Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 04-09-2019
Executado por m (administrador) em SUHEM-PC (Dell Inc. Inspiron 3421) (05-09-2019 17:07:56)
Executando a partir de C:\Users\m\Desktop
Perfis Carregados: Suhem & m (Perfis Disponíveis: Suhem & m)
Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Opera)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\77.0.3865.32\remoting_host.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\77.0.3865.32\remoting_host.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Softomotive Ltd. -> Softomotive) C:\Program Files\WinAutomation Web Extensions\WinAutomation.ChromeMessageHost.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [269192 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-24] (Intel Corporation -> Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-2615763814-1476084662-503925195-1000\...\Run: [Google Update] => C:\Users\Suhem\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateCore.exe [605992 2018-12-19] (Google Inc -> Google Inc.)
HKU\S-1-5-21-2615763814-1476084662-503925195-1001\...\Run: [GoogleChromeAutoLaunch_9D79C8DEC6ABA3AF64B21DB297FA6AC6] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1678832 2019-08-23] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-26] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2019-05-07]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO

==================== Tarefas Agendadas (Whitelisted) =============

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

Task: {1A858C7B-61B8-4C6B-9CF5-8981642FCCBB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-30] (Google Inc -> Google LLC)
Task: {29CC4656-87E9-46A5-ABF7-7CA752EB0EB8} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [3732480 2018-12-03] () [Arquivo não assinado]
Task: {2D2C2E38-F02B-49F4-AE3B-477BCAA16A9D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2615763814-1476084662-503925195-1000Core => C:\Users\Suhem\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-12-03] (Google Inc -> Google Inc.)
Task: {761CF686-0FBC-4F7B-B0C6-03E2972A677B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3940232 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
Task: {7F130FF0-231E-4F1C-B38F-77EF1532AA1F} - System32\Tasks\Opera scheduled Autoupdate 1567637478 => C:\Users\m\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-09-03] (Opera Software AS -> Opera Software)
Task: {8D29DE0C-2EC6-42BC-9BB5-416BE865E15A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-30] (Google Inc -> Google LLC)
Task: {C6136911-C83E-4F50-8C43-24C6C154E3F1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {E9DDE154-12F1-4FD0-A25B-E3B28513B198} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {EA657311-9C21-4AD2-A5BF-682226F78D96} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2615763814-1476084662-503925195-1000UA => C:\Users\Suhem\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-12-03] (Google Inc -> Google Inc.)

(Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.)


==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2585106B-669B-4C02-A00E-3D7F9501F4BD}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{82CD24C0-4720-4B79-A40A-1827AE201F92}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2615763814-1476084662-503925195-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [Arquivo não assinado]
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2615763814-1476084662-503925195-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Suhem\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin HKU\S-1-5-21-2615763814-1476084662-503925195-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Suhem\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\m\AppData\Local\Google\Chrome\User Data\Default [2019-09-05]
