ÿþ[code] OTS logfile created on: 09/03/2018 00:22:26 - Run 3 OTS by OldTimer - Version 3.1.47.2 Folder = C:\Users\Nickolas1993\Downloads Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 7.0.6002.18005) Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 54,00% Memory free 7,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 930,94 Gb Total Space | 894,94 Gb Free Space | 96,13% Space Free | Partition Type: NTFS Drive D: | 54,67 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: NICKOLAS1993-PC Current User Name: Nickolas1993 Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 30 Days [Processes - Safe List] ots.exe -> C:\Users\Nickolas1993\Downloads\OTS.exe -> [2018/03/09 00:16:48 | 000,646,656 | ---- | M] (OldTimer Tools) setupbootstrapper.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\{909CC275-9516-4833-88AC-657ACF4B03E4}\.be\SetupBootstrapper.exe -> [2018/03/09 00:13:12 | 000,916,600 | ---- | M] (IKARUS Security Software) setup.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\{4408C07D-9A18-4FBA-807A-3B174212872D}\.cr\setup.exe -> [2018/03/09 00:13:10 | 000,916,600 | ---- | M] (IKARUS Security Software) setup ikarus anti.virus vdb.exe -> C:\Users\Nickolas1993\Downloads\Setup IKARUS anti.virus VDB.exe -> [2018/03/08 05:00:29 | 257,007,192 | ---- | M] (Microsoft Corporation) firefox.exe -> C:\Arquivos de programas\Mozilla Firefox\firefox.exe -> [2018/01/18 18:52:10 | 000,517,072 | ---- | M] (Mozilla Corporation) setup.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\IXP000.TMP\setup.exe -> [2017/12/04 16:54:16 | 255,085,088 | ---- | M] (IKARUS Security Software) vcredist140_x86.exe -> C:\ProgramData\Package Cache\BFB74E498C44D3A103CA3AA2831763FB417134D1\vcredist140_x86.exe -> [2017/12/04 16:53:12 | 013,767,776 | ---- | M] (Microsoft Corporation) launcher.exe -> C:\Users\NICKOL~1\AppData\Local\Temp\IXP000.TMP\launcher.exe -> [2017/11/28 10:37:48 | 003,801,112 | ---- | M] (TODO: <Company name>) vdeck.exe -> C:\Arquivos de programas\VIA\VIAudioi\VDeck\VDeck.exe -> [2012/10/25 17:26:18 | 004,045,432 | R--- | M] (VIA) rtwlan.exe -> C:\Arquivos de programas\MYMAX\11n USB Wireless LAN Utility\RtWLan.exe -> [2012/02/21 19:39:30 | 002,043,904 | ---- | M] (Realtek Semiconductor Corp.) rtlservice.exe -> C:\Arquivos de programas\MYMAX\11n USB Wireless LAN Utility\RtlService.exe -> [2010/04/16 16:10:58 | 000,036,864 | ---- | M] (Realtek) nsvcip.exe -> C:\Arquivos de programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -> [2009/08/10 15:59:50 | 000,178,720 | ---- | M] () nsvcappflt.exe -> C:\Arquivos de programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -> [2009/08/10 15:59:48 | 000,387,616 | ---- | M] () nvscpapisvr.exe -> C:\Arquivos de programas\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -> [2009/07/14 12:28:00 | 000,239,648 | ---- | M] (NVIDIA Corporation) explorer.exe -> C:\Windows\explorer.exe -> [2009/04/11 10:19:30 | 002,926,592 | ---- | M] (Microsoft Corporation) wusa.exe -> C:\Windows\System32\wusa.exe -> [2009/04/11 10:19:14 | 000,140,800 | ---- | M] (Microsoft Corporation) sidebar.exe -> C:\Arquivos de programas\Windows Sidebar\sidebar.exe -> [2009/04/11 10:19:03 | 001,233,920 | ---- | M] (Microsoft Corporation) msascui.exe -> C:\Arquivos de programas\Windows Defender\MSASCui.exe -> [2008/01/20 23:21:41 | 001,008,184 | ---- | M] (Microsoft Corporation) [Modules - No Company Name] dts2apoapi.dll -> C:\Arquivos de programas\VIA\VIAudioi\VDeck\Dts2ApoApi.dll -> [2012/10/25 17:25:48 | 000,113,272 | R--- | M] () qsapoapi.dll -> C:\Arquivos de programas\VIA\VIAudioi\VDeck\QsApoApi.dll -> [2012/10/25 17:25:48 | 000,080,504 | R--- | M] () [Win32 Services - Safe List] (MozillaMaintenance) Mozilla Maintenance Service [On_Demand | Stopped] -> C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -> [2018/01/18 18:52:27 | 000,174,032 | ---- | M] (Mozilla Foundation) (Realtek11nSU) Realtek11nSU [Auto | Running] -> C:\Arquivos de Programas\MYMAX\11n USB Wireless LAN Utility\RtlService.exe -> [2010/04/16 16:10:58 | 000,036,864 | ---- | M] (Realtek) (nSvcIp) ForceWare IP service [Auto | Running] -> C:\Arquivos de Programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -> [2009/08/10 15:59:50 | 000,178,720 | ---- | M] () (ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) [Auto | Running] -> C:\Arquivos de Programas\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -> [2009/08/10 15:59:48 | 000,387,616 | ---- | M] () (Stereo Service) NVIDIA Stereoscopic 3D Driver Service [Auto | Running] -> C:\Arquivos de Programas\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -> [2009/07/14 12:28:00 | 000,239,648 | ---- | M] (NVIDIA Corporation) (WinDefend) Windows Defender [Auto | Running] -> C:\Arquivos de Programas\Windows Defender\MpSvc.dll -> [2008/01/20 23:21:41 | 000,272,952 | ---- | M] (Microsoft Corporation) [Driver Services - Safe List] (VIAHdAudAddService) VIA High Definition Audio Driver Service [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\viahduaa.sys -> [2012/10/22 16:43:36 | 001,841,272 | ---- | M] (VIA Technologies, Inc.) (RTL8192su) Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\rtl8192su.sys -> [2011/08/11 02:46:46 | 000,542,312 | R--- | M] (Realtek Semiconductor Corporation ) (nvstor32) nvstor32 [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\nvstor32.sys -> [2009/08/04 17:43:40 | 000,213,024 | ---- | M] (NVIDIA Corporation) (NVNET) NVIDIA nForce 10/100 Mbps Ethernet [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\nvmfdx32.sys -> [2009/07/30 17:12:56 | 000,282,144 | ---- | M] (NVIDIA Corporation) (nvlddmkm) nvlddmkm [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\nvlddmkm.sys -> [2009/07/14 11:54:00 | 009,557,216 | ---- | M] (NVIDIA Corporation) (NVENETFD) Driver do NVIDIA nForce Networking Controller [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\nvm60x32.sys -> [2006/11/02 04:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Registry - Safe List] < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm -> < Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> -> < Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> -> < Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> -> < Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> -> < Internet Explorer Settings [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\: Main\\"StartPageCache" -> 1 -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\: "ProxyEnable" -> 0 -> < FireFox Settings [Prefs.js] > -> C:\Users\Nickolas1993\AppData\Roaming\Mozilla\FireFox\Profiles\xele3mtm.default\prefs.js -> browser.search.countryCode -> "BR" -> browser.search.region -> "BR" -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Mozilla Firefox 52.6.0 ESR\extensions -> -> HKLM\software\mozilla\Mozilla Firefox 52.6.0 ESR\extensions\\Components -> C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS -> HKLM\software\mozilla\Mozilla Firefox 52.6.0 ESR\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS -> < FireFox Extensions [User Folders] > -> -> C:\Users\Nickolas1993\AppData\Roaming\mozilla\Extensions -> [2018/03/07 23:49:25 | 000,000,000 | ---D | M] -> C:\Users\Nickolas1993\AppData\Roaming\mozilla\Firefox\Profiles\xele3mtm.default\extensions -> [2018/03/07 23:58:24 | 000,000,000 | ---D | M] < FireFox Extensions [Program Folders] > -> -> C:\Arquivos de Programas\Mozilla Firefox\browser\extensions -> [2018/03/07 23:49:14 | 000,000,000 | ---D | M] < HOSTS File > ([2006/09/18 18:41:30 | 000,000,761 | ---- | M] - 20 lines) -> C:\Windows\System32\drivers\etc\hosts -> Reset Hosts 127.0.0.1 localhost ::1 localhost < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "Auto ShutDown" -> [Freeware Edition.exe] -> File not found "HDAudDeck" -> C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r] -> [2012/10/25 17:26:18 | 004,045,432 | R--- | M] (VIA) "Windows Defender" -> C:\Program Files\Windows Defender\MSASCui.exe [%ProgramFiles%\Windows Defender\MSASCui.exe -hide] -> [2008/01/20 23:21:41 | 001,008,184 | ---- | M] (Microsoft Corporation) < RunOnce [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "{304174ee-de4c-494a-9291-b9194e1445d1}" -> C:\ProgramData\Package Cache\{304174ee-de4c-494a-9291-b9194e1445d1}\SetupBootstrapper.exe ["C:\ProgramData\Package