.html -> [2018/03/08 04:46:44 | 000,018,178 | ---- | M] ()
ZHPCleaner.lnk -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.lnk -> [2018/03/08 04:42:08 | 000,000,743 | ---- | M] ()
BOOTSECT.BAK -> C:\BOOTSECT.BAK -> [2018/03/08 03:42:40 | 000,008,192 | R-S- | M] ()
d3d9caps.dat -> C:\Users\Nickolas1993\AppData\Local\d3d9caps.dat -> [2018/03/08 01:39:04 | 000,000,680 | ---- | M] ()
Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2018/03/07 23:49:18 | 000,000,846 | ---- | M] ()
HD VDeck.lnk -> C:\Users\Public\Desktop\HD VDeck.lnk -> [2018/03/07 23:40:34 | 000,000,991 | ---- | M] ()
MYMAX 11n USB Wireless LAN Utility.lnk -> C:\Users\Public\Desktop\MYMAX 11n USB Wireless LAN Utility.lnk -> [2018/03/07 22:54:18 | 000,001,917 | ---- | M] ()
FNTCACHE.DAT -> C:\Windows\System32\FNTCACHE.DAT -> [2018/03/07 22:48:51 | 000,228,440 | ---- | M] ()
license.rtf -> C:\Windows\System32\license.rtf -> [2018/03/07 22:47:36 | 000,051,585 | ---- | M] ()

[Files - No Company Name]
wusa.lock -> C:\Windows\wusa.lock -> [2018/03/09 00:14:24 | 000,000,000 | -H-- | C] ()
CABAL Online (Brasil).lnk -> C:\Users\Nickolas1993\Desktop\CABAL Online (Brasil).lnk -> [2018/03/08 12:03:55 | 000,000,876 | ---- | C] ()
ZHPCleaner.html -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.html -> [2018/03/08 04:45:42 | 000,018,178 | ---- | C] ()
ZHPCleaner.lnk -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.lnk -> [2018/03/08 04:42:08 | 000,000,743 | ---- | C] ()
BOOTSECT.BAK -> C:\BOOTSECT.BAK -> [2018/03/08 03:42:40 | 000,008,192 | R-S- | C] ()
bootmgr -> C:\bootmgr -> [2018/03/08 03:42:39 | 000,333,257 | RHS- | C] ()
nvModes.dat -> C:\ProgramData\nvModes.dat -> [2018/03/08 01:51:45 | 000,033,544 | ---- | C] ()
nvModes.001 -> C:\ProgramData\nvModes.001 -> [2018/03/08 01:51:45 | 000,033,544 | ---- | C] ()
nvphy.bin -> C:\Windows\System32\drivers\nvphy.bin -> [2018/03/08 01:45:39 | 000,006,136 | ---- | C] ()
Mozilla Firefox.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> [2018/03/07 23:49:18 | 000,000,858 | ---- | C] ()
Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2018/03/07 23:49:18 | 000,000,846 | ---- | C] ()
HD VDeck.lnk -> C:\Users\Public\Desktop\HD VDeck.lnk -> [2018/03/07 23:40:34 | 000,000,991 | ---- | C] ()
MYMAX 11n USB Wireless LAN Utility.lnk -> C:\Users\Public\Desktop\MYMAX 11n USB Wireless LAN Utility.lnk -> [2018/03/07 22:54:18 | 000,001,917 | ---- | C] ()
ISSRemoveSP.exe -> C:\Windows\System32\ISSRemoveSP.exe -> [2018/03/07 22:53:06 | 000,451,072 | ---- | C] ()
Internet Explorer.lnk -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> [2018/03/07 22:51:52 | 000,000,949 | ---- | C] ()
Windows Media Player.lnk -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> [2018/03/07 22:51:51 | 000,000,944 | ---- | C] ()
Windows Mail.lnk -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk -> [2018/03/07 22:51:43 | 000,000,915 | ---- | C] ()
d3d9caps.dat -> C:\Users\Nickolas1993\AppData\Local\d3d9caps.dat -> [2018/03/07 22:51:40 | 000,000,680 | ---- | C] ()
hiberfil.sys -> C:\hiberfil.sys -> [2018/03/07 22:48:30 | 3488,878,592 | -HS- | C] ()
< End of report >
[/code]

Publicité

Signaler le contenu de ce document

Publicité