Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 21-12-2016
Executado por vinicius (administrador) em VINICIUS-PC (23-12-2016 11:28:28)
Executando a partir de C:\Users\vinicius\Downloads
Perfis Carregados: vinicius (Perfis Disponíveis: vinicius)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 9 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
() C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Samsung) C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
() C:\Windows\SetDisplayResolution.exe
(BitTorrent Inc.) C:\Users\vinicius\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\vinicius\AppData\Roaming\uTorrent\updates\3.4.9_43085\utorrentie.exe
(BitTorrent Inc.) C:\Users\vinicius\AppData\Roaming\uTorrent\updates\3.4.9_43085\utorrentie.exe
(Igor Pavlov) C:\Windows\Temp\qorigjsr.exe
(Gold Click Ltd) C:\Users\vinicius\AppData\Roaming\ProxyGate\Cloud.exe
(Gold Click Ltd) C:\Users\vinicius\AppData\Roaming\ProxyGate\PGChk.exe
(Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\regsvr32.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(                                                            ) D:\setup.exe
() C:\Users\vinicius\AppData\Local\Temp\is-UFGMN.tmp\setup.tmp
(                                                            ) D:\setup.exe
() C:\Users\vinicius\AppData\Local\Temp\is-FSMB1.tmp\setup.tmp
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Sid Meiers Civilization VI\_CommonRedist\vcredist\2015\vc_redist.x64.exe
(Microsoft Corporation) C:\Program Files\Sid Meiers Civilization VI\_CommonRedist\vcredist\2015\vc_redist.x64.exe
(Microsoft Corporation) C:\Windows\System32\wusa.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registro (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13374568 2011-11-24] (Realtek Semiconductor)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-09-15] (Intel(R) Corporation)
HKLM\...\Run: [FreeFallProtection] => C:\Program Files (x86)\STMicroelectronics\Accelerometer\FF_Protection.exe [1208320 2010-12-17] ()
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2776872 2011-08-31] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM-x32\...\RunOnce: [{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}] => C:\ProgramData\Package Cache\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}\VC_redist.x64.exe [821896 2016-12-23] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2016-11-29] (Disc Soft Ltd)
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\Run: [ProxyGate] => C:\Users\vinicius\AppData\Roaming\ProxyGate\MainService.exe [1142880 2016-01-10] (Gold Click Ltd) <===== ATENÇÃO
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\Run: [GoogleChromeAutoLaunch_9DD26201B6C66D28E2F20A3856DF80BA] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1104728 2016-12-08] (Google Inc.)
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\MountPoints2: {d1699dc6-c7d5-11e6-a107-00dbdf0c87cf} - D:\setup.exe
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\MountPoints2: {fa9b96fa-c88c-11e6-b4b1-00dbdf0c87cf} - E:\setup.exe
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\...\MountPoints2: {fa9b9748-c88c-11e6-b4b1-00dbdf0c87cf} - F:\autorun.exe
HKU\S-1-5-18\...\Run: [Ehqtion] => C:\windows\system32\config\systemprofile\AppData\Local\Ehqtion\qorigjsr.exe
HKU\S-1-5-18\...\Run: [IWsoft] => regsvr32.exe C:\windows\system32\config\systemprofile\AppData\Local\IWsoft\nntrehwv.dll <===== ATENÇÃO
HKU\S-1-5-18\...\Run: [Osics] => C:\Windows\SysWOW64\regsvr32.exe C:\windows\system32\config\systemprofile\AppData\Local\Ehqtion\ccrsojnk.dll
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
BootExecute: 

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 189.6.0.132 189.6.0.137
Tcpip\..\Interfaces\{9ACF9878-C1AC-45AB-A2B9-F0B3FD6F4036}: [DhcpNameServer] 189.6.0.132 189.6.0.137

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://samsung.msn.com
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://samsung.msn.com
HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1706895055-2555399755-2880598896-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)

FireFox:
========
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-03-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-21] (Google Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.globo.com/","hxxp://do-search.com/?type=hp&ts=1445170539&z=2e081730efb1852680c6782g8zbzaw4gcm2e8wcc7t&from=dae&uid=hitachixhts545050a7e380_te85113rhzhr9rhzhr9rx"
CHR Profile: C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default [2016-12-23]
CHR Extension: (Google Tradutor) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-12-20]
CHR Extension: (Google Apresentações) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-20]
CHR Extension: (Google Docs) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-20]
CHR Extension: (Google Drive) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-20]
CHR Extension: (Dark Skin for Youtube™) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2016-12-20]
CHR Extension: (YouTube) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-20]
