Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 11-10-2017
Executado por Avell (administrador) em AVELL-PC (11-10-2017 21:11:30)
Executando a partir de C:\Users\Avell\Desktop
Perfis Carregados: Avell (Perfis Disponíveis: Avell)
Platform: Windows 10 Home Single Language Versão 1703 170317-1834 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
() C:\Windows\SysWOW64\spdsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(InstallShield®) C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Spotify Ltd) C:\Users\Avell\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Hotkey\Hotkey.exe
(Intel® Corporation) C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3358952 2015-09-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2014-04-17] (Microsoft Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-05-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2017-06-29] (LogMeIn Inc.)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-08-19] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-01] (Caixa Economica Federal)
Winlogon\Notify\ GbPluginUni: C:\Program Files (x86)\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Discord] => C:\Users\Avell\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [ares] => "C:\Program Files (x86)\Ares\Ares.exe" -h
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Spotify] => C:\Users\Avell\AppData\Roaming\Spotify\Spotify.exe [20644976 2017-10-10] (Spotify Ltd)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Google Update] => C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-10-09] (Google Inc.)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Spotify Web Helper] => C:\Users\Avell\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-10-10] (Spotify Ltd)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\RunOnce: [Application Restart #0] => C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe [1451352 2017-09-21] (Google Inc.)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\MountPoints2: {a96dd8ea-3faf-11e7-835a-80fa5b06c700} - "E:\Setup.exe"
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1867432 2015-09-01] (Caixa Economica Federal)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1896320 2015-08-19] (Banco do Brasil)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk [2014-07-08]
ShortcutTarget: Hotkey.lnk -> C:\Program Files (x86)\Hotkey\Hotkey.exe ()
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATENÇÃO (Restrição - ProxySettings)
ProxyEnable: [HKLM] => Proxy está habilitado.
ProxyEnable: [HKLM-x32] => Proxy está habilitado.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
AutoConfigURL: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
Tcpip\..\Interfaces\{4c114148-a788-4809-8dd1-dc9148f2283b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{de347f83-a07a-4447-9e9a-48ce13b1b89e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
HKU\S-1-5-21-3550370124-900119270-705083369-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.avell.com.br/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-05-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-06-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-05-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-08-19] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-01] (Caixa Economica Federal)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-06-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-04-01] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: fule8a6l.default
FF ProfilePath: C:\Users\Avell\AppData\Roaming\Mozilla\Firefox\Profiles\fule8a6l.default [2016-09-27]
FF Extension: (Sem Nome) - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [não encontrado (a)]
FF HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\cef\xpi => não encontrado (a)
FF HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E8873}] - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\uni\xpi
FF Extension: (Guardião - Itaú 30 horas) - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\uni\xpi [2015-01-28] [não assinado]
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-05-31] (Adobe Systems)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Avell\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-26] (Raidcall)
FF Plugin-x32: @raidcall.tw/RCplugin -> C:\Users\Avell\AppData\Roaming\RCTW\plugins\nprcplugin.dll [2013-06-25] (Raidcall)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-05-31] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-09] (Google Inc.)
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-09] (Google Inc.)
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: gastecnologia.com.br/sf/cef64 -> C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [Nenhum Arquivo]
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: gastecnologia.com.br/sf/uni -> C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-01-21] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default [2017-10-11]
CHR Extension: (Google Docs) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-14]
CHR Extension: (Google Drive) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google Search) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-19]
CHR Extension: (AdBlock) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-10-03]
CHR Extension: (Pinterest Save Button) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-10-11]
CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2014-11-12]
CHR Extension: (Botão do Google Acadêmico) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2017-10-09]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-21]
CHR Extension: (Gmail) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Extension: (Chrome Media Router) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-05-31] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530376 2017-09-06] ()
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [155872 2015-09-17] (ELAN Microelectronics Corp.)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3418024 2017-06-29] (LogMeIn Inc.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-23] (Hi-Rez Studios) [Arquivo não assinado]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-08-09] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-08-18] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2147216 2017-05-13] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3116440 2017-05-13] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2016-02-27] ()
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [46080 2013-07-09] () [Arquivo não assinado]
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [491328 2015-12-05] ()
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2016-01-28] ()
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel Corporation)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [33240 2015-12-09] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 AirplaneModeHid; C:\WINDOWS\system32\DRIVERS\AirplaneModeHid.sys [33488 2015-06-25] (Insyde Corporation)
R3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2015-10-07] (Windows (R) Win 7 DDK provider)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [84472 2015-10-07] (ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S1 gbpddfac; C:\WINDOWS\System32\drivers\gbpddfac64.sys [28888 2015-11-11] (GAS Tecnologia)
S1 gbpddfac; C:\Windows\SysWOW64\drivers\gbpddfac64.sys [28888 2015-08-26] (GAS Tecnologia)
S3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia)
U5 ggsomc; C:\Windows\System32\Drivers\ggsomc.sys [30424 2015-10-31] (Sony Mobile Communications)
R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2017-02-27] (LogMeIn Inc.)
R1 legendasdrv; C:\WINDOWS\System32\drivers\legendasdrv.sys [59120 2015-12-04] (Windows (R) Win 7 DDK provider)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvcvi.inf_amd64_af15def5b994a8ba\nvlddmkm.sys [15610296 2017-08-10] (NVIDIA Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvcvi.inf_amd64_af15def5b994a8ba\nvpciflt.sys [47032 2017-08-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-21] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-10-11 21:11 - 2017-10-11 21:12 - 000024089 _____ C:\Users\Avell\Desktop\FRST.txt
2017-10-11 21:11 - 2017-10-11 21:11 - 002401792 _____ (Farbar) C:\Users\Avell\Desktop\FRST64.exe
2017-10-11 21:11 - 2017-10-11 21:11 - 000000000 ____D C:\FRST
2017-10-11 21:10 - 2017-10-11 21:10 - 001797632 _____ (Farbar) C:\Users\Avell\Desktop\FRST.exe
2017-10-11 20:48 - 2017-10-11 20:48 - 008250832 _____ (Malwarebytes) C:\Users\Avell\Downloads\adwcleaner_7.0.3.1.exe
2017-10-11 20:46 - 2017-10-11 20:52 - 000000000 ____D C:\AdwCleaner
2017-10-11 20:45 - 2017-10-11 20:45 - 008162248 _____ (Malwarebytes) C:\Users\Avell\Downloads\adwcleaner-7-0-0-0.exe
2017-10-11 15:42 - 2017-10-11 15:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-3550370124-900119270-705083369-1001
2017-10-10 03:07 - 2017-10-10 03:07 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign8ba35dd2d640b2fd
2017-10-10 03:07 - 2017-10-10 03:07 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign3aa24a14aeb077ee
2017-10-09 02:00 - 2017-10-11 21:07 - 000002497 _____ C:\Users\Avell\Desktop\Google Chrome.lnk
2017-10-09 02:00 - 2017-10-09 02:00 - 000002505 _____ C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-09 01:59 - 2017-10-09 01:59 - 000003842 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3550370124-900119270-705083369-1001UA
2017-10-09 01:59 - 2017-10-09 01:59 - 000003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3550370124-900119270-705083369-1001Core
2017-10-06 08:52 - 2017-10-06 10:36 - 000000000 ____D C:\Users\Avell\AppData\LocalLow\uTorrent
2017-10-05 18:38 - 2017-10-05 18:38 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú
2017-10-02 18:13 - 2017-10-02 18:13 - 000000000 ____D C:\Users\Avell\AppData\Local\FortniteGame
2017-10-02 12:14 - 2017-10-02 12:14 - 000000000 ____D C:\Program Files\Epic Games
2017-10-02 11:26 - 2017-10-02 18:13 - 000000000 ____D C:\Users\Avell\AppData\Local\UnrealEngine
2017-10-02 11:26 - 2017-10-02 11:26 - 000000000 ____D C:\Users\Avell\AppData\Local\UnrealEngineLauncher
2017-10-02 11:26 - 2017-10-02 11:26 - 000000000 ____D C:\Users\Avell\AppData\Local\EpicGamesLauncher
2017-10-02 11:24 - 2017-10-02 12:13 - 000000000 ____D C:\Users\Todos os Usuários\Epic
2017-10-02 11:24 - 2017-10-02 12:13 - 000000000 ____D C:\ProgramData\Epic
2017-10-02 11:24 - 2017-10-02 11:24 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-10-02 11:24 - 2017-10-02 11:24 - 000001280 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2017-10-02 11:24 - 2017-10-02 11:24 - 000000000 ____D C:\Program Files (x86)\Epic Games
2017-10-02 11:23 - 2017-10-02 11:24 - 031641600 _____ C:\Users\Avell\Downloads\EpicInstaller-6.3.0-fortnite-92dd121faba5486ca5fcfc767f874b85.msi
2017-09-17 23:01 - 2017-09-18 15:05 - 000000000 ____D C:\Users\Avell\Documents\Faculdade
2017-09-15 19:24 - 2017-09-15 19:24 - 000123002 _____ C:\Users\Avell\Downloads\MEGA TRANSFER UPDATE 17-18 SEASON_C758EB49-93BC-45EA-9E84-081311B0E624.fmf
2017-09-07 13:25 - 2017-09-07 13:25 - 000000000 ____D C:\Users\Avell\AppData\LocalLow\Smartly Dressed Games
2017-09-04 23:57 - 2017-09-05 00:10 - 343931090 _____ C:\Users\Avell\Downloads\Baka_Dakedo_Chinchin_Shaburu_no_Dake_wa_Jouzu_na_Chii-chan_02_BaixarHentai.net.mp4
2017-09-04 18:18 - 2017-09-04 18:18 - 007801481 _____ C:\Users\Avell\Downloads\Zhavas Addon Pack.rar
2017-09-02 00:03 - 2017-09-02 00:03 - 000272656 _____ C:\Users\Avell\Downloads\Gatherer.zip
2017-08-28 23:11 - 2017-08-28 23:12 - 005767399 _____ C:\Users\Avell\Downloads\ShaguDB-7.2-enGB-complete.zip
2017-08-28 18:15 - 2017-08-28 18:15 - 000052454 _____ C:\Users\Avell\Downloads\WoW-1.12.1-enUS-Windows.torrent
2017-08-26 18:22 - 2017-08-26 18:22 - 000001042 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2017-08-26 18:22 - 2017-08-26 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-08-26 18:11 - 2017-08-26 18:32 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2017-08-21 18:19 - 2017-08-21 18:20 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Trove
