Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20.01.2019 Executado por Usuario (administrador) em USUARIO-PC (24-01-2019 11:02:00) Executando a partir de C:\Users\Usuario\Downloads Perfis Carregados: Usuario (Perfis Disponíveis: Usuario & João) Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Dropbox, Inc.) C:\Users\Usuario\AppData\Local\Dropbox\Update\DropboxUpdate.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Dropbox, Inc.) C:\Users\Usuario\AppData\Roaming\Dropbox\bin\Dropbox.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Dropbox, Inc.) C:\Users\Usuario\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) C:\Users\Usuario\AppData\Roaming\Dropbox\bin\Dropbox.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe (Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe (Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Tunngle.net GmbH) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe (GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (The Qt Company Ltd.) C:\Users\Usuario\AppData\Roaming\Dropbox\bin\QtWebEngineProcess.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-10-14] (AVAST Software) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-07-18] (Intel Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO HKU\S-1-5-21-1144292019-2563834070-1988740619-1000\...\Run: [Dropbox Update] => C:\Users\Usuario\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.) HKU\S-1-5-21-1144292019-2563834070-1988740619-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Usuario\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-30] (Akamai Technologies, Inc.) HKU\S-1-5-21-1144292019-2563834070-1988740619-1000\...\Policies\system: [LogonHoursAction] 2 HKU\S-1-5-21-1144292019-2563834070-1988740619-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\S-1-5-21-1144292019-2563834070-1988740619-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [25640 2013-08-05] () HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [70200 2013-08-05] () HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [70712 2013-08-05] () HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () HKLM\...\Drivers32-x32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) HKLM\...\Drivers32-x32: [VIDC.IV41] => C:\Windows\SysWOW64\ir41_32.dll [756736 1997-07-06] (Intel Corporation) HKLM\...\Drivers32-x32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] () HKLM\...\Drivers32-x32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] () HKLM\...\Drivers32-x32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] () HKLM\...\Drivers32-x32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) HKLM\...\Drivers32-x32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () HKLM\...\Drivers32-x32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (On2.com) HKLM\...\Drivers32-x32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (On2.com) HKLM\...\Drivers32-x32: [VIDC.VMnc] => C:\Windows\SysWOW64\vmnc.dll [360528 2013-02-26] (VMware, Inc.) HKLM\Software\...\AppCompatFlags\InstalledSDB\{ad846bae-d44b-4722-abad-f7420e08bcd9}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb [2016-05-31] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-18] (Google Inc.) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corp.) Startup: C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-10-12] ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Usuario\AppData\Local\Facebook\Games\FacebookGameroom.exe (Nenhum Arquivo) Startup: C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WO Mic Client.lnk [2019-01-15] ShortcutTarget: WO Mic Client.lnk -> C:\Program Files (x86)\WOMic\WOMicClient.exe () Startup: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2019-01-24] ShortcutTarget: Dropbox.lnk -> C:\Users\Usuario\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\Parameters: [DhcpNameServer] 181.213.132.2 181.213.132.3 Tcpip\..\Interfaces\{027725E0-B972-49F8-9842-2DD6F4439982}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{C31F5793-DD21-4E3B-9AD8-0E197C7FCF2D}: [DhcpNameServer] 181.213.132.2 181.213.132.3 Internet Explorer: ================== HKU\S-1-5-21-1144292019-2563834070-1988740619-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com/?q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com/?q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-26] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-26] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO-x32: Auxiliar de Conexão de Conta da Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Nenhum Arquivo FireFox: ======== FF DefaultProfile: jjp31qwc.default FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\5fxcx0ef.default-1421197032571 [não encontrado (a)] <==== ATENÇÃO FF ProfilePath: C:\Users\Usuario\AppData\Roaming\Profiles\jjp31qwc.default [2018-12-22] <==== ATENÇÃO FF Extension: (Avast SafePrice) - C:\Users\Usuario\AppData\Roaming\Profiles\jjp31qwc.default\Extensions\sp@avast.com.xpi [2018-04-10] FF Extension: (Avast Online Security) - C:\Users\Usuario\AppData\Roaming\Profiles\jjp31qwc.default\Extensions\wrc@avast.com.xpi [2018-07-13] FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] [Legacy] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-21] () FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-26] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-26] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-06-04] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-21] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @raidcall.br/RCplugin -> C:\Users\Usuario\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-26] (Raidcall) FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [Nenhum Arquivo] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-06-04] (Adobe Systems) FF Plugin HKU\S-1-5-21-1144292019-2563834070-1988740619-1000: @Legend Of Glory -> C:\Program Files (x86)\Legend Of Glory\plugin\npLegendOfGlory1.dll [Nenhum Arquivo] FF Plugin HKU\S-1-5-21-1144292019-2563834070-1988740619-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [Nenhum Arquivo] FF Plugin HKU\S-1-5-21-1144292019-2563834070-1988740619-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Usuario\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [Nenhum Arquivo] FF Plugin HKU\S-1-5-21-1144292019-2563834070-1988740619-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Nenhum Arquivo] FF Plugin HKU\S-1-5-21-1144292019-2563834070-1988740619-1000: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-11-17] (The Happy Cloud) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\autoconf_warsaw.js [2019-01-24] Chrome: ======= CHR HomePage: Default -> hxxp://www.ourstartpage.com/ CHR StartupUrls: Default -> "hxxps://www.facebook.com/","hxxp://google.com/","hxxp://isearch.omiga-plus.com/?type=hp&ts=1420958688&from=amt&uid=ST500DM002-1BD142_Z3TDJS1CXXXXZ3TDJS1C","hxxps://www.google.com/","hxxp://br.hao123.com/?tn=sdkw_inner_hp_09_hao123_br&fr=OlcA91gpSeVp9Tt5LCQZ6zFLD8p7AVnEdPoxeyxkHQ%3D%3D","hxxp://www.istartsurf.com/?type=hppp&ts=1439168641&z=4af82dfbf5ab9bbea726c2cgbzdcft8geq1b9w2qbz&from=cor&uid=ST500DM002-1BD142_Z3TDJS1CXXXXZ3TDJS1C","hxxp://www.seekmx.com/?bd=hp&oem=302br&uid=ST500DM002-1BD142_Z3TDJS1CXXXXZ3TDJS1C&version=2.3.0.10992&pid=414031160&tid=702","hxxp://www.trotux.com/?z=9d6c35350b6dc9bfb07e308g0z2qcb6g5o5o7t8z2g&from=isr&uid=ST500DM002-1BD142_Z3TDJS1CXXXXZ3TDJS1C&type=hp","hxxps://encrypted.google.com" CHR Profile: C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default [2019-01-24] CHR Extension: (Nyan Cat Progress Bar for YouTube™) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdjaekjkckpdknkfncfnaibkabdcgmkg [2018-03-17] CHR Extension: (YouTube) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-10] CHR Extension: (Adblock Plus - bloqueador de anúncios grátis) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-01-24] CHR Extension: (Slither.io Skins, Mods, Hack & Guide) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\dggomkijbihggjgcgdbnleolpleddaid [2017-04-10] CHR Extension: (LoL Stream Browser) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\edidfaijmhpefkbnobdcepampbncgejp [2017-04-10] CHR Extension: (Avast Passwords) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2019-01-16] CHR Extension: (Avast SafePrice | Comparação, ofertas, cupons) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-12-23] CHR Extension: (Área de trabalho remota do Google Chrome) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2018-10-12] CHR Extension: (AdBlock) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-01-16] CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2019-01-17] CHR Extension: (Agar Infinity) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnhheoadpkhnhicikbeaikololmoegma [2018-06-12] CHR Extension: (Avast Online Security) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28] CHR Extension: (Dollchan Extension Tools) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipnoalfffblkaodfmipjjgkfbgcfadad [2019-01-17] CHR Extension: (Floating for YouTube™) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2018-03-07] CHR Extension: (The Great Suspender) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2017-06-07] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02] CHR Extension: (Speedtest by Ookla) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2018-05-22] CHR Extension: (Gmail) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-10] CHR Extension: (Chrome Media Router) - C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-19] CHR Extension: (AdNauseam) - C:\Users\Usuario\Documents\adnauseam.chromium [2017-06-19] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S4 Apache2.4; C:\xampp\apache\bin\httpd.exe [25600 2017-11-03] (Apache Software Foundation) [Arquivo não assinado] S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-10-14] (AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [325024 2018-10-14] (AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8352184 2019-01-15] () S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-02] (Microsoft Corporation) R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe [73048 2018-10-18] (Google Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3480720 2018-02-22] (Disc Soft Ltd) S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2018-10-01] (EasyAntiCheat Ltd) S4 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] () S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-05-30] (Hi-Rez Studios) [Arquivo não assinado] S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2015-04-06] (Intel Corporation) R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation) S4 jetbrainsetw.1.1.20141219.120193; C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.ETW.Collector.Host.exe [1470072 2014-12-19] (JetBrains s.r.o) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-05] (Intel Corporation) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Arquivo não assinado] R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation) S4 mysql; C:\xampp\mysql\bin\mysqld.exe [11552680 2018-02-04] () S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3404664 2014-10-22] (INCA Internet Co., Ltd.) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation) S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2201920 2018-05-10] (Electronic Arts) S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3072328 2018-05-10] (Electronic Arts) S4 pcapsvc; C:\Program Files\Proxy Labs\ProxyCap\pcapsvc.exe [2283008 2014-07-06] (Proxy Labs) [Arquivo não assinado] S4 power_activator_service; C:\Program Files\Sandboxie\Sandboxie_Power_Activator_server.exe [2899456 2015-08-22] () [Arquivo não assinado] S4 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Arquivo não assinado] S4 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.) S4 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [175112 2015-02-17] (Sandboxie Holdings, LLC) R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2083264 2018-06-04] (Scopus Soluções em TI Ltda) S4 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] () S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [Arquivo não assinado] S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH) R2 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [873968 2017-06-30] (Tunngle.net GmbH) [Arquivo não assinado] S4 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] () S4 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [13242960 2013-02-26] () S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-07-17] (Microsoft Corporation) R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1077592 2018-10-18] (GAS Tecnologia LTDA) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S3 wpscloudsvr; C:\Users\Usuario\AppData\Local\Kingsoft\WPS Office\wpscloudsvr.exe [242856 2019-01-16] (Zhuhai Kingsoft Office Software Co.,Ltd) S4 AdobeARMservice; "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" [X] S4 AdobeUpdateService; "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe" [X] S4 AGSService; "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe" [X] S2 MEmusvc; C:\Program Files\Microvirt\Micro\MEmu\MemuService.exe [X] ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] () R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [201408 2018-10-14] (AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [230512 2018-10-14] (AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201928 2018-10-14] (AVAST Software) R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346760 2018-10-14] (AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59664 2018-10-14] (AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [185240 2018-10-14] (AVAST Software) S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [47064 2018-10-14] (AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42456 2018-10-14] (AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163376 2018-10-14] (AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111968 2018-10-14] (AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88112 2018-10-14] (AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1028840 2018-10-14] (AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467904 2018-10-14] (AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [208640 2018-10-14] (AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381144 2018-10-14] (AVAST Software) S3 CEDRIVER60; C:\Program Files (x86)\Cheat Engine 6.7\dbk64.sys [123104 2017-05-30] () S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-10-09] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-10-09] (Disc Soft Ltd) S1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [28192 2018-01-30] (EldoS Corporation) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2018-08-26] (Malwarebytes) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation) R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0080.sys [38432 2016-04-29] (SoftEther Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation) S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [237064 2015-02-17] (Sandboxie Holdings, LLC) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions) S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-08-28] (Duplex Secure Ltd.) R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [39464 2016-04-27] (Tunngle.net GmbH) U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-09-02] () S3 tun3326; C:\Windows\System32\DRIVERS\tun3326.sys [32368 2013-03-22] (The OpenVPN Project) R0 vsock; C:\Windows\System32\drivers\vsock.sys [70296 2012-10-24] (VMware, Inc.) R3 wovad_micarray; C:\Windows\System32\drivers\womic.sys [35696 2017-11-25] (Windows (R) Win 7 DDK provider) R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [28376 2019-01-24] (GAS Tecnologia) R1 wsddntf; C:\Windows\System32\DRIVERS\wsddntf.sys [47064 2018-04-25] (GAS Tecnologia) R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [44624 2018-10-18] (GAS Tecnologia) R3 wsddprm; C:\Windows\system32\drivers\wsddprm.sys [43560 2018-10-18] (GAS Tecnologia) S3 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-10-08] (BigNox Corporation) R2 {B154377D-700F-42cc-9474-23858FBDF4BD}; C:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl [146928 2009-02-28] (CyberLink Corp.) U1 aswbdisk; não ImagePath S3 gkernel; \??\C:\Users\Usuario\AppData\Local\Temp\gkernel.sys [X] <==== ATENÇÃO S2 memudrv; \??