CHR Extension: (Apresentações) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-30]
CHR Extension: (Documentos) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-30]
CHR Extension: (Google Drive) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-30]
CHR Extension: (YouTube) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-30]
CHR Extension: (Planilhas) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-30]
CHR Extension: (Área de trabalho remota do Google Chrome) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-08-02]
CHR Extension: (Documentos Google off-line) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-02]
CHR Extension: (AdBlock) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-29]
CHR Extension: (Chrome Remote Desktop) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-07-23]
CHR Extension: (Chrome RDP for Google Cloud Platform) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbbnannobiobpnfblimoapbephgifkm [2019-07-28]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-04-30]
CHR Extension: (Gmail) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-24]
CHR Extension: (Softomotive Automation) - C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkpoicdhlhooickgibfkpebpfpfkhgln [2019-05-11]
CHR HKLM\...\Chrome\Extension: [pkpoicdhlhooickgibfkpebpfpfkhgln] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pkpoicdhlhooickgibfkpebpfpfkhgln] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.Q57OVG36SZX2LEFDHVJFYLUIOU - C:\Users\Suhem\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6797008 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [414976 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\77.0.3865.32\remoting_host.exe [73200 2019-08-12] (Google LLC -> Google Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319096 2016-01-13] (Intel Corporation - pGFX -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11446104 2019-04-24] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37320 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [209256 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [263224 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206056 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61688 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279336 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42504 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [168896 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112520 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88160 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477288 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225816 2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [387688 2019-08-05] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [4162560 2015-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-04-27] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [26968 2019-01-31] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-04] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-09-05] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-05] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-05] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-09-04] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [188992 2016-02-09] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [413912 2015-12-22] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [46408 2019-01-31] (SteelSeries ApS -> SteelSeries ApS)
S3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [46520 2019-01-31] (SteelSeries ApS -> SteelSeries ApS)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três meses (criados) ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2019-09-05 17:03 - 2019-09-05 17:07 - 000029345 _____ C:\Users\m\Desktop\Addition.txt