2017-08-21 15:05 - 2017-08-21 15:05 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-08-21 14:22 - 2017-08-21 14:22 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-08-21 14:20 - 2017-08-09 21:34 - 040239552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 035846080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 035314296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 028961912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 018805160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 013649808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 012133296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 011585736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 009982968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 004164032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 003596224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438528.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001598072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438528.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001278712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001067968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001005176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000996760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000972736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000924096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000781728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000617416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000609912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000578056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-08-20 07:47 - 2017-08-20 07:47 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigna944dcf9d97a4ebc
2017-08-20 07:47 - 2017-08-20 07:47 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign445ff2baea1ada8a
2017-08-19 10:27 - 2017-08-19 10:27 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigncde9ec9d6340ca99
2017-08-19 10:27 - 2017-08-19 10:27 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign8d0c8895be115248
2017-08-18 04:25 - 2017-08-18 04:25 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign817d764c1f54a589
2017-08-18 04:25 - 2017-08-18 04:25 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign2ea479c166486d64
2017-08-17 22:59 - 2017-08-17 22:59 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigncc002d861a5d5c91
2017-08-17 22:59 - 2017-08-17 22:59 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign70342526be390370
2017-08-17 16:22 - 2017-08-17 16:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignba543695a931bfc6
2017-08-17 16:22 - 2017-08-17 16:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign9d398a104af63bc3
2017-08-16 23:52 - 2017-08-16 23:52 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignf88f85d3cf5b851a
2017-08-16 23:52 - 2017-08-16 23:52 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign50b1e910009bf0cc
2017-08-15 23:12 - 2017-08-15 23:12 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigna0d0987ccc55598c
2017-08-15 23:12 - 2017-08-15 23:12 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign28cd6209f4dbe4bb
2017-08-14 02:22 - 2017-08-14 02:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignf7d2e3a7a88ce5de
2017-08-14 02:22 - 2017-08-14 02:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignc3480ec02fd959da
2017-08-13 04:41 - 2017-08-13 04:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignfdd43fc647f354fc
2017-08-13 04:41 - 2017-08-13 04:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigndbb21e67a5a8e77f
2017-08-11 13:12 - 2017-08-11 13:12 - 000000169 _____ C:\Users\Avell\Maycon.txt
2017-08-09 17:30 - 2017-08-09 17:30 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignbc3ad23954f7dd2d
2017-08-09 17:30 - 2017-08-09 17:30 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign886836c096d97942
2017-08-09 02:35 - 2017-07-31 23:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-08-09 02:35 - 2017-07-31 23:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-08-09 02:35 - 2017-07-31 23:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-08-09 02:35 - 2017-07-31 23:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-08-09 02:35 - 2017-07-31 23:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-08-09 02:35 - 2017-07-31 23:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-08-09 02:35 - 2017-07-31 23:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-08-09 02:35 - 2017-07-31 23:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-08-09 02:35 - 2017-07-31 23:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-08-09 02:35 - 2017-07-31 23:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-08-09 02:35 - 2017-07-31 23:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-08-09 02:35 - 2017-07-31 23:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-09 02:35 - 2017-07-31 23:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-09 02:35 - 2017-07-28 02:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-08-09 02:35 - 2017-07-28 01:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-08-09 02:35 - 2017-07-28 01:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-08-09 02:35 - 2017-07-28 01:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-08-09 02:35 - 2017-07-28 01:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-08-09 02:35 - 2017-07-28 01:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-08-09 02:35 - 2017-07-28 01:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-08-09 02:35 - 2017-07-28 01:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-08-09 02:35 - 2017-07-28 01:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-08-09 02:35 - 2017-07-28 01:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-08-09 02:35 - 2017-07-28 01:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-08-09 02:35 - 2017-07-28 01:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2017-08-09 02:35 - 2017-07-28 01:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-08-09 02:35 - 2017-07-28 01:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-08-09 02:35 - 2017-07-28 01:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-08-09 02:35 - 2017-07-28 01:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-08-09 02:35 - 2017-07-28 01:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-08-09 02:35 - 2017-07-28 01:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-08-09 02:35 - 2017-07-28 01:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-08-09 02:35 - 2017-07-28 01:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-08-09 02:35 - 2017-07-28 01:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-08-09 02:35 - 2017-07-28 01:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-08-09 02:35 - 2017-07-28 01:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-08-09 02:35 - 2017-07-28 01:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-08-09 02:35 - 2017-07-28 01:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-08-09 02:35 - 2017-07-28 01:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-08-09 02:35 - 2017-07-28 01:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-08-09 02:34 - 2017-07-31 23:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-08-09 02:34 - 2017-07-31 23:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-08-09 02:34 - 2017-07-31 23:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-08-09 02:34 - 2017-07-31 23:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-09 02:34 - 2017-07-31 23:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-08-09 02:34 - 2017-07-31 23:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-08-09 02:34 - 2017-07-31 23:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-09 02:34 - 2017-07-31 23:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-08-09 02:34 - 2017-07-31 23:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-08-09 02:34 - 2017-07-31 23:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-08-09 02:34 - 2017-07-31 23:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-08-09 02:34 - 2017-07-31 23:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-08-09 02:34 - 2017-07-31 23:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-09 02:34 - 2017-07-31 23:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-08-09 02:34 - 2017-07-31 23:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-08-09 02:34 - 2017-07-31 23:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-09 02:34 - 2017-07-31 23:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-09 02:34 - 2017-07-31 23:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-08-09 02:34 - 2017-07-31 23:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-08-09 02:34 - 2017-07-31 23:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-09 02:34 - 2017-07-28 01:48 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-08-09 02:34 - 2017-07-28 01:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-08-09 02:34 - 2017-07-28 01:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-08-09 02:34 - 2017-07-28 01:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-08-09 02:34 - 2017-07-28 01:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-08-09 02:34 - 2017-07-28 01:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-08-09 02:34 - 2017-07-28 01:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-08-09 02:34 - 2017-07-28 01:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-08-09 02:34 - 2017-07-28 01:33 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-08-09 02:34 - 2017-07-28 01:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-08-09 02:34 - 2017-07-28 01:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-08-09 02:34 - 2017-07-28 01:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-08-09 02:34 - 2017-07-28 01:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-08-09 02:34 - 2017-07-28 01:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-08-09 02:34 - 2017-07-28 01:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-08-09 02:34 - 2017-07-28 01:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-08-09 02:34 - 2017-07-28 01:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-08-09 02:34 - 2017-07-28 01:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-08-09 02:34 - 2017-07-28 01:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-08-09 02:34 - 2017-07-28 01:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-08-09 02:34 - 2017-07-28 01:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-08-09 02:34 - 2017-07-28 01:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-08-09 02:34 - 2017-07-28 01:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-08-09 02:34 - 2017-07-28 01:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-08-09 02:34 - 2017-07-28 01:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-08-09 02:34 - 2017-07-28 01:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-08-09 02:34 - 2017-07-28 01:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-08-09 02:34 - 2017-07-28 01:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-08-09 02:34 - 2017-07-28 01:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-08-09 02:34 - 2017-07-28 01:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-08-09 02:32 - 2017-07-31 23:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-09 02:32 - 2017-07-31 23:32 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-09 02:32 - 2017-07-31 23:30 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-09 02:32 - 2017-07-31 23:26 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-09 02:32 - 2017-07-31 22:45 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-09 02:32 - 2017-07-31 22:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-09 02:32 - 2017-07-31 22:41 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-09 02:32 - 2017-07-31 22:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-09 02:32 - 2017-07-31 22:39 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-09 02:32 - 2017-07-31 22:37 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-09 02:32 - 2017-07-31 22:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-08-09 02:32 - 2017-07-31 22:31 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-09 02:32 - 2017-07-31 22:31 - 001396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 008209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-09 02:32 - 2017-07-31 22:30 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-09 02:32 - 2017-07-31 22:28 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-09 02:32 - 2017-07-31 22:28 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-09 02:32 - 2017-07-28 02:30 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-09 02:32 - 2017-07-28 02:15 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-09 02:32 - 2017-07-28 02:15 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-09 02:32 - 2017-07-28 02:14 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-09 02:32 - 2017-07-28 02:13 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-08-09 02:32 - 2017-07-28 02:12 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-09 02:32 - 2017-07-28 02:12 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-09 02:32 - 2017-07-28 02:10 - 