Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:09-06-2016 Executado por Marçal (administrador) em MARÇAL-PC (08-06-2016 22:26:50) Executando a partir de C:\Users\Marçal\Downloads Perfis Carregados: Marçal (Perfis Disponíveis: Marçal & Paulinho & Jogos & Administrador & Convidado) Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil) Internet Explorer Versão 8 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe (IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe (IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7390608 2016-04-26] (AVAST Software) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.) Winlogon\Notify\ GbPluginUni: C:\Program Files (x86)\GbPlugin\gbiehUni.dll [2013-11-22] (Banco Itaú Unibanco) HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3478336 2012-01-24] (DT Soft Ltd) HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\Policies\system: [LogonHoursAction] 2 HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {13f15989-6639-11e3-a12a-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {37b4c97f-cdbf-11e4-821c-54bef71c7990} - I:\KODAK_Software_Downloader.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {394e6596-8f0e-11e3-ab96-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {394e65a1-8f0e-11e3-ab96-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {394e65b0-8f0e-11e3-ab96-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {3c7919dc-63d5-11e3-b143-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {4b155237-b0e3-11e3-9106-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {5f054808-d4dd-11e4-81f1-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {5f8cc7fc-630e-11e3-879a-54bef71c7990} - M:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {5f8cc840-630e-11e3-879a-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {a7383116-62bf-11e3-a2e2-dfabdc361fd8} - L:\setup.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {ba28a57a-881a-11e3-8cc7-54bef71c7990} - J:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {bad17370-955e-11e3-8b4c-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {bad1738e-955e-11e3-8b4c-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {d03113ce-d54e-11e4-8a46-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {d03113e1-d54e-11e4-8a46-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {d03113ed-d54e-11e4-8a46-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {d6bf136c-e56d-11e4-8256-54bef71c7990} - I:\NokiaPCIA_Autorun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {eb2a6786-6f48-11e3-98fd-54bef71c7990} - I:\AutoRun.exe HKU\S-1-5-21-2481303459-2005518798-85030140-1000\...\MountPoints2: {f5471a3a-3e79-11e4-a379-54bef71c7990} - I:\AutoRun.exe ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dll [1513528 2013-11-22] (Banco Itaú Unibanco) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-26] (AVAST Software) GroupPolicyUsers\S-1-5-21-2481303459-2005518798-85030140-1009\User: Restrição <======= ATENÇÃO GroupPolicyUsers\S-1-5-21-2481303459-2005518798-85030140-1006\User: Restrição <======= ATENÇÃO GroupPolicyUsers\S-1-5-21-2481303459-2005518798-85030140-1000\User: Restrição <======= ATENÇÃO GroupPolicyScripts: Restrição <======= ATENÇÃO GroupPolicyScripts\User: Restrição <======= ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 172.100.0.1 8.8.8.8 8.8.4.4 8.8.8.8 Tcpip\..\Interfaces\{3B78CB39-5BAB-47A6-BDF6-386C8145EC3E}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{FD9AC37A-76F5-45BF-9BF3-7646CBCC1712}: [DhcpNameServer] 172.100.0.1 8.8.8.8 8.8.4.4 8.8.8.8 Internet Explorer: ================== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-20] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-26] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-20] (Oracle Corporation) BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-21] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-26] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\Program Files (x86)\GbPlugin\gbiehuni.dll [2013-11-22] (Banco Itaú Unibanco) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-21] (Oracle Corporation) Toolbar: HKLM-x32 - Sem Nome - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - Nenhum Arquivo Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation) FireFox: ======== FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-20] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-12-20] (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2011-05-23] (Foxit Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-21] (Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2321 -> C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll [2006-01-28] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1483 -> C:\Program Files (x86)\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll [2006-01-28] (RealNetworks, Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-08] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-12-08] (VideoLAN) FF Plugin HKU\S-1-5-21-2481303459-2005518798-85030140-1000: gastecnologia.com.br/sf/uni -> C:\Users\Marçal\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-04-16] (GAS Tecnologia) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-26] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-26] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-28] CHR Extension: (Google Drive) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-28] CHR Extension: (Rapport) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2016-06-03] CHR Extension: (YouTube) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-28] CHR Extension: (Google Search) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-28] CHR Extension: (Superinteressante) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\degpihaammlmlmgcddhlnfebfcjlbjnk [2016-05-11] CHR Extension: (BitComet Download Extension for Chrome) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhigneefebkcagnpnpbibganpmfgebnk [2016-04-28] CHR Extension: (Google Cast (Beta)) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliochdbjfkdbacpmhlcpmleaejidimm [2016-05-13] CHR Extension: (Documentos Google off-line) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-28] CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2015-03-28] CHR Extension: (Google Maps) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-05-11] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28] CHR Extension: (Gmail) - C:\Users\Marçal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] CHR