2019-09-05 16:59 - 2019-09-05 17:16 - 000020219 _____ C:\Users\m\Desktop\FRST.txt
2019-09-05 16:58 - 2019-09-05 17:07 - 000000000 ____D C:\FRST
2019-09-05 16:57 - 2019-09-05 16:57 - 001615360 _____ (Farbar) C:\Users\m\Desktop\FRST64.exe
2019-09-05 16:50 - 2019-09-05 16:50 - 000003068 _____ C:\Users\m\Desktop\fixlist.txt
2019-09-05 11:19 - 2019-09-05 11:19 - 000000000 ____D C:\Users\m\Desktop\APOSTILA EM REVISÃO
2019-09-05 08:57 - 2019-09-05 08:57 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-04 20:48 - 2019-09-05 08:57 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-04 20:48 - 2019-09-04 20:48 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-04 20:48 - 2019-09-04 20:48 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-04 20:48 - 2019-09-04 20:48 - 000000000 ____D C:\Users\m\AppData\Local\mbamtray
2019-09-04 20:48 - 2019-09-04 20:48 - 000000000 ____D C:\Users\m\AppData\Local\mbam
2019-09-04 20:47 - 2019-09-05 08:55 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-04 20:47 - 2019-09-04 20:47 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-04 20:47 - 2019-09-04 20:47 - 000000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2019-09-04 20:47 - 2019-09-04 20:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-04 20:47 - 2019-09-04 20:47 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-04 20:47 - 2019-09-04 20:47 - 000000000 ____D C:\Program Files\Malwarebytes
2019-09-04 20:47 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-04 20:44 - 2019-09-04 20:45 - 064333800 _____ (Malwarebytes ) C:\Users\m\Downloads\mb3-setup-43841.43841-3.8.3.2965-1.0.613-1.0.11270.exe
2019-09-04 20:03 - 2019-09-04 20:03 - 000000000 ____D C:\Windows\Minidump
2019-09-04 19:51 - 2019-09-04 19:51 - 000004028 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1567637478
2019-09-04 19:51 - 2019-09-04 19:51 - 000001266 _____ C:\Users\m\Desktop\Navegador Opera.lnk
2019-09-04 19:51 - 2019-09-04 19:51 - 000001266 _____ C:\Users\m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2019-09-04 19:51 - 2019-09-04 19:51 - 000000000 ____D C:\Users\m\AppData\Local\Opera Software
2019-09-04 19:48 - 2019-09-04 19:48 - 002401792 _____ (Opera Software) C:\Users\m\Downloads\OperaSetup.exe
2019-09-04 19:48 - 2019-09-04 19:48 - 000000000 ____D C:\Users\m\AppData\Roaming\Opera Software
2019-09-04 16:12 - 2019-09-04 16:12 - 000000925 _____ C:\Users\m\Desktop\Profit.lnk
2019-09-04 16:12 - 2019-09-04 16:12 - 000000000 ____D C:\Users\m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nelogica
2019-09-04 16:11 - 2019-09-04 16:11 - 000000000 ____D C:\Users\m\AppData\Roaming\Nelogica
2019-09-04 16:04 - 2019-09-04 16:04 - 006318080 _____ (Nelogica) C:\Users\m\Downloads\Profit.exe
2019-09-04 15:03 - 2019-09-04 15:03 - 000000000 ____D C:\Users\m\Documents\Apowersoft
2019-09-04 15:02 - 2019-09-04 15:03 - 000000000 ____D C:\Users\m\AppData\Roaming\Apowersoft
2019-09-04 15:02 - 2019-09-04 15:02 - 000000000 ____D C:\Users\m\AppData\Local\Apowersoft
2019-09-04 15:01 - 2019-09-04 15:01 - 001233768 _____ (Apowersoft Ltd. ) C:\Users\m\Downloads\apowersoft-online-launcher.exe
2019-09-03 14:32 - 2019-09-03 14:32 - 000000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2019-09-03 14:32 - 2019-09-03 14:32 - 000000000 ___HD C:\Users\Todos os Usuários\CanonBJ
2019-09-03 14:32 - 2019-09-03 14:32 - 000000000 ___HD C:\ProgramData\CanonBJ
2019-09-03 14:32 - 2019-09-03 14:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP250 series
2019-09-03 14:31 - 2019-09-03 14:31 - 000000000 ___HD C:\Program Files\CanonBJ
