Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:30-04-2016 Executado por Felipe (administrador) em FELIPE-PC (30-04-2016 19:35:32) Executando a partir de C:\Users\Felipe\Downloads Perfis Carregados: Felipe (Perfis Disponíveis: Felipe) Platform: Windows 7 Professional Service Pack 1 (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Prolific Technology Inc.) C:\Windows\SysWOW64\IoctlSvc.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe () C:\Users\Felipe\AppData\Roaming\Java\SYSFELIPE-PC.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe () C:\Windows\USB Vibration\7906\USB Gamepad.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaw.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9642528 2009-12-03] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Java7 Update] => C:\Users\Felipe\AppData\Roaming\Java\SYSFELIPE-PC.exe [96808960 2016-04-30] () HKLM\...\Run: [Java Scheduler 7] => C:\Users\Felipe\AppData\Roaming\Java\Java8.exe HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [USB Gamepad] => C:\Windows\USB Vibration\7906\USB Gamepad.exe -boot HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation) HKU\S-1-5-21-641061616-2719286695-2880499295-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2008-01-22] (Nero AG) HKU\S-1-5-21-641061616-2719286695-2880499295-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4290240 2016-03-01] (Disc Soft Ltd) HKU\S-1-5-21-641061616-2719286695-2880499295-1001\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [942584 2016-03-31] (MKGame) HKU\S-1-5-21-641061616-2719286695-2880499295-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll Nenhum Arquivo ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll Nenhum Arquivo ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX32.dll Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX32.dll Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX32.dll Nenhum Arquivo ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) ProxyServer: [S-1-5-21-641061616-2719286695-2880499295-1001] => 127.0.0.1:49802 Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{782FA412-8BBE-4A74-8648-ED1AC8B8C82E}: [DhcpNameServer] 192.168.0.1 ManualProxies: 1127.0.0.1:49802 Internet Explorer: ================== BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2011-02-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-30] (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-30] (Oracle Corporation) FireFox: ======== FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-30] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo] FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-03-26] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-03-26] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-15] (Google Inc.) Chrome: ======= CHR Profile: C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Apresentações) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-15] CHR Extension: (Google Docs) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-15] CHR Extension: (Google Drive) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-15] CHR Extension: (YouTube) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-15] CHR Extension: (Planilhas do Google) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-15] CHR Extension: (Documentos Google off-line) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02] CHR Extension: (Gmail) - C:\Users\Felipe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-15] ==================== Serviços (Whitelisted) ======================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1444544 2016-03-01] (Disc Soft Ltd) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28736 2016-03-16] (Hewlett-Packard Company) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Arquivo não assinado] R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation) R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [Arquivo não assinado] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Arquivo não assinado] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-03-19] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-03-19] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 h647906; C:\Windows\System32\drivers\h647906.sys [62576 2008-12-01] (Your Corporation) S3 hid7906; C:\Windows\SysWOW64\drivers\hid7906.sys [41096 2008-12-01] (Your Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um Mês Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-04-30 19:35 - 2016-04-30 19:35 - 00012338 _____ C:\Users\Felipe\Downloads\FRST.txt 2016-04-30 19:34 - 2016-04-30 19:35 - 00000000 ____D C:\FRST 2016-04-30 19:33 - 2016-04-30 19:34 - 02377216 _____ (Farbar) C:\Users\Felipe\Downloads\FRST64.exe 2016-04-30 19:18 - 2016-04-30 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-04-30 19:18 - 2016-04-30 19:17 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-04-30 19:17 - 2016-04-30 19:17 - 00000000 ____D C:\Program Files (x86)\Java 2016-04-30 18:45 - 2016-04-30 18:45 - 00003278 _____ C:\Windows\System32\Tasks\{9AD11343-B7CE-4A79-9D23-D8A8446C73BF} 2016-04-30 18:37 - 2016-04-30 18:37 - 00003152 _____ C:\Windows\System32\Tasks\{1A57FCCF-B0CE-4577-AA10-DD71BF5134D5} 2016-04-30 18:34 - 2016-04-30 18:34 - 00738368 _____ (Oracle Corporation) C:\Users\Felipe\Downloads\chromeinstall-8u91 (1).exe 2016-04-30 18:09 - 2016-04-30 18:09 - 00000000 ____D C:\Users\Felipe\AppData\Local\ElevatedDiagnostics 2016-04-30 17:51 - 2016-04-30 19:12 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\Java 2016-04-30 17:51 - 2016-04-30 18:07 - 00000000 ____D C:\Windows\SysWOW64\FELIPE-PC-Win32 2016-04-30 17:48 - 2016-04-30 17:49 - 00495616 _____ C:\Users\Felipe\Downloads\explorer.exe 2016-04-30 17:48 - 2016-04-30 17:48 - 00006656 _____ () C:\Users\Felipe\Downloads\AdobeFlashBeta-x86-7.3817812-2.exe 2016-04-30 17:42 - 2016-04-30 17:45 - 03734513 _____ C:\Users\Felipe\Downloads\forge-1.8.9-11.15.1.1855-universal.jar 2016-04-30 16:55 - 2016-04-30 16:59 - 08818688 _____ C:\Users\Felipe\Downloads\hamachi.msi 2016-04-30 16:40 - 2016-04-30 17:01 - 28529368 _____ C:\Users\Felipe\Downloads\Pixelmon-1.8.9-4.2.5-universal.jar 2016-04-30 16:37 - 2016-04-30 16:37 - 00003160 _____ C:\Windows\System32\Tasks\{0B4EA82C-24BE-48E3-A703-FF0D9A5D40D6} 2016-04-30 16:25 - 2016-04-30 16:26 - 01505408 _____ (Skype Technologies S.A.) C:\Users\Felipe\Downloads\SkypeSetup.exe 2016-04-29 19:44 - 2016-04-30 18:29 - 00000000 ____D C:\Users\Felipe\Desktop\Nova pasta 2016-04-29 19:36 - 2016-04-30 18:22 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\.minecraft 2016-04-29 19:31 - 2016-04-29 19:35 - 09373843 _____ C:\Users\Felipe\Downloads\Shiginima Launcher 3.100.rar 2016-04-29 09:25 - 2016-04-29 09:46 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\.technic 2016-04-29 09:23 - 2016-04-29 09:23 - 31045544 _____ (Oracle Corporation) C:\Users\Felipe\Downloads\jre-7u76-windows-x64.exe 2016-04-29 08:47 - 2016-04-29 08:47 - 00738368 _____ (Oracle Corporation) C:\Users\Felipe\Downloads\chromeinstall-8u91.exe 2016-04-29 08:33 - 2016-02-26 14:10 - 05105352 _____ (Mc Phoenix Launcher) C:\Users\Felipe\Desktop\Technic_Launcher_64bit.exe 2016-04-29 08:30 - 2016-04-29 08:32 - 04593097 _____ C:\Users\Felipe\Downloads\Technic_Launcher_64bit.zip 2016-04-28 10:51 - 2016-04-28 10:51 - 00262144 ____N C:\Windows\Minidump\042816-22375-01.dmp 2016-04-28 10:51 - 2016-04-28 10:51 - 00000000 ____D C:\Windows\Minidump 2016-04-27 08:18 - 2016-04-27 08:18 - 00000000 ____D C:\Users\Felipe\Downloads\data 2016-04-27 08:13 - 2016-04-27 08:17 - 09776118 _____ C:\Users\Felipe\Downloads\CraftLandiaMG.zip 2016-04-23 09:22 - 2016-04-23 09:22 - 00011239 _____ C:\Users\Felipe\Downloads\config.cfg 2016-04-21 17:20 - 2016-04-21 17:20 - 00000000 ____D C:\Users\Felipe\AppData\LocalLow\uTorrent 2016-04-20 14:29 - 2016-04-20 14:45 - 16561151 _____ (DsNET Corp ) C:\Users\Felipe\Downloads\aTubeCatcher.exe 2016-04-20 14:06 - 2015-10-28 03:22 - 171527419 _____ C:\Users\Felipe\Desktop\The.100.S01E02.Dub.[www.Brasilmegaseries.Net].mp4 2016-04-19 11:35 - 2016-04-19 11:36 - 171483566 _____ C:\Users\Felipe\Downloads\The.100.S01E03.Dub.[www.Brasilmegaseries.Net].rar 2016-04-19 11:35 - 2016-04-19 11:35 - 00000000 ____D C:\Users\Felipe\Documents\NeroVision 2016-04-19 11:32 - 2016-04-19 11:32 - 171527532 _____ C:\Users\Felipe\Downloads\The.100.S01E02.Dub.[www.Brasilmegaseries.Net].rar 2016-04-19 10:53 - 2016-04-20 08:39 - 00000000 ____D C:\Program Files (x86)\WM Converter 2016-04-19 10:53 - 2016-04-19 10:53 - 00001949 _____ C:\Users\Felipe\Desktop\WM Converter.lnk 2016-04-19 10:53 - 2016-04-19 10:53 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WM Converter 2016-04-19 10:41 - 2016-04-19 10:51 - 14786248 _____ (AllAlex, Inc) C:\Users\Felipe\Downloads\install_wmconverter.exe 2016-04-19 10:36 - 2015-10-28 03:22 - 167367496 _____ C:\Users\Felipe\Desktop\The.100.S01E01.Dub.[www.Brasilmegaseries.Net].mp4 2016-04-19 10:32 - 2016-04-19 10:33 - 167367609 _____ C:\Users\Felipe\Downloads\The.100.S01E01.Dub.[www.Brasilmegaseries.Net].rar 2016-04-14 19:01 - 2016-04-14 19:01 - 00000219 _____ C:\Users\Felipe\Desktop\Counter-Strike Global Offensive.url 2016-04-14 19:01 - 2016-04-14 19:01 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-04-14 11:46 - 2016-04-14 11:46 - 00000000 ____D C:\Users\Felipe\AppData\Local\Steam 2016-04-14 11:46 - 2016-04-14 11:46 - 00000000 ____D C:\Users\Felipe\AppData\Local\CEF 2016-04-14 10:24 - 2016-04-30 19:11 - 00000000 ____D C:\Program Files (x86)\Steam 2016-04-14 10:24 - 2016-04-14 10:24 - 00000963 _____ C:\Users\Public\Desktop\Steam.lnk 2016-04-14 10:24 - 2016-04-14 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2016-04-14 10:22 - 2016-04-14 10:23 - 01380712 _____ C:\Users\Felipe\Downloads\SteamSetup.exe 2016-04-13 13:38 - 2016-04-28 15:45 - 00000000 ____D C:\Users\Felipe\Downloads\Piranha.