Cache\{304174ee-de4c-494a-9291-b9194e1445d1}\SetupBootstrapper.exe" /burn.runonce] -> [2018/03/09 00:13:12 | 000,916,600 | ---- | M] (IKARUS Security Software) "{74d0e5db-b326-4dae-a6b2-445b9de1836e}" -> C:\ProgramData\Package Cache\{74d0e5db-b326-4dae-a6b2-445b9de1836e}\VC_redist.x86.exe ["C:\ProgramData\Package Cache\{74d0e5db-b326-4dae-a6b2-445b9de1836e}\VC_redist.x86.exe" /burn.runonce] -> [2018/03/09 00:13:32 | 000,530,416 | ---- | M] (Microsoft Corporation) < Run [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "WindowsWelcomeCenter" -> C:\Windows\System32\oobefldr.dll [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2009/04/11 10:19:05 | 002,153,472 | ---- | M] (Microsoft Corporation) < Run [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "WindowsWelcomeCenter" -> C:\Windows\System32\oobefldr.dll [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2009/04/11 10:19:05 | 002,153,472 | ---- | M] (Microsoft Corporation) < Run [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "WindowsWelcomeCenter" -> C:\Windows\System32\oobefldr.dll [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2009/04/11 10:19:05 | 002,153,472 | ---- | M] (Microsoft Corporation) < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [255] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [255] -> File not found < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> DhcpNameServer -> 200.204.0.10 200.204.0.138 -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {6459156A-7650-4454-9BDB-E855FC6AD06A}\\DhcpNameServer -> 200.204.0.10 200.204.0.138 (Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter) -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\explorer.exe -> [2009/04/11 10:19:30 | 002,926,592 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *UserInit* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit -> C:\Windows\system32\userinit.exe -> C:\Windows\System32\userinit.exe -> [2008/01/20 23:22:58 | 000,025,088 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> Driver de CD-ROM -> "ImagePath" -> [system32\DRIVERS\cdrom.sys] -> File not found < Drives with AutoRun files > -> -> C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2006/09/18 18:43:36 | 000,000,024 | ---- | M] () D:\AutoRun.inf [[AutoRun] | open=\642U_Driver_XP_EN_15.0.0.591\setup.exe | icon=setup.ico | ] -> D:\AutoRun.inf [ CDFS ] -> [2012/07/31 00:10:52 | 000,000,074 | R--- | M] () < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> \{1c0f6632-2272-11e8-b335-806e6f6e6963} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell \{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell\AutoRun\command \{1c0f6632-2272-11e8-b335-806e6f6e6963}\shell\AutoRun\command\\"" -> [\642U_Driver_XP_EN_15.0.0.591\setup.exe] -> File not found < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command -> comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Registry - Additional Scans - Safe List] < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ -> .bat [@ = batfile] -> "%1" %* -> .cmd [@ = cmdfile] -> "%1" %* -> .com [@ = comfile] -> "%1" %* -> .cpl [@ = cplfile] -> C:\Windows\System32\control.exe -> [2006/11/02 06:44:59 | 000,211,968 | ---- | M] (Microsoft Corporation) .exe [@ = exefile] -> "%1" %* -> .hlp [@ = hlpfile] -> C:\Windows\winhlp32.exe -> [2006/11/02 06:45:57 | 000,009,216 | ---- | M] (Microsoft Corporation) .url [@ = InternetShortcut] -> rundll32.exe ieframe.dll,OpenURL %l -> .pif [@ = piffile] -> "%1" %* -> .scr [@ = scrfile] -> "%1" /S -> < File Associations - Select to Repair > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Classes\<extension>\ -> .html [@ = FirefoxHTML] -> C:\Program Files\Mozilla Firefox\firefox.exe -> [2018/01/18 18:52:10 | 000,517,072 | ---- | M] (Mozilla Corporation) < Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center \\"cval" -> [1] -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc \Svc\\"oobe_av" -> [1] -> File not found \Svc\\"AntiVirusOverride" -> [0] -> File not found \Svc\\"AntiSpywareOverride" -> [0] -> File not found \Svc\\"FirewallOverride" -> [0] -> File not found \Svc\\"VistaSp1" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found \Svc\\"VistaSp2" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> -> < Windows DomainProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile \\"EnableFirewall" -> [1] -> File not found \\"DisableNotifications" -> [0] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging\ -> -> < Windows StandardProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile \\"EnableFirewall" -> [1] -> File not found \\"DisableNotifications" -> [0] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> -> < Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> ldap -> 4 = Restricted sites (Not a Default Protocol) -> news -> 4 = Restricted sites (Not a Default Protocol) -> nntp -> 4 = Restricted sites (Not a Default Protocol) -> oecmd -> 4 = Restricted sites (Not a Default Protocol) -> snews -> 4 = Restricted sites (Not a Default Protocol) -> < Default Protocols [HKEY_USERS\S-1-5-19\] - Select to Repair > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> @ivt -> @ivt protocol not assigned -> file -> file protocol not assigned -> ftp -> ftp protocol not assigned -> http -> http protocol not assigned -> https -> https protocol not assigned -> shell -> shell protocol not assigned -> < Default Protocols [HKEY_USERS\S-1-5-20\] - Select to Repair > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> @ivt -> @ivt protocol not assigned -> file -> file protocol not assigned -> ftp -> ftp protocol not assigned -> http -> http protocol not assigned -> https -> https protocol not assigned -> shell -> shell protocol not assigned -> < Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {20D4A895-748C-4D88-871C-FDB1695B0169} -> Platform {304174ee-de4c-494a-9291-b9194e1445d1} -> IKARUS anti.virus {51C7AD07-C3F6-4635-8E8A-231306D810FE} -> Cisco LEAP Module {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} -> Cisco EAP-FAST Module {74d0e5db-b326-4dae-a6b2-445b9de1836e} -> Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 {7CFA46E3-CC2F-4355-82AE-6012DC3633FD} -> NVIDIA ForceWare Network Access Manager {9C049499-055C-4a0c-A916-1D8CA1FF45EB} -> MYMAX Wireless LAN Driver and Utility {A2563E55-3BEC-3828-8D67-E5E8B9E8B675} -> Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23026 {BE960C1C-7BAD-3DE6-8B1A-2616FE532845} -> Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23026 {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} -> Cisco PEAP Module Auto ShutDown_is1 -> Auto ShutDown 1.0 InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} -> VIA Gerenciador de dispositivo de plataforma InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD} -> NVIDIA ForceWare Network Access Manager Mozilla Firefox 52.6.0 ESR (x86 pt-BR) -> Mozilla Firefox 52.6.0 ESR (x86 pt-BR) MozillaMaintenanceService -> Mozilla Maintenance Service NVIDIA Drivers -> NVIDIA Drivers NVIDIAStereo -> NVIDIA Stereoscopic 3D Driver < Uninstall List [HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\] > -> HKEY_USERS\S-1-5-21-1156318631-1467728016-3324770686-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> CabalOnline(Bra) -> CABAL Online (Brasil) < EventViewer Logs - Last 10 Errors > -> Event Information -> Description Application [ Error ] 07/03/2018 22:14:31 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:14:32 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:31:45 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:31:48 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:32:12 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:32:13 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:32:13 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:32:14 Computer Name = Nickolas1993-PC | Source = SideBySide | ID = 16842785 -> Description = Falha na geração de contexto de ativação para "C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2\scancl.exe". Assembly dependente Microsoft.VC90.