2019-09-03 14:31 - 2010-04-24 05:00 - 000336896 _____ (CANON INC.) C:\Windows\system32\CNMLM9W.DLL
2019-09-03 14:31 - 2009-04-03 16:01 - 001321984 _____ (CANON INC.) C:\Windows\system32\CNC250C.dll
2019-09-03 14:31 - 2009-04-03 16:00 - 000092672 _____ (CANON INC.) C:\Windows\system32\CNC250I.dll
2019-09-03 14:31 - 2009-04-03 15:57 - 000106496 _____ (CANON INC.) C:\Windows\SysWOW64\CNC250U.dll
2019-09-03 14:31 - 2009-03-18 09:10 - 000244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9W.DLL
2019-09-03 14:31 - 2009-03-11 11:36 - 000328192 _____ (CANON INC.) C:\Windows\system32\CNC250L.dll
2019-09-03 14:31 - 2009-03-11 11:34 - 000303104 _____ (CANON INC.) C:\Windows\SysWOW64\CNC250L.dll
2019-09-03 14:31 - 2009-02-04 13:18 - 000104960 _____ (Canon Inc.) C:\Windows\system32\CNC250O.dll
2019-09-03 14:31 - 2008-11-18 19:57 - 000012288 _____ C:\Windows\SysWOW64\CNC173AD.TBL
2019-09-03 14:31 - 2008-11-18 19:57 - 000012288 _____ C:\Windows\system32\CNC173AD.TBL
2019-09-03 14:31 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll
2019-09-03 14:31 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2019-09-03 14:30 - 2019-09-03 14:30 - 021060752 _____ C:\Users\m\Downloads\mp68-win-mp250-1_05-ea24.exe
2019-09-03 11:37 - 2019-09-03 11:37 - 000000000 _____ C:\Users\m\Desktop\Novo Documento de Texto (2).txt
2019-09-02 10:24 - 2019-09-02 10:24 - 011103944 _____ C:\Users\m\Downloads\_Apostila_Completa 1 (1).pdf
2019-09-02 10:08 - 2019-09-02 10:08 - 011103944 _____ C:\Users\m\Desktop\_Apostila_Completa 1.pdf
2019-08-30 16:00 - 2019-09-02 11:23 - 000000000 ____D C:\Users\m\Desktop\postagens
2019-08-30 14:25 - 2019-08-30 14:25 - 000704706 _____ C:\Users\m\Documents\VOucher matheus.pdf
2019-08-30 14:22 - 2019-08-30 14:22 - 001404818 _____ C:\Users\m\Documents\voucher wilson.pdf
2019-08-30 12:58 - 2019-09-03 14:27 - 000000000 ____D C:\Users\m\AppData\Local\ElevatedDiagnostics
2019-08-29 13:10 - 2019-08-29 13:10 - 000001355 _____ C:\Users\m\Documents\GBPUSDconservative.set
2019-08-29 12:00 - 2019-08-29 12:00 - 000000000 ___SD C:\Users\m\AppData\LocalLow\Temp
2019-08-28 14:04 - 2019-08-28 14:04 - 000302502 _____ C:\Users\m\Downloads\Antique EX.08.zip
2019-08-28 11:53 - 2019-08-28 11:53 - 000016028 _____ C:\Users\m\Downloads\Bunny_scalper_k_Set.zip
2019-08-27 13:48 - 2019-08-27 13:48 - 000181183 _____ C:\Users\m\Downloads\Nubank_2019-08-20.pdf
2019-08-27 12:39 - 2019-08-27 12:39 - 001241944 _____ (MetaQuotes Software Corp.) C:\Users\m\Downloads\pepperstone4setup.exe
2019-08-27 12:39 - 2019-08-27 12:39 - 000002043 _____ C:\Users\Public\Desktop\MetaEditor 4.lnk
2019-08-27 12:39 - 2019-08-27 12:39 - 000002029 _____ C:\Users\Public\Desktop\Pepperstone MetaTrader 4.lnk
2019-08-27 12:39 - 2019-08-27 12:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pepperstone MetaTrader 4
2019-08-27 12:39 - 2019-08-27 12:39 - 000000000 ____D C:\Program Files (x86)\Pepperstone MetaTrader 4
2019-08-26 14:01 - 2019-08-26 14:02 - 233817805 _____ C:\Users\m\Downloads\Aula 16 7.4 estrategia de continuacao da tendencia com fibonacci.mp4
2019-08-26 10:53 - 2019-08-26 10:53 - 000077976 _____ C:\Users\m\Downloads\forex-bot.xml
2019-08-26 10:53 - 2019-08-26 10:53 - 000077976 _____ C:\Users\m\Desktop\forex-bot (1).xml
2019-08-07 14:12 - 2019-08-07 14:12 - 000134970 _____ C:\Users\m\Downloads\WhatsApp Image 2019-08-07 at 14.10.02.jpeg
2019-08-07 11:32 - 2019-08-07 11:32 - 000153264 _____ C:\Users\m\Downloads\Logo Your Capital.rar
2019-08-07 11:32 - 2019-08-07 11:32 - 000153264 _____ C:\Users\m\Downloads\Logo Your Capital (1).rar
2019-08-06 15:14 - 2019-08-06 15:14 - 000020176 _____ C:\Users\m\Downloads\EA_NUMULÁRIO 2.0 OFICIAL 250347191 2.5.ex4
2019-08-04 10:14 - 2019-08-04 10:14 - 000366636 _____ C:\Users\m\Downloads\Controle Day Trade T7 (1).xlsm