(2010).Dublado.720p.By.Luan.Harper 2016-04-13 13:38 - 2016-04-18 18:39 - 537960631 ____R C:\Users\Felipe\Desktop\Piranha.(2010).Dublado.720p.By.Luan.Harper.mp4 2016-04-13 12:59 - 2016-03-31 16:25 - 00394952 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-04-13 12:59 - 2016-03-31 15:41 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-04-13 12:59 - 2016-03-30 21:54 - 25817600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-04-13 12:59 - 2016-03-30 21:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-04-13 12:59 - 2016-03-30 21:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-04-13 12:59 - 2016-03-30 21:31 - 02892800 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-04-13 12:59 - 2016-03-30 21:28 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-04-13 12:59 - 2016-03-30 21:28 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-04-13 12:59 - 2016-03-30 21:27 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-04-13 12:59 - 2016-03-30 21:27 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-04-13 12:59 - 2016-03-30 21:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-04-13 12:59 - 2016-03-30 21:25 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-04-13 12:59 - 2016-03-30 21:22 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-04-13 12:59 - 2016-03-30 21:21 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-04-13 12:59 - 2016-03-30 21:19 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-04-13 12:59 - 2016-03-30 21:17 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-04-13 12:59 - 2016-03-30 21:17 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-04-13 12:59 - 2016-03-30 21:17 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-04-13 12:59 - 2016-03-30 21:17 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-04-13 12:59 - 2016-03-30 21:11 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-04-13 12:59 - 2016-03-30 21:08 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-04-13 12:59 - 2016-03-30 21:03 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-04-13 12:59 - 2016-03-30 21:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-04-13 12:59 - 2016-03-30 21:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-04-13 12:59 - 2016-03-30 20:59 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-04-13 12:59 - 2016-03-30 20:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-04-13 12:59 - 2016-03-30 20:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-04-13 12:59 - 2016-03-30 20:55 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-04-13 12:59 - 2016-03-30 20:53 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-04-13 12:59 - 2016-03-30 20:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-04-13 12:59 - 2016-03-30 20:52 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-04-13 12:59 - 2016-03-30 20:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-04-13 12:59 - 2016-03-30 20:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-04-13 12:59 - 2016-03-30 20:52 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-04-13 12:59 - 2016-03-30 20:51 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-04-13 12:59 - 2016-03-30 20:48 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-04-13 12:59 - 2016-03-30 20:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-04-13 12:59 - 2016-03-30 20:46 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-04-13 12:59 - 2016-03-30 20:45 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-04-13 12:59 - 2016-03-30 20:45 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-04-13 12:59 - 2016-03-30 20:45 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-04-13 12:59 - 2016-03-30 20:45 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-04-13 12:59 - 2016-03-30 20:43 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-04-13 12:59 - 2016-03-30 20:43 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-04-13 12:59 - 2016-03-30 20:42 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-04-13 12:59 - 2016-03-30 20:42 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-04-13 12:59 - 2016-03-30 20:39 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-04-13 12:59 - 2016-03-30 20:38 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-04-13 12:59 - 2016-03-30 20:34 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-04-13 12:59 - 2016-03-30 20:33 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-04-13 12:59 - 2016-03-30 20:31 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-04-13 12:59 - 2016-03-30 20:31 