\C:\Program Files\Microvirt\Micro\MEmuHyperv\MEmuDrv.sys [X] S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X] S3 X6va035; \??\C:\Windows\SysWOW64\Drivers\X6va035 [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três meses (criados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) Error(1) reading file: "C:\...." 2019-01-24 11:02 - 2019-01-24 11:03 - 000034322 _____ C:\Users\Usuario\Downloads\FRST.txt 2019-01-24 11:01 - 2019-01-24 11:02 - 000000000 ____D C:\FRST 2019-01-24 11:01 - 2019-01-24 11:01 - 002428416 _____ (Farbar) C:\Users\Usuario\Downloads\FRST64.exe 2019-01-24 10:27 - 2019-01-24 10:27 - 007320272 _____ (Malwarebytes) C:\Users\Usuario\Downloads\adwcleaner_7.2.6.0.exe 2019-01-24 09:46 - 2019-01-24 09:46 - 008206624 _____ (Malwarebytes) C:\Users\Usuario\Downloads\adwcleaner-7-0-7-0.exe 2019-01-24 09:43 - 2019-01-24 09:43 - 005190656 _____ C:\Users\Usuario\Downloads\windows-defender-7.0.msi 2019-01-24 09:26 - 2019-01-24 09:26 - 015083200 _____ (Microsoft Corporation) C:\Users\Usuario\Downloads\mseinstall.exe 2019-01-24 03:49 - 2019-01-24 03:49 - 000003416 ____N C:\bootsqm.dat 2019-01-24 00:06 - 2019-01-24 00:06 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-01-23 02:54 - 2019-01-23 02:54 - 000120923 _____ C:\Users\Usuario\Downloads\Planilha de Controle Financeiro (versão 1) (Salvo Automaticamente).xlsx 2019-01-23 02:23 - 2019-01-23 02:23 - 000089979 _____ C:\Users\Usuario\Downloads\planilha-rentabilidade.xlsm 2019-01-17 22:04 - 2019-01-17 22:04 - 000000000 ____D C:\tmp 2019-01-17 11:51 - 2019-01-17 12:03 - 000062464 _____ C:\Users\Usuario\Downloads\0104planilha-da-jornada-financeira.xls 2019-01-17 11:38 - 2019-01-17 11:38 - 000010310 _____ C:\Users\Usuario\Downloads\InformeRendimento.pdf 2019-01-17 00:12 - 2019-01-24 10:35 - 000028376 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys 2019-01-17 00:12 - 2018-10-18 10:41 - 000044624 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys 2019-01-17 00:12 - 2018-10-18 10:41 - 000043560 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddprm.sys 2019-01-17 00:04 - 2019-01-17 00:04 - 000018940 _____ C:\Users\Usuario\Downloads\Lançar Valores no Mês Corrente.xlsm 2019-01-16 01:23 - 2019-01-24 02:49 - 000000000 ____D C:\Users\Usuario\Desktop\Investimentos 2019-01-16 00:37 - 2019-01-24 02:40 - 000004198 _____ C:\Windows\System32\Tasks\WpsExternal_Usuario_20190116003718 2019-01-16 00:37 - 2019-01-24 02:40 - 000003950 _____ C:\Windows\System32\Tasks\WpsUpdateTask_Usuario 2019-01-16 00:37 - 2019-01-16 00:37 - 000002433 _____ C:\Users\Usuario\Desktop\WPS Presentation.lnk 2019-01-16 00:37 - 2019-01-16 00:37 - 000002425 _____ C:\Users\Usuario\Desktop\WPS Writer.lnk 2019-01-16 00:37 - 2019-01-16 00:37 - 000002413 _____ C:\Users\Usuario\Desktop\WPS Spreadsheets.lnk 2019-01-16 00:37 - 2019-01-16 00:37 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\wps 2019-01-16 00:37 - 2019-01-16 00:37 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\office6 2019-01-16 00:37 - 2019-01-16 00:37 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WPS Office 2019-01-16 00:35 - 2019-01-16 00:35 - 000000000 ____D C:\Users\Usuario\AppData\Local\Kingsoft 2019-01-16 00:34 - 2019-01-16 00:37 - 000000000 ____D C:\Users\Todos os Usuários\kingsoft 2019-01-16 00:34 - 2019-01-16 00:37 - 000000000 ____D C:\ProgramData\kingsoft 2019-01-16 00:34 - 2019-01-16 00:36 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\kingsoft 2019-01-16 00:33 - 2019-01-16 00:34 - 083177056 _____ (Kingsoft Corp. Ltd.) C:\Users\Usuario\Downloads\WPSOffice_10.2.0.7587_Free.exe 2019-01-15 18:52 - 2019-01-15 18:52 - 003079535 _____ C:\Users\João\Downloads\SCP-087-B.zip 2019-01-15 15:14 - 2019-01-15 15:14 - 001756920 _____ C:\Users\João\Downloads\wo_mic_client_setup (1).exe 2019-01-15 15:14 - 2019-01-15 15:14 - 000251960 _____ C:\Users\João\Downloads\wo_mic_driver_signed (2).exe 2019-01-15 15:14 - 2019-01-15 15:14 - 000001001 _____ C:\Users\João\Desktop\WO Mic Client.lnk 2019-01-15 15:14 - 2019-01-15 15:14 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WO Mic Client 2019-01-14 12:01 - 2019-01-14 12:01 - 000251960 _____ C:\Users\João\Downloads\wo_mic_driver_signed (1).exe 2019-01-14 11:43 - 2019-01-15 15:17 - 000000000 ____D C:\Program Files (x86)\WOMic 2019-01-14 11:42 - 2019-01-14 11:43 - 001756920 _____ C:\Users\João\Downloads\wo_mic_client_setup.exe 2019-01-14 11:42 - 2019-01-14 11:43 - 000251960 _____ C:\Users\João\Downloads\wo_mic_driver_signed.exe 2019-01-12 19:02 - 2019-01-12 19:02 - 000000000 ____D C:\Users\João\.thumbnails 2019-01-12 15:53 - 2019-01-12 15:53 - 002487837 _____ C:\Users\João\Downloads\FROSTEY FORTNITE FPS - 2019!.rar 2019-01-11 14:37 - 2019-01-11 14:37 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2019-01-09 22:53 - 2019-01-09 22:53 - 000001080 _____ C:\Users\João\Desktop\blender.lnk 2019-01-09 22:53 - 2019-01-09 22:53 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender 2019-01-09 22:52 - 2019-01-09 22:52 - 000000000 ____D C:\Program Files\Blender Foundation 2019-01-09 22:47 - 2019-01-09 23:05 - 000000000 ____D C:\Users\João\Desktop\Jogo Aprendizado 2019-01-09 22:45 - 2019-01-09 22:48 - 087912376 _____ C:\Users\João\Downloads\blender-2.79b-windows64.msi 2019-01-07 16:40 - 2019-01-07 16:40 - 000000000 ____D C:\Users\João\AppData\Local\CrashReportClient 2019-01-07 11:26 - 2019-01-07 11:26 - 000000285 _____ C:\Users\João\Desktop\Super Meat Boy.url 2019-01-06 02:31 - 2019-01-06 02:32 - 000000000 ____D