Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
mocci

Janelas em execução ficam inativas de repente

Recommended Posts

Saudações membros do Clube!

estou com um problema em todas as janelas de execução do meu desktop, acredito que iremos tratar de algum tipo de vírus.

por exemplo: quando eu estou utilizando o navegador, de repente a janela do navegador sai - quando eu digo sai, é como se alguém tivesse clicado na barra lateral do Windows - isso meio que deixa o navegador inativo.


• esse problema não se limita só ao navegador, mas sim a todos os programas que estiverem ativos e em execução no meu computador.

eu utilizo um antivírus atualizado, mas nada consta quando o mesmo realiza scan.


gostaria que se possível alguém explicasse o causador desse problema e como poderíamos solucionar isto.
desde já agradeço pela disposição e atenção para com este tópico!

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

Por favor, atente para o seguinte:

  • Sobre o Fórum: Este é um espaço privado, não público. Seu uso é um privilégio, não um direito.
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Respeite a ordem das instruções passadas.
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

 

createsrpoint;
ffdefaults;
chrdefaults;
resetieproxy;
network.proxy;ff
emptyclsid;
ipconfig /flushdns >>"%temp%\log.txt";b

 

Salve este arquivo na na sua área de trabalho com o nome zascript

Novamente, execute o ZA-Scan.exe e aguarde.
Copie e cole o conteúdo desse arquivo em sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

Ok,


Vamos executar novamente o ZA-Scan com um novo script.

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

 

createsrpoint;
shortcutfix;
emptyalltemp; 

 

Salve este arquivo na na sua área de trabalho com o nome zascript

Novamente, execute o ZA-Scan.exe e aguarde.
Copie e cole o conteúdo desse arquivo em sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
desativei todos os programas e realizei o processo conforme orientado, o computador fez ainda uma reinicialização.
segue documento em anexo.

zoek-results.log

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Turco

 

Baixe o Malwarebytes Anti-Malware (MBAM) e salve em sua Área de Trabalho (Desktop).
 

  • Clique duas vezes no mb3-setup-consumer para instalar o programa.
  • Clique em Análise  -> Análise Customatizada, em seguida Configurar Análise 
  • Certifique-se que todas a caixas estão marcadas no lado esquerdo, inclusive Procurar rootkits
  • No lado direito marque todas caixas, referente as unidades do sistema.
  • Em seguida clique no botão Analisar Agora.
  • Começará então o exame. Aguarde, pois pode demorar.
  • Ao acabar o exame, se houver itens encontrados, certifique-se que estejam todas marcados e clique no botão Mover para Quarentena
  • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo)
  • O log é automaticamente salvo pelo MBAM e para vê-lo, clique em Relatórios -> Visualizar o relatório.
  • Clique duas vezes no log (Relatorio de Análise). Utilize o formato .txt para exportar o log para seu desktop.
  • Selecione, copie e cole o conteúdo deste log em sua próxima resposta.

 

NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
realizei todo o procedimento conforme solicitado.

 

log.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o Farbar Recovery Scan Tool e salve-o na Área de Trabalho (Desktop).


32 bit (x86) ou 64 bit (x64)

  • Clique com o botão direito e escolha Executar como Administrador;
  • Marque a caixa Arquivos 90 dias,  e clique no botão Examinar;
  • Aguarde e ao final os logs FRST.txt e Addition.txt serão salvos em sua Área de Trabalho (Desktop);
  • Selecione, copie e cole o conteúdo do log  FRST.txt em sua próxima resposta;
  • Anexe o log Addition.txt.

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco

 

Spoiler

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02.01.2018
Executado por 7 (administrador) em 7-PC (04-01-2018 21:10:50)
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Opera)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Opera Software) C:\Program Files\Opera\49.0.2725.64\opera.exe
(Opera Software) C:\Program Files\Opera\49.0.2725.64\opera.exe
(Opera Software) C:\Program Files\Opera\49.0.2725.64\opera.exe
(Opera Software) C:\Program Files\Opera\49.0.2725.64\opera.exe
(Opera Software) C:\Program Files\Opera\49.0.2725.64\opera.exe
(Opera Software) C:\Program Files\Opera\49.0.2725.64\opera.exe
() E:\Y\Ragnamite Jogar.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-12-19] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [144520 2017-07-19] (Panda Security, S.L.)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5764384 2017-11-20] (IObit)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\MountPoints2: {064dbff0-52b5-11e7-a0c0-001d92fa22c2} - E:\AutoRun.exe
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\MountPoints2: {4a59878e-d80b-11e6-83db-001d92fa22c2} - F:\Lenovo_Suite.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder [2017-12-25] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-06-23]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2017-12-19]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 187.122.127.34 187.122.127.58
Tcpip\..\Interfaces\{9354C108-EBDD-481B-88D9-1C195824AE17}: [DhcpNameServer] 187.122.127.34 187.122.127.58