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-04-13 12:59 - 2016-03-30 20:30 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-04-13 12:59 - 2016-03-30 20:30 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-04-13 12:59 - 2016-03-30 20:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-04-13 12:59 - 2016-03-30 20:29 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-04-13 12:59 - 2016-03-30 20:24 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-04-13 12:59 - 2016-03-30 20:23 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-04-13 12:59 - 2016-03-30 20:23 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-04-13 12:59 - 2016-03-30 20:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-04-13 12:59 - 2016-03-30 20:21 - 13811712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-04-13 12:59 - 2016-03-30 20:18 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-04-13 12:59 - 2016-03-30 20:06 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-04-13 12:59 - 2016-03-30 20:05 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-04-13 12:59 - 2016-03-30 20:02 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-04-13 12:59 - 2016-03-30 20:00 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-04-13 11:03 - 2016-03-16 15:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll 2016-04-13 11:03 - 2016-03-16 15:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll 2016-04-13 11:03 - 2016-03-16 15:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll 2016-04-13 11:03 - 2016-03-06 15:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2016-04-13 11:03 - 2016-03-06 15:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2016-04-13 11:03 - 2016-03-06 15:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2016-04-13 11:03 - 2016-03-06 15:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2016-04-13 11:03 - 2016-02-02 15:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2016-04-13 11:02 - 2016-03-17 20:04 - 05551336 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-04-13 11:02 - 2016-03-17 20:04 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-04-13 11:02 - 2016-03-17 20:04 - 00154344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-04-13 11:02 - 2016-03-17 20:04 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-04-13 11:02 - 2016-03-17 20:01 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-04-13 11:02 - 2016-03-17 20:01 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-04-13 11:02 - 2016-03-17 19:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-04-13 11:02 - 2016-03-17 19:58 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-04-13 11:02 - 2016-03-17 19:57 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-04-13 11:02 - 2016-03-17 19:57 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-04-13 11:02 - 2016-03-17 19:57 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-04-13 11:02 - 2016-03-17 19:57 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2016-04-13 11:02 - 2016-03-17 19:57 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-04-13 11:02 - 2016-03-17 19:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2016-04-13 11:02 - 2016-03-17 19:56 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-04-13 11:02 - 2016-03-17 19:54 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-04-13 11:02 - 2016-03-17 19:54 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-04-13 11:02 - 2016-03-17 19:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-04-13 11:02 - 2016-03-17 19:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-04-13 11:02 - 2016-03-17 19:53 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-04-13 11:02 - 2016-03-17 19:53 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-04-13 11:02 - 2016-03-17 19:53 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-04-13 11:02 - 2016-03-17 19:53 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:36 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-04-13 11:02 - 2016-03-17 19:36 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-04-13 11:02 - 2016-03-17 19:33 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-04-13 11:02 - 2016-03-17 19:31 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-04-13 11:02 - 2016-03-17 19:31 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-04-13 11:02 - 2016-03-17 19:31 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-04-13 11:02 - 2016-03-17 19:31 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-04-13 11:02 - 2016-03-17 19:31 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-04-13 11:02 - 2016-03-17 19:30 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-04-13 11:02 - 2016-03-17 19:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-04-13 11:02 - 2016-03-17 19:30 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-04-13 