C:\Users\João\AppData\Roaming\Wise Memory Optimzer 2019-01-06 02:05 - 2019-01-06 02:05 - 000001251 _____ C:\Users\Public\Desktop\Wise Memory Optimizer.lnk 2019-01-06 02:05 - 2019-01-06 02:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Memory Optimizer 2019-01-06 01:52 - 2019-01-06 01:53 - 002603424 _____ (WiseCleaner.com ) C:\Users\João\Downloads\WMOSetup.exe 2019-01-05 18:26 - 2019-01-05 18:26 - 000000222 _____ C:\Users\João\Desktop\Trove.url 2019-01-05 12:52 - 2019-01-05 12:52 - 000000222 _____ C:\Users\João\Desktop\Don't Starve Together.url 2019-01-04 22:30 - 2019-01-04 22:30 - 000000314 _____ C:\Users\João\Desktop\Fortnite.url 2019-01-04 19:49 - 2019-01-09 22:11 - 000000000 ____D C:\Users\João\Downloads\standard-assets-example-project-master 2019-01-04 19:40 - 2019-01-04 19:44 - 211787046 _____ C:\Users\João\Downloads\standard-assets-example-project-master.zip 2019-01-04 19:17 - 2019-01-04 19:17 - 000000000 ____D C:\Users\João\AppData\LocalLow\renzk 2019-01-04 19:16 - 2019-01-04 19:16 - 021720741 _____ C:\Users\João\Downloads\Slash Dash in a Flash (v3.1).rar 2018-12-28 22:25 - 2018-12-28 22:25 - 000000000 ____D C:\Users\Usuario\AppData\LocalLow\Oracle 2018-12-28 22:24 - 2018-12-28 22:24 - 074618232 _____ (Oracle Corporation) C:\Users\Usuario\Downloads\jre-8u191-windows-x64.exe 2018-12-28 22:11 - 2018-12-28 22:12 - 008457176 _____ (Banco Bradesco S.A.) C:\Users\Usuario\Downloads\scpbradinst.exe 2018-12-27 16:21 - 2018-12-27 16:21 - 000000000 ____D C:\Users\João\source 2018-12-27 15:02 - 2019-01-04 21:04 - 000000000 ____D C:\Users\João\AppData\Local\.IdentityService 2018-12-26 14:49 - 2018-12-26 14:49 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_45147 2018-12-25 22:55 - 2018-12-25 22:55 - 000000000 ____D C:\Users\João\AppData\Local\Adobe 2018-12-25 11:53 - 2018-12-27 16:39 - 000000000 ____D C:\Users\João\Documents\Visual Studio 2017 2018-12-25 11:52 - 2018-12-25 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2017 Tools for Unity 2018-12-25 11:52 - 2018-12-25 11:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity 2018-12-25 11:45 - 2018-12-25 11:45 - 000000000 ____D C:\Program Files\Application Verifier 2018-12-25 11:45 - 2018-12-25 11:45 - 000000000 ____D C:\Program Files (x86)\Application Verifier 2018-12-25 11:24 - 2018-12-25 11:24 - 000000883 _____ C:\Users\Public\Desktop\Unity 2018.3.0f2 (64-bit).lnk 2018-12-25 02:54 - 2018-12-25 02:54 - 000001471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017.lnk 2018-12-25 02:50 - 2018-12-25 11:27 - 000001286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk 2018-12-25 02:49 - 2018-12-25 11:55 - 000000000 ____D C:\Users\João\AppData\Roaming\Visual Studio Setup 2018-12-25 02:49 - 2018-12-25 02:50 - 000000000 ____D C:\Users\João\AppData\Roaming\vstelemetry 2018-12-25 02:49 - 2018-12-25 02:49 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft Visual Studio 2018-12-25 02:49 - 2018-12-25 02:49 - 000000000 ____D C:\Users\João\AppData\Local\ServiceHub 2018-12-25 02:45 - 2018-12-25 11:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2018.3.0f2 (64-bit) 2018-12-25 02:27 - 2018-12-25 02:27 - 000000000 ____D C:\Program Files\Unity 2018-12-25 02:15 - 2018-12-25 02:15 - 000795736 _____ C:\Users\João\Downloads\UnityDownloadAssistant-2018.3.0f2.exe 2018-12-25 01:21 - 2018-12-25 01:21 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_73118 2018-12-24 14:00 - 2018-12-24 14:00 - 000000222 _____ C:\Users\João\Desktop\chrono.url 2018-12-24 14:00 - 2018-12-24 14:00 - 000000000 ____D C:\Users\João\AppData\LocalLow\m 2018-12-24 13:39 - 2018-12-24 13:39 - 000000000 ____D C:\Users\João\Documents\SimCity 2018-12-24 13:14 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2018-12-23 23:57 - 2018-12-23 23:58 - 000766285 _____ C:\Users\João\Downloads\WhatsApp Video 2018-12-23 at 11.56.17 PM.mp4 2018-12-22 13:03 - 2018-12-22 13:03 - 000001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2018-12-22 13:02 - 2018-10-14 04:19 - 000378584 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2018-12-21 13:47 - 2018-12-21 13:49 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_18641 2018-12-20 17:48 - 2018-12-20 17:53 - 000000000 ____D C:\Users\TEMP.Usuario-PC.002 2018-12-19 14:26 - 2018-12-19 14:26 - 000000000 ____D C:\Users\TEMP.Usuario-PC.001 2018-12-17 20:46 - 2018-12-19 16:22 - 000000000 ____D C:\Users\João\AppData\Local\Eclipse 2018-12-17 20:46 - 2018-12-17 20:46 - 000000000 ____D C:\Users\João\.tooling 2018-12-17 20:43 - 2018-12-18 19:45 - 000000000 ____D C:\Users\João\eclipse-workspace 2018-12-17 20:21 - 2018-12-17 20:21 - 000001022 _____ C:\Users\João\Desktop\Eclipse Jee 2018-09.lnk 2018-12-17 20:21 - 2018-12-17 20:21 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse 2018-12-17 20:18 - 2018-12-28 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2018-12-17 19:53 - 2018-12-17 20:07 - 000000000 ____D C:\Users\João\eclipse 2018-12-17 19:52 - 2018-12-17 19:55 - 217284976 _____ (Oracle Corporation) C:\Users\João\Downloads\jdk-8u191-windows-x64.exe 2018-12-17 19:47 - 2018-12-19 16:22 - 000000000 ____D C:\Users\João\.p2 2018-12-17 19:47 - 2018-12-17 20:46 - 000000000 ____D C:\Users\João\.eclipse 2018-12-17 19:43 - 2018-12-17 19:46 - 050930760 _____ C:\Users\João\Downloads\eclipse-inst-win64.exe 2018-12-16 17:28 - 2018-12-16 17:29 - 000020176 _____ C:\Users\João\Downloads\Crash Twinsanity (USA).torrent 2018-12-16 17:09 - 2018-12-16 17:09 - 000001943 _____ C:\Users\Public\Desktop\PCSX2 1.4.0.lnk 2018-12-16 