2019-08-04 10:03 - 2019-08-04 10:04 - 000052232 _____ C:\Users\m\Downloads\Auto Order T7.rar
2019-08-01 13:20 - 2019-08-01 13:20 - 000207957 _____ C:\Users\m\Downloads\matheus expertbot 10$.xml
2019-07-30 15:33 - 2019-07-30 15:33 - 000207957 _____ C:\Users\m\Downloads\matheus expertbot.xml
2019-07-29 17:02 - 2019-07-29 17:03 - 000070851 _____ C:\Users\m\Downloads\DIGITDIFF PRO.xml
2019-07-29 10:39 - 2019-07-29 10:39 - 000207971 _____ C:\Users\m\Downloads\binary-bot.xml
2019-07-29 10:22 - 2019-07-29 10:22 - 000208572 _____ C:\Users\m\Downloads\bot matheus (1).xml
2019-07-29 10:17 - 2019-07-29 10:17 - 000209564 _____ C:\Users\m\Downloads\bot matheus.xml
2019-07-28 17:12 - 2019-07-28 17:12 - 000019951 _____ C:\Users\m\Downloads\Bumblebee 2.0. (Espera uma sequencia consecutiva de odd para operar).xml
2019-07-28 13:38 - 2019-07-28 13:38 - 000019918 _____ C:\Users\m\Downloads\EA_NUMULÁRIO 2.0 OFICIAL 250347191 0.70.ex4
2019-07-28 12:05 - 2019-08-28 14:48 - 000000068 _____ C:\Users\m\Desktop\Novo Documento de Texto.txt
2019-07-27 10:48 - 2019-07-27 10:48 - 000000000 ____D C:\Windows\system32\appmgmt
2019-07-26 19:15 - 2019-07-26 19:16 - 003363031 _____ C:\Users\m\Downloads\LanWatch.rar
2019-07-26 15:02 - 2019-08-09 12:06 - 000000000 ____D C:\Users\m\Documents\area de trabalho
2019-07-26 14:50 - 2019-07-26 14:50 - 002020504 _____ C:\Users\m\Downloads\FXBluePersonalTradeCopierforMT4Setup.zip
2019-07-22 19:32 - 2019-07-22 19:32 - 000079067 _____ C:\Users\m\Downloads\1013.pdf
2019-07-21 23:34 - 2019-07-21 23:34 - 000071945 _____ C:\Users\m\Downloads\Bots Curso Vip.zip
2019-07-20 10:48 - 2019-07-20 10:49 - 029139757 _____ C:\Users\m\Downloads\Binance.apk
2019-07-20 10:23 - 2019-07-20 10:23 - 000097128 _____ C:\Users\m\Downloads\WhatsApp Image 2019-07-20 at 10.24.22.jpeg
2019-07-20 10:16 - 2019-07-20 10:16 - 000201703 _____ C:\Users\m\Downloads\WhatsApp Image 2019-07-20 at 10.16.23.jpeg
2019-07-20 10:16 - 2019-07-20 10:16 - 000201703 _____ C:\Users\m\Downloads\WhatsApp Image 2019-07-20 at 10.16.23 (2).jpeg
2019-07-20 10:16 - 2019-07-20 10:16 - 000163285 _____ C:\Users\m\Downloads\WhatsApp Image 2019-07-20 at 10.16.23 (1).jpeg
2019-07-17 13:48 - 2019-07-17 13:48 - 000000000 ___HD C:\$AV_ASW
2019-07-08 16:33 - 2019-07-08 16:33 - 000231734 _____ C:\Users\m\Downloads\bat eth (1).csv
2019-07-08 16:31 - 2019-07-08 16:31 - 000193702 _____ C:\Users\m\Downloads\tem eth.csv
2019-07-08 16:30 - 2019-07-08 16:30 - 000328726 _____ C:\Users\m\Downloads\negocie btc.csv
2019-07-08 16:30 - 2019-07-08 16:30 - 000327014 _____ C:\Users\m\Downloads\tem btc.csv
2019-07-08 16:29 - 2019-07-08 16:29 - 000201824 _____ C:\Users\m\Downloads\bat real.csv
2019-07-08 16:28 - 2019-07-08 16:29 - 000231734 _____ C:\Users\m\Downloads\bat eth.csv
2019-07-08 16:27 - 2019-07-08 16:27 - 000154980 _____ C:\Users\m\Downloads\tem btc real.csv
2019-07-08 16:26 - 2019-07-08 16:26 - 000365672 _____ C:\Users\m\Downloads\negocie coins real.csv
2019-07-08 16:25 - 2019-07-08 16:25 - 000080482 _____ C:\Users\m\Downloads\Historico tembtc.csv
2019-07-07 22:02 - 2019-07-07 22:02 - 000053138 _____ C:\Users\m\Documents\e157b7_3dcd656f6c3d4539b66dffa2f0bf9d63_mv2_d_1435_1375_s_2.webp
2019-07-03 18:59 - 2019-07-26 14:52 - 000000000 ____D C:\Program Files (x86)\FBS Trader 4
2019-07-03 18:59 - 2019-07-03 18:59 - 000000000 ____D C:\Users\Todos os Usuários\MetaQuotes
2019-07-03 18:59 - 2019-07-03 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FBS Trader 4
2019-07-03 18:59 - 2019-07-03 18:59 - 000000000 ____D C:\ProgramData\MetaQuotes
2019-07-03 18:58 - 2019-08-27 12:39 - 000000000 ____D C:\Users\m\AppData\Roaming\MetaQuotes
2019-07-03 18:58 - 2019-07-03 18:58 - 001272432 _____ (MetaQuotes Software Corp.) C:\Users\m\Downloads\fbs4setup.exe