HKU\S-1-5-21-2481303459-2005518798-85030140-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [dhigneefebkcagnpnpbibganpmfgebnk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-26] ==================== Serviços (Whitelisted) ======================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S4 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551824 2014-01-08] (Protection Technology) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-04-26] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570272 2016-04-26] (Avast Software) S4 BITCOMET_HELPER_SERVICE; C:\Program Files (x86)\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [449592 2013-11-22] (GAS Tecnologia) S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado] S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [664960 2010-11-22] (SEIKO EPSON CORPORATION) R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2383344 2016-05-30] (IBM Corp.) S4 RemoteSolverDispatcher; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe [218248 2013-02-22] (Mentor Graphics Corporation) [Arquivo não assinado] S4 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [575488 2008-09-23] (Nokia.) [Arquivo não assinado] S4 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2015-03-25] (SolidWorks) [Arquivo não assinado] S4 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.) S4 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2007-02-12] (Syntek America Inc.) S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado] S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH) S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [818672 2016-05-11] (Tunngle.net GmbH) S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X] ===================== Drivers (Whitelisted) ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2918512 2014-01-08] (Protection Technology) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-26] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-26] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-26] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-26] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-26] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-26] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-04-26] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-04-26] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-04-26] (AVAST Software) S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [211456 2014-07-24] () [Arquivo não assinado] R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2016-02-24] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-12-11] (DT Soft Ltd) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2014-07-24] () [Arquivo não assinado] R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [161760 2016-04-26] (AVAST Software) S3 nmwcdcx64; C:\Windows\System32\drivers\ccdcmbox64.sys [25088 2010-02-26] (Nokia) S3 nmwcdx64; C:\Windows\System32\drivers\ccdcmbx64.sys [19456 2010-02-26] (Nokia) R1 RapportCerberus_1609041; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609041.sys [1157864 2016-06-07] (IBM Corp.) R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [544360 2016-05-30] (IBM Corp.) R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [215560 2016-05-30] (IBM Corp.) R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [470056 2016-05-30] (IBM Corp.) R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [525992 2016-05-30] (IBM Corp.) S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1528976 2013-03-05] (Realtek Semiconductor Corporation ) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [213088 2016-01-08] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [632704 2007-06-28] (Syntek) R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [47736 2015-12-21] (Tunngle.net) U5 UnlockerDriver5; C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Arquivo não assinado] S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltx64j.sys [9216 2010-02-26] (Nokia) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [323392 2016-04-26] (Avast Software) S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [116296 2014-09-09] (Oracle Corporation) S3 ATP; system32\DRIVERS\cmdatp.sys [X] S3 dgderdrv; System32\drivers\dgderdrv.sys [X] S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três Meses Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-06-08 22:26 - 2016-06-08 22:27 - 00021424 _____ C:\Users\Marçal\Downloads\FRST.txt 2016-06-08 22:26 - 2016-06-08 22:26 - 00000000 ___DC C:\FRST 2016-06-08 22:25 - 2016-06-08 22:25 - 02385408 _____ (Farbar) C:\Users\Marçal\Downloads\FRST64.exe 2016-06-08 22:16 - 2016-06-08 22:18 - 06503984 _____ (Microsoft Corporation) C:\Users\Marçal\Downloads\vcredist_x86 (2013.exe 2016-06-08 21:58 - 2016-06-08 21:58 - 00000000 _____ C:\Users\Marçal\Desktop\Novo Documento de Texto (3).txt 2016-06-08 21:41 - 2016-06-08 21:42 - 06503984 _____ (Microsoft Corporation) C:\Users\Marçal\Downloads\vcredist_x86.exe 2016-06-08 21:31 - 2016-06-08 21:37 - 13767776 _____ (Microsoft Corporation) C:\Users\Marçal\Downloads\vc_redist.x86 2.exe 2016-06-08 13:56 - 2016-06-08 13:56 - 00000000 ____D C:\Users\paulinho\Documents\Telltale Games 2016-06-07 22:23 - 2016-06-07 22:23 - 00000911 _____ C:\Users\paulinho\Desktop\Minecraft Story Mode - A Telltale Games Series.lnk 2016-06-07 22:08 - 2016-06-07 22:08 - 00001453 _____ C:\Users\Marçal\Downloads\Minecraft Story Mode Episode 1 - Tradução em PT-BR [www.piratagamesbr.com].rar 2016-06-07 22:01 - 2016-06-07 22:09 - 00000000 ____D C:\Users\Marçal\Documents\Telltale Games 2016-06-07 21:55 - 2016-06-07 21:55 - 00000923 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Story Mode - A Telltale Games Series.lnk 2016-06-07 21:55 - 2016-06-07 21:55 - 00000911 _____ C:\Users\Public\Desktop\Minecraft Story Mode - A Telltale Games Series.lnk 2016-06-07 21:54 - 2016-06-07 21:54 - 00021471 _____ C:\Users\Marçal\Downloads\windows.8.1.pro.vl.update.3.x64.en.us.v.2.oem.esd.aug.2015.pre.activate.team.os.[programasviatorrents.com].torrent 2016-06-07 21:54 - 2016-06-07 21:54 - 00004382 _____ C:\Users\Marçal\Downloads\Ativador.windows.8.1.kmspico.10.0.stable.activator.for.windows.8.1.