17:08 - 2018-12-16 17:08 - 017837152 _____ C:\Users\João\Downloads\pcsx2-1.4.0-setup.exe 2018-12-16 14:57 - 2018-12-16 14:57 - 001700319 _____ C:\Users\João\Downloads\x360ce.zip 2018-12-16 14:57 - 2018-12-16 14:57 - 000000000 ____D C:\Users\Todos os Usuários\X360CE 2018-12-16 14:57 - 2018-12-16 14:57 - 000000000 ____D C:\ProgramData\X360CE 2018-12-16 14:48 - 2018-12-16 14:49 - 000000000 ____D C:\Users\João\AppData\Roaming\DS4Windows 2018-12-16 14:37 - 2018-12-16 14:37 - 002511137 _____ C:\Users\João\Downloads\DrXd Gamerpaulo PCSX2 Bios 1.4.0.rar 2018-12-15 13:48 - 2018-12-15 13:48 - 000000221 _____ C:\Users\João\Desktop\VinesauceROMCorruptor.txt 2018-12-15 13:43 - 2015-01-15 00:18 - 000245760 _____ C:\Users\João\Desktop\Vinesauce ROM Corruptor.exe 2018-12-15 13:42 - 2018-12-15 13:42 - 000110417 _____ C:\Users\João\Downloads\Vinesauce ROM Corruptor v1.2.2.zip 2018-12-13 19:53 - 2018-12-13 19:53 - 000000000 ____D C:\Users\João\AppData\Local\_ 2018-12-13 19:12 - 2018-12-13 19:12 - 003019111 _____ C:\Users\João\Downloads\sprite.rar 2018-12-12 19:26 - 2018-12-25 22:55 - 000000000 ____D C:\Users\João\AppData\Roaming\Adobe 2018-12-12 00:06 - 2018-12-12 00:06 - 000000000 ____D C:\Users\Usuario\Documents\Klei 2018-12-11 19:42 - 2018-12-11 19:42 - 000000222 _____ C:\Users\João\Desktop\Transformice.url 2018-12-11 19:42 - 2018-12-11 19:42 - 000000000 ____D C:\Users\João\AppData\Roaming\steam.transformice.com 2018-12-11 14:57 - 2018-12-11 14:57 - 000000000 ____D C:\Users\João\AppData\Roaming\miniworddata410 2018-12-11 14:52 - 2018-12-11 14:52 - 000001047 _____ C:\Users\Usuario\Desktop\Mini World.lnk 2018-12-11 14:52 - 2018-12-11 14:52 - 000001031 _____ C:\Users\João\Desktop\Mini World.lnk 2018-12-11 14:52 - 2018-12-11 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mini World 2018-12-11 14:51 - 2018-12-27 13:28 - 000000000 ____D C:\Users\João\AppData\Roaming\miniworldOverseasgame 2018-12-11 14:51 - 2018-12-11 14:51 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mini World 2018-12-11 14:50 - 2018-12-11 14:51 - 003927240 _____ C:\Users\João\Downloads\mini_world_installation_package.exe 2018-12-11 14:38 - 2018-12-11 14:38 - 000000000 ____D C:\Users\João\AppData\LocalLow\Wix Games 2018-12-11 14:37 - 2018-12-11 14:51 - 073165349 _____ C:\Users\João\Downloads\Duck.Life.Battle.rar 2018-12-11 13:43 - 2018-12-11 13:43 - 000000907 _____ C:\Users\João\Desktop\nativelog.txt 2018-12-10 20:15 - 2018-12-10 20:15 - 000000000 ____D C:\Users\João\AppData\LocalLow\Rain 2018-12-10 20:12 - 2018-12-10 20:12 - 000000222 _____ C:\Users\João\Desktop\Teslagrad.url 2018-12-10 19:10 - 2018-12-10 19:10 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_84609 2018-12-10 19:09 - 2018-12-10 19:09 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_70123 2018-12-10 19:09 - 2018-12-10 19:09 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_60820 2018-12-10 19:09 - 2018-12-10 19:09 - 000000000 ____D C:\Users\João\AppData\Local\gm_ttt_48672 2018-12-10 19:07 - 2018-12-10 19:13 - 467600439 _____ C:\Users\João\Desktop\Five.Nights.at.Freddys.4.zip 2018-12-10 19:05 - 2018-12-10 19:06 - 000019006 _____ C:\Users\João\Downloads\Five Nights At Freddy's 4 By PretoMalaico.torrent 2018-12-08 14:52 - 2018-12-08 14:52 - 000002027 _____ C:\Users\Public\Desktop\Don't Starve.lnk 2018-12-08 14:51 - 2018-12-09 12:00 - 000000000 ____D C:\Program Files (x86)\Don't Starve 2018-12-08 14:38 - 2018-12-08 14:48 - 349103265 _____ C:\Users\João\Downloads\Dont Starve + DLC Reino dos Gigantes Canal-Player Dois.rar 2018-12-07 00:06 - 2018-12-13 00:26 - 000001301 _____ C:\Users\Usuario\Desktop\reembolsoxiamiboxtv.txt 2018-12-06 00:35 - 2018-12-06 00:35 - 000119296 _____ C:\Users\Usuario\Downloads\julho2018-legislacao-no-brasil.xls 2018-12-05 19:34 - 2018-12-05 20:41 - 000000000 ____D C:\Users\João\Documents\GTA San Andreas User Files 2018-12-05 19:33 - 2018-12-05 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer 2018-12-05 19:33 - 2018-12-05 19:33 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer 2018-12-05 19:32 - 2018-12-05 19:33 - 016290668 _____ C:\Users\João\Downloads\sa-mp-0.3.7-R2-install.exe 2018-12-05 19:28 - 2019-01-12 18:58 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2018-12-05 19:10 - 2018-12-05 19:23 - 689588989 _____ C:\Users\João\Downloads\GTA San Andreas FULL_[RiP] (1).rar 2018-12-02 16:35 - 2018-12-04 20:41 - 000000000 ____D C:\Users\João\Documents\GameMaker 2018-12-02 16:14 - 2018-12-03 12:42 - 000000000 ____D C:\Users\João\AppData\Local\gamemaker_studio 2018-12-02 16:14 - 2018-12-02 16:14 - 000000646 _____ C:\Users\João\Desktop\GameMaker Studio.lnk 2018-12-02 16:12 - 2018-12-02 16:12 - 000000000 ____D C:\Users\Todos os Usuários\gamemaker_studio 2018-12-02 16:12 - 2018-12-02 16:12 - 000000000 ____D C:\Users\Todos os Usuários\F75166FBC148C8EF00567551B9FB4165 2018-12-02 16:12 - 2018-12-02 16:12 - 000000000 ____D C:\ProgramData\gamemaker_studio 2018-12-02 16:12 - 2018-12-02 16:12 - 000000000 ____D C:\ProgramData\F75166FBC148C8EF00567551B9FB4165 2018-12-02 16:10 - 2018-12-06 20:00 - 000000000 ____D C:\Users\João\Desktop\GameMaker-Studio 2018-12-02 15:15 - 2018-12-02 15:15 - 303803744 _____ C:\Users\João\Downloads\GMS_141760.rar 2018-12-02 14:46 - 2018-12-02 14:47 - 000000000 ____D C:\Users\João\AppData\Roaming\GameMaker-Studio 2018-12-02 14:46 - 2018-12-02 14:47 - 000000000 ____D C:\Users\João\AppData\Local\GameMaker-Studio 2018-12-02 14:46 - 2018-12-02 14:46 - 000000000 ____D C:\Users\João\GameMaker-Studio 