11:02 - 2016-03-17 19:29 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-04-13 11:02 - 2016-03-17 19:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-04-13 11:02 - 2016-03-17 19:29 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-04-13 11:02 - 2016-03-17 19:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2016-04-13 11:02 - 2016-03-17 19:27 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-04-13 11:02 - 2016-03-17 19:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-04-13 11:02 - 2016-03-17 19:27 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-04-13 11:02 - 2016-03-17 19:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-04-13 11:02 - 2016-03-17 19:26 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-04-13 11:02 - 2016-03-17 19:25 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 19:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 18:53 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2016-04-13 11:02 - 2016-03-17 18:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2016-04-13 11:02 - 2016-03-17 18:52 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2016-04-13 11:02 - 2016-03-17 18:51 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-04-13 11:02 - 2016-03-17 18:44 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-04-13 11:02 - 2016-03-17 18:43 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-04-13 11:02 - 2016-03-17 18:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-04-13 11:02 - 2016-03-17 18:38 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-04-13 11:02 - 2016-03-17 18:37 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-04-13 11:02 - 2016-03-17 18:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-04-13 11:02 - 2016-03-17 18:35 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-04-13 11:02 - 2016-03-17 18:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-04-13 11:02 - 2016-03-17 18:30 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-04-13 11:02 - 2016-03-17 18:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-04-13 11:02 - 2016-03-17 18:30 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-04-13 11:02 - 2016-03-17 18:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-04-13 11:02 - 2016-03-17 18:29 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-04-13 11:02 - 2016-03-17 18:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 18:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 18:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-04-13 11:02 - 2016-03-17 18:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-04-13 10:57 - 2016-03-29 14:53 - 03216896 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-04-13 10:57 - 2016-02-05 15:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll 2016-04-13 10:57 - 2016-02-05 15:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll 2016-04-13 10:57 - 2016-02-05 14:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll 2016-04-13 10:57 - 2016-01-20 21:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys 2016-04-13 10:57 - 2015-06-03 17:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2016-04-13 10:56 - 2016-04-04 15:14 - 00038120 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-04-13 10:56 - 2016-04-04 15:02 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-04-13 10:56 - 2016-04-02 10:08 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-04-13 10:56 - 2016-03-23 11:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-04-13 10:56 - 2016-03-17 15:04 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-04-13 10:56 - 2016-03-17 15:04 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-04-13 10:56 - 2016-03-17 15:04 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-04-13 10:56 - 2016-03-17 15:04 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-04-13 10:53 - 2016-03-15 21:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2016-04-13 10:53 - 2016-03-15 21:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2016-04-13 10:53 - 2016-03-15 20:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll 2016-04-13 10:53 - 2016-03-11 15:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-04-13 10:53 - 2016-03-11 15:35 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-04-04 18:38 - 2016-04-05 04:08 - 04483072 ____R C:\Users\Felipe\Downloads\Windows_7_todas.as.versoes_x86_ou_x64_pt-BR.iso 2016-04-04 18:37 - 2016-04-04 18:37 - 00020644 _____ C:\Users\Felipe\Downloads\Windows_7_todas.as.versoes_x86_ou_x64_pt-BR.iso.torrent 2016-04-03 14:37 - 2016-04-29 10:26 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\TS3Client 2016-04-03 14:37 - 2016-04-03 14:37 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2016-04-03 14:37 - 2016-04-03 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2016-04-03 14:37 - 2016-04-03 