002679200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-09 02:32 - 2017-07-28 02:10 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-09 02:32 - 2017-07-28 01:31 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-09 02:32 - 2017-07-28 01:29 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-09 02:32 - 2017-07-28 01:26 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-09 02:32 - 2017-07-28 01:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-09 02:32 - 2017-07-28 01:25 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-09 02:32 - 2017-07-28 01:23 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-09 02:32 - 2017-07-28 01:22 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-09 02:32 - 2017-07-28 01:22 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-09 02:32 - 2017-07-28 01:22 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-09 02:32 - 2017-07-28 01:22 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-09 02:32 - 2017-07-28 01:21 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-09 02:32 - 2017-07-28 01:21 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-09 02:32 - 2017-07-28 01:20 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-09 02:32 - 2017-07-28 01:19 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-09 02:32 - 2017-07-28 01:18 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-09 02:32 - 2017-07-28 01:18 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-09 02:32 - 2017-07-28 01:18 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-09 02:32 - 2017-07-28 01:16 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-09 02:32 - 2017-07-28 01:15 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-09 02:32 - 2017-07-28 01:15 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-09 02:32 - 2017-07-28 01:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-09 02:32 - 2017-07-28 01:13 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-09 02:32 - 2017-07-28 01:12 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-09 02:32 - 2017-07-28 01:12 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-09 02:32 - 2017-07-28 01:12 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-09 02:32 - 2017-07-28 01:10 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-09 02:32 - 2017-07-28 01:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-09 02:32 - 2017-07-28 01:05 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-09 02:31 - 2017-07-31 23:39 - 008319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-09 02:31 - 2017-07-31 23:38 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-09 02:31 - 2017-07-31 23:33 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-09 02:31 - 2017-07-31 23:32 - 002444704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-09 02:31 - 2017-07-31 23:32 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-09 02:31 - 2017-07-31 23:31 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-08-09 02:31 - 2017-07-31 23:31 - 002645680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-09 02:31 - 2017-07-31 23:30 - 000723680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-09 02:31 - 2017-07-31 23:30 - 000410160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-09 02:31 - 2017-07-31 23:30 - 000315288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-09 02:31 - 2017-07-31 23:30 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-09 02:31 - 2017-07-31 23:30 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-09 02:31 - 2017-07-31 22:57 - 023677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-09 02:31 - 2017-07-31 22:45 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-09 02:31 - 2017-07-31 22:45 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-09 02:31 - 2017-07-31 22:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-09 02:31 - 2017-07-31 22:44 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-09 02:31 - 2017-07-31 22:42 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-09 02:31 - 2017-07-31 22:41 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-09 02:31 - 2017-07-31 22:40 - 017366528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-09 02:31 - 2017-07-31 22:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-09 02:31 - 2017-07-31 22:38 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-09 02:31 - 2017-07-31 22:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-09 02:31 - 2017-07-31 22:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-09 02:31 - 2017-07-31 22:37 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-09 02:31 - 2017-07-31 22:36 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-09 02:31 - 2017-07-31 22:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-09 02:31 - 2017-07-31 22:33 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-09 02:31 - 2017-07-31 22:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-09 02:31 - 2017-07-31 22:32 - 007336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-09 02:31 - 2017-07-31 22:32 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-09 02:31 - 2017-07-31 22:31 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-09 02:31 - 2017-07-31 22:27 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-09 02:31 - 2017-07-31 22:27 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-08-09 02:31 - 2017-07-31 22:27 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-08-09 02:31 - 2017-07-31 22:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-09 02:31 - 2017-07-31 22:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-08-09 02:31 - 2017-07-31 22:25 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-08-09 02:31 - 2017-07-31 22:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-08-09 02:31 - 2017-07-28 02:25 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-09 02:31 - 2017-07-28 02:24 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-09 02:31 - 2017-07-28 02:24 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-09 02:31 - 2017-07-28 02:24 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-09 02:31 - 2017-07-28 02:23 - 002969888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-09 02:31 - 2017-07-28 02:17 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-09 02:31 - 2017-07-28 02:16 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-09 02:31 - 2017-07-28 02:16 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-09 02:31 - 2017-07-28 02:12 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-09 02:31 - 2017-07-28 02:09 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-09 02:31 - 2017-07-28 02:09 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-09 02:31 - 2017-07-28 02:09 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-08-09 02:31 - 2017-07-28 01:30 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-08-09 02:31 - 2017-07-28 01:29 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-09 02:31 - 2017-07-28 01:26 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-09 02:31 - 2017-07-28 01:26 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-09 02:31 - 2017-07-28 01:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-09 02:31 - 2017-07-28 01:25 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-09 02:31 - 2017-07-28 01:25 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-09 02:31 - 2017-07-28 01:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-08-09 02:31 - 2017-07-28 01:22 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-09 02:31 - 2017-07-28 01:19 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-09 02:31 - 2017-07-28 01:19 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-08-09 02:31 - 2017-07-28 01:19 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-09 02:31 - 2017-07-28 01:18 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-09 02:31 - 2017-07-28 01:18 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-08-09 02:31 - 2017-07-28 01:17 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-09 02:31 - 2017-07-28 01:17 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-09 02:31 - 2017-07-28 01:16 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-09 02:31 - 2017-07-28 01:14 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-09 02:31 - 2017-07-28 01:14 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-09 02:31 - 2017-07-28 01:13 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-09 02:31 - 2017-07-28 01:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-09 02:31 - 2017-07-28 01:12 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-09 02:31 - 2017-07-28 01:12 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-09 02:31 - 2017-07-28 01:09 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-09 02:31 - 2017-07-28 01:08 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-09 02:31 - 2017-07-28 01:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-09 02:31 - 2017-07-28 01:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-09 02:31 - 2017-07-28 01:07 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-08-09 02:31 - 2017-07-28 01:07 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-09 02:31 - 2017-07-28 01:06 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-09 02:31 - 2017-07-28 01:05 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-09 02:31 - 2017-07-28 01:05 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-09 02:30 - 2017-07-31 23:31 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-09 02:30 - 2017-07-31 23:30 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-09 02:30 - 2017-07-31 22:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-08-09 02:30 - 2017-07-28 02:24 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-09 02:30 - 2017-07-28 02:23 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-09 02:30 - 2017-07-28 02:22 - 000923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-09 02:30 - 2017-07-28 02:20 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-09 02:30 - 2017-07-28 02:15 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-09 02:30 - 2017-07-28 02:15 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-09 02:30 - 2017-07-28 02:14 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-09 02:30 - 2017-07-28 02:13 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-09 02:30 - 2017-07-28 02:13 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-09 02:30 - 2017-07-28 02:12 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-09 02:30 - 2017-07-28 01:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-09 02:30 - 2017-07-28 01:23 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-09 02:30 - 2017-07-28 01:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-09 02:30 - 2017-07-28 01:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-09 02:30 - 2017-07-28 01:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-09 02:30 - 2017-07-28 01:20 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-08-09 02:30 - 2017-07-28 01:20 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-09 02:30 - 2017-07-28 01:19 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-09 02:30 - 2017-07-28 01:19 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-09 02:30 - 2017-07-28 01:18 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-08-09 02:30 - 2017-07-28 01:18 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-09 02:30 - 2017-07-28 01:17 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-09 02:30 - 2017-07-28 01:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-08-09 02:30 - 2017-07-28 01:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-09 02:30 - 2017-07-28 01:15 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-08-09 02:30 - 2017-07-28 01:11 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-09 02:30 - 2017-07-28 01:10 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-09 02:30 - 2017-07-28 01:09 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-09 02:30 - 2017-07-28 01:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-09 02:30 - 2017-07-28 01:06 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-09 02:30 - 2017-07-28 01:05 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-09 02:30 - 2017-07-28 01:05 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-07 15:41 - 2017-08-07 15:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigne3cafaf9fe7e0b15
2017-08-07 15:41 - 2017-08-07 15:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign162c4b238b9d1f5b
2017-08-07 14:49 - 2017-08-07 14:49 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigna7596cd09650b18c
2017-08-07 14:49 - 2017-08-07 14:49 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign0b0929419f83c8fd
2017-08-07 12:24 - 2017-08-07 12:24 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignb9e8c0dabfceaa74