CHR Extension: (Facebook) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2016-12-20]
CHR Extension: (Notificações do Google+) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi [2016-12-20]
CHR Extension: (Telegram) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\clhhggbfdinjmjhajaheehoeibfljjno [2016-12-20]
CHR Extension: (Feedly Notifier) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\egikgfbhipinieabdmcpigejkaomgjgb [2016-12-20]
CHR Extension: (Planilhas do Google) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-20]
CHR Extension: (Text to Speech App) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\foboeiajimhaijdbfnknapkoiadkohio [2016-12-20]
CHR Extension: (Documentos Google off-line) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-20]
CHR Extension: (AdBlock) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-12-20]
CHR Extension: (Twitter Follower) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcghlfjkhaigchnbbkbcgadlnckobaei [2016-12-20]
CHR Extension: (TuneIn Radio) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhkolpgedpldcfmkgbdokgiljfbblpfj [2016-12-20]
CHR Extension: (Google Play Music) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2016-12-20]
CHR Extension: (Notifier for Twitter) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikknnkomiokeodcdkknnhgjmncfiefmn [2016-12-20]
CHR Extension: (Excel Online) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2016-12-20]
CHR Extension: (Panel View for Keep) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb [2016-12-20]
CHR Extension: (PDF to Word Converter App) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\jclipofobaadknkadkpgggmjkebddjam [2016-12-20]
CHR Extension: (Zoho Writer) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeidloagadfcohacebhbkkapgpiddj [2016-12-20]
CHR Extension: (USA TV) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmdmikledakimnemaakakeafbiobaggi [2016-12-20]
CHR Extension: (Flatbook) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\kadbillinepbjlgenaliokdhejdmmlgp [2016-12-20]
CHR Extension: (Flamite) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgobopgcnapcnblkpelgjjblnjjpgejk [2016-12-20]
CHR Extension: (Hangouts do Google) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-12-21]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-12-20]
CHR Extension: (Google Maps) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-12-20]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-20]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2016-12-20]
CHR Extension: (Conversor de áudio) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2016-12-20]
CHR Extension: (WeVideo - Criador e Editor de Vídeos) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgjbfikepgflmlelgfgecmgjnmnmnnb [2016-12-20]
CHR Extension: (Click&Clean App) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2016-12-20]
CHR Extension: (Régua para medir) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pemefhlbiinkcopbapnfghcnjhlgceof [2016-12-20]
CHR Extension: (SpeakIt!) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2016-12-20]
CHR Extension: (Gmail) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-20]
CHR Extension: (Chrome Media Router) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20]
CHR Extension: (WordPress.com Extension) - C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnbbfhcegldppmibabepjfjloachnmjb [2016-12-20]
CHR Profile: C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\Guest Profile [2016-12-22]
CHR Profile: C:\Users\vinicius\AppData\Local\Google\Chrome\User Data\System Profile [2016-12-22]
CHR HKU\S-1-5-21-1706895055-2555399755-2880598896-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-11-29] (Disc Soft Ltd)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2011-09-23] (Diskeeper Corporation)
R2 InstallFilterService; C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe [60928 2010-12-17] () [Arquivo não assinado]
R2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [184320 2011-07-06] (Intel Corporation) [Arquivo não assinado]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-09-15] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-12-21] (Disc Soft Ltd)
R3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-12-21] (Disc Soft Ltd)
R1 excfs; C:\windows\System32\DRIVERS\excfs.sys [23344 2011-09-23] (Diskeeper Corporation)
R0 excsd; C:\windows\System32\DRIVERS\excsd.sys [80688 2011-09-23] (Diskeeper Corporation)
R3 irstrtdv; C:\windows\System32\DRIVERS\irstrtdv.sys [26504 2011-06-15] (Intel Corporation)
R2 SGDrv; C:\windows\System32\DRIVERS\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [60416 2011-01-25] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-12-23 11:28 - 2016-12-23 11:29 - 00020952 _____ C:\Users\vinicius\Downloads\FRST.txt
2016-12-23 11:28 - 2016-12-23 11:28 - 02420736 _____ (Farbar) C:\Users\vinicius\Downloads\FRST64.exe
2016-12-23 11:28 - 2016-12-23 11:28 - 00000000 ____D C:\FRST