14:37 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2016-04-03 14:36 - 2016-04-03 14:31 - 31017664 ____N (TeamSpeak Systems GmbH) C:\Users\Felipe\Downloads\TeamSpeak3-Client-win64-3.0.18.2.exe 2016-04-03 10:48 - 2016-04-03 10:48 - 00525270 _____ C:\Users\Felipe\Downloads\PlayCheat - GC (31-03).rar 2016-04-02 18:48 - 2016-04-24 09:46 - 00074752 _____ () C:\SiKernel.dll 2016-04-02 18:48 - 2016-04-24 09:46 - 00028672 _____ () C:\SiInterpreteour.dll 2016-04-02 18:48 - 2016-04-02 18:48 - 01600000 _____ C:\L32ch.dll 2016-04-02 18:48 - 2016-04-02 18:48 - 00054784 _____ C:\LBridge.dll 2016-04-02 18:25 - 2016-04-02 18:25 - 00001094 _____ C:\Users\Public\Desktop\Grand Chase History.lnk 2016-04-02 18:25 - 2016-04-02 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Chase History 2016-04-02 18:19 - 2016-04-13 19:48 - 00000000 ____D C:\Program Files (x86)\Grand Chase History 2016-04-02 08:05 - 2016-04-02 18:15 - 00000000 ____D C:\Users\Felipe\Documents\MEGAsync Downloads 2016-04-02 08:03 - 2016-04-04 21:26 - 00000000 ___RD C:\Users\Felipe\Documents\MEGA 2016-04-02 08:01 - 2016-04-02 08:01 - 00000000 ____D C:\Users\Felipe\AppData\Local\Mega Limited 2016-04-02 07:55 - 2016-04-02 08:00 - 10461168 _____ (MEGA Limited) C:\Users\Felipe\Downloads\MEGAsyncSetup.exe ==================== Um Mês Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-04-30 19:29 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF 2016-04-30 19:18 - 2009-07-14 01:45 - 00022032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-04-30 19:18 - 2009-07-14 01:45 - 00022032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-04-30 19:11 - 2016-03-26 08:01 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\MKRecordEngine 2016-04-30 19:10 - 2016-03-15 20:46 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-04-30 19:10 - 2016-03-15 20:39 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA 2016-04-30 19:10 - 2016-03-15 20:39 - 00000000 ____D C:\ProgramData\NVIDIA 2016-04-30 19:10 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-30 18:51 - 2016-03-15 20:46 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-04-30 18:31 - 2015-05-20 17:49 - 00000000 ____D C:\Users\Felipe\Desktop\CraftLandia Minecraft 2016-04-29 08:55 - 2016-03-16 19:39 - 00000000 ____D C:\Users\Felipe\.oracle_jre_usage 2016-04-24 19:51 - 2016-03-15 20:14 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2016-04-22 13:21 - 2009-07-14 02:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-04-21 21:42 - 2016-03-15 20:52 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\uTorrent 2016-04-21 15:05 - 2010-11-21 00:27 - 00453288 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2016-04-19 12:05 - 2016-03-15 20:30 - 00000000 ____D C:\Users\Felipe\AppData\Roaming\Ahead 2016-04-19 11:35 - 2016-03-15 20:12 - 00000000 ____D C:\Users\Felipe\AppData\Local\VirtualStore 2016-04-19 11:31 - 2016-03-15 20:43 - 00000000 ____D C:\Users\Felipe\AppData\Local\Ahead 2016-04-19 10:56 - 2016-03-19 10:40 - 00000000 ____D C:\Users\Felipe\Desktop\Tor Browser 2016-04-14 18:18 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\rescache 2016-04-14 17:52 - 2011-04-12 10:40 - 00705474 _____ C:\Windows\system32\prfh0416.dat 2016-04-14 17:52 - 2011-04-12 10:40 - 00147314 _____ C:\Windows\system32\prfc0416.dat 2016-04-14 17:52 - 2009-07-14 02:13 - 01634498 _____ C:\Windows\system32\PerfStringBackup.INI 2016-04-14 17:52 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf 2016-04-13 18:35 - 2009-07-14 01:45 - 00344056 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-13 18:33 - 2016-03-17 04:52 - 00000000 ____D C:\Windows\system32\appraiser 2016-04-11 19:05 - 2016-03-15 20:49 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-04-11 19:05 - 2016-03-15 20:49 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk ==================== Arquivos na raiz de alguns diretórios ======= 2016-03-27 13:36 - 2016-03-27 13:43 - 0000815 _____ () C:\ProgramData\hpzinstall.log Alguns arquivos em TEMP: ==================== C:\Users\Felipe\AppData\Local\Temp\bitool.dll C:\Users\Felipe\AppData\Local\Temp\jansi-64-4116207509473290006.dll C:\Users\Felipe\AppData\Local\Temp\jansi-64-5389187978850702877.dll C:\Users\Felipe\AppData\Local\Temp\jansi-64-8163429291352354118.dll C:\Users\Felipe\AppData\Local\Temp\jansi-64-889105634253278256.dll ==================== Bamital & volsnap ================= (Não há correção automática para arquivos que não passaram na verificação.) C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente C:\Windows\explorer.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\Windows\system32\services.exe => O arquivo é assinado digitalmente C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2016-04-18 12:29 ==================== Fim de FRST.txt ============================