2017-08-07 12:24 - 2017-08-07 12:24 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign89f5ee038a5e9b0a
2017-08-05 12:39 - 2017-08-05 12:39 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign1a83288883d1eafa
2017-08-05 12:39 - 2017-08-05 12:39 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign184ecd9f2c94ee27
2017-08-03 12:13 - 2017-08-03 12:13 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign3fbd5585500ab95f
2017-08-03 12:13 - 2017-08-03 12:13 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign1aaceea23c5e1297
2017-08-03 10:08 - 2017-08-03 10:08 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign7cd58043c4cd65fd
2017-08-03 10:08 - 2017-08-03 10:08 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign2a9dece6d643e78d
2017-07-28 16:47 - 2017-08-24 13:36 - 000000385 _____ C:\Users\Avell\Médicos.txt
2017-07-23 17:52 - 2017-07-23 17:52 - 000079792 _____ C:\Users\Avell\Documents\certidao.pdf
2017-07-23 17:38 - 2017-07-23 17:38 - 000011626 _____ C:\Users\Avell\Documents\crid.pdf
2017-07-18 13:40 - 2017-07-18 13:40 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignfcbd99e0e88157cd
2017-07-18 13:40 - 2017-07-18 13:40 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign6dc8a91a811d62a6
2017-07-18 13:37 - 2017-07-18 13:37 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigne85e867e1df72fac
2017-07-18 13:37 - 2017-07-18 13:37 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign2dfe1415fad0f115
2017-07-16 15:01 - 2017-07-16 15:01 - 000002722 _____ C:\Users\Avell\Desktop\µTorrent.lnk
2017-07-16 15:01 - 2017-07-16 15:01 - 000002722 _____ C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2017-07-13 07:07 - 2017-07-13 07:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-07-13 07:07 - 2017-07-13 07:07 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-10-11 21:11 - 2015-09-30 16:39 - 000000000 ____D C:\Users\Avell\Downloads\Downs Sims
2017-10-11 21:04 - 2017-05-11 00:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-11 21:04 - 2017-05-10 23:49 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-10-11 21:04 - 2017-05-10 23:48 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-10-11 21:04 - 2017-05-10 23:48 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-11 21:04 - 2016-10-01 06:51 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-10-11 21:04 - 2014-07-08 09:38 - 000000000 __SHD C:\Users\Avell\IntelGraphicsProfiles
2017-10-11 21:03 - 2017-03-18 08:40 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2017-10-11 21:02 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-11 21:02 - 2017-03-18 08:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-11 20:53 - 2016-02-09 18:47 - 000000000 ____D C:\Users\Avell\AppData\Local\CrashDumps
2017-10-11 20:15 - 2017-05-10 23:51 - 000000000 ____D C:\Users\Avell
2017-10-11 20:10 - 2017-05-10 23:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-11 15:47 - 2016-09-07 23:31 - 000000034 _____ C:\Users\Avell\AppData\Roaming\AdobeWLCMCache.dat
2017-10-11 15:42 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-10-11 06:27 - 2014-07-07 17:21 - 000000000 ____D C:\Users\Avell\AppData\Local\Packages
2017-10-10 19:39 - 2014-11-06 14:26 - 000000000 ____D C:\Users\Avell\AppData\Roaming\uTorrent
2017-10-10 15:09 - 2014-11-06 14:34 - 000000000 ____D C:\Program Files (x86)\Steam
2017-10-10 14:08 - 2016-06-17 16:46 - 000000000 ____D C:\Users\Avell\AppData\Local\Spotify
2017-10-10 13:56 - 2016-06-17 16:38 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Spotify
2017-10-09 01:59 - 2014-07-07 17:26 - 000000000 ____D C:\Users\Avell\AppData\Local\Google
2017-10-09 01:58 - 2016-09-27 12:48 - 000000000 ____D C:\Program Files (x86)\Google
2017-10-08 12:00 - 2017-05-11 00:17 - 000003852 _____ C:\WINDOWS\System32\Tasks\Optimize Thumbnail Cache Files
2017-10-08 12:00 - 2017-05-11 00:17 - 000003400 _____ C:\WINDOWS\System32\Tasks\InstallShield® Update Service Scheduler
2017-10-06 11:45 - 2016-01-06 20:25 - 000000000 ____D C:\Program Files (x86)\The Sims 4
2017-10-06 10:17 - 2016-09-30 00:36 - 000000000 ____D C:\Users\Avell\AppData\Local\ElevatedDiagnostics
2017-10-06 09:51 - 2015-11-01 20:25 - 000000000 ____D C:\Program Files (x86)\Battle.net
2017-10-05 18:38 - 2015-12-12 16:01 - 000002278 _____ C:\Users\Avell\Desktop\Itaú.lnk
2017-10-05 18:38 - 2015-11-16 21:07 - 000000000 ____D C:\Users\Avell\AppData\Local\Aplicativo Itau
2017-10-02 12:12 - 2014-11-12 22:38 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-10-02 12:12 - 2014-11-12 22:38 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-22 21:06 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-16 19:24 - 2014-12-10 21:39 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-09-16 16:43 - 2014-12-10 21:39 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
==================== Arquivos na raiz de alguns diretórios =======
2016-09-07 23:31 - 2017-10-11 15:47 - 000000034 _____ () C:\Users\Avell\AppData\Roaming\AdobeWLCMCache.dat
2014-11-12 22:39 - 2014-11-12 22:39 - 000016015 _____ () C:\Users\Avell\AppData\Roaming\unins000.dat
2014-11-12 22:39 - 2014-11-12 22:39 - 000720082 _____ () C:\Users\Avell\AppData\Roaming\unins000.exe
2016-11-22 04:50 - 2017-08-20 09:22 - 000001456 _____ () C:\Users\Avell\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2016-12-18 18:35 - 2017-03-09 18:40 - 000005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-18 18:35 - 2017-03-05 19:32 - 000005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Alguns arquivos em TEMP:
====================
2017-07-05 20:03 - 2017-07-05 20:03 - 000008720 _____ () C:\Users\Avell\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
2017-07-05 20:05 - 2017-07-05 20:05 - 000012080 _____ () C:\Users\Avell\AppData\Local\Temp\BullseyeCoverage-x64-3.dll
2017-05-30 20:22 - 2017-05-30 20:22 - 000010520 _____ () C:\Users\Avell\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
2017-05-28 13:07 - 2017-05-28 13:07 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1057449030659390733.dll
2017-05-19 21:47 - 2017-05-19 21:47 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-111688680641851205.dll
2017-05-28 10:31 - 2017-05-28 10:31 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1277129235647005315.dll
2017-07-06 21:00 - 2017-07-06 21:00 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1277896161145271857.dll
2017-06-29 22:29 - 2017-06-29 22:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1937902865050937582.dll
2017-07-01 20:38 - 2017-07-01 20:38 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2019259867777082893.dll
2017-07-08 21:17 - 2017-07-08 21:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2064883224182390141.dll
2017-06-02 17:55 - 2017-06-02 17:55 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2355750992042215079.dll
2017-07-05 20:15 - 2017-07-05 20:15 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2426026689525408471.dll
2017-05-13 20:14 - 2017-05-13 20:14 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2515338635389093837.dll
2017-07-09 10:17 - 2017-07-09 10:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2686101324110323240.dll
2017-05-26 21:07 - 2017-05-26 21:07 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3054644867840771990.dll
2017-05-27 13:18 - 2017-05-27 13:18 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3213308718979028996.dll
2017-05-13 18:33 - 2017-05-13 18:33 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3221266080848932796.dll
2017-05-25 21:37 - 2017-05-25 21:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3797265568644015291.dll
2017-05-20 16:11 - 2017-05-20 16:11 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3839804158551448833.dll
2017-07-06 22:21 - 2017-07-06 22:21 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4088873739302794071.dll
2017-05-25 22:24 - 2017-05-25 22:24 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4101428053788607541.dll
2017-07-06 21:10 - 2017-07-06 21:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4342573369605017588.dll
2017-05-13 18:35 - 2017-05-13 18:35 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-43654025753615865.dll
2017-07-05 20:07 - 2017-07-05 20:07 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4419434955026658662.dll
2017-06-02 23:14 - 2017-06-02 23:14 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-5161379344499212025.dll
2017-05-27 00:02 - 2017-05-27 00:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-5232486561674606552.dll
2017-06-12 21:29 - 2017-06-12 21:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-5979352596213551265.dll
2017-05-19 22:11 - 2017-05-19 22:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-6492539812130029496.dll
2017-06-13 21:04 - 2017-06-13 21:04 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-6502880682087606635.dll
2017-06-13 22:44 - 2017-06-13 22:44 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-6601090224598320599.dll
2017-05-30 20:20 - 2017-05-30 20:20 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-66260440360343820.dll
2017-05-20 17:33 - 2017-05-20 17:33 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7239527569990548413.dll
2017-06-13 22:02 - 2017-06-13 22:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7417424634485873318.dll
2017-07-02 20:13 - 2017-07-02 20:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7480365627888723807.dll
2017-06-30 20:01 - 2017-06-30 20:01 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7525012114009719155.dll
2017-07-08 20:37 - 2017-07-08 20:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7621950208321471753.dll
2017-06-12 22:12 - 2017-06-12 22:12 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7695776663032171259.dll
2017-05-28 13:10 - 2017-05-28 13:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7738828324767770364.dll
2017-05-27 23:17 - 2017-05-27 23:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7795963677151913645.dll
2017-07-06 18:19 - 2017-07-06 18:19 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7923672455326143341.dll
2017-07-08 14:11 - 2017-07-08 14:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-8549494169753186138.dll
2017-05-31 19:04 - 2017-05-31 19:04 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-8780437457783926890.dll
2017-06-20 18:03 - 2017-06-20 18:03 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-8838961720381347317.dll
2017-07-08 16:01 - 2017-07-08 16:01 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-9010942793857108623.dll
2017-08-30 12:00 - 2017-10-08 12:00 - 000611776 _____ (Flexera Software LLC ) C:\Users\Avell\AppData\Local\Temp\wVx4rt.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-08-22 03:04
==================== Fim de FRST.txt ============================
Executado por Avell (administrador) em AVELL-PC (11-10-2017 21:11:30)
Executando a partir de C:\Users\Avell\Desktop
Perfis Carregados: Avell (Perfis Disponíveis: Avell)
Platform: Windows 10 Home Single Language Versão 1703 170317-1834 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
() C:\Windows\SysWOW64\spdsvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(InstallShield®) C:\Program Files (x86)\Common Files\InstallShield\Update\ISUSPM.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Spotify Ltd) C:\Users\Avell\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Hotkey\Hotkey.exe
(Intel® Corporation) C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3358952 2015-09-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2014-04-17] (Microsoft Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-05-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2017-06-29] (LogMeIn Inc.)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-08-19] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-01] (Caixa Economica Federal)
Winlogon\Notify\ GbPluginUni: C:\Program Files (x86)\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Discord] => C:\Users\Avell\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [ares] => "C:\Program Files (x86)\Ares\Ares.exe" -h
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Spotify] => C:\Users\Avell\AppData\Roaming\Spotify\Spotify.exe [20644976 2017-10-10] (Spotify Ltd)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Google Update] => C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-10-09] (Google Inc.)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Run: [Spotify Web Helper] => C:\Users\Avell\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-10-10] (Spotify Ltd)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\RunOnce: [Application Restart #0] => C:\Users\Avell\AppData\Local\Google\Chrome\Application\chrome.exe [1451352 2017-09-21] (Google Inc.)
HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\MountPoints2: {a96dd8ea-3faf-11e7-835a-80fa5b06c700} - "E:\Setup.exe"
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1867432 2015-09-01] (Caixa Economica Federal)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1896320 2015-08-19] (Banco do Brasil)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hotkey.lnk [2014-07-08]
ShortcutTarget: Hotkey.lnk -> C:\Program Files (x86)\Hotkey\Hotkey.exe ()
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATENÇÃO (Restrição - ProxySettings)
ProxyEnable: [HKLM] => Proxy está habilitado.
ProxyEnable: [HKLM-x32] => Proxy está habilitado.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
AutoConfigURL: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
Tcpip\..\Interfaces\{4c114148-a788-4809-8dd1-dc9148f2283b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{de347f83-a07a-4447-9e9a-48ce13b1b89e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
HKU\S-1-5-21-3550370124-900119270-705083369-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.avell.com.br/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-05-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-06-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-05-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-08-19] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-01] (Caixa Economica Federal)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-06-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-04-01] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: fule8a6l.default
FF ProfilePath: C:\Users\Avell\AppData\Roaming\Mozilla\Firefox\Profiles\fule8a6l.default [2016-09-27]
FF Extension: (Sem Nome) - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [não encontrado (a)]
FF HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\cef\xpi => não encontrado (a)
FF HKU\S-1-5-21-3550370124-900119270-705083369-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E8873}] - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\uni\xpi
FF Extension: (Guardião - Itaú 30 horas) - C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\uni\xpi [2015-01-28] [não assinado]
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-09-22] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-05-31] (Adobe Systems)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Avell\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-26] (Raidcall)
FF Plugin-x32: @raidcall.tw/RCplugin -> C:\Users\Avell\AppData\Roaming\RCTW\plugins\nprcplugin.dll [2013-06-25] (Raidcall)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-05-31] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-09] (Google Inc.)
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Avell\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-09] (Google Inc.)
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: gastecnologia.com.br/sf/cef64 -> C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [Nenhum Arquivo]
FF Plugin HKU\S-1-5-21-3550370124-900119270-705083369-1001: gastecnologia.com.br/sf/uni -> C:\Users\Avell\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-01-21] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default [2017-10-11]
CHR Extension: (Google Docs) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-14]
CHR Extension: (Google Drive) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google Search) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-19]
CHR Extension: (AdBlock) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-10-03]
CHR Extension: (Pinterest Save Button) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-10-11]
CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2014-11-12]
CHR Extension: (Botão do Google Acadêmico) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2017-10-09]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-21]
CHR Extension: (Gmail) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Extension: (Chrome Media Router) - C:\Users\Avell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-05-31] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530376 2017-09-06] ()
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [155872 2015-09-17] (ELAN Microelectronics Corp.)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3418024 2017-06-29] (LogMeIn Inc.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-23] (Hi-Rez Studios) [Arquivo não assinado]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-08-09] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-08-18] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2147216 2017-05-13] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3116440 2017-05-13] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2016-02-27] ()
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [46080 2013-07-09] () [Arquivo não assinado]
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [491328 2015-12-05] ()
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2016-01-28] ()
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel Corporation)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [33240 2015-12-09] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R3 AirplaneModeHid; C:\WINDOWS\system32\DRIVERS\AirplaneModeHid.sys [33488 2015-06-25] (Insyde Corporation)
R3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2015-10-07] (Windows (R) Win 7 DDK provider)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [84472 2015-10-07] (ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S1 gbpddfac; C:\WINDOWS\System32\drivers\gbpddfac64.sys [28888 2015-11-11] (GAS Tecnologia)
S1 gbpddfac; C:\Windows\SysWOW64\drivers\gbpddfac64.sys [28888 2015-08-26] (GAS Tecnologia)
S3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-08-26] (GAS Tecnologia)
U5 ggsomc; C:\Windows\System32\Drivers\ggsomc.sys [30424 2015-10-31] (Sony Mobile Communications)
R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2017-02-27] (LogMeIn Inc.)
R1 legendasdrv; C:\WINDOWS\System32\drivers\legendasdrv.sys [59120 2015-12-04] (Windows (R) Win 7 DDK provider)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvcvi.inf_amd64_af15def5b994a8ba\nvlddmkm.sys [15610296 2017-08-10] (NVIDIA Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvcvi.inf_amd64_af15def5b994a8ba\nvpciflt.sys [47032 2017-08-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-21] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-10-11 21:11 - 2017-10-11 21:12 - 000024089 _____ C:\Users\Avell\Desktop\FRST.txt
2017-10-11 21:11 - 2017-10-11 21:11 - 002401792 _____ (Farbar) C:\Users\Avell\Desktop\FRST64.exe
2017-10-11 21:11 - 2017-10-11 21:11 - 000000000 ____D C:\FRST
2017-10-11 21:10 - 2017-10-11 21:10 - 001797632 _____ (Farbar) C:\Users\Avell\Desktop\FRST.exe
2017-10-11 20:48 - 2017-10-11 20:48 - 008250832 _____ (Malwarebytes) C:\Users\Avell\Downloads\adwcleaner_7.0.3.1.exe
2017-10-11 20:46 - 2017-10-11 20:52 - 000000000 ____D C:\AdwCleaner
2017-10-11 20:45 - 2017-10-11 20:45 - 008162248 _____ (Malwarebytes) C:\Users\Avell\Downloads\adwcleaner-7-0-0-0.exe
2017-10-11 15:42 - 2017-10-11 15:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-3550370124-900119270-705083369-1001
2017-10-10 03:07 - 2017-10-10 03:07 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign8ba35dd2d640b2fd
2017-10-10 03:07 - 2017-10-10 03:07 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign3aa24a14aeb077ee
2017-10-09 02:00 - 2017-10-11 21:07 - 000002497 _____ C:\Users\Avell\Desktop\Google Chrome.lnk
2017-10-09 02:00 - 2017-10-09 02:00 - 000002505 _____ C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-09 01:59 - 2017-10-09 01:59 - 000003842 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3550370124-900119270-705083369-1001UA
2017-10-09 01:59 - 2017-10-09 01:59 - 000003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3550370124-900119270-705083369-1001Core
2017-10-06 08:52 - 2017-10-06 10:36 - 000000000 ____D C:\Users\Avell\AppData\LocalLow\uTorrent
2017-10-05 18:38 - 2017-10-05 18:38 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú
2017-10-02 18:13 - 2017-10-02 18:13 - 000000000 ____D C:\Users\Avell\AppData\Local\FortniteGame
2017-10-02 12:14 - 2017-10-02 12:14 - 000000000 ____D C:\Program Files\Epic Games
2017-10-02 11:26 - 2017-10-02 18:13 - 000000000 ____D C:\Users\Avell\AppData\Local\UnrealEngine
2017-10-02 11:26 - 2017-10-02 11:26 - 000000000 ____D C:\Users\Avell\AppData\Local\UnrealEngineLauncher
2017-10-02 11:26 - 2017-10-02 11:26 - 000000000 ____D C:\Users\Avell\AppData\Local\EpicGamesLauncher
2017-10-02 11:24 - 2017-10-02 12:13 - 000000000 ____D C:\Users\Todos os Usuários\Epic
2017-10-02 11:24 - 2017-10-02 12:13 - 000000000 ____D C:\ProgramData\Epic
2017-10-02 11:24 - 2017-10-02 11:24 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-10-02 11:24 - 2017-10-02 11:24 - 000001280 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2017-10-02 11:24 - 2017-10-02 11:24 - 000000000 ____D C:\Program Files (x86)\Epic Games
2017-10-02 11:23 - 2017-10-02 11:24 - 031641600 _____ C:\Users\Avell\Downloads\EpicInstaller-6.3.0-fortnite-92dd121faba5486ca5fcfc767f874b85.msi
2017-09-17 23:01 - 2017-09-18 15:05 - 000000000 ____D C:\Users\Avell\Documents\Faculdade
2017-09-15 19:24 - 2017-09-15 19:24 - 000123002 _____ C:\Users\Avell\Downloads\MEGA TRANSFER UPDATE 17-18 SEASON_C758EB49-93BC-45EA-9E84-081311B0E624.fmf
2017-09-07 13:25 - 2017-09-07 13:25 - 000000000 ____D C:\Users\Avell\AppData\LocalLow\Smartly Dressed Games
2017-09-04 23:57 - 2017-09-05 00:10 - 343931090 _____ C:\Users\Avell\Downloads\Baka_Dakedo_Chinchin_Shaburu_no_Dake_wa_Jouzu_na_Chii-chan_02_BaixarHentai.net.mp4
2017-09-04 18:18 - 2017-09-04 18:18 - 007801481 _____ C:\Users\Avell\Downloads\Zhavas Addon Pack.rar
2017-09-02 00:03 - 2017-09-02 00:03 - 000272656 _____ C:\Users\Avell\Downloads\Gatherer.zip
2017-08-28 23:11 - 2017-08-28 23:12 - 005767399 _____ C:\Users\Avell\Downloads\ShaguDB-7.2-enGB-complete.zip
2017-08-28 18:15 - 2017-08-28 18:15 - 000052454 _____ C:\Users\Avell\Downloads\WoW-1.12.1-enUS-Windows.torrent
2017-08-26 18:22 - 2017-08-26 18:22 - 000001042 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2017-08-26 18:22 - 2017-08-26 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-08-26 18:11 - 2017-08-26 18:32 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2017-08-21 18:19 - 2017-08-21 18:20 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Trove
2017-08-21 15:05 - 2017-08-21 15:05 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-08-21 14:22 - 2017-08-21 14:22 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-08-21 14:20 - 2017-08-09 21:34 - 040239552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 035846080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 035314296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 028961912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 018805160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 013649808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 012133296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 011585736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 009982968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 004164032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 003596224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438528.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001598072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438528.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001278712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001067968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 001005176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000996760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000972736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000924096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000781728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000617416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000609912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000578056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-08-21 14:20 - 2017-08-09 21:34 - 000499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-08-20 07:47 - 2017-08-20 07:47 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigna944dcf9d97a4ebc