2016-12-23 10:41 - 2016-12-23 10:56 - 859646992 _____ (Macrovision Corporation) C:\Users\vinicius\Downloads\the_settlers_7_1.10full.exe
2016-12-23 10:40 - 2016-12-23 10:40 - 00000000 ____D C:\Users\vinicius\AppData\Local\Ubisoft Game Launcher
2016-12-23 10:39 - 2016-12-23 11:23 - 00000000 ____D C:\Users\vinicius\Documents\Settlers7
2016-12-23 10:04 - 2016-12-23 10:04 - 00000000 ____D C:\Users\vinicius\Tracing
2016-12-23 09:57 - 2016-12-23 09:57 - 00000000 ___HT C:\windows\wusa.lock
2016-12-23 09:57 - 2016-12-23 09:57 - 00000000 ____D C:\c696952a7b211a589857c139b54cc3
2016-12-23 09:56 - 2016-12-23 09:56 - 00000000 ___SH C:\DkHyperbootSync
2016-12-23 09:33 - 2016-12-23 09:33 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization VI.lnk
2016-12-23 09:33 - 2016-12-23 09:33 - 00001103 _____ C:\Users\Public\Desktop\Sid Meiers Civilization VI.lnk
2016-12-23 09:33 - 2016-12-23 09:33 - 00000000 ____D C:\Program Files\Sid Meiers Civilization VI
2016-12-23 09:28 - 2016-12-23 10:36 - 00000000 ____D C:\Users\vinicius\Downloads\Sid.Meiers.Civilization.VI-CODEX
2016-12-23 09:23 - 2016-12-23 09:23 - 00000087 _____ C:\Users\vinicius\Downloads\Sid Meiers Civilization VI-CODEX Torrent.txt
2016-12-23 09:15 - 2016-12-23 09:25 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-12-23 08:59 - 2016-12-23 08:59 - 14749120 _____ (Microsoft Corporation) C:\Users\vinicius\Downloads\vc_redist.x64.exe
2016-12-23 01:30 - 2016-12-23 01:30 - 01034556 _____ C:\Users\vinicius\Downloads\Windows6.1-KB2999226-x64 (1).msu
2016-12-23 01:28 - 2016-12-23 03:10 - 1708185600 _____ C:\Users\vinicius\Downloads\The.Settlers.7_Paths.to.a.Kingdom[pcgame-Multi7].iso
2016-12-23 01:20 - 2016-12-23 01:20 - 01034556 _____ C:\Users\vinicius\Downloads\Windows6.1-KB2999226-x64.msu
2016-12-23 00:51 - 2016-12-23 01:02 - 00000000 ____D C:\Users\vinicius\Downloads\Tropico.5.Complete.Collection-TiNYiSO
2016-12-22 22:48 - 2016-12-22 23:24 - 00000000 ____D C:\Users\vinicius\Downloads\rld-cv6w2016
2016-12-22 22:32 - 2016-12-22 22:44 - 00000000 ____D C:\Users\vinicius\Downloads\Crusader Kings II repack Mr DJ
2016-12-22 20:50 - 2016-12-22 20:50 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\ProxyGate
2016-12-22 20:08 - 2016-12-22 21:09 - 00000000 ____D C:\Users\vinicius\Downloads\codex-europa.universalis.iv.rights.of.man
2016-12-22 20:07 - 2016-12-22 20:08 - 00000000 ____D C:\Users\vinicius\Downloads\The Settlers VI Rise of an Empire
2016-12-22 19:55 - 2016-12-22 19:55 - 00254517 _____ C:\Users\vinicius\Downloads\dx.rar
2016-12-22 19:47 - 2016-12-22 20:05 - 00000000 ____D C:\Users\vinicius\Downloads\Settlers 2 - Gold Edition, The (August 31, 1996)
2016-12-22 19:46 - 2016-12-22 20:46 - 00000000 ____D C:\Users\vinicius\Downloads\Civilization IV incl ALL expansions + NEWEST patches
2016-12-22 19:41 - 2016-12-22 19:41 - 00049273 _____ C:\Users\vinicius\Downloads\vcruntime140.zip
2016-12-22 19:41 - 2016-08-10 12:07 - 00088248 _____ (Microsoft Corporation) C:\windows\vcruntime140.dll
2016-12-22 19:40 - 2016-12-22 19:40 - 00200660 _____ C:\Users\vinicius\Downloads\msvcp140.zip
2016-12-22 19:40 - 2016-10-18 12:58 - 00627288 _____ (Microsoft Corporation) C:\windows\msvcp140.dll
2016-12-22 19:40 - 2016-10-18 12:58 - 00627288 _____ (Microsoft Corporation) C:\Users\vinicius\Desktop\msvcp140.dll
2016-12-22 19:39 - 2016-08-10 17:27 - 00007680 _____ (Microsoft Corporation) C:\windows\api-ms-win-crt-runtime-l1-1-0.dll
2016-12-22 07:48 - 2016-12-22 07:48 - 00003630 _____ C:\Users\vinicius\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-12-21 23:48 - 2016-12-23 09:57 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-21 23:40 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_5.dll
2016-12-21 23:40 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_42.dll
2016-12-21 23:40 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_42.dll
2016-12-21 23:39 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_3.dll
2016-12-21 23:39 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2016-12-21 23:39 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_40.dll
2016-12-21 23:39 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2016-12-21 23:39 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_40.dll
2016-12-21 23:39 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_40.dll
2016-12-21 23:39 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_32.dll
2016-12-21 23:39 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_32.dll
2016-12-21 23:15 - 2016-12-21 23:15 - 00047672 _____ (Disc Soft Ltd) C:\windows\system32\Drivers\dtliteusbbus.sys
2016-12-21 21:39 - 2016-12-21 21:51 - 00000000 ____D C:\Users\vinicius\Downloads\Sid.Meiers.Civilization.VI.Proper-RELOADED
2016-12-21 20:46 - 2016-12-22 20:47 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Sid.Meiers.Civilization.VI.Deluxe.Edition-ALI213
2016-12-21 19:57 - 2016-12-21 19:58 - 63141587 _____ C:\Users\vinicius\Downloads\PDM_0.5.zip
2016-12-21 01:50 - 2016-12-21 08:41 - 00110677 _____ C:\Users\vinicius\Downloads\Não confirmado 8135.crdownload
2016-12-21 01:50 - 2016-12-21 02:09 - 31706952 _____ C:\Users\vinicius\Downloads\Perfect_Timeline_Mod_by_FrankCesco_ALPHA_3.rar