1.4 2018-12-02 14:46 - 2018-12-02 14:46 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.4 2018-12-02 14:44 - 2018-12-02 14:45 - 082082080 _____ C:\Users\João\Downloads\GMStudio-Installer-1.4.9999.exe 2018-12-02 13:17 - 2018-12-02 13:30 - 000000000 ____D C:\Users\João\AppData\Local\Game Dev Tycoon DEMO 2018-12-02 13:14 - 2018-12-02 13:15 - 054564454 _____ (Greenheart Games Pty. Ltd. ) C:\Users\João\Downloads\game-dev-tycoon-1-3-9-en-win.exe 2018-11-30 22:17 - 2018-11-30 22:17 - 008107522 _____ C:\Users\João\Downloads\GameMaker.zip 2018-11-30 22:17 - 2018-11-30 22:17 - 000001042 _____ C:\Users\Usuario\Desktop\Game Maker.lnk 2018-11-30 22:17 - 2018-11-30 22:17 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Maker 7 2018-11-30 22:17 - 2018-11-30 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Maker 7 2018-11-30 18:04 - 2018-12-01 00:00 - 000000000 ____D C:\Users\João\Documents\GameMakerStudio2 2018-11-30 18:03 - 2018-12-10 19:16 - 000000000 ____D C:\Users\João\AppData\Local\GameMakerStudio2 2018-11-30 18:01 - 2018-11-30 18:12 - 000000000 ____D C:\Users\Todos os Usuários\GameMakerStudio2 2018-11-30 18:01 - 2018-11-30 18:12 - 000000000 ____D C:\ProgramData\GameMakerStudio2 2018-11-30 18:01 - 2018-11-30 18:03 - 000000000 ____D C:\Users\João\AppData\Roaming\GameMakerStudio2 2018-11-30 17:49 - 2018-11-30 17:49 - 000000917 _____ C:\Users\Public\Desktop\GameMaker Studio 2.lnk 2018-11-30 17:49 - 2018-11-30 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameMaker Studio 2 2018-11-30 17:47 - 2018-11-30 17:49 - 000000000 ____D C:\Program Files\GameMaker Studio 2 2018-11-30 17:45 - 2018-11-30 17:46 - 187695880 _____ (YoYo Games Ltd) C:\Users\João\Downloads\GameMakerStudio-Installer-2.2.0.343.exe 2018-11-30 17:34 - 2019-01-24 02:40 - 000003134 _____ C:\Windows\System32\Tasks\{B34376E7-F8C0-4A7F-8340-F72574954309} 2018-11-30 16:56 - 2018-11-30 16:56 - 008183675 _____ () C:\Users\João\Downloads\game-maker-7.0.exe 2018-11-29 22:28 - 2018-11-29 22:28 - 000000000 ____D C:\Users\João\AppData\Local\BattlEye 2018-11-29 21:56 - 2018-11-29 21:56 - 000000222 _____ C:\Users\João\Desktop\Unturned.url 2018-11-29 18:27 - 2018-11-29 18:27 - 000000000 __SHD C:\found.010 2018-11-07 12:58 - 2018-11-07 12:58 - 000182336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VSCover150.dll ==================== Três meses (modificados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-01-24 10:54 - 2015-03-12 14:56 - 000000000 __SHD C:\AI_RecycleBin 2019-01-24 10:52 - 2016-12-10 21:30 - 000000000 ____D C:\Users\Usuario\AppData\Local\Glyph 2019-01-24 10:52 - 2016-12-10 21:30 - 000000000 ____D C:\Users\Todos os Usuários\Glyph 2019-01-24 10:52 - 2016-12-10 21:30 - 000000000 ____D C:\ProgramData\Glyph 2019-01-24 10:52 - 2016-12-10 21:30 - 000000000 ____D C:\Program Files (x86)\Glyph 2019-01-24 10:51 - 2015-01-09 19:59 - 000000000 ____D C:\Program Files (x86)\Steam 2019-01-24 10:50 - 2009-07-14 02:45 - 000016848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-01-24 10:50 - 2009-07-14 02:45 - 000016848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-01-24 10:47 - 2009-07-14 16:11 - 000000000 ____D C:\Windows\ShellNew 2019-01-24 10:41 - 2013-10-18 21:23 - 000000000 ___RD C:\Users\Usuario\Dropbox 2019-01-24 10:38 - 2017-12-01 00:05 - 011991010 _____ C:\Windows\ntbtlog.txt 2019-01-24 10:36 - 2015-03-21 00:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2019-01-24 10:34 - 2015-11-06 15:31 - 000000000 ____D C:\Users\Todos os Usuários\VMware 2019-01-24 10:34 - 2015-11-06 15:31 - 000000000 ____D C:\ProgramData\VMware 2019-01-24 10:34 - 2014-10-17 02:49 - 000000000 ____D C:\temp 2019-01-24 10:34 - 2013-11-01 22:45 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2019-01-24 10:32 - 2009-07-14 03:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-01-24 10:28 - 2017-11-30 23:08 - 000000000 ____D C:\AdwCleaner 2019-01-24 09:18 - 2017-11-30 23:19 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2019-01-24 09:17 - 2017-12-01 08:46 - 000000000 ____D C:\Users\Usuario\AppData\Local\AVAST Software 2019-01-24 07:55 - 2014-02-16 20:55 - 000000480 _____ C:\Users\Usuario\Downloads\Rust JackeD_[www.unknowncheats.me]_.zip 2019-01-24 07:02 - 2018-02-20 19:38 - 005062985 _____ C:\Users\João\Downloads\Não confirmado 709501.crdownload 2019-01-24 06:56 - 2018-01-10 21:52 - 000155530 _____ C:\Users\João\Downloads\Asshurt Trial.zip 2019-01-24 03:11 - 2016-07-30 15:53 - 000000000 ____D C:\Users\Usuario\AppData\Local\TortoiseGit 2019-01-24 03:07 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\system32\NDF 2019-01-24 02:40 - 2017-12-03 15:21 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software 2019-01-24 02:40 - 2016-09-03 02:14 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-01-24 02:40 - 2014-11-15 21:25 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-01-24 02:40 - 2013-10-29 19:47 - 000004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-01-24 00:06 - 2013-10-18 21:21 - 000000000 ____D C:\Users\Usuario\AppData\Roaming\Dropbox 2019-01-23 15:58 - 2018-07-13 17:27 - 000000000 ____D C:\Users\João\AppData\Local\AVAST Software 2019-01-22 23:20 - 2018-06-06 23:16 - 000000000 ____D C:\Users\João\BrawlhallaReplays 2019-01-22 00:24 - 2017-06-08 22:37 - 000000000 ____D C:\Users\João\AppData\Roaming\discord 2019-01-21 18:50 - 2017-05-13 15:36 - 000000000 ____D C:\Users\João\AppData\Local\VirtualStore 2019-01-20 02:31 - 2017-12-28 18:01 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2019-01-17 