2017-08-20 07:47 - 2017-08-20 07:47 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign445ff2baea1ada8a
2017-08-19 10:27 - 2017-08-19 10:27 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigncde9ec9d6340ca99
2017-08-19 10:27 - 2017-08-19 10:27 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign8d0c8895be115248
2017-08-18 04:25 - 2017-08-18 04:25 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign817d764c1f54a589
2017-08-18 04:25 - 2017-08-18 04:25 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign2ea479c166486d64
2017-08-17 22:59 - 2017-08-17 22:59 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigncc002d861a5d5c91
2017-08-17 22:59 - 2017-08-17 22:59 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign70342526be390370
2017-08-17 16:22 - 2017-08-17 16:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignba543695a931bfc6
2017-08-17 16:22 - 2017-08-17 16:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign9d398a104af63bc3
2017-08-16 23:52 - 2017-08-16 23:52 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignf88f85d3cf5b851a
2017-08-16 23:52 - 2017-08-16 23:52 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign50b1e910009bf0cc
2017-08-15 23:12 - 2017-08-15 23:12 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigna0d0987ccc55598c
2017-08-15 23:12 - 2017-08-15 23:12 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign28cd6209f4dbe4bb
2017-08-14 02:22 - 2017-08-14 02:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignf7d2e3a7a88ce5de
2017-08-14 02:22 - 2017-08-14 02:22 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignc3480ec02fd959da
2017-08-13 04:41 - 2017-08-13 04:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignfdd43fc647f354fc
2017-08-13 04:41 - 2017-08-13 04:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigndbb21e67a5a8e77f
2017-08-11 13:12 - 2017-08-11 13:12 - 000000169 _____ C:\Users\Avell\Maycon.txt
2017-08-09 17:30 - 2017-08-09 17:30 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignbc3ad23954f7dd2d
2017-08-09 17:30 - 2017-08-09 17:30 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign886836c096d97942
2017-08-09 02:35 - 2017-07-31 23:36 - 002165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-08-09 02:35 - 2017-07-31 23:36 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-08-09 02:35 - 2017-07-31 23:31 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-08-09 02:35 - 2017-07-31 23:20 - 002956288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-08-09 02:35 - 2017-07-31 23:20 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-08-09 02:35 - 2017-07-31 23:20 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-08-09 02:35 - 2017-07-31 23:14 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-08-09 02:35 - 2017-07-31 23:13 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-08-09 02:35 - 2017-07-31 23:13 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-08-09 02:35 - 2017-07-31 23:12 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-08-09 02:35 - 2017-07-31 23:10 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-08-09 02:35 - 2017-07-31 23:07 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-09 02:35 - 2017-07-31 23:03 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-09 02:35 - 2017-07-31 19:45 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-09 02:35 - 2017-07-28 02:07 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-08-09 02:35 - 2017-07-28 01:38 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-08-09 02:35 - 2017-07-28 01:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-08-09 02:35 - 2017-07-28 01:36 - 006761568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-08-09 02:35 - 2017-07-28 01:35 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-08-09 02:35 - 2017-07-28 01:33 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-08-09 02:35 - 2017-07-28 01:25 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-08-09 02:35 - 2017-07-28 01:24 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-08-09 02:35 - 2017-07-28 01:21 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-08-09 02:35 - 2017-07-28 01:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-08-09 02:35 - 2017-07-28 01:19 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-08-09 02:35 - 2017-07-28 01:19 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2017-08-09 02:35 - 2017-07-28 01:17 - 006728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-08-09 02:35 - 2017-07-28 01:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-08-09 02:35 - 2017-07-28 01:14 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-08-09 02:35 - 2017-07-28 01:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-08-09 02:35 - 2017-07-28 01:13 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-08-09 02:35 - 2017-07-28 01:12 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-08-09 02:35 - 2017-07-28 01:12 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-08-09 02:35 - 2017-07-28 01:12 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-08-09 02:35 - 2017-07-28 01:10 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-08-09 02:35 - 2017-07-28 01:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-08-09 02:35 - 2017-07-28 01:08 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-08-09 02:35 - 2017-07-28 01:05 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-08-09 02:35 - 2017-07-28 01:02 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-08-09 02:35 - 2017-07-28 01:02 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-08-09 02:35 - 2017-07-28 01:02 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-08-09 02:34 - 2017-07-31 23:38 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-08-09 02:34 - 2017-07-31 23:35 - 000280472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-08-09 02:34 - 2017-07-31 23:35 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-08-09 02:34 - 2017-07-31 23:34 - 000610584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-09 02:34 - 2017-07-31 23:34 - 000359552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-08-09 02:34 - 2017-07-31 23:34 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-08-09 02:34 - 2017-07-31 23:34 - 000168864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-09 02:34 - 2017-07-31 23:18 - 013841408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-08-09 02:34 - 2017-07-31 23:18 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-08-09 02:34 - 2017-07-31 23:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-08-09 02:34 - 2017-07-31 23:16 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-08-09 02:34 - 2017-07-31 23:13 - 020504064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-08-09 02:34 - 2017-07-31 23:12 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-09 02:34 - 2017-07-31 23:09 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-08-09 02:34 - 2017-07-31 23:08 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-08-09 02:34 - 2017-07-31 23:07 - 011870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-09 02:34 - 2017-07-31 23:07 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-09 02:34 - 2017-07-31 23:06 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-08-09 02:34 - 2017-07-31 23:04 - 006269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-08-09 02:34 - 2017-07-31 23:04 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-09 02:34 - 2017-07-28 01:48 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-08-09 02:34 - 2017-07-28 01:48 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-08-09 02:34 - 2017-07-28 01:48 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-08-09 02:34 - 2017-07-28 01:47 - 002259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-08-09 02:34 - 2017-07-28 01:40 - 005820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-08-09 02:34 - 2017-07-28 01:40 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-08-09 02:34 - 2017-07-28 01:37 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-08-09 02:34 - 2017-07-28 01:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-08-09 02:34 - 2017-07-28 01:35 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-08-09 02:34 - 2017-07-28 01:33 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-08-09 02:34 - 2017-07-28 01:33 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-08-09 02:34 - 2017-07-28 01:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-08-09 02:34 - 2017-07-28 01:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-08-09 02:34 - 2017-07-28 01:16 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-08-09 02:34 - 2017-07-28 01:16 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-08-09 02:34 - 2017-07-28 01:15 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-08-09 02:34 - 2017-07-28 01:15 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-08-09 02:34 - 2017-07-28 01:14 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-08-09 02:34 - 2017-07-28 01:13 - 000665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-08-09 02:34 - 2017-07-28 01:13 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-08-09 02:34 - 2017-07-28 01:12 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-08-09 02:34 - 2017-07-28 01:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-08-09 02:34 - 2017-07-28 01:11 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-08-09 02:34 - 2017-07-28 01:10 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-08-09 02:34 - 2017-07-28 01:09 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-08-09 02:34 - 2017-07-28 01:08 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-08-09 02:34 - 2017-07-28 01:08 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-08-09 02:34 - 2017-07-28 01:08 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-08-09 02:34 - 2017-07-28 01:07 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-08-09 02:34 - 2017-07-28 01:05 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-08-09 02:34 - 2017-07-28 01:05 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-08-09 02:32 - 2017-07-31 23:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-09 02:32 - 2017-07-31 23:32 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-08-09 02:32 - 2017-07-31 23:30 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-08-09 02:32 - 2017-07-31 23:26 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-08-09 02:32 - 2017-07-31 22:45 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-08-09 02:32 - 2017-07-31 22:44 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-08-09 02:32 - 2017-07-31 22:41 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-08-09 02:32 - 2017-07-31 22:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-08-09 02:32 - 2017-07-31 22:39 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-08-09 02:32 - 2017-07-31 22:37 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-08-09 02:32 - 2017-07-31 22:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-08-09 02:32 - 2017-07-31 22:31 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-08-09 02:32 - 2017-07-31 22:31 - 001396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 008209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 002055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-08-09 02:32 - 2017-07-31 22:30 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-08-09 02:32 - 2017-07-31 22:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-08-09 02:32 - 2017-07-31 22:28 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-09 02:32 - 2017-07-31 22:28 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-08-09 02:32 - 2017-07-28 02:30 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-08-09 02:32 - 2017-07-28 02:15 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-08-09 02:32 - 2017-07-28 02:15 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-08-09 02:32 - 2017-07-28 02:14 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-08-09 02:32 - 2017-07-28 02:13 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-08-09 02:32 - 2017-07-28 02:12 - 021353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-08-09 