2016-12-20 23:19 - 2016-12-20 23:19 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Victoria 2 Heart of Darkness
2016-12-20 23:19 - 2016-12-20 23:19 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portable Programs
2016-12-20 23:19 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_7.dll
2016-12-20 23:19 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_7.dll
2016-12-20 23:19 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_7.dll
2016-12-20 23:19 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_7.dll
2016-12-20 23:19 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_5.dll
2016-12-20 23:19 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_5.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2016-12-20 23:19 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_43.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_6.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_6.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_6.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_6.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_4.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_4.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_7.dll
2016-12-20 23:19 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_7.dll
2016-12-20 23:19 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_5.dll
2016-12-20 23:19 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_5.dll
2016-12-20 23:19 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_5.dll
2016-12-20 23:19 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_3.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_42.dll
2016-12-20 23:19 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_42.dll
2016-12-20 23:19 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2016-12-20 23:19 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_4.dll
2016-12-20 23:19 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_4.dll
2016-12-20 23:19 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2016-12-20 23:19 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2016-12-20 23:19 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_6.dll
2016-12-20 23:19 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2016-12-20 23:19 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_41.dll
2016-12-20 23:19 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_41.dll
2016-12-20 23:19 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_41.dll
2016-12-20 23:19 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_3.dll
2016-12-20 23:19 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_3.dll
2016-12-20 23:19 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_3.dll
2016-12-20 23:19 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_3.dll
2016-12-20 23:19 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_2.dll
2016-12-20 23:19 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_2.dll
2016-12-20 23:19 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2016-12-20 23:18 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_5.dll
2016-12-20 23:18 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_5.dll
2016-12-20 23:18 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_2.dll
2016-12-20 23:18 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_2.dll
2016-12-20 23:18 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_1.dll
2016-12-20 23:18 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_1.dll
2016-12-20 23:18 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_2.dll
2016-12-20 23:18 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_2.dll
2016-12-20 23:18 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_39.dll
2016-12-20 23:18 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2016-12-20 23:18 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll
2016-12-20 23:18 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2016-12-20 23:18 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_39.dll
2016-12-20 23:18 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2016-12-20 23:18 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2016-12-20 23:18 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_1.dll
2016-12-20 23:18 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_1.dll
2016-12-20 23:18 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2016-12-20 23:18 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2016-12-20 23:18 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_0.dll
2016-12-20 23:18 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_4.dll
2016-12-20 23:18 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2016-12-20 23:18 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2016-12-20 23:18 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_38.dll
2016-12-20 23:18 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2016-12-20 23:18 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_38.dll
2016-12-20 23:18 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2016-12-20 23:18 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_38.dll