2019-06-30 22:54 - 2019-06-30 22:54 - 000366636 _____ C:\Users\m\Downloads\Controle Day Trade T7.xlsm
2019-06-28 21:46 - 2019-06-28 21:46 - 000000000 ____D C:\Users\m\AppData\Roaming\AVAST Software
2019-06-28 21:46 - 2019-06-28 21:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-06-28 21:39 - 2019-09-04 20:09 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-06-28 21:39 - 2019-08-27 14:14 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-06-28 21:38 - 2019-08-05 09:39 - 000387688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-06-28 21:38 - 2019-07-31 09:39 - 001030784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-06-28 21:38 - 2019-07-31 09:39 - 000168896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-06-28 21:38 - 2019-06-28 21:38 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-06-28 21:38 - 2019-06-28 21:37 - 000477288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000363400 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-06-28 21:38 - 2019-06-28 21:37 - 000279336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000263224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000225816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000209256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000206056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000112520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000088160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000061688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000042504 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-06-28 21:38 - 2019-06-28 21:37 - 000037320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2019-06-28 21:37 - 2019-06-28 21:37 - 001922395 _____ C:\Users\m\Downloads\1_5150418429383016532 (1).torrent
2019-06-28 21:36 - 2019-06-28 21:38 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2019-06-28 21:36 - 2019-06-28 21:38 - 000000000 ____D C:\ProgramData\AVAST Software
2019-06-28 21:36 - 2019-06-28 21:36 - 000000000 ____D C:\Users\m\AppData\Local\WebDiscoverBrowser
2019-06-28 21:36 - 2019-06-28 21:36 - 000000000 ____D C:\Program Files\AVAST Software
2019-06-28 21:35 - 2019-09-05 09:33 - 000000000 ____D C:\Program Files\WebDiscoverBrowser
2019-06-28 21:35 - 2019-06-28 21:35 - 000001762 _____ C:\Users\m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2019-06-28 21:33 - 2019-06-28 21:34 - 018475056 _____ (BitTorrent, Inc.) C:\Users\m\Downloads\utweb_installer.exe
2019-06-28 21:31 - 2019-06-28 21:35 - 456758258 _____ C:\Users\m\Downloads\20° ESTRATEGIA AGUIA-20190627T205358Z-001.zip
2019-06-28 21:30 - 2019-06-28 21:30 - 001922395 _____ C:\Users\m\Downloads\1_5150418429383016532.torrent
2019-06-27 12:27 - 2019-06-27 12:27 - 003742006 _____ C:\Users\m\Downloads\APOSTILA+MARCOS+MENEZES.pdf
2019-06-19 22:25 - 2019-06-19 22:25 - 000000165 ____H C:\Users\m\Desktop\~$planilha Gerenciamento.xlsx
2019-06-18 11:58 - 2019-06-18 11:58 - 000045963 _____ C:\Users\m\Downloads\aulas básico.pdf
2019-06-17 16:35 - 2019-06-17 16:35 - 000017562 _____ C:\Users\m\Downloads\decisão autos 0014828-16.2019.8.16.0001
2019-06-17 16:35 - 2019-06-17 16:35 - 000017562 _____ C:\Users\m\Downloads\decisão autos 0014828-16.2019.8.16 (2).0001
2019-06-17 16:35 - 2019-06-17 16:35 - 000017562 _____ C:\Users\m\Downloads\decisão autos 0014828-16.2019.8.16 (1).0001
2019-06-17 16:25 - 2019-06-17 16:25 - 000910305 _____ C:\Users\m\Downloads\PTT-20190617-WA0072.opus
2019-06-17 16:17 - 2019-06-17 16:17 - 000041878 _____ C:\Users\m\Downloads\BTC BR2EX editada matheus lauar.xlsx
2019-06-15 14:47 - 2019-06-15 14:48 - 000009534 _____ C:\Users\m\AppData\Local\WiDiSetupLog.20190615.144714.txt