02:32 - 2017-07-28 02:12 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-08-09 02:32 - 2017-07-28 02:10 - 002679200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-08-09 02:32 - 2017-07-28 02:10 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-08-09 02:32 - 2017-07-28 01:31 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-08-09 02:32 - 2017-07-28 01:29 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-08-09 02:32 - 2017-07-28 01:26 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-08-09 02:32 - 2017-07-28 01:26 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-08-09 02:32 - 2017-07-28 01:25 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-08-09 02:32 - 2017-07-28 01:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-08-09 02:32 - 2017-07-28 01:23 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-08-09 02:32 - 2017-07-28 01:22 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-08-09 02:32 - 2017-07-28 01:22 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-08-09 02:32 - 2017-07-28 01:22 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-08-09 02:32 - 2017-07-28 01:22 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-08-09 02:32 - 2017-07-28 01:21 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-08-09 02:32 - 2017-07-28 01:21 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-08-09 02:32 - 2017-07-28 01:20 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-08-09 02:32 - 2017-07-28 01:19 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-08-09 02:32 - 2017-07-28 01:19 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-08-09 02:32 - 2017-07-28 01:18 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-08-09 02:32 - 2017-07-28 01:18 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-08-09 02:32 - 2017-07-28 01:18 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-08-09 02:32 - 2017-07-28 01:16 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-08-09 02:32 - 2017-07-28 01:15 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-08-09 02:32 - 2017-07-28 01:15 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-08-09 02:32 - 2017-07-28 01:13 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-08-09 02:32 - 2017-07-28 01:13 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-08-09 02:32 - 2017-07-28 01:12 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-08-09 02:32 - 2017-07-28 01:12 - 002444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-08-09 02:32 - 2017-07-28 01:12 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-08-09 02:32 - 2017-07-28 01:10 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-08-09 02:32 - 2017-07-28 01:06 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-08-09 02:32 - 2017-07-28 01:05 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-08-09 02:31 - 2017-07-31 23:39 - 008319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-09 02:31 - 2017-07-31 23:38 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-09 02:31 - 2017-07-31 23:33 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-08-09 02:31 - 2017-07-31 23:32 - 002444704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-08-09 02:31 - 2017-07-31 23:32 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-08-09 02:31 - 2017-07-31 23:31 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-08-09 02:31 - 2017-07-31 23:31 - 002645680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-08-09 02:31 - 2017-07-31 23:30 - 000723680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-09 02:31 - 2017-07-31 23:30 - 000410160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-08-09 02:31 - 2017-07-31 23:30 - 000315288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-08-09 02:31 - 2017-07-31 23:30 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-09 02:31 - 2017-07-31 23:30 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-08-09 02:31 - 2017-07-31 22:57 - 023677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-08-09 02:31 - 2017-07-31 22:45 - 001275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-08-09 02:31 - 2017-07-31 22:45 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-08-09 02:31 - 2017-07-31 22:45 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-08-09 02:31 - 2017-07-31 22:44 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-08-09 02:31 - 2017-07-31 22:42 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-08-09 02:31 - 2017-07-31 22:41 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-08-09 02:31 - 2017-07-31 22:40 - 017366528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-08-09 02:31 - 2017-07-31 22:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-08-09 02:31 - 2017-07-31 22:38 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-08-09 02:31 - 2017-07-31 22:38 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-08-09 02:31 - 2017-07-31 22:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-08-09 02:31 - 2017-07-31 22:37 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-08-09 02:31 - 2017-07-31 22:36 - 023681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-09 02:31 - 2017-07-31 22:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-08-09 02:31 - 2017-07-31 22:33 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-08-09 02:31 - 2017-07-31 22:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-08-09 02:31 - 2017-07-31 22:32 - 007336960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-09 02:31 - 2017-07-31 22:32 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-08-09 02:31 - 2017-07-31 22:31 - 012786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-09 02:31 - 2017-07-31 22:27 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-09 02:31 - 2017-07-31 22:27 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-08-09 02:31 - 2017-07-31 22:27 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-08-09 02:31 - 2017-07-31 22:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-08-09 02:31 - 2017-07-31 22:25 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-08-09 02:31 - 2017-07-31 22:25 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-08-09 02:31 - 2017-07-31 22:25 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-08-09 02:31 - 2017-07-28 02:25 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-08-09 02:31 - 2017-07-28 02:24 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-08-09 02:31 - 2017-07-28 02:24 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-08-09 02:31 - 2017-07-28 02:24 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-08-09 02:31 - 2017-07-28 02:23 - 002969888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-08-09 02:31 - 2017-07-28 02:17 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-08-09 02:31 - 2017-07-28 02:16 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-08-09 02:31 - 2017-07-28 02:16 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-08-09 02:31 - 2017-07-28 02:13 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-08-09 02:31 - 2017-07-28 02:12 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-08-09 02:31 - 2017-07-28 02:09 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-08-09 02:31 - 2017-07-28 02:09 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-08-09 02:31 - 2017-07-28 02:09 - 000387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-08-09 02:31 - 2017-07-28 01:30 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-08-09 02:31 - 2017-07-28 01:29 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-08-09 02:31 - 2017-07-28 01:26 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-08-09 02:31 - 2017-07-28 01:26 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-08-09 02:31 - 2017-07-28 01:26 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-08-09 02:31 - 2017-07-28 01:25 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-08-09 02:31 - 2017-07-28 01:25 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-08-09 02:31 - 2017-07-28 01:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-08-09 02:31 - 2017-07-28 01:22 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-08-09 02:31 - 2017-07-28 01:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-08-09 02:31 - 2017-07-28 01:19 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-08-09 02:31 - 2017-07-28 01:19 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-08-09 02:31 - 2017-07-28 01:19 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-08-09 02:31 - 2017-07-28 01:18 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-08-09 02:31 - 2017-07-28 01:18 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-08-09 02:31 - 2017-07-28 01:17 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-08-09 02:31 - 2017-07-28 01:17 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-08-09 02:31 - 2017-07-28 01:16 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-08-09 02:31 - 2017-07-28 01:14 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-08-09 02:31 - 2017-07-28 01:14 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-08-09 02:31 - 2017-07-28 01:13 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-08-09 02:31 - 2017-07-28 01:13 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-08-09 02:31 - 2017-07-28 01:12 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-08-09 02:31 - 2017-07-28 01:12 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-08-09 02:31 - 2017-07-28 01:09 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-08-09 02:31 - 2017-07-28 01:08 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-08-09 02:31 - 2017-07-28 01:07 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-08-09 02:31 - 2017-07-28 01:07 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-08-09 02:31 - 2017-07-28 01:07 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-08-09 02:31 - 2017-07-28 01:07 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-08-09 02:31 - 2017-07-28 01:06 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-08-09 02:31 - 2017-07-28 01:05 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-08-09 02:31 - 2017-07-28 01:05 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-08-09 02:30 - 2017-07-31 23:31 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-08-09 02:30 - 2017-07-31 23:30 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-08-09 02:30 - 2017-07-31 22:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-08-09 02:30 - 2017-07-28 02:24 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-08-09 02:30 - 2017-07-28 02:23 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-08-09 02:30 - 2017-07-28 02:22 - 000923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-08-09 02:30 - 2017-07-28 02:20 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-08-09 02:30 - 2017-07-28 02:15 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-08-09 02:30 - 2017-07-28 02:15 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-08-09 02:30 - 2017-07-28 02:14 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-08-09 02:30 - 2017-07-28 02:13 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-08-09 02:30 - 2017-07-28 02:13 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-08-09 02:30 - 2017-07-28 02:12 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-08-09 02:30 - 2017-07-28 01:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-08-09 02:30 - 2017-07-28 01:23 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-08-09 02:30 - 2017-07-28 01:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-08-09 02:30 - 2017-07-28 01:22 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-08-09 02:30 - 2017-07-28 01:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-08-09 02:30 - 2017-07-28 01:20 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-08-09 02:30 - 2017-07-28 01:20 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-08-09 02:30 - 2017-07-28 01:19 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-08-09 02:30 - 2017-07-28 01:19 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-08-09 02:30 - 2017-07-28 01:18 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-08-09 02:30 - 2017-07-28 01:18 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-08-09 02:30 - 2017-07-28 01:17 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-08-09 02:30 - 2017-07-28 01:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-08-09 02:30 - 2017-07-28 01:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-08-09 02:30 - 2017-07-28 01:15 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-08-09 02:30 - 2017-07-28 01:11 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-08-09 02:30 - 2017-07-28 01:10 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-08-09 02:30 - 2017-07-28 01:09 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-08-09 02:30 - 2017-07-28 01:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-08-09 02:30 - 2017-07-28 01:06 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-08-09 02:30 - 2017-07-28 01:05 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-08-09 02:30 - 2017-07-28 01:05 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-08-07 15:41 - 2017-08-07 15:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigne3cafaf9fe7e0b15