[programasviatorrents.com].torrent 2016-06-07 21:53 - 2016-06-07 21:53 - 00000050 _____ C:\Users\Marçal\Desktop\win8.txt 2016-06-07 21:48 - 2016-06-07 22:09 - 00000000 ____D C:\Program Files\Minecraft Story Mode - A Telltale Games Series 2016-06-07 20:01 - 2016-06-07 20:01 - 00075567 _____ C:\Users\paulinho\Downloads\MSM.Ep1-5-ByStiff.torrent 2016-06-07 20:01 - 2016-06-07 20:01 - 00075567 _____ C:\Users\paulinho\Downloads\MSM.Ep1-5-ByStiff (1).torrent 2016-06-07 05:39 - 2016-06-07 05:54 - 00000000 ____D C:\Program Files\Emergency 2016 2016-06-07 05:39 - 2016-06-07 05:39 - 00000755 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emergency 2016.lnk 2016-06-07 05:39 - 2016-06-07 05:39 - 00000743 _____ C:\Users\Public\Desktop\Emergency 2016.lnk 2016-06-06 22:32 - 2016-06-06 22:32 - 07186992 _____ (Microsoft Corporation) C:\Users\Marçal\Downloads\vcredist_x64.exe 2016-06-06 22:00 - 2012-06-02 19:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-06-06 22:00 - 2012-06-02 19:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-06-06 22:00 - 2012-06-02 19:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-06-06 22:00 - 2012-06-02 19:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-06-06 22:00 - 2012-06-02 19:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-06-06 22:00 - 2012-06-02 19:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-06-06 22:00 - 2012-06-02 19:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-06-06 22:00 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-06-06 22:00 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-06-06 21:55 - 2016-06-06 21:59 - 13767776 _____ (Microsoft Corporation) C:\Users\Marçal\Downloads\vc_redist.x86.exe 2016-06-06 21:32 - 2016-06-06 21:32 - 00023042 _____ C:\Users\Marçal\Downloads\Emergency 5-CODEX.torrent 2016-06-06 21:30 - 2016-06-06 21:33 - 14572000 _____ (Microsoft Corporation) C:\Users\Marçal\Downloads\vc_redist.x64.exe 2016-06-05 22:49 - 2016-06-05 22:49 - 00016067 _____ C:\Users\Marçal\Downloads\Emergency_3_Sluzhba_spaseniya_911.torrent 2016-06-05 22:48 - 2016-06-05 22:48 - 00014228 _____ C:\Users\Marçal\Downloads\Emergency_5.torrent 2016-06-05 22:29 - 2016-06-05 22:29 - 00064737 _____ C:\Users\Marçal\Desktop\cancelamento pp.pdf 2016-06-05 22:25 - 2016-06-05 22:25 - 00066273 _____ C:\Users\Marçal\Desktop\PAGAMENTO CELPE 06062016.pdf 2016-06-05 22:16 - 2016-06-05 22:16 - 00247752 _____ C:\Users\Marçal\Downloads\Emergency-5-Deluxe-Edition-PC-www.jogoscompletostorrent.com_ (1).rar 2016-06-05 21:01 - 2016-06-05 21:01 - 00046100 _____ C:\Users\Marçal\Downloads\C73CD56977D52429008B6877D103E9D70860A270.torrent 2016-06-05 20:59 - 2016-06-05 20:59 - 00247752 _____ C:\Users\Marçal\Downloads\Emergency-5-Deluxe-Edition-PC-www.jogoscompletostorrent.com_.rar 2016-06-05 18:31 - 2016-06-05 18:41 - 27710859 _____ C:\Users\paulinho\Downloads\Não confirmado 344237.crdownload 2016-06-05 18:27 - 2016-06-05 18:27 - 00000627 _____ C:\Users\paulinho\Desktop\000000000000000000000000000000000000001111111111111.lnk 2016-06-05 18:20 - 2016-06-05 18:20 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\.minecraft 2016-06-05 17:24 - 2016-06-05 17:24 - 00000627 _____ C:\Users\Marçal\Desktop\DICMEPOR - Atalho.lnk 2016-06-05 15:36 - 2016-06-05 15:37 - 00110089 _____ C:\Users\Marçal\Downloads\X.Men.Apocalypse.2016.HDTC.zip 2016-06-04 18:44 - 2016-06-04 18:44 - 00000687 _____ C:\Users\Marçal\Documents\steam_rld1.txt 2016-06-04 08:12 - 2016-06-04 08:12 - 00000000 ____D C:\Users\Todos os Usuários\RELOADED 2016-06-04 08:12 - 2016-06-04 08:12 - 00000000 ____D C:\ProgramData\RELOADED 2016-06-04 08:10 - 2016-06-04 08:10 - 00000832 _____ C:\Users\Marçal\Desktop\ePSXe - Atalho.lnk 2016-06-04 08:07 - 2016-06-04 08:07 - 00000802 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ys Origin.lnk 2016-06-04 08:07 - 2016-06-04 08:07 - 00000790 _____ C:\Users\Public\Desktop\Ys Origin.lnk 2016-06-04 08:06 - 2016-06-04 18:45 - 00000000 ____D C:\Program Files (x86)\Ys Origin 2016-06-03 23:21 - 2016-06-03 23:21 - 00000533 _____ C:\Users\Marçal\Downloads\Querida-Estiquei-o-Bebe-720p-Dual-Audio.rar 2016-06-03 23:09 - 2016-06-03 23:09 - 00012660 _____ C:\Users\Marçal\Downloads\[gamesviatorrent.com].Ys.Origins.torrent 2016-06-03 20:38 - 2016-06-03 20:38 - 00000000 ____D C:\Users\Marçal\Desktop\ePSXe_1.9.25_com_plugins 2016-06-03 20:33 - 2016-06-03 20:36 - 07153457 _____ C:\Users\Marçal\Downloads\ePSXe_1.9.25_com_plugins.zip 2016-06-03 20:26 - 2016-06-03 20:26 - 00396519 _____ C:\Users\Marçal\Downloads\FFX PT-BR.7z 2016-06-03 15:36 - 2016-06-03 15:36 - 00000000 ____D C:\Users\paulinho\AppData\Local\Trusteer 2016-06-03 15:33 - 2016-06-03 15:33 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\Trusteer 2016-06-03 15:33 - 2016-06-03 15:33 - 00000000 ____D C:\Users\Default\AppData\Local\Trusteer 2016-06-03 15:33 - 2016-06-03 15:33 - 00000000 ____D C:\Users\Default User\AppData\Local\Trusteer 2016-06-03 06:00 - 2016-05-30 17:04 - 00470056 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys 2016-06-03 06:00 - 2016-05-30 17:04 - 00215560 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys 2016-06-03 05:58 - 2016-06-07 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteção de Terminal Trusteer 2016-06-03 05:58 - 2016-06-03 05:58 - 00000000 ____D C:\Users\Marçal\AppData\Local\Trusteer 2016-06-03 05:58 - 2016-06-03 05:58 - 00000000 ____D C:\Program Files (x86)\Trusteer 2016-06-03 05:49 - 2016-06-03 05:49 - 00483824 _____ (IBM Corp.) C:\Users\Marçal\Downloads\RapportSetup.exe 2016-05-30 21:49 - 2016-05-30 21:49 - 01666487 _____ C:\Users\Marçal\Downloads\PDF-Escavadeira-Hidráulica-Molde-1-.pdf 2016-05-30 21:49 - 2016-05-30 21:49 - 01564175 _____ C:\Users\Marçal\Downloads\PDF-Escavadeira-Hidráulica-Peças.pdf 2016-05-30 21:49 - 2016-05-30 21:49 - 01363452 _____ C:\Users\Marçal\Downloads\PDF-Escavadeira-Hidráulica-Molde-2.pdf 2016-05-30 21:30 - 2016-06-05 17:23 - 00000000 ____D C:\Users\Marçal\Desktop\backup sansung 2016-05-29 21:23 - 2016-05-29 21:23 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\EurekaLog 2016-05-29 21:13 - 2016-05-29 21:13 - 00000000 _____ C:\Windows\SysWOW64\Access.dat 2016-05-29 19:15 - 2016-05-29 19:15 - 00002161 _____ C:\Users\paulinho\Desktop\miecraft.lnk 2016-05-29 19:08 - 2016-06-05 18:20 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\Tunngle 2016-05-29 19:08 - 2016-06-05 12:31 - 00000000 ____D C:\Users\Todos os Usuários\Tunngle 2016-05-29 19:08 - 2016-06-05 12:31 - 00000000 ____D C:\ProgramData\Tunngle 2016-05-29 19:08 - 2016-05-29 19:09 - 00000000 ____D C:\Program Files (x86)\Tunngle 2016-05-29 19:08 - 2016-05-29 19:08 - 00000959 _____ C:\Users\Public\Desktop\Tunngle.lnk 2016-05-29 19:08 - 2016-05-29 19:08 - 00000000 ____D C:\Users\Public\Documents\Tunngle 2016-05-29 19:08 - 2016-05-29 19:08 - 00000000 ____D C:\Users\Marçal\Documents\Tunngle 2016-05-29 19:08 - 2016-05-29 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2016-05-29 19:08 - 2015-12-21 18:01 - 00047736 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys 2016-05-29 18:10 - 2016-05-29 18:14 - 05121680 _____ (Tunngle.net GmbH ) C:\Users\Marçal\Downloads\Tunngle_Setup_v5.8.4.exe 2016-05-29 18:04 - 2016-05-29 18:04 - 01686856 _____ (Tunngle.net GmbH ) C:\Users\Marçal\Downloads\Não confirmado 762740.crdownload 2016-05-29 18:02 - 2016-05-29 18:02 - 00002192 _____ C:\Users\Public\Desktop\The Conquerors.lnk 2016-05-29 18:00 - 2016-05-29 18:00 - 00002084 _____ C:\Users\Public\Desktop\Age of Empires II.lnk 2016-05-29 12:15 - 2016-05-29 17:40 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\COMODO 2016-05-29 12:15 - 2016-05-29 12:47 - 00000000 ____D C:\Users\Todos os Usuários\COMODO 2016-05-29 12:15 - 2016-05-29 12:47 - 00000000 ____D C:\ProgramData\COMODO 2016-05-29 12:03 - 2016-05-29 12:06 - 10095629 _____ C:\Users\Marçal\Downloads\Não confirmado 66472.crdownload 2016-05-29 11:19 - 2016-05-29 11:19 - 00000000 ____D C:\Users\Todos os Usuários\Echobit 2016-05-29 11:19 - 2016-05-29 11:19 - 00000000 ____D C:\Users\Marçal\AppData\Local\Echobit 2016-05-29 11:19 - 2016-05-29 11:19 - 00000000 ____D C:\ProgramData\Echobit 2016-05-29 11:19 - 2016-05-29 11:19 - 00000000 ____D C:\Program Files\Echobit 2016-05-29 07:06 - 2016-05-29 07:41 - 00000000 ___DC C:\GOG Games 2016-05-28 20:59 - 2016-05-28 21:42 - 00000157 _____ C:\Users\Marçal\Desktop\Novo Documento de Texto (2).txt 2016-05-28 17:11 - 2016-05-28 17:12 - 00002183 _____ C:\Users\paulinho\Desktop\FNaF word.lnk 2016-05-28 16:24 - 2016-05-28 16:25 - 00000000 ____D C:\jogos 2016-05-28 13:17 - 2016-05-28 20:42 - 00000000 ____D C:\Users\paulinho\AppData\Local\VirtualStore 2016-05-28 12:59 - 2016-05-28 12:09 - 346151041 _____ C:\Users\Public\FNaF_World.exe 2016-05-28 12:44 - 2016-05-28 12:44 - 00000000 ____D C:\Users\paulinho\AppData\Local\TeamViewer 2016-05-28 12:06 - 2005-04-21 10:19 - 05803734 _____ C:\Users\paulinho\Desktop\Movie Mentrix 4,5.wmv 2016-05-26 21:27 - 2016-05-26 21:28 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Local\CrashDumps 2016-05-26 21:25 - 2016-05-27 14:38 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Local\LogMeIn Hamachi 2016-05-26 21:25 - 2016-05-26 21:25 - 00121344 _____ C:\Users\Jogos.Marçal-PC\AppData\Local\GDIPFONTCACHEV1.DAT 2016-05-26 21:25 - 2016-05-26 21:25 - 00001393 _____ C:\Users\Jogos.Marçal-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2016-05-26 21:25 - 2016-05-26 21:25 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Roaming\AVAST Software 2016-05-26 21:25 - 2016-05-26 21:25 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Roaming\ATI 2016-05-26 21:25 - 2016-05-26 21:25 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Local\LogMeIn 2016-05-26 21:25 - 2016-05-26 21:25 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Local\ATI 2016-05-26 21:24 - 2016-05-27 14:33 - 00001284 __RSH C:\Users\Jogos.Marçal-PC\ntuser.pol 2016-05-26 21:24 - 2016-05-27 14:33 - 00000000 ____D C:\Users\Jogos.Marçal-PC 2016-05-26 21:24 - 2016-05-26 21:25 - 00001387 _____ C:\Users\Jogos.Marçal-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-05-26 21:24 - 2016-05-26 21:24 - 00002221 _____ C:\Users\Jogos.Marçal-PC\Desktop\Google Chrome.lnk 2016-05-26 21:24 - 2016-05-26 21:24 - 00000020 ___SH C:\Users\Jogos.Marçal-PC\ntuser.ini 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Modelos 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Meus documentos 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Menu Iniciar 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Documents\Minhas músicas 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Documents\Minhas imagens 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Documents\Meus vídeos 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Dados de aplicativos 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Configurações locais 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\AppData\Local\Histórico 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\AppData\Local\Dados de aplicativos 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Ambiente de rede 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 _SHDL C:\Users\Jogos.Marçal-PC\Ambiente de impressão 2016-05-26 21:24 - 2016-05-26 21:24 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Local\Google 2016-05-26 21:24 - 2014-04-23 12:11 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Roaming\Macromedia 2016-05-26 21:24 - 2009-07-14 04:45 - 00000000 ____D C:\Users\Jogos.Marçal-PC\AppData\Roaming\Media Center Programs 2016-05-25 21:28 - 2016-05-25 21:28 - 00071784 _____ C:\Users\Marçal\Downloads\The.Flash.2014.S02E23.720p.HDTV.X264-DIMENSION[rartv]-[rarbg.com].torrent 2016-05-25 21:28 - 2016-05-25 21:28 - 00020114 _____ C:\Users\Marçal\Downloads\The.Flash.2014.S02E23.HDTV.x264-LOL[rartv]-[rarbg.com].torrent 2016-05-23 21:17 - 2016-04-09 09:59 - 00087992 _____ C:\Users\Marçal\Desktop\04032016.pdf 2016-05-23 21:17 - 2015-12-06 13:17 - 00076341 _____ C:\Users\Marçal\Desktop\05112015.pdf 2016-05-23 21:17 - 2015-04-18 11:21 - 00076521 _____ C:\Users\Marçal\Desktop\07032015.PDF 2016-05-23 21:14 - 2016-06-04 08:46 - 00000000 ____D C:\Users\Marçal\AppData\Local\LogMeIn Hamachi 2016-05-23 21:14 - 2016-05-23 21:14 - 00000000 ____D C:\Users\Marçal\AppData\Local\LogMeIn 2016-05-22 20:11 - 2016-05-22 20:12 - 00000059 _____ C:\Users\paulinho\Desktop\senha hamachi.txt 2016-05-22 20:07 - 2016-05-30 08:12 - 00000000 ____D C:\Users\paulinho\AppData\Local\LogMeIn Hamachi 2016-05-22 20:07 - 2016-05-22 20:07 - 00000000 ____D C:\Users\Todos os Usuários\LogMeIn 2016-05-22 20:07 - 2016-05-22 20:07 - 00000000 ____D C:\Users\paulinho\AppData\Local\LogMeIn 2016-05-22 20:07 - 2016-05-22 20:07 - 00000000 ____D C:\ProgramData\LogMeIn 2016-05-22 20:02 - 2016-05-22 20:05 - 08785920 _____ C:\Users\paulinho\Downloads\hamachi.msi 2016-05-21 15:06 - 2016-05-21 15:06 - 00174077 _____ C:\Users\paulinho\Downloads\watch.htm 2016-05-20 23:01 - 2016-05-20 23:01 - 00001144 _____ C:\Users\Marçal\Desktop\H264WebCam 3.71.lnk 2016-05-20 23:01 - 2016-05-20 23:01 - 00001144 _____ C:\Users\Convidado\Desktop\H264WebCam 3.71.lnk 2016-05-20 23:01 - 2016-05-20 23:01 - 00001144 _____ C:\Users\Administrador\Desktop\H264WebCam 3.71.lnk 2016-05-20 23:01 - 2016-05-20 23:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimHillOne 2016-05-20 