2016-12-20 23:18 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2016-12-20 23:18 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_0.dll
2016-12-20 23:18 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_0.dll
2016-12-20 23:18 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2016-12-20 23:18 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2016-12-20 23:18 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_3.dll
2016-12-20 23:18 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2016-12-20 23:18 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_37.dll
2016-12-20 23:18 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2016-12-20 23:18 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_37.dll
2016-12-20 23:18 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2016-12-20 23:18 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_37.dll
2016-12-20 23:18 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2016-12-20 23:18 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_10.dll
2016-12-20 23:18 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2016-12-20 23:18 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_2.dll
2016-12-20 23:18 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2016-12-20 23:18 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_36.dll
2016-12-20 23:18 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2016-12-20 23:18 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_36.dll
2016-12-20 23:18 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2016-12-20 23:18 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_36.dll
2016-12-20 23:18 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2016-12-20 23:18 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_9.dll
2016-12-20 23:18 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2016-12-20 23:18 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2016-12-20 23:18 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2016-12-20 23:18 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_35.dll
2016-12-20 23:18 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2016-12-20 23:18 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_35.dll
2016-12-20 23:18 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2016-12-20 23:18 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_8.dll
2016-12-20 23:18 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2016-12-20 23:18 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_34.dll
2016-12-20 23:18 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2016-12-20 23:18 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_34.dll
2016-12-20 23:18 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2016-12-20 23:18 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_34.dll
2016-12-20 23:18 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2016-12-20 23:18 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_7.dll
2016-12-20 23:18 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2016-12-20 23:18 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2016-12-20 23:18 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2016-12-20 23:18 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2016-12-20 23:18 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2016-12-20 23:18 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2016-12-20 23:18 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2016-12-20 23:18 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_1.dll
2016-12-20 23:18 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2016-12-20 23:18 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_6.dll
2016-12-20 23:18 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_5.dll
2016-12-20 23:18 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2016-12-20 23:18 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2016-12-20 23:18 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10.dll
2016-12-20 23:18 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_31.dll
2016-12-20 23:18 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_31.dll
2016-12-20 23:18 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_4.dll
2016-12-20 23:18 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2016-12-20 23:18 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2016-12-20 23:18 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_3.dll
2016-12-20 23:18 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_2.dll
2016-12-20 23:18 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2016-12-20 23:18 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2016-12-20 23:18 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2016-12-20 23:18 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2016-12-20 23:18 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2016-12-20 23:18 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_29.dll
2016-12-20 23:18 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_29.dll
2016-12-20 23:18 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_0.dll