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" não pôde ser localizado. Use o arquivo sxstrace.exe para obter um diagnóstico detalhado. Application [ Error ] 07/03/2018 22:39:11 Computer Name = Nickolas1993-PC | Source = VSS | ID = 8194 -> Description = Application [ Error ] 08/03/2018 00:48:49 Computer Name = Nickolas1993-PC | Source = VSS | ID = 8194 -> Description = System [ Error ] 08/03/2018 00:49:39 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7030 -> Description = System [ Error ] 08/03/2018 00:52:57 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7011 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7034 -> Description = System [ Error ] 08/03/2018 03:40:38 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7031 -> Description = System [ Error ] 08/03/2018 11:08:12 Computer Name = Nickolas1993-PC | Source = Service Control Manager | ID = 7011 -> Description = [Files/Folders - Created Within 30 Days] d2f565631fdaf1072003c5 -> C:\d2f565631fdaf1072003c5 -> [2018/03/09 00:14:24 | 000,000,000 | ---D | C] Package Cache -> C:\ProgramData\Package Cache -> [2018/03/09 00:13:25 | 000,000,000 | ---D | C] CABAL Online (Brasil) -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CABAL Online (Brasil) -> [2018/03/08 12:03:55 | 000,000,000 | ---D | C] CABAL Online (Brasil) -> C:\Program Files\CABAL Online (Brasil) -> [2018/03/08 11:57:19 | 000,000,000 | ---D | C] ZHP -> C:\Users\Nickolas1993\AppData\Roaming\ZHP -> [2018/03/08 04:42:08 | 000,000,000 | ---D | C] ZHP -> C:\Users\Nickolas1993\AppData\Local\ZHP -> [2018/03/08 04:42:08 | 000,000,000 | ---D | C] AdwCleaner -> C:\AdwCleaner -> [2018/03/08 04:37:36 | 000,000,000 | ---D | C] Auto ShutDown -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto ShutDown -> [2018/03/08 04:32:18 | 000,000,000 | ---D | C] Auto ShutDown -> C:\Program Files\Auto ShutDown -> [2018/03/08 04:32:18 | 000,000,000 | ---D | C] Applications -> C:\ProgramData\Applications -> [2018/03/08 03:57:42 | 000,000,000 | ---D | C] Panther -> C:\Windows\Panther -> [2018/03/08 03:42:54 | 000,000,000 | ---D | C] Boot -> C:\Boot -> [2018/03/08 03:42:39 | 000,000,000 | -HSD | C] FRST -> C:\FRST -> [2018/03/08 01:48:08 | 000,000,000 | ---D | C] NVIDIA Corporation -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation -> [2018/03/08 01:48:04 | 000,000,000 | ---D | C] NVIDIA -> C:\ProgramData\NVIDIA -> [2018/03/08 01:47:57 | 000,000,000 | ---D | C] NVIDIA Corporation -> C:\Program Files\NVIDIA Corporation -> [2018/03/08 01:47:51 | 000,000,000 | ---D | C] NVIDIA -> C:\NVIDIA -> [2018/03/08 01:44:35 | 000,000,000 | ---D | C] adaware -> C:\ProgramData\adaware -> [2018/03/07 23:59:51 | 000,000,000 | ---D | C] Mozilla -> C:\Users\Nickolas1993\AppData\Roaming\Mozilla -> [2018/03/07 23:49:20 | 000,000,000 | ---D | C] Mozilla -> C:\Users\Nickolas1993\AppData\Local\Mozilla -> [2018/03/07 23:49:20 | 000,000,000 | ---D | C] Mozilla Maintenance Service -> C:\Program Files\Mozilla Maintenance Service -> [2018/03/07 23:49:14 | 000,000,000 | ---D | C] Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2018/03/07 23:49:13 | 000,000,000 | ---D | C] ProcAlyzer Dumps -> C:\ProcAlyzer Dumps -> [2018/03/07 23:44:05 | 000,000,000 | ---D | C] VIA -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIA -> [2018/03/07 23:40:34 | 000,000,000 | ---D | C] SRSLabs -> C:\Windows\System32\SRSLabs -> [2018/03/07 23:40:30 | 000,000,000 | ---D | C] EEP32H.dll -> C:\Windows\System32\EEP32H.dll -> [2018/03/07 23:40:24 | 007,161,696 | ---- | C] (Dolby Laboratories) EEP32A.dll -> C:\Windows\System32\EEP32A.dll -> [2018/03/07 23:40:24 | 007,161,696 | ---- | C] (Dolby Laboratories) MaxxAudioVIA.dll -> C:\Windows\System32\MaxxAudioVIA.dll -> [2018/03/07 23:40:24 | 002,911,096 | ---- | C] (Waves Audio Ltd.) WavesGUILib.dll -> C:\Windows\System32\WavesGUILib.dll -> [2018/03/07 23:40:24 | 001,801,592 | ---- | C] (Waves Audio Ltd.) MaxxAudioAPOShell.dll -> C:\Windows\System32\MaxxAudioAPOShell.dll -> [2018/03/07 23:40:24 | 000,735,608 | ---- | C] (Waves Audio Ltd.) EED32H.dll -> C:\Windows\System32\EED32H.dll -> [2018/03/07 23:40:24 | 000,351,072 | ---- | C] (Dolby Laboratories) EED32A.dll -> C:\Windows\System32\EED32A.dll -> [2018/03/07 23:40:24 | 000,351,072 | ---- | C] (Dolby Laboratories) MaxxAudioAPO30.dll -> C:\Windows\System32\MaxxAudioAPO30.dll -> [2018/03/07 23:40:24 | 000,349,560 | ---- | C] (Waves Audio Ltd.) Dts2APO.dll -> C:\Windows\System32\Dts2APO.dll -> [2018/03/07 23:40:24 | 000,218,232 | ---- | C] (Windows (R) Codename Longhorn DDK provider) EEL32H.dll -> C:\Windows\System32\EEL32H.dll -> [2018/03/07 23:40:24 | 000,103,776 | ---- | C] (Dolby Laboratories) EEL32A.dll -> C:\Windows\System32\EEL32A.dll -> [2018/03/07 23:40:24 | 000,103,776 | ---- | C] (Dolby Laboratories) EEA32H.dll -> C:\Windows\System32\EEA32H.dll -> [2018/03/07 23:40:24 | 000,088,928 | ---- | C] (Dolby Laboratories) EEA32A.dll -> C:\Windows\System32\EEA32A.dll -> [2018/03/07 23:40:24 | 000,088,928 | ---- | C] (Dolby Laboratories) nQPropPageExt.dll -> C:\Windows\System32\nQPropPageExt.dll -> [2018/03/07 23:40:24 | 000,076,288 | ---- | C] (QSound Labs, Inc.) nQAPO.dll -> C:\Windows\System32\nQAPO.dll -> [2018/03/07 23:40:24 | 000,073,728 | ---- | C] (QSound Labs, Inc.) VtSrdAPO.dll -> C:\Windows\System32\VtSrdAPO.dll -> [2018/03/07 23:40:24 | 000,063,096 | ---- | C] (Windows (R) Codename Longhorn DDK provider) EEG32H.dll -> C:\Windows\System32\EEG32H.dll -> [2018/03/07 23:40:24 | 000,062,304 | ---- | C] (Dolby Laboratories) EEG32A.dll -> C:\Windows\System32\EEG32A.dll -> [2018/03/07 23:40:24 | 000,062,304 | ---- | C] (Dolby Laboratories) PropPageExt.dll -> C:\Windows\System32\PropPageExt.dll -> [2018/03/07 23:40:24 | 000,047,736 | ---- | C] (TODO: <Company name>) VIA -> C:\Program Files\VIA -> [2018/03/07 23:39:21 | 000,000,000 | ---D | C] InstallShield -> C:\Program Files\Common Files\InstallShield -> [2018/03/07 23:39:09 | 000,000,000 | ---D | C] Rem-VBSqt -> C:\Rem-VBSqt -> [2018/03/07 23:23:07 | 000,000,000 | ---D | C] scancl-1.9.161.2 -> C:\Users\Nickolas1993\Desktop\scancl-1.9.161.2 -> [2018/03/07 23:14:15 | 000,000,000 | ---D | C] 149253c103eeb98cb50f123927 -> C:\149253c103eeb98cb50f123927 -> [2018/03/07 23:05:40 | 000,000,000 | ---D | C] Cisco -> C:\Program Files\Cisco -> [2018/03/07 22:54:22 | 000,000,000 | ---D | C] Installer -> C:\Windows\Installer -> [2018/03/07 22:54:21 | 000,000,000 | -HSD | C] MYMAX 11n USB Wireless LAN Utility -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MYMAX 11n USB Wireless LAN Utility -> [2018/03/07 22:54:20 | 000,000,000 | ---D | C] RtlUI2.exe -> C:\Windows\RtlUI2.exe -> [2018/03/07 22:53:08 | 000,380,928 | ---- | C] (Realtek) MYMAX -> C:\Program Files\MYMAX -> [2018/03/07 22:53:06 | 000,000,000 | ---D | C] InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2018/03/07 22:53:03 | 000,000,000 | -H-D | C] Startup -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup -> [2018/03/07 22:51:52 | 000,000,000 | R--D | C] Searches -> C:\Users\Nickolas1993\Searches -> [2018/03/07 22:51:52 | 000,000,000 | R--D | C] Administrative Tools -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools -> [2018/03/07 22:51:52 | 000,000,000 | R--D | C] Identities -> C:\Users\Nickolas1993\AppData\Roaming\Identities -> [2018/03/07 22:51:44 | 000,000,000 | ---D | C] Contacts -> C:\Users\Nickolas1993\Contacts -> [2018/03/07 22:51:43 | 000,000,000 | R--D | C] VirtualStore -> C:\Users\Nickolas1993\AppData\Local\VirtualStore -> [2018/03/07 22:51:42 | 000,000,000 | ---D | C] Microsoft -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft -> [2018/03/07 22:51:39 | 000,000,000 | --SD | C] Videos -> C:\Users\Nickolas1993\Videos -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Saved Games -> C:\Users\Nickolas1993\Saved Games -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Pictures -> C:\Users\Nickolas1993\Pictures -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Music -> C:\Users\Nickolas1993\Music -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Maintenance -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Links -> C:\Users\Nickolas1993\Links -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Favorites -> C:\Users\Nickolas1993\Favorites -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Downloads -> C:\Users\Nickolas1993\Downloads -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Documents -> C:\Users\Nickolas1993\Documents -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Desktop -> C:\Users\Nickolas1993\Desktop -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Accessories -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories -> [2018/03/07 22:51:39 | 000,000,000 | R--D | C] Temporary Internet Files -> C:\Users\Nickolas1993\AppData\Local\Temporary Internet Files -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] SendTo -> C:\Users\Nickolas1993\SendTo -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Recent -> C:\Users\Nickolas1993\Recent -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Modelos -> C:\Users\Nickolas1993\Modelos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Minhas músicas -> C:\Users\Nickolas1993\Documents\Minhas músicas -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Minhas imagens -> C:\Users\Nickolas1993\Documents\Minhas imagens -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Meus vídeos -> C:\Users\Nickolas1993\Documents\Meus vídeos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Meus documentos -> C:\Users\Nickolas1993\Meus documentos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Menu Iniciar -> C:\Users\Nickolas1993\Menu Iniciar -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Histórico -> C:\Users\Nickolas1993\AppData\Local\Histórico -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Dados de aplicativos -> C:\Users\Nickolas1993\Dados de aplicativos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Dados de aplicativos -> C:\Users\Nickolas1993\AppData\Local\Dados de aplicativos -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Cookies -> C:\Users\Nickolas1993\Cookies -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Configurações locais -> C:\Users\Nickolas1993\Configurações locais -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Ambiente de rede -> C:\Users\Nickolas1993\Ambiente de rede -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] Ambiente de impressão -> C:\Users\Nickolas1993\Ambiente de impressão -> [2018/03/07 22:51:39 | 000,000,000 | -HSD | C] AppData -> C:\Users\Nickolas1993\AppData -> [2018/03/07 22:51:39 | 000,000,000 | -H-D | C] Temp -> C:\Users\Nickolas1993\AppData\Local\Temp -> [2018/03/07 22:51:39 | 000,000,000 | ---D | C] Microsoft -> C:\Users\Nickolas1993\AppData\Local\Microsoft -> [2018/03/07 22:51:39 | 000,000,000 | ---D | C] Media Center Programs -> C:\Users\Nickolas1993\AppData\Roaming\Media Center Programs -> [2018/03/07 22:51:39 | 000,000,000 | ---D | C] Sistema -> C:\Program Files\Common Files\Sistema -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Modelos -> C:\ProgramData\Modelos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Minhas músicas -> C:\Users\Public\Documents\Minhas músicas -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Minhas imagens -> C:\Users\Public\Documents\Minhas imagens -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Meus vídeos -> C:\Users\Public\Documents\Meus vídeos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Menu Iniciar -> C:\ProgramData\Menu Iniciar -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Favoritos -> C:\ProgramData\Favoritos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Documentos -> C:\ProgramData\Documentos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Dados de aplicativos -> C:\ProgramData\Dados de aplicativos -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Arquivos de programas -> C:\Arquivos de programas -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Arquivos Comuns -> C:\Program Files\Arquivos Comuns -> [2018/03/07 22:49:56 | 000,000,000 | -HSD | C] Debug -> C:\Windows\Debug -> [2018/03/07 22:49:41 | 000,000,000 | ---D | C] SoftwareDistribution -> C:\Windows\SoftwareDistribution -> [2018/03/07 22:46:04 | 000,000,000 | ---D | C] CSC -> C:\Windows\CSC -> [2018/03/07 22:45:27 | 000,000,000 | ---D | C] Prefetch -> C:\Windows\Prefetch -> [2018/03/07 22:43:52 | 000,000,000 | ---D | C] System Volume Information -> C:\System Volume Information -> [2018/03/07 22:43:43 | 000,000,000 | -HSD | C] [Files/Folders - Modified Within 30 Days] wusa.lock -> C:\Windows\wusa.lock -> [2018/03/09 00:14:24 | 000,000,000 | -H-- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -> [2018/03/09 00:06:33 | 000,002,592 | -H-- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -> [2018/03/09 00:06:33 | 