2019-06-15 14:46 - 2019-06-15 14:46 - 000000000 ____D C:\SWTOOLS
2019-06-14 23:15 - 2019-06-14 23:21 - 226375400 _____ (Lenovo Group Limited ) C:\Users\m\Downloads\w1iwd02us17.exe
2019-06-12 23:42 - 2019-06-12 23:42 - 000094208 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.38.55.jpeg
2019-06-12 23:29 - 2019-06-12 23:29 - 000085443 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.28.10.jpeg
2019-06-12 23:24 - 2019-06-12 23:24 - 000148950 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.14.51.jpeg
2019-06-12 23:24 - 2019-06-12 23:24 - 000142917 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.14.51 (1).jpeg
2019-06-12 23:24 - 2019-06-12 23:24 - 000113704 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.16.55 (1).jpeg
2019-06-12 23:24 - 2019-06-12 23:24 - 000098121 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.22.12.jpeg
2019-06-12 23:24 - 2019-06-12 23:24 - 000086135 _____ C:\Users\m\Downloads\WhatsApp Image 2019-06-12 at 23.16.55.jpeg

==================== Três meses (modificados) ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2019-09-05 09:33 - 2018-12-03 16:59 - 000000000 ____D C:\Users\Suhem\AppData\Roaming\Auslogics
2019-09-05 09:33 - 2018-12-03 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2019-09-05 09:05 - 2009-07-14 01:45 - 000022928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-05 09:05 - 2009-07-14 01:45 - 000022928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-05 09:00 - 2018-12-03 16:31 - 000003758 _____ C:\Windows\System32\Tasks\AutoKMS
2019-09-05 08:55 - 2019-02-14 12:59 - 000000000 __SHD C:\Users\m\IntelGraphicsProfiles
2019-09-05 08:52 - 2019-02-14 12:59 - 000000000 ____D C:\Users\m
2019-09-05 08:52 - 2012-01-25 06:46 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-09-05 08:52 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-04 19:42 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2019-09-04 16:16 - 2019-02-14 13:00 - 000001385 _____ C:\Users\m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2019-09-04 16:16 - 2019-02-14 12:59 - 000001419 _____ C:\Users\m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2019-09-03 14:32 - 2009-07-14 00:20 - 000000000 __RSD C:\Windows\Media
2019-09-03 14:25 - 2011-04-12 10:40 - 000705268 _____ C:\Windows\system32\prfh0416.dat
2019-09-03 14:25 - 2011-04-12 10:40 - 000147108 _____ C:\Windows\system32\prfc0416.dat
2019-09-03 14:25 - 2009-07-14 02:13 - 001633534 _____ C:\Windows\system32\PerfStringBackup.INI
2019-08-30 12:58 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF
2019-08-27 14:14 - 2019-05-01 20:21 - 000003856 _____ C:\Windows\System32\Tasks\BlueStacksHelper
2019-08-27 14:14 - 2019-04-30 23:37 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-08-27 14:14 - 2019-04-30 23:37 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-08-27 14:14 - 2012-01-25 07:04 - 000003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2615763814-1476084662-503925195-1000UA
2019-08-27 14:14 - 2012-01-25 07:04 - 000003406 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2615763814-1476084662-503925195-1000Core
2019-08-26 15:35 - 2019-04-30 23:39 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-09 11:35 - 2019-05-05 19:43 - 000000000 ____D C:\Users\m\.junique
2019-08-09 09:20 - 2019-05-05 19:42 - 000000000 ____D C:\Tryd5

==================== Arquivos na raiz de alguns diretórios ================

2019-06-15 14:47 - 2019-06-15 14:48 - 000009534 _____ () C:\Users\m\AppData\Local\WiDiSetupLog.20190615.144714.txt

==================== SigCheck ===============================

(Não há correção automática para arquivos que não passaram na verificação.)


LastRegBack: 2019-09-03 13:25
==================== Fim de FRST.txt ============================