2016-12-20 23:18 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_0.dll
2016-12-20 23:18 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2016-12-20 23:18 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2016-12-20 23:18 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_28.dll
2016-12-20 23:18 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_28.dll
2016-12-20 23:18 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_27.dll
2016-12-20 23:18 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_27.dll
2016-12-20 23:18 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_26.dll
2016-12-20 23:18 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_26.dll
2016-12-20 23:18 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_25.dll
2016-12-20 23:18 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_25.dll
2016-12-20 23:18 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_24.dll
2016-12-20 23:18 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_24.dll
2016-12-20 23:14 - 2016-12-20 23:17 - 00000000 ____D C:\Users\vinicius\Desktop\quad_textures
2016-12-20 23:12 - 2016-12-20 23:12 - 04995416 _____ (Microsoft Corporation) C:\Users\vinicius\Downloads\vcredist_x86 (2).exe
2016-12-20 23:11 - 2016-12-22 22:45 - 00000000 ____D C:\windows\SysWOW64\directx
2016-12-20 23:11 - 2016-12-22 22:42 - 00000000 ___HD C:\windows\msdownld.tmp
2016-12-20 23:11 - 2016-12-20 23:11 - 00292184 _____ (Microsoft Corporation) C:\Users\vinicius\Downloads\dxwebsetup.exe
2016-12-20 23:10 - 2016-12-20 23:10 - 04995416 _____ (Microsoft Corporation) C:\Users\vinicius\Downloads\vcredist_x86 (1).exe
2016-12-20 23:09 - 2016-12-20 23:10 - 05073240 _____ (Microsoft Corporation) C:\Users\vinicius\Downloads\vcredist_x86.exe
2016-12-20 23:06 - 2013-10-08 14:34 - 00774808 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr100.dll
2016-12-20 23:02 - 2016-12-20 23:02 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-12-20 22:59 - 2016-12-20 22:59 - 00000000 ____D C:\Program Files (x86)\Portable
2016-12-20 22:57 - 2016-08-10 12:13 - 02475352 _____ (Microsoft Corporation) C:\Users\vinicius\Desktop\D3DX9_42.dll
2016-12-20 22:55 - 2016-08-10 12:13 - 02475352 _____ (Microsoft Corporation) C:\windows\D3DX9_42.dll
2016-12-20 22:51 - 2016-12-20 22:51 - 00000000 ____D C:\Users\vinicius\Documents\Paradox Interactive
2016-12-20 22:48 - 2012-11-06 02:20 - 00535008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp110.dll
2016-12-20 22:48 - 2012-07-25 22:20 - 00029184 _____ (Microsoft Corporation) C:\windows\SysWOW64\XInput1_4.dll
2016-12-20 22:48 - 2007-04-04 19:53 - 00081768 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_3.dll
2016-12-20 22:48 - 2006-07-28 10:30 - 00062744 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_2.dll
2016-12-20 22:48 - 2006-03-31 13:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2016-12-20 22:47 - 2012-07-25 22:08 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\XInput1_4.dll
2016-12-20 22:47 - 2007-04-04 19:54 - 00107368 _____ (Microsoft Corporation) C:\windows\system32\xinput1_3.dll
2016-12-20 22:47 - 2006-07-28 10:31 - 00083736 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2016-12-20 22:47 - 2006-03-31 13:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2016-12-20 22:11 - 2016-12-20 22:19 - 00000000 ____D C:\Users\vinicius\Downloads\Victoria 2 Heart of Darkness (1-click run)(registred)
2016-12-20 22:11 - 2016-12-20 22:12 - 457290073 _____ C:\Users\vinicius\Downloads\Victoria 2 Heart of Darkness.7z
2016-12-20 21:51 - 2016-12-21 23:21 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\DAEMON Tools Lite
2016-12-20 21:51 - 2016-12-21 23:15 - 00030264 _____ (Disc Soft Ltd) C:\windows\system32\Drivers\dtlitescsibus.sys
2016-12-20 21:51 - 2016-12-21 23:15 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-12-20 21:51 - 2016-12-20 21:51 - 00001773 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-12-20 21:51 - 2016-12-20 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-12-20 21:50 - 2016-12-20 21:50 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-12-20 21:26 - 2016-12-20 21:26 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\WinRAR
2016-12-20 21:25 - 2016-12-20 21:44 - 02472858 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2016-12-20 21:20 - 2016-12-20 21:21 - 00692072 _____ (Disc Soft Ltd.) C:\Users\vinicius\Downloads\DTLiteInstaller.exe
2016-12-20 21:19 - 2016-12-20 21:19 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-20 21:19 - 2016-12-20 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-20 21:18 - 2016-12-20 21:19 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-12-20 21:18 - 2016-12-20 21:18 - 01972424 _____ C:\Users\vinicius\Downloads\wrar540.exe
2016-12-20 21:18 - 2016-12-20 21:18 - 00001639 _____ C:\Users\Public\Desktop\Banished.lnk
2016-12-20 21:18 - 2016-12-20 21:18 - 00000000 ____D C:\Users\vinicius\Documents\Banished
2016-12-20 21:18 - 2016-12-20 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-12-20 21:18 - 2016-12-20 21:18 - 00000000 ____D C:\GOG Games