23:01 - 2016-05-20 23:01 - 00000000 ____D C:\Program Files (x86)\TimHillOne 2016-05-20 23:01 - 2006-01-13 08:23 - 00364032 _____ (CoreCodec) C:\Windows\SysWOW64\CoreAVCDecoder.ax 2016-05-20 23:01 - 2004-07-09 09:47 - 00167936 _____ C:\Windows\SysWOW64\CoreAACDecoder.ax 2016-05-20 23:00 - 2016-05-20 23:01 - 04589067 _____ C:\Users\Marçal\Downloads\h264 webcam deluxe 3.71 + serial [fugitive][h33t].rar 2016-05-20 22:56 - 2016-05-20 22:56 - 00000015 _____ C:\Users\Marçal\Desktop\Novo Documento de Texto.txt 2016-05-20 22:54 - 2016-05-20 22:55 - 04589475 _____ C:\Users\Marçal\Downloads\H264 WebCam Deluxe v3.7 + Serial (1).rar 2016-05-20 22:37 - 2016-05-20 22:38 - 04589475 _____ C:\Users\Marçal\Downloads\H264 WebCam Deluxe v3.7 + Serial.rar 2016-05-20 22:30 - 2016-05-20 22:30 - 00003112 _____ C:\Windows\System32\Tasks\{838304A8-0109-42D8-BD00-3F5204B2E5FD} 2016-05-20 22:19 - 2006-10-12 13:30 - 00188416 _____ (Unreal Streaming Technologies Group.) C:\Windows\SysWOW64\UScreenCapture.ax 2016-05-20 22:12 - 2016-05-20 22:16 - 05111341 _____ (TimHillOne Software ) C:\Users\Marçal\Downloads\H264WebCam_Setup.exe 2016-05-20 22:08 - 2016-05-20 22:10 - 710435717 _____ C:\Users\paulinho\Downloads\Tomb.Raider.Anniversary.PC.GAME.NTG.FULL.RIP.zip 2016-05-20 22:07 - 2016-05-20 22:13 - 00000000 ____D C:\Users\paulinho\Downloads\Tomb.Raider.Anniversary.PC.GAME.NTG.FULL.RIP 2016-05-20 21:59 - 2016-05-20 22:00 - 01642232 _____ (NCH Software) C:\Users\Marçal\Downloads\debutsetup.exe 2016-05-20 21:21 - 2016-05-20 21:21 - 00001460 _____ C:\Users\Marçal\Desktop\VideoView - Atalho.lnk 2016-05-20 21:00 - 2007-06-28 09:45 - 00632704 _____ (Syntek) C:\Windows\system32\Drivers\StkCMini.sys 2016-05-20 21:00 - 2007-06-22 09:10 - 00053248 _____ (Syntek America Inc.) C:\Windows\SysWOW64\StkCProp.ax 2016-05-20 21:00 - 2007-02-12 09:45 - 00024576 _____ (Syntek America Inc.) C:\Windows\system32\StkCSrv.exe 2016-05-20 21:00 - 2006-12-20 07:08 - 06921856 _____ (Syntek America Inc.) C:\Windows\system32\Drivers\StkCPipe.sys 2016-05-20 21:00 - 2006-12-12 08:22 - 00057344 _____ () C:\Windows\StkUnist.exe 2016-05-20 21:00 - 2006-12-10 06:47 - 00069632 _____ (Syntek America Inc.) C:\Windows\system32\StkCWIA.dll 2016-05-20 21:00 - 2006-12-10 06:33 - 00049152 _____ (Syntek America Inc.) C:\Windows\system32\StkSSrv.dll 2016-05-20 21:00 - 2006-12-10 06:25 - 00106496 _____ (Syntek America Inc.) C:\Windows\StkC112X.exe 2016-05-20 21:00 - 2005-12-26 07:11 - 00172032 _____ (Syntek Corporation) C:\Windows\VideoView.exe 2016-05-14 11:08 - 2016-05-14 11:09 - 02975649 _____ C:\Users\Marçal\Downloads\ApostiladeFlash.By.baixedetudo.net.pdf 2016-05-14 10:56 - 2016-05-14 10:56 - 00015954 _____ C:\Users\Marçal\Downloads\GOOSEB.rar.rar 2016-05-13 19:43 - 2016-05-13 19:43 - 00000000 ____D C:\Users\Marçal\AppData\Local\TeamViewer 2016-05-13 19:41 - 2016-05-14 10:31 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\TeamViewer 2016-05-13 19:41 - 2016-05-13 19:41 - 00001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk 2016-05-13 19:40 - 2016-06-04 15:47 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2016-05-13 19:37 - 2016-05-13 19:37 - 00001070 _____ C:\Users\Marçal\Desktop\WNetWatcher - Atalho.lnk 2016-05-12 05:32 - 2016-05-20 22:28 - 00000000 ____D C:\Program Files (x86)\No-IP 2016-05-12 05:32 - 2016-05-12 05:32 - 00000000 ____D C:\Users\Todos os Usuários\Vitalwerks 2016-05-12 05:32 - 2016-05-12 05:32 - 00000000 ____D C:\Users\Marçal\AppData\Local\Vitalwerks 2016-05-12 05:32 - 2016-05-12 05:32 - 00000000 ____D C:\ProgramData\Vitalwerks 2016-05-11 22:33 - 2016-05-11 22:33 - 00000000 ____D C:\Users\Todos os Usuários\Google 2016-05-11 22:33 - 2016-05-11 22:33 - 00000000 ____D C:\ProgramData\Google 2016-05-11 22:30 - 2016-05-11 22:31 - 09953280 _____ C:\Users\Marçal\Downloads\chromeremotedesktophost.msi 2016-05-11 22:11 - 2016-05-11 22:11 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2016-05-10 20:43 - 2016-05-10 20:43 - 00000000 ____D C:\Users\paulinho\Desktop\runtime 2016-05-10 20:33 - 2016-06-08 20:50 - 00001080 _____ C:\Users\paulinho\Desktop\nativelog.txt 2016-05-10 20:33 - 2016-05-10 20:44 - 00000000 ____D C:\Users\paulinho\Desktop\game 2016-05-08 12:07 - 2016-05-08 12:07 - 00000000 ____D C:\Users\Marçal\AppData\Local\Trolltech 2016-05-08 07:30 - 2016-05-08 07:31 - 508860217 _____ C:\Users\Marçal\Downloads\www.stockrom.net_Galaxy_Fame_S6801b.rar 2016-05-08 06:27 - 2016-05-08 12:08 - 00000000 ____D C:\Users\Marçal\AppData\Local\Mediatek 2016-05-07 20:34 - 2016-05-08 12:08 - 00000000 ____D C:\Users\Todos os Usuários\SP_FT_Logs 2016-05-07 20:34 - 2016-05-08 12:08 - 00000000 ____D C:\ProgramData\SP_FT_Logs 2016-05-06 16:29 - 2016-05-06 16:29 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\Drivers\hamachi.sys 2016-05-06 06:08 - 2016-05-06 06:11 - 41681060 _____ C:\Users\Marçal\Downloads\SP_Flash_Tool_v5.1524.00.000.zip 2016-05-05 21:33 - 2016-05-05 21:34 - 00000000 ____D C:\Users\Marçal\Downloads\Invasao.a.Londres.2016.TS.x264.DUBLADO-WWW.FILMESETORRENT.COM 2016-05-05 21:32 - 2016-05-05 21:35 - 00000000 ____D C:\Users\Marçal\Downloads\[WWW.FILMESETORRENT.COM]Batman.vs.Superman.A.Origem.da.Justica.2016.1080p.HDRip.x264.Dual-NDL 2016-05-04 21:37 - 2016-05-04 21:37 - 00033525 _____ C:\Users\paulinho\Downloads\LaudoPatologia-277225HF.pdf 2016-05-04 21:29 - 2016-05-04 21:29 - 00483824 _____ (IBM Corp.) C:\Users\paulinho\Downloads\RapportSetup.exe 2016-05-04 21:29 - 2016-05-04 21:29 - 00000000 ____D C:\Users\Todos os Usuários\Trusteer 2016-05-04 21:29 - 2016-05-04 21:29 - 00000000 ____D C:\ProgramData\Trusteer 2016-05-04 21:24 - 2016-05-04 21:28 - 04865372 _____ C:\Users\paulinho\Downloads\os 3 arquivos.rar 2016-05-04 20:55 - 2016-05-04 20:56 - 00000000 ____D C:\Users\paulinho\Downloads\.minecraft 2016-05-04 20:51 - 2016-05-04 20:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf 2016-05-04 20:47 - 2016-05-04 20:50 - 10813502 _____ C:\Users\paulinho\Downloads\philz_touch_6.41.6-klte.tar.md5 2016-05-04 05:59 - 2016-05-04 06:00 - 37930288 _____ (Samsung Electronics Co., Ltd.) C:\Users\Marçal\Downloads\Smart_Switch_PC_Setup.exe 2016-05-04 05:57 - 2016-01-08 05:51 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll 2016-05-04 05:57 - 2016-01-08 05:51 - 00213088 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudserd.sys 2016-05-04 05:57 - 2016-01-08 05:51 - 00213088 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys 2016-05-04 05:57 - 2016-01-08 05:51 - 00120416 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys 2016-05-04 05:54 - 2016-05-04 06:06 - 00000000 ____D C:\Users\Marçal\AppData\Local\Samsung 2016-05-04 05:54 - 2016-05-04 06:04 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\Samsung 2016-05-04 05:54 - 2016-05-04 05:54 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2016-05-04 05:53 - 2016-05-04 05:53 - 00000000 ____D C:\Users\Marçal\Documents\samsung 2016-05-04 05:49 - 2016-05-04 06:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2016-05-04 05:49 - 2013-12-30 10:53 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll 2016-05-04 05:49 - 2013-12-30 10:53 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\SysWOW64\secman.dll 2016-05-04 05:48 - 2016-05-04 06:06 - 00000000 ____D C:\Program Files (x86)\Samsung 2016-05-04 05:40 - 2016-05-04 05:43 - 80089472 _____ (Samsung Electronics Co., Ltd.) C:\Users\Marçal\Downloads\KiesSetup.exe 2016-05-04 05:02 - 2016-05-04 05:03 - 00000000 ____D C:\Users\Marçal\Downloads\S6790LUBAMK2_S6790LZVVAMK2_ZVV 2016-05-03 22:21 - 2016-05-03 22:21 - 00001476 _____ C:\Users\Marçal\Downloads\Capitão America- Guerra Civil Portuguese subtitle [Dinafilm].zip 2016-05-03 22:19 - 2016-05-03 22:19 - 00000000 ____D C:\Users\Marçal\Desktop\odin 2016-05-03 22:14 - 2016-05-08 06:26 - 00000000 ___DC C:\Users\Marçal\Desktop\Odin_v3.09 2016-05-03 21:46 - 2016-05-03 23:50 - 622141730 _____ C:\Users\Marçal\Downloads\S6790LUBAMK2_S6790LZVVAMK2_ZVV.zip 2016-05-03 21:21 - 2016-05-03 21:21 - 00000000 ____D C:\Program Files\SAMSUNG 2016-05-03 21:20 - 2016-05-04 06:06 - 00000000 ____D C:\Users\Todos os Usuários\Samsung 2016-05-03 21:20 - 2016-05-04 06:06 - 00000000 ____D C:\ProgramData\Samsung 2016-05-03 21:02 - 2016-05-03 21:13 - 16044077 _____ C:\Users\Marçal\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones.zip 2016-05-02 21:38 - 2016-05-02 21:38 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromecast 2016-05-02 21:12 - 2016-06-08 22:23 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2481303459-2005518798-85030140-1006UA.job 2016-05-02 21:12 - 2016-06-07 13:23 - 00001038 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2481303459-2005518798-85030140-1006Core.job 2016-05-02 21:12 - 2016-05-11 13:18 - 00004070 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2481303459-2005518798-85030140-1006UA 2016-05-02 21:12 - 2016-05-11 13:18 - 00003674 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2481303459-2005518798-85030140-1006Core 2016-05-02 21:12 - 2016-05-02 21:12 - 00987728 _____ (Google Inc.) C:\Users\paulinho\Downloads\chromecastinstaller.exe 2016-05-01 21:53 - 2012-02-28 18:51 - 50554552 _____ C:\Users\Marçal\Desktop\DSCF3002.AVI 2016-05-01 17:24 - 2016-05-01 17:25 - 01247112 _____ (Mojang) C:\Users\paulinho\Desktop\youtube.exe 2016-05-01 11:45 - 2016-05-01 11:45 - 00000000 ____D C:\Users\Marçal\Downloads\[www.torrentdosfilmes.com]Capitão.América.Guerra.Civil.2016.CAM.Dublado 2016-04-30 20:44 - 2016-04-30 20:44 - 00000997 _____ C:\Users\paulinho\Desktop\Dolphin.lnk 2016-04-30 20:28 - 2016-04-30 20:28 - 00000997 _____ C:\Users\Marçal\Desktop\Dolphin.exe - Atalho (3).lnk 2016-04-30 20:20 - 2016-04-30 20:20 - 00043094 _____ C:\Users\Marçal\Downloads\zootopia.(2016).por.1cd.(6609366).zip 2016-04-30 20:19 - 2016-04-30 20:19 - 00016868 _____ C:\Users\Marçal\Downloads\6609366.htm 2016-04-30 18:57 - 2016-06-07 06:13 - 00000232 _____ C:\Users\Marçal\Desktop\batman.txt 2016-04-30 18:48 - 2016-04-30 20:20 - 00000000 ____D C:\Users\Marçal\Downloads\Zootopia.Essa.Cidade.e.o.Bicho.2016.HDRip.XViD-Dublado-WWW.FILMESETORRENT.COM 2016-04-30 18:47 - 2016-04-30 18:47 - 00016185 _____ C:\Users\Marçal\Downloads\Zootopia.Essa.Cidade.e.o.Bicho.2016.HDRip.Dublado.rar 2016-04-30 14:07 - 2016-04-30 14:07 - 00002380 _____ C:\Users\paulinho\Desktop\Scribblenauts unmask.lnk 2016-04-30 13:37 - 2016-04-30 13:37 - 00022850 _____ C:\Users\Marçal\Downloads\[gamesviatorrent.com]THE LEGEND OF ZELDA SKYWARD SWORD.torrent 2016-04-30 13:28 - 2016-04-30 13:28 - 00011577 _____ C:\Users\Marçal\Downloads\[gamesviatorent.com]new super-metroid.torrent 2016-04-30 13:26 - 2016-04-30 13:26 - 00017309 _____ C:\Users\Marçal\Downloads\[gamesviatorent.com]daisenryakudaitouakouboushi3jpnps3-h..torrent 2016-04-30 10:41 - 2016-04-30 10:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\5th Cell Media 2016-04-30 10:40 - 2016-04-30 10:40 - 00000000 ____D C:\Program Files (x86)\5th Cell Media 2016-04-30 10:11 - 2016-04-30 10:11 - 00017860 _____ C:\Users\Marçal\Downloads\[gamesviatorent.com]wiimms-mario-kart-fun-2014-11-multi2wii-scrubberusaraiden79.torrent 2016-04-30 09:51 - 2016-04-30 12:42 - 00000000 ____D C:\Users\Marçal\Downloads\Scribblenauts Unmasked A DC Comics Adventure [MULTI7][PCDVD][SKIDROW][WwW.GamesTorrents.CoM] 2016-04-30 09:50 - 2016-04-30 09:50 - 00013895 _____ C:\Users\Marçal\Downloads\[gamesviatorrent.com].scribblenauts-unmasked-a-dc-comics-adventure-multi7.torrent 2016-04-30 08:28 - 2016-04-30 09:06 - 1223694507 ____R C:\Users\Marçal\Downloads\M0gl1-0-m3n1n0-l0b0-www.FilmesOnlineHD1.com.mp4 2016-04-29 22:09 - 2016-04-29 22:18 - 00000000 ____D C:\Users\Marçal\Downloads\Ressureição 2016 WEB-DL 720p Legendado - WWW.THEPIRTEFILMES.COM 2016-04-29 21:56 - 2016-04-29 21:56 - 00000000 ____D C:\Users\Marçal\Downloads\Até que a Sorte nos Separe 3 - A Falência Final 720p (2016) Nacional BluRay 5.1 -- By - Lucas Firmo 2016-04-29 21:38 - 2016-04-29 21:38 - 00000000 ____D C:\Users\Marçal\Desktop\pic 2016-04-29 21:31 - 2016-04-29 21:33 - 00001906 _____ C:\Users\Convidado\Desktop\Detonadores na Internet.lnk 2016-04-29 21:31 - 2016-04-29 21:33 - 00001906 _____ C:\Users\Administrador\Desktop\Detonadores na Internet.lnk 2016-04-29 21:31 - 2016-04-29 21:33 - 00001437 _____ C:\Users\Convidado\Desktop\Configurar Versão do Patch.lnk 2016-04-29 21:31 - 2016-04-29 21:33 - 00001437 _____ C:\Users\Administrador\Desktop\Configurar Versão do Patch.lnk 2016-04-29 21:31 - 2016-04-29 21:33 - 00001413 _____ C:\Users\Convidado\Desktop\DET Patch E.lnk 2016-04-29 21:31 - 2016-04-29 21:33 - 00001413 _____ C:\Users\Administrador\Desktop\DET Patch E.lnk 2016-04-29 20:12 - 2016-04-29 20:12 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\java 2016-04-29 20:09 - 2016-04-29 20:09 - 00000000 ____D C:\Users\paulinho\Downloads\runtime 2016-04-29 19:50 - 2016-04-29 20:41 - 84872693 _____ C:\Users\paulinho\Downloads\minecraft.1.6.2+OreSpawn+Morph.rar 2016-04-29 19:47 - 2016-05-04 20:59 - 00001094 _____ C:\Users\paulinho\Downloads\nativelog.txt 2016-04-29 19:47 - 2016-04-29 20:12 - 00000000 ____D C:\Users\paulinho\Downloads\game 2016-04-29 06:01 - 2016-06-08 00:02 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\BitComet 2016-04-28 22:31 - 2016-05-15 07:00 - 00000000 ____D C:\Users\Marçal\Downloads\PS2DVD - Mega Man X Collection [USA] [WwW.GamesTorrents.CoM] 2016-04-27 19:08 - 2016-04-27 19:08 - 00076402 _____ C:\Users\paulinho\Desktop\Pedido enviado com sucesso - Walmart.pdf 2016-04-27 12:47 - 2016-04-27 12:47 - 00000000 ____D C:\Windows\SysWOW64\vbox 2016-04-27 12:47 - 2016-04-27 12:47 - 00000000 ____D C:\Windows\system32\vbox 2016-04-27 12:00 - 2016-06-08 22:06 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\BitComet 2016-04-27 12:00 - 2016-04-27 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet 2016-04-27 12:00 - 2016-04-27 12:00 - 00000000 ____D C:\Program Files (x86)\BitComet 2016-04-27 11:58 - 2016-04-27 12:00 - 09862640 _____ C:\Users\paulinho\Downloads\BitComet_1.40_x86_setup.exe 2016-04-26 16:42 - 2016-04-26 20:32 - 00001173 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk 2016-04-26 16:42 - 2016-04-26 16:42 - 00003056 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1461699772 2016-04-26 16:42 - 2016-04-26 16:42 - 00001045 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2016-04-26 12:56 - 2016-04-26 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2016-04-26 12:55 - 2016-04-26 12:55 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2016-04-26 12:55 - 2016-04-26 12:55 - 00166432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2016-04-26 12:55 - 2016-04-26 12:55 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr 2016-04-26 12:55 - 2016-04-26 12:55 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2016-04-26 12:55 - 2016-04-26 12:55 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software 2016-04-26 12:55 - 2016-04-26 12:55 - 00000000 ____D C:\Program Files\Common Files\AV 2016-04-26 12:55 - 2016-04-26 12:54 - 00161760 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys 2016-04-26 12:55 - 2016-04-26 12:54 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2016-04-21 19:02 - 2016-04-21 19:04 - 00001908 _____ C:\Windows\diagwrn.xml 2016-04-21 19:02 - 2016-04-21 19:04 - 00001908 _____ C:\Windows\diagerr.xml 2016-04-16 12:02 - 2016-05-20 22:30 - 00000000 ____D C:\Program Files (x86)\Recolored 2016-04-16 11:58 - 2016-04-16 11:58 - 00000914 _____ C:\Windows\MEPOR.INI 2016-04-16 11:58 - 2016-04-16 11:58 - 00000762 _____ C:\Users\paulinho\Desktop\DIC Michaelis Escolar - Português.LNK 2016-04-16 11:58 - 2016-04-16 11:58 - 00000762 _____ C:\Users\Convidado\Desktop\DIC Michaelis Escolar - Português.LNK 2016-04-16 11:58 - 2016-04-16 11:58 - 00000762 _____ C:\Users\Administrador\Desktop\DIC Michaelis Escolar - Português.LNK 2016-04-16 11:58 - 2016-04-16 11:58 - 00000000 ___DC C:\DICESCOLAR 2016-04-16 11:58 - 2016-04-16 11:58 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DIC Michaelis Escolar 2016-04-16 11:58 - 2016-04-16 11:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DIC Michaelis Escolar 2016-04-10 07:21 - 2016-04-10 07:21 - 00000000 ____D C:\Users\Marçal\Desktop\fotos 2016-04-09 12:08 - 2016-04-09 12:08 - 00001127 _____ C:\Users\Marçal\Desktop\Cute Screen Recorder Free Version.lnk 2016-04-09 11:22 - 2016-04-09 11:22 - 00001953 _____ C:\Users\Marçal\Desktop\PCSX2 1.2.1 (r5875).lnk 2016-03-27 19:49 - 2016-03-27 19:49 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\UltraVNC 2016-03-26 13:51 - 2016-03-26 13:51 - 00001231 _____ C:\Users\paulinho\Desktop\GameBoy Advance VisualBoyAdvance - Atalho.lnk 2016-03-26 08:31 - 2016-03-26 08:31 - 00003000 _____ C:\Windows\System32\Tasks\{B0DA4A97-BBD7-420B-A826-208445AF902C} 2016-03-26 08:31 - 2016-03-26 08:31 - 00003000 _____ C:\Windows\System32\Tasks\{6FC8BE1D-DE86-4D6D-88F6-07B7355F210F} 2016-03-26 08:31 - 2016-03-26 08:31 - 00003000 _____ C:\Windows\System32\Tasks\{3AAB078B-A8E2-46BD-B81B-724E510BE5D6} 2016-03-25 20:56 - 2016-03-25 20:56 - 00000000 ____D C:\Users\Marçal\Desktop\igreja 2016-03-25 14:42 - 2016-04-24 20:03 - 00000000 ____D C:\Users\paulinho\Desktop\Gibis 2016-03-22 20:32 - 2016-03-22 20:32 - 00001694 _____ C:\Users\paulinho\Desktop\titans.lnk 2016-03-20 18:51 - 2016-03-20 18:51 - 00000000 ____D C:\Users\Marçal\AppData\Local\Skyrim 2016-03-20 15:37 - 2016-03-20 15:37 - 00003040 _____ C:\Windows\System32\Tasks\{7D3EA807-7286-4FCB-AB49-BBEA42D1B726} 2016-03-20 15:21 - 2016-03-20 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911 2016-03-20 11:22 - 2016-03-20 11:22 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\UltraVNC 2016-03-20 11:21 - 2016-03-20 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraVNC 2016-03-20 11:21 - 2016-03-20 11:21 - 00000000 ____D C:\Program Files\uvnc bvba 2016-03-19 11:09 - 2016-03-19 11:17 - 00000000 ____D C:\Program Files (x86)\LEGO Marvels Avengers 2016-03-17 17:28 - 2016-03-17 17:28 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio 2016-03-17 17:28 - 2005-12-19 05:20 - 00238536 ___RH C:\Windows\SysWOW64\1482 2016-03-17 17:28 - 2005-11-30 23:35 - 00039276 ___RH C:\Windows\SysWOW64\1481 2016-03-17 17:28 - 2005-10-05 23:00 - 00000692 ___RH C:\Windows\SysWOW64\1483 ==================== Três Meses Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-06-08 22:23 - 2015-07-14 23:23 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache 2016-06-08 22:23 - 2015-07-14 23:23 - 00000000 ____D C:\ProgramData\Package Cache 2016-06-08 22:16 - 2009-07-14 01:45 - 00014192 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-06-08 22:16 - 2009-07-14 01:45 - 00014192 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-06-08 22:13 - 2013-12-12 06:27 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-06-08 22:08 - 2013-12-16 13:02 - 00031088 _____ (GbPlugin NDIS Device Driver) C:\Windows\SysWOW64\Drivers\gbpndisrd.sys 2016-06-08 22:08 - 2013-12-16 13:02 - 00010266 _____ C:\Windows\SysWOW64\Drivers\ndisrd.cat 2016-06-08 22:08 - 2013-12-16 13:02 - 00001402 _____ C:\Windows\SysWOW64\Drivers\gas.cer 2016-06-08 22:08 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-06-08 22:07 - 2013-12-12 06:27 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-06-08 21:42 - 2013-12-13 06:18 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\vlc 2016-06-07 23:58 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache 2016-06-07 23:20 - 2013-12-20 08:20 - 00002161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-06-07 22:49 - 2009-07-29 13:08 - 02497558 _____ C:\Windows\system32\prfh0416.dat 