23:55 - 2013-04-26 04:54 - 000119152 _____ C:\Users\Usuario\AppData\Local\GDIPFONTCACHEV1.DAT 2019-01-16 23:40 - 2009-07-14 02:45 - 000643352 _____ C:\Windows\system32\FNTCACHE.DAT 2019-01-16 23:20 - 2018-07-12 17:27 - 000000000 ___HD C:\Program Files (x86)\Diebold 2019-01-16 22:20 - 2017-06-08 22:36 - 000000000 ____D C:\Users\João\AppData\Local\Discord 2019-01-16 13:33 - 2017-05-13 15:37 - 000119152 _____ C:\Users\João\AppData\Local\GDIPFONTCACHEV1.DAT 2019-01-16 13:12 - 2009-07-14 15:55 - 000705512 _____ C:\Windows\system32\prfh0416.dat 2019-01-16 13:12 - 2009-07-14 15:55 - 000145838 _____ C:\Windows\system32\prfc0416.dat 2019-01-16 13:12 - 2009-07-14 03:13 - 001644408 _____ C:\Windows\system32\PerfStringBackup.INI 2019-01-16 13:12 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\inf 2019-01-16 00:37 - 2013-04-26 05:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-01-12 19:02 - 2017-05-13 15:36 - 000000000 ___HD C:\Users\João 2019-01-12 18:57 - 2018-04-13 00:39 - 000000000 ___RD C:\Users\João\Desktop\tudo 2019-01-11 14:37 - 2013-07-06 19:25 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA 2019-01-11 14:37 - 2013-07-06 19:25 - 000000000 ____D C:\ProgramData\NVIDIA 2019-01-11 14:35 - 2014-06-25 22:29 - 000000000 ____D C:\Users\Usuario\AppData\Local\NVIDIA 2019-01-11 14:35 - 2014-02-09 15:46 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation 2019-01-11 14:35 - 2014-02-09 15:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-01-11 14:35 - 2013-04-26 05:10 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2019-01-11 14:35 - 2013-04-26 05:09 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2019-01-11 11:36 - 2014-06-24 20:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-01-10 13:53 - 2018-05-20 01:30 - 000000000 ____D C:\Users\João\AppData\LocalLow\Mozilla 2019-01-09 22:49 - 2018-03-11 01:10 - 000000000 ____D C:\Users\João\AppData\LocalLow\DefaultCompany 2019-01-09 22:48 - 2018-03-11 00:46 - 000000000 ____D C:\Users\João\AppData\Local\Unity 2019-01-09 22:07 - 2018-03-11 00:46 - 000000000 ____D C:\Users\Todos os Usuários\Unity 2019-01-09 22:07 - 2018-03-11 00:46 - 000000000 ____D C:\ProgramData\Unity 2019-01-07 11:25 - 2018-02-03 01:46 - 000000000 ____D C:\Program Files\Epic Games 2019-01-06 19:05 - 2018-06-17 17:02 - 000000000 ____D C:\Users\João\AppData\Roaming\Trove 2019-01-06 02:05 - 2014-11-25 23:41 - 000000000 ____D C:\Program Files (x86)\Wise 2019-01-05 19:36 - 2017-09-22 16:02 - 000000000 ____D C:\Program Files (x86)\BlueStacks 2019-01-05 18:26 - 2018-01-17 22:20 - 000000000 ____D C:\Users\João\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2019-01-05 12:31 - 2017-09-22 16:01 - 000000000 ____D C:\Users\João\AppData\Local\Bluestacks 2019-01-05 12:16 - 2014-06-01 03:28 - 000000000 ____D C:\Program Files (x86)\Origin Games 2019-01-05 12:15 - 2017-06-19 22:13 - 000000000 ____D C:\Users\João\AppData\Local\CrashDumps 2018-12-28 22:30 - 2013-06-07 00:14 - 000000000 ____D C:\Windows\system32\Macromed 2018-12-28 22:29 - 2016-09-04 05:18 - 000000000 ____D C:\Program Files\Java 2018-12-28 22:28 - 2014-11-21 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2018-12-25 22:53 - 2018-03-11 00:46 - 000000000 ____D C:\Users\João\AppData\LocalLow\Unity 2018-12-25 22:46 - 2018-03-11 00:46 - 000000000 ____D C:\Users\João\AppData\Roaming\Unity 2018-12-25 11:45 - 2014-12-26 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits 2018-12-25 11:44 - 2014-12-26 17:44 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache 2018-12-25 11:44 - 2014-12-26 17:44 - 000000000 ____D C:\ProgramData\Package Cache 2018-12-25 11:29 - 2014-12-25 02:23 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft 2018-12-25 11:29 - 2014-12-25 02:23 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-12-25 03:04 - 2014-12-26 17:51 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs 2018-12-25 02:57 - 2009-07-14 03:32 - 000000000 ____D C:\Program Files (x86)\MSBuild 2018-12-25 02:48 - 2013-04-26 05:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio ==================== Arquivos na raiz de alguns diretórios ======= 2016-09-04 06:36 - 2017-02-26 20:19 - 000000024 _____ () C:\Users\Usuario\29CA0000A35C46F1B38DF23BDE433555.dat 2016-09-04 06:21 - 2016-09-04 06:37 - 000000001 _____ () C:\Users\Usuario\7A1920D61156ABC05A60135AEFE8BC67.dat 2018-01-02 20:02 - 2018-01-02 20:02 - 000000000 _____ () C:\Program Files (x86)\content.zip 2016-04-13 03:04 - 2009-05-20 02:23 - 000024576 _____ () C:\Program Files (x86)\VolumeSerial.exe 2016-04-29 00:45 - 2016-04-29 01:04 - 000045270 _____ () C:\Users\Usuario\AppData\Roaming\room_v3.dat 2015-01-08 01:48 - 2015-01-08 01:48 - 000000000 ___SH () C:\Users\Usuario\AppData\Local\LumaEmu 2014-01-30 19:07 - 2014-12-25 02:02 - 000007617 _____ () C:\Users\Usuario\AppData\Local\Resmon.ResmonCfg 2016-09-14 15:17 - 2016-09-14 15:17 - 000000003 _____ () C:\Users\Usuario\AppData\Local\updater.log 2015-09-28 20:38 - 2017-05-06 23:17 - 000000425 _____ () C:\Users\Usuario\AppData\Local\UserProducts.xml Alguns arquivos em TEMP: ==================== 2019-01-24 03:13 - 2019-01-24 03:13 - 000000000 _____ () C:\Users\Usuario\AppData\Local\Temp\GURFCE5.exe ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\dllhost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dllhost.exe => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2019-01-04 17:42 ==================== Fim de FRST.txt ============================