2016-12-20 21:16 - 2016-12-20 21:25 - 436354818 _____ C:\Users\vinicius\Downloads\Victoria 2 Heart of Darkness v3.03.zip
2016-12-20 21:16 - 2016-12-20 21:16 - 00002137 _____ C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-20 21:16 - 2016-12-20 21:16 - 00002070 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-20 21:16 - 2016-12-20 21:16 - 00002070 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-12-20 21:16 - 2016-12-20 21:16 - 00000000 ___RD C:\Users\vinicius\OneDrive
2016-12-20 21:16 - 2016-12-20 21:16 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-12-20 21:16 - 2016-12-20 21:16 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-12-20 21:15 - 2016-12-20 21:17 - 93708736 ____R (GOG.com ) C:\Users\vinicius\Downloads\setup_banished_2.3.0.7.exe
2016-12-20 21:15 - 2016-12-20 21:15 - 00000000 ____D C:\73bc6e7c37d8e7a45c148e6f
2016-12-20 21:03 - 2016-12-23 00:39 - 00000000 ____D C:\Users\vinicius\AppData\LocalLow\uTorrent
2016-12-20 21:01 - 2016-12-20 21:01 - 00002616 _____ C:\Users\vinicius\Desktop\µTorrent.lnk
2016-12-20 21:01 - 2016-12-20 21:01 - 00002616 _____ C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002354 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-12-20 20:48 - 2016-12-20 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2016-12-20 20:42 - 2016-12-20 20:42 - 00000000 ____D C:\windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-12-20 20:22 - 2016-12-20 20:22 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
2016-12-20 20:19 - 2016-12-23 11:30 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\uTorrent
2016-12-20 20:19 - 2016-12-20 20:19 - 00002229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-20 20:19 - 2016-12-20 20:19 - 00002217 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-20 20:17 - 2016-12-20 23:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-20 20:16 - 2016-12-20 20:19 - 00000000 ____D C:\Program Files (x86)\GUM9819.tmp
2016-12-20 20:15 - 2016-12-20 20:15 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Adobe
2016-12-20 20:14 - 2016-12-20 20:14 - 00001037 _____ C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\WinZip.lnk
2016-12-20 20:14 - 2016-12-20 20:14 - 00001013 _____ C:\Users\vinicius\Desktop\WinZip.lnk
2016-12-20 20:14 - 2016-12-20 20:14 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinZip
2016-12-20 20:14 - 2016-12-20 20:14 - 00000000 ____D C:\Program Files (x86)\WinZip
2016-12-20 20:14 - 2016-12-20 20:14 - 00000000 _____ C:\windows\winfile.ini
2016-12-20 20:13 - 2016-12-20 20:13 - 00000000 ____D C:\Users\vinicius\Documents\Youcam
2016-12-20 20:13 - 2016-12-20 20:13 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\CyberLink
2016-12-20 20:13 - 2016-12-20 20:13 - 00000000 ____D C:\Users\vinicius\AppData\Local\CyberLink
2016-12-20 20:13 - 2016-12-20 20:13 - 00000000 ____D C:\Users\Public\CyberLink
2016-12-20 20:13 - 2016-12-20 20:13 - 00000000 ____D C:\ProgramData\CyberLink
2016-12-20 20:12 - 2016-12-20 21:04 - 00110176 _____ C:\Users\vinicius\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-20 20:06 - 2016-12-20 20:06 - 07680000 _____ C:\Program Files (x86)\GUTE0CE.tmp
2016-12-20 20:06 - 2016-12-20 20:06 - 00000000 ____D C:\Program Files (x86)\GUME0CD.tmp
2016-12-20 20:04 - 2016-12-23 01:22 - 00000000 ___RD C:\Users\vinicius\Google Drive
2016-12-20 20:01 - 2016-12-20 20:01 - 00002002 _____ C:\Users\Public\Desktop\Google Slides.lnk
2016-12-20 20:01 - 2016-12-20 20:01 - 00002000 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2016-12-20 20:01 - 2016-12-20 20:01 - 00001990 _____ C:\Users\Public\Desktop\Google Docs.lnk
2016-12-20 20:01 - 2016-12-20 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-12-20 20:00 - 2016-12-21 01:05 - 00003500 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-20 20:00 - 2016-12-21 01:05 - 00003372 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-20 20:00 - 2016-12-20 20:47 - 00000000 ____D C:\Users\vinicius\AppData\Local\Google
2016-12-20 20:00 - 2016-12-20 20:18 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-20 20:00 - 2016-12-20 20:02 - 00000000 ____D C:\Program Files (x86)\GUME6F4.tmp
2016-12-20 19:53 - 2016-12-20 19:53 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-12-20 19:52 - 2014-05-14 14:23 - 02477536 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2016-12-20 19:52 - 2014-05-14 14:23 - 00700384 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2016-12-20 19:52 - 2014-05-14 14:23 - 00581600 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2016-12-20 19:52 - 2014-05-14 14:23 - 00058336 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2016-12-20 19:52 - 2014-05-14 14:23 - 00044512 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2016-12-20 19:52 - 2014-05-14 14:23 - 00038880 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2016-12-20 19:52 - 2014-05-14 14:23 - 00036320 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2016-12-20 19:52 - 2014-05-14 14:21 - 02620928 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2016-12-20 19:52 - 2014-05-14 14:20 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2016-12-20 19:52 - 2014-05-14 14:17 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2016-12-20 19:52 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2016-12-20 19:52 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2016-12-20 19:52 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2016-12-20 19:52 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2016-12-20 19:47 - 2016-12-20 19:47 - 00001389 _____ C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-12-20 19:46 - 2016-12-20 19:47 - 00001423 _____ C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-20 19:45 - 2016-12-20 19:52 - 00000000 ____D C:\ProgramData\Skype