2016-06-07 22:49 - 2009-07-29 13:08 - 01840696 _____ C:\Windows\system32\prfc0416.dat 2016-06-07 22:49 - 2009-07-14 02:13 - 00006218 _____ C:\Windows\system32\PerfStringBackup.INI 2016-06-07 21:48 - 2015-06-16 22:03 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\DAEMON Tools Lite 2016-06-07 21:19 - 2015-05-01 06:58 - 00001290 __RSH C:\Users\paulinho\ntuser.pol 2016-06-07 21:19 - 2015-05-01 06:58 - 00000000 ____D C:\Users\paulinho 2016-06-07 21:01 - 2014-07-02 21:41 - 00001286 __RSH C:\Users\Marçal\ntuser.pol 2016-06-07 21:01 - 2013-12-11 16:27 - 00000000 ____D C:\Users\Marçal 2016-06-07 17:08 - 2015-12-30 18:00 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\.minecraft 2016-06-07 05:48 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\Cursors 2016-06-07 05:39 - 2013-12-18 12:40 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\BitTorrent 2016-06-06 22:42 - 2013-12-21 22:59 - 00000000 ____D C:\Games 2016-06-06 22:26 - 2014-01-02 10:27 - 00000000 ____D C:\Windows\SysWOW64\directx 2016-06-06 22:20 - 2013-12-16 09:33 - 00000000 ____D C:\Users\Marçal\AppData\LocalLow\Temp 2016-06-06 20:17 - 2013-12-12 06:27 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2016-06-05 17:25 - 2016-01-06 21:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2016-06-05 17:25 - 2009-07-14 02:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-06-04 19:05 - 2015-02-21 07:51 - 00000000 ____D C:\Users\Marçal\AppData\Local\CrashDumps 2016-05-29 21:13 - 2013-12-11 21:14 - 00121728 _____ C:\Users\Marçal\AppData\Local\GDIPFONTCACHEV1.DAT 2016-05-29 19:16 - 2015-05-15 20:43 - 00121728 _____ C:\Users\paulinho\AppData\Local\GDIPFONTCACHEV1.DAT 2016-05-29 19:14 - 2009-07-14 01:45 - 05309512 _____ C:\Windows\system32\FNTCACHE.DAT 2016-05-29 19:09 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf 2016-05-28 16:28 - 2015-04-10 20:00 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\MMFApplications 2016-05-26 21:29 - 2013-12-11 21:45 - 00000000 ____D C:\Users\Marçal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2016-05-26 21:22 - 2009-07-14 00:20 - 00000000 ___HD C:\Windows\system32\GroupPolicyUsers 2016-05-24 12:29 - 2015-05-15 20:09 - 00000000 ____D C:\Users\paulinho\AppData\Local\CrashDumps 2016-05-22 22:03 - 2015-05-16 13:06 - 00000000 ____D C:\Users\paulinho\AppData\Roaming\vlc 2016-05-22 15:12 - 2009-07-13 23:34 - 00000777 _____ C:\Windows\win.ini 2016-05-22 12:15 - 2014-09-21 08:24 - 00000000 ____D C:\Users\Marçal\.VirtualBox 2016-05-21 14:55 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF 2016-05-20 22:29 - 2013-12-12 06:27 - 00000000 ____D C:\Program Files (x86)\Google 2016-05-20 22:14 - 2014-10-18 09:32 - 00000000 ____D C:\Users\Marçal\Documents\Eidos 2016-05-15 01:00 - 2015-05-21 15:00 - 00000000 ____D C:\Users\paulinho\AppData\Local\ElevatedDiagnostics 2016-05-10 21:02 - 2013-12-12 06:27 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-05-10 21:02 - 2013-12-12 06:27 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore ==================== Arquivos na raiz de alguns diretórios ======= 2016-02-17 06:57 - 2016-02-17 07:03 - 0000132 _____ () C:\Users\Marçal\AppData\Roaming\Adobe BMP Format CS5 Prefs 2015-04-18 12:41 - 2015-09-06 07:18 - 0000832 _____ () C:\Users\Marçal\AppData\Roaming\AutoGK.ini 2013-12-13 06:18 - 2015-12-15 22:01 - 0000139 _____ () C:\Users\Marçal\AppData\Roaming\default.rss 2014-01-03 20:24 - 2014-01-03 20:24 - 0000234 _____ () C:\Users\Marçal\AppData\Roaming\del.bat 2013-12-16 10:08 - 2013-12-16 10:40 - 0099384 _____ () C:\Users\Marçal\AppData\Roaming\inst.exe 2013-12-16 10:08 - 2013-12-16 10:40 - 0007859 _____ () C:\Users\Marçal\AppData\Roaming\pcouffin.cat 2013-12-16 10:08 - 2013-12-16 10:40 - 0001167 _____ () C:\Users\Marçal\AppData\Roaming\pcouffin.inf 2013-12-16 10:08 - 2013-12-16 10:40 - 0000055 _____ () C:\Users\Marçal\AppData\Roaming\pcouffin.log 2013-12-16 10:08 - 2013-12-16 10:40 - 0082816 _____ (VSO Software) C:\Users\Marçal\AppData\Roaming\pcouffin.sys 2013-12-16 12:59 - 2013-12-16 12:59 - 0018047 _____ () C:\Users\Marçal\AppData\Roaming\unins000.dat 2013-12-16 12:59 - 2013-12-16 12:59 - 0716942 _____ () C:\Users\Marçal\AppData\Roaming\unins000.exe 2013-12-16 15:38 - 2016-03-27 22:24 - 0001189 _____ () C:\Users\Marçal\AppData\Roaming\vso_ts_preview.xml 2015-01-15 22:29 - 2015-03-08 11:30 - 0003584 _____ () C:\Users\Marçal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-01-27 12:05 - 2014-01-27 12:05 - 0007597 _____ () C:\Users\Marçal\AppData\Local\Resmon.ResmonCfg 2014-01-31 13:07 - 2014-01-31 13:07 - 0000057 _____ () C:\ProgramData\Ament.ini Arquivos para serem movidos ou deletados: ==================== C:\Users\Public\FNaF_World.exe Alguns arquivos em TEMP: ==================== C:\Users\Marçal\AppData\Local\Temp\AcDeltree.exe C:\Users\Marçal\AppData\Local\Temp\AutoRun.exe C:\Users\Marçal\AppData\Local\Temp\AutoRunGUI.dll C:\Users\Marçal\AppData\Local\Temp\AVGTBInstall.exe C:\Users\Marçal\AppData\Local\Temp\drm_dialogs.dll C:\Users\Marçal\AppData\Local\Temp\drm_dyndata_7380012.dll C:\Users\Marçal\AppData\Local\Temp\EAInstall.dll C:\Users\Marçal\AppData\Local\Temp\eauninstall.exe C:\Users\Marçal\AppData\Local\Temp\EBU1C78.EXE C:\Users\Marçal\AppData\Local\Temp\EBU1D33.DLL C:\Users\Marçal\AppData\Local\Temp\EBU7DC7.EXE C:\Users\Marçal\AppData\Local\Temp\EBU8594.DLL C:\Users\Marçal\AppData\Local\Temp\First15.exe C:\Users\Marçal\AppData\Local\Temp\ose00000.exe C:\Users\Marçal\AppData\Local\Temp\QuickStores_Unlocker.exe C:\Users\Marçal\AppData\Local\Temp\setuphra.exe C:\Users\Marçal\AppData\Local\Temp\setup_nex_.exe C:\Users\Marçal\AppData\Local\Temp\The Sims 2_uninst.exe C:\Users\Marçal\AppData\Local\Temp\vlc-2.1.2-win32.exe C:\Users\Marçal\AppData\Local\Temp\VP6Install.exe C:\Users\Marçal\AppData\Local\Temp\VP6VFW.dll C:\Users\Marçal\AppData\Local\Temp\_is6D5.exe C:\Users\Marçal\AppData\Local\Temp\_is86FF.exe C:\Users\Marçal\AppData\Local\Temp\{66B47A5E-7EFF-4028-9BA5-10FD35718DA7}-33.0.1750.154_chrome_installer.exe C:\Users\Marçal\AppData\Local\Temp\{8538599A-D4EC-485F-8305-6836DF57D8DE}-41.0.2272.118_chrome_installer.exe C:\Users\paulinho\AppData\Local\Temp\bitcomet_mpcstar.exe C:\Users\paulinho\AppData\Local\Temp\eauninstall.exe C:\Users\paulinho\AppData\Local\Temp\Need for Speed Underground 2_uninst.exe ==================== Bamital & volsnap ================= (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2016-06-07 00:31 ==================== Fim de FRST.txt ============================