2017-08-07 15:41 - 2017-08-07 15:41 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign162c4b238b9d1f5b
2017-08-07 14:49 - 2017-08-07 14:49 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigna7596cd09650b18c
2017-08-07 14:49 - 2017-08-07 14:49 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign0b0929419f83c8fd
2017-08-07 12:24 - 2017-08-07 12:24 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignb9e8c0dabfceaa74
2017-08-07 12:24 - 2017-08-07 12:24 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign89f5ee038a5e9b0a
2017-08-05 12:39 - 2017-08-05 12:39 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign1a83288883d1eafa
2017-08-05 12:39 - 2017-08-05 12:39 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign184ecd9f2c94ee27
2017-08-03 12:13 - 2017-08-03 12:13 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign3fbd5585500ab95f
2017-08-03 12:13 - 2017-08-03 12:13 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign1aaceea23c5e1297
2017-08-03 10:08 - 2017-08-03 10:08 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign7cd58043c4cd65fd
2017-08-03 10:08 - 2017-08-03 10:08 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign2a9dece6d643e78d
2017-07-28 16:47 - 2017-08-24 13:36 - 000000385 _____ C:\Users\Avell\Médicos.txt
2017-07-23 17:52 - 2017-07-23 17:52 - 000079792 _____ C:\Users\Avell\Documents\certidao.pdf
2017-07-23 17:38 - 2017-07-23 17:38 - 000011626 _____ C:\Users\Avell\Documents\crid.pdf
2017-07-18 13:40 - 2017-07-18 13:40 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsignfcbd99e0e88157cd
2017-07-18 13:40 - 2017-07-18 13:40 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign6dc8a91a811d62a6
2017-07-18 13:37 - 2017-07-18 13:37 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsigne85e867e1df72fac
2017-07-18 13:37 - 2017-07-18 13:37 - 000000000 ____D C:\Users\Avell\AppData\Local\Tempzxpsign2dfe1415fad0f115
2017-07-16 15:01 - 2017-07-16 15:01 - 000002722 _____ C:\Users\Avell\Desktop\µTorrent.lnk
2017-07-16 15:01 - 2017-07-16 15:01 - 000002722 _____ C:\Users\Avell\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2017-07-13 07:07 - 2017-07-13 07:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-07-13 07:07 - 2017-07-13 07:07 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-10-11 21:11 - 2015-09-30 16:39 - 000000000 ____D C:\Users\Avell\Downloads\Downs Sims
2017-10-11 21:04 - 2017-05-11 00:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-11 21:04 - 2017-05-10 23:49 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-10-11 21:04 - 2017-05-10 23:48 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-10-11 21:04 - 2017-05-10 23:48 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-11 21:04 - 2016-10-01 06:51 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-10-11 21:04 - 2014-07-08 09:38 - 000000000 __SHD C:\Users\Avell\IntelGraphicsProfiles
2017-10-11 21:03 - 2017-03-18 08:40 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2017-10-11 21:02 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-11 21:02 - 2017-03-18 08:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-11 20:53 - 2016-02-09 18:47 - 000000000 ____D C:\Users\Avell\AppData\Local\CrashDumps
2017-10-11 20:15 - 2017-05-10 23:51 - 000000000 ____D C:\Users\Avell
2017-10-11 20:10 - 2017-05-10 23:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-11 15:47 - 2016-09-07 23:31 - 000000034 _____ C:\Users\Avell\AppData\Roaming\AdobeWLCMCache.dat
2017-10-11 15:42 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-10-11 06:27 - 2014-07-07 17:21 - 000000000 ____D C:\Users\Avell\AppData\Local\Packages
2017-10-10 19:39 - 2014-11-06 14:26 - 000000000 ____D C:\Users\Avell\AppData\Roaming\uTorrent
2017-10-10 15:09 - 2014-11-06 14:34 - 000000000 ____D C:\Program Files (x86)\Steam
2017-10-10 14:08 - 2016-06-17 16:46 - 000000000 ____D C:\Users\Avell\AppData\Local\Spotify
2017-10-10 13:56 - 2016-06-17 16:38 - 000000000 ____D C:\Users\Avell\AppData\Roaming\Spotify
2017-10-09 01:59 - 2014-07-07 17:26 - 000000000 ____D C:\Users\Avell\AppData\Local\Google
2017-10-09 01:58 - 2016-09-27 12:48 - 000000000 ____D C:\Program Files (x86)\Google
2017-10-08 12:00 - 2017-05-11 00:17 - 000003852 _____ C:\WINDOWS\System32\Tasks\Optimize Thumbnail Cache Files
2017-10-08 12:00 - 2017-05-11 00:17 - 000003400 _____ C:\WINDOWS\System32\Tasks\InstallShield® Update Service Scheduler
2017-10-06 11:45 - 2016-01-06 20:25 - 000000000 ____D C:\Program Files (x86)\The Sims 4
2017-10-06 10:17 - 2016-09-30 00:36 - 000000000 ____D C:\Users\Avell\AppData\Local\ElevatedDiagnostics
2017-10-06 09:51 - 2015-11-01 20:25 - 000000000 ____D C:\Program Files (x86)\Battle.net
2017-10-05 18:38 - 2015-12-12 16:01 - 000002278 _____ C:\Users\Avell\Desktop\Itaú.lnk
2017-10-05 18:38 - 2015-11-16 21:07 - 000000000 ____D C:\Users\Avell\AppData\Local\Aplicativo Itau
2017-10-02 12:12 - 2014-11-12 22:38 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-10-02 12:12 - 2014-11-12 22:38 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-22 21:06 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-16 19:24 - 2014-12-10 21:39 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-09-16 16:43 - 2014-12-10 21:39 - 000103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
==================== Arquivos na raiz de alguns diretórios =======
2016-09-07 23:31 - 2017-10-11 15:47 - 000000034 _____ () C:\Users\Avell\AppData\Roaming\AdobeWLCMCache.dat
2014-11-12 22:39 - 2014-11-12 22:39 - 000016015 _____ () C:\Users\Avell\AppData\Roaming\unins000.dat
2014-11-12 22:39 - 2014-11-12 22:39 - 000720082 _____ () C:\Users\Avell\AppData\Roaming\unins000.exe
2016-11-22 04:50 - 2017-08-20 09:22 - 000001456 _____ () C:\Users\Avell\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2016-12-18 18:35 - 2017-03-09 18:40 - 000005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-18 18:35 - 2017-03-05 19:32 - 000005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Alguns arquivos em TEMP:
====================
2017-07-05 20:03 - 2017-07-05 20:03 - 000008720 _____ () C:\Users\Avell\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
2017-07-05 20:05 - 2017-07-05 20:05 - 000012080 _____ () C:\Users\Avell\AppData\Local\Temp\BullseyeCoverage-x64-3.dll
2017-05-30 20:22 - 2017-05-30 20:22 - 000010520 _____ () C:\Users\Avell\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
2017-05-28 13:07 - 2017-05-28 13:07 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1057449030659390733.dll
2017-05-19 21:47 - 2017-05-19 21:47 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-111688680641851205.dll
2017-05-28 10:31 - 2017-05-28 10:31 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1277129235647005315.dll
2017-07-06 21:00 - 2017-07-06 21:00 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1277896161145271857.dll
2017-06-29 22:29 - 2017-06-29 22:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-1937902865050937582.dll
2017-07-01 20:38 - 2017-07-01 20:38 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2019259867777082893.dll
2017-07-08 21:17 - 2017-07-08 21:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2064883224182390141.dll
2017-06-02 17:55 - 2017-06-02 17:55 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2355750992042215079.dll
2017-07-05 20:15 - 2017-07-05 20:15 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2426026689525408471.dll
2017-05-13 20:14 - 2017-05-13 20:14 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2515338635389093837.dll
2017-07-09 10:17 - 2017-07-09 10:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-2686101324110323240.dll
2017-05-26 21:07 - 2017-05-26 21:07 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3054644867840771990.dll
2017-05-27 13:18 - 2017-05-27 13:18 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3213308718979028996.dll
2017-05-13 18:33 - 2017-05-13 18:33 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3221266080848932796.dll
2017-05-25 21:37 - 2017-05-25 21:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3797265568644015291.dll
2017-05-20 16:11 - 2017-05-20 16:11 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-3839804158551448833.dll
2017-07-06 22:21 - 2017-07-06 22:21 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4088873739302794071.dll
2017-05-25 22:24 - 2017-05-25 22:24 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4101428053788607541.dll
2017-07-06 21:10 - 2017-07-06 21:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4342573369605017588.dll
2017-05-13 18:35 - 2017-05-13 18:35 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-43654025753615865.dll
2017-07-05 20:07 - 2017-07-05 20:07 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-4419434955026658662.dll
2017-06-02 23:14 - 2017-06-02 23:14 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-5161379344499212025.dll
2017-05-27 00:02 - 2017-05-27 00:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-5232486561674606552.dll
2017-06-12 21:29 - 2017-06-12 21:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-5979352596213551265.dll
2017-05-19 22:11 - 2017-05-19 22:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-6492539812130029496.dll
2017-06-13 21:04 - 2017-06-13 21:04 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-6502880682087606635.dll
2017-06-13 22:44 - 2017-06-13 22:44 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-6601090224598320599.dll
2017-05-30 20:20 - 2017-05-30 20:20 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-66260440360343820.dll
2017-05-20 17:33 - 2017-05-20 17:33 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7239527569990548413.dll
2017-06-13 22:02 - 2017-06-13 22:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7417424634485873318.dll
2017-07-02 20:13 - 2017-07-02 20:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7480365627888723807.dll
2017-06-30 20:01 - 2017-06-30 20:01 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7525012114009719155.dll
2017-07-08 20:37 - 2017-07-08 20:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7621950208321471753.dll
2017-06-12 22:12 - 2017-06-12 22:12 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7695776663032171259.dll
2017-05-28 13:10 - 2017-05-28 13:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7738828324767770364.dll
2017-05-27 23:17 - 2017-05-27 23:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7795963677151913645.dll
2017-07-06 18:19 - 2017-07-06 18:19 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-7923672455326143341.dll
2017-07-08 14:11 - 2017-07-08 14:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-8549494169753186138.dll
2017-05-31 19:04 - 2017-05-31 19:04 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-8780437457783926890.dll
2017-06-20 18:03 - 2017-06-20 18:03 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-8838961720381347317.dll
2017-07-08 16:01 - 2017-07-08 16:01 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Avell\AppData\Local\Temp\jansi-64-9010942793857108623.dll
2017-08-30 12:00 - 2017-10-08 12:00 - 000611776 _____ (Flexera Software LLC ) C:\Users\Avell\AppData\Local\Temp\wVx4rt.exe
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-08-22 03:04
==================== Fim de FRST.txt ============================