2016-12-20 19:45 - 2016-12-20 19:45 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2016-12-20 19:45 - 2016-12-20 19:45 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2016-12-20 19:44 - 2016-12-23 10:04 - 00000000 ____D C:\Users\vinicius
2016-12-20 19:44 - 2016-12-22 19:42 - 00000000 ____D C:\Users\vinicius\AppData\Local\VirtualStore
2016-12-20 19:44 - 2016-12-20 19:44 - 00003186 _____ C:\windows\System32\Tasks\FFSRConfigurer
2016-12-20 19:44 - 2016-12-20 19:44 - 00000020 ___SH C:\Users\vinicius\ntuser.ini
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Modelos
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Meus documentos
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Menu Iniciar
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Documents\Minhas músicas
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Documents\Minhas imagens
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Documents\Meus vídeos
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Dados de aplicativos
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Configurações locais
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\AppData\Local\Histórico
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\AppData\Local\Dados de aplicativos
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Ambiente de rede
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _SHDL C:\Users\vinicius\Ambiente de impressão
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Intel
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 ____D C:\Program Files\Elantech
2016-12-20 19:44 - 2016-12-20 19:44 - 00000000 _____ C:\windows\system32\Drivers\144D_SAMSUNG_N_530U4B_07XK.mrk
2016-12-20 19:44 - 2012-01-31 18:17 - 00000000 ____D C:\Users\vinicius\AppData\Roaming\Media Center Programs

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-12-23 11:22 - 2009-07-14 03:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-12-23 09:25 - 2012-01-31 00:27 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-23 01:23 - 2009-07-14 02:45 - 00020992 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-23 01:23 - 2009-07-14 02:45 - 00020992 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-22 19:24 - 2009-07-14 03:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-12-21 23:16 - 2009-07-14 01:20 - 00000000 ____D C:\windows\inf
2016-12-21 07:58 - 2012-01-31 18:30 - 00736844 _____ C:\windows\system32\perfh00A.dat
2016-12-21 07:58 - 2012-01-31 18:30 - 00157926 _____ C:\windows\system32\perfc00A.dat
2016-12-21 07:58 - 2012-01-31 18:23 - 00705268 _____ C:\windows\system32\prfh0416.dat
2016-12-21 07:58 - 2012-01-31 18:23 - 00147108 _____ C:\windows\system32\prfc0416.dat
2016-12-21 07:58 - 2009-07-14 03:13 - 02528162 _____ C:\windows\system32\PerfStringBackup.INI
2016-12-21 01:37 - 2012-01-31 00:35 - 00000000 ____D C:\ProgramData\WinClon
2016-12-20 23:07 - 2009-07-14 01:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-12-20 21:54 - 2009-07-14 02:45 - 00434152 _____ C:\windows\system32\FNTCACHE.DAT
2016-12-20 20:14 - 2009-07-14 00:34 - 00000685 _____ C:\windows\win.ini
2016-12-20 20:13 - 2012-01-31 00:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2016-12-20 20:13 - 2012-01-31 00:35 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-12-20 20:08 - 2012-01-31 01:48 - 00000000 ____D C:\ProgramData\Norton
2016-12-20 19:56 - 2012-01-31 00:43 - 00000000 ____D C:\Program Files\Samsung
2016-12-20 19:54 - 2012-01-31 00:37 - 00000000 ____D C:\ProgramData\WildTangent
2016-12-20 19:45 - 2012-01-31 18:16 - 00000000 ____D C:\windows\MSetup
2016-12-20 19:45 - 2012-01-31 00:27 - 00000000 ____D C:\Program Files (x86)\Intel

==================== Arquivos na raiz de alguns diretórios =======

2016-12-20 20:06 - 2016-12-20 20:06 - 7680000 _____ () C:\Program Files (x86)\GUTE0CE.tmp

Arquivos para serem movidos ou deletados:
====================
C:\Users\vinicius\AppData\Roaming\ProxyGate\MainService.exe


Alguns arquivos em TEMP:
====================
C:\Users\vinicius\AppData\Local\Temp\BingBarSetup-Partner.exe
C:\Users\vinicius\AppData\Local\Temp\ubi4165.tmp.exe


==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\windows\explorer.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\windows\system32\services.exe => O arquivo é assinado digitalmente
C:\windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2016-12-21 05:13

==================== Fim de FRST.txt ============================