000,002,592 | -H-- | M] () prfh0416.dat -> C:\Windows\System32\prfh0416.dat -> [2018/03/08 12:13:52 | 000,628,814 | ---- | M] () perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2018/03/08 12:13:52 | 000,586,980 | ---- | M] () prfc0416.dat -> C:\Windows\System32\prfc0416.dat -> [2018/03/08 12:13:52 | 000,120,466 | ---- | M] () perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2018/03/08 12:13:52 | 000,101,052 | ---- | M] () nvModes.dat -> C:\ProgramData\nvModes.dat -> [2018/03/08 12:06:54 | 000,033,544 | ---- | M] () nvModes.001 -> C:\ProgramData\nvModes.001 -> [2018/03/08 12:06:54 | 000,033,544 | ---- | M] () bootstat.dat -> C:\Windows\bootstat.dat -> [2018/03/08 12:06:31 | 000,067,584 | --S- | M] () hiberfil.sys -> C:\hiberfil.sys -> [2018/03/08 12:06:30 | 3488,878,592 | -HS- | M] () CABAL Online (Brasil).lnk -> C:\Users\Nickolas1993\Desktop\CABAL Online (Brasil).lnk -> [2018/03/08 12:03:55 | 000,000,876 | ---- | M] () ZHPCleaner.html -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.html -> [2018/03/08 04:46:44 | 000,018,178 | ---- | M] () ZHPCleaner.lnk -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.lnk -> [2018/03/08 04:42:08 | 000,000,743 | ---- | M] () BOOTSECT.BAK -> C:\BOOTSECT.BAK -> [2018/03/08 03:42:40 | 000,008,192 | R-S- | M] () d3d9caps.dat -> C:\Users\Nickolas1993\AppData\Local\d3d9caps.dat -> [2018/03/08 01:39:04 | 000,000,680 | ---- | M] () Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2018/03/07 23:49:18 | 000,000,846 | ---- | M] () HD VDeck.lnk -> C:\Users\Public\Desktop\HD VDeck.lnk -> [2018/03/07 23:40:34 | 000,000,991 | ---- | M] () MYMAX 11n USB Wireless LAN Utility.lnk -> C:\Users\Public\Desktop\MYMAX 11n USB Wireless LAN Utility.lnk -> [2018/03/07 22:54:18 | 000,001,917 | ---- | M] () FNTCACHE.DAT -> C:\Windows\System32\FNTCACHE.DAT -> [2018/03/07 22:48:51 | 000,228,440 | ---- | M] () license.rtf -> C:\Windows\System32\license.rtf -> [2018/03/07 22:47:36 | 000,051,585 | ---- | M] () [Files - No Company Name] wusa.lock -> C:\Windows\wusa.lock -> [2018/03/09 00:14:24 | 000,000,000 | -H-- | C] () CABAL Online (Brasil).lnk -> C:\Users\Nickolas1993\Desktop\CABAL Online (Brasil).lnk -> [2018/03/08 12:03:55 | 000,000,876 | ---- | C] () ZHPCleaner.html -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.html -> [2018/03/08 04:45:42 | 000,018,178 | ---- | C] () ZHPCleaner.lnk -> C:\Users\Nickolas1993\Desktop\ZHPCleaner.lnk -> [2018/03/08 04:42:08 | 000,000,743 | ---- | C] () BOOTSECT.BAK -> C:\BOOTSECT.BAK -> [2018/03/08 03:42:40 | 000,008,192 | R-S- | C] () bootmgr -> C:\bootmgr -> [2018/03/08 03:42:39 | 000,333,257 | RHS- | C] () nvModes.dat -> C:\ProgramData\nvModes.dat -> [2018/03/08 01:51:45 | 000,033,544 | ---- | C] () nvModes.001 -> C:\ProgramData\nvModes.001 -> [2018/03/08 01:51:45 | 000,033,544 | ---- | C] () nvphy.bin -> C:\Windows\System32\drivers\nvphy.bin -> [2018/03/08 01:45:39 | 000,006,136 | ---- | C] () Mozilla Firefox.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> [2018/03/07 23:49:18 | 000,000,858 | ---- | C] () Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2018/03/07 23:49:18 | 000,000,846 | ---- | C] () HD VDeck.lnk -> C:\Users\Public\Desktop\HD VDeck.lnk -> [2018/03/07 23:40:34 | 000,000,991 | ---- | C] () MYMAX 11n USB Wireless LAN Utility.lnk -> C:\Users\Public\Desktop\MYMAX 11n USB Wireless LAN Utility.lnk -> [2018/03/07 22:54:18 | 000,001,917 | ---- | C] () ISSRemoveSP.exe -> C:\Windows\System32\ISSRemoveSP.exe -> [2018/03/07 22:53:06 | 000,451,072 | ---- | C] () Internet Explorer.lnk -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> [2018/03/07 22:51:52 | 000,000,949 | ---- | C] () Windows Media Player.lnk -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> [2018/03/07 22:51:51 | 000,000,944 | ---- | C] () Windows Mail.lnk -> C:\Users\Nickolas1993\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk -> [2018/03/07 22:51:43 | 000,000,915 | ---- | C] () d3d9caps.dat -> C:\Users\Nickolas1993\AppData\Local\d3d9caps.dat -> [2018/03/07 22:51:40 | 000,000,680 | ---- | C] () hiberfil.sys -> C:\hiberfil.sys -> [2018/03/07 22:48:30 | 3488,878,592 | -HS- | C] () < End of report > [/code]