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 

FireFox:
========
FF DefaultProfile: k8v295re.default
FF ProfilePath: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default [2018-01-03]
FF user.js: detected! => C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\user.js [2018-01-02]
FF Homepage: Mozilla\Firefox\Profiles\k8v295re.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\k8v295re.default -> about:newtab
FF Extension: (MEGA) - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\Extensions\firefox@mega.co.nz.xpi [2017-10-05]
FF Extension: (Panda Security Toolbar) - C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [2017-02-21] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-06-23] [Legacy] [não assinado]
FF HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-12] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-255323123-3732995248-2485898865-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [1769760 2017-11-14] (IObit)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109024 2017-07-19] (Panda Security, S.L.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7521480 2017-04-09] (INCA Internet Co., Ltd.)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2017-07-19] (Panda Security, S.L.)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [1997792 2017-07-07] (Scopus Soluções em TI Ltda)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 AgereSoftModem; C:\Windows\System32\DRIVERS\agrsm64.sys [1212416 2017-12-19] (LSI Corporation) [Arquivo não assinado]
S3 cpuz143; C:\Windows\temp\cpuz143\cpuz143_x64.sys [48960 2018-01-03] (CPUID)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-12-12] (REALiX(tm))
R1 IMFCameraProtect; C:\Windows\system32\drivers\IMFCameraProtect.sys [26272 2017-04-06] (IObit.com)
R3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys [21360 2017-03-08] (IObit.com)
S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22440 2016-12-22] (IObit)
R3 IMFForceDelete; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys [16216 2017-07-03] (IObit.com)
S3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [14680 2016-12-21] (IObit)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2018-01-03] (Malwarebytes)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [105472 2017-04-06] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [211008 2017-04-06] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [119880 2017-04-06] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [124488 2017-04-06] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [92536 2017-03-15] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [116784 2017-04-06] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [83824 2017-04-06] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [134288 2017-04-06] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [336168 2017-04-06] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [225464 2017-04-06] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [121952 2017-04-06] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [279536 2017-04-06] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [123976 2017-04-06] (Panda Security, S.L.)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [178264 2017-07-19] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [139352 2017-07-19] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [206424 2017-07-19] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [132696 2017-07-19] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [146008 2017-07-19] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [116312 2017-07-19] (Panda Security, S.L.)
U3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [72280 2017-05-22] (Panda Security, S.L.)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34752 2016-11-03] (IObit.com)
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [X]
S3 panda_url_filteringd; \??\C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-11-13 09:53 - 2020-11-13 09:53 - 000000000 ____D C:\Users\Todos os Usuários\IsolatedStorage
2020-11-13 09:53 - 2020-11-13 09:53 - 000000000 ____D C:\Users\7\AppData\Roaming\IsolatedStorage
2020-11-13 09:53 - 2020-11-13 09:53 - 000000000 ____D C:\ProgramData\IsolatedStorage
2018-01-04 21:10 - 2018-01-04 21:12 - 000016051 _____ C:\Users\7\Desktop\FRST.txt
2018-01-04 21:09 - 2018-01-04 21:10 - 000000000 ____D C:\FRST
2018-01-04 21:08 - 2018-01-04 21:08 - 002393088 _____ (Farbar) C:\Users\7\Desktop\FRST64.exe
2018-01-04 18:32 - 2017-05-22 08:29 - 000072280 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2018-01-03 20:44 - 2018-01-03 22:09 - 000013582 _____ C:\Users\7\Desktop\stalker.xlsx
2018-01-03 20:44 - 2018-01-03 21:39 - 000013580 _____ C:\Users\7\Desktop\867822EF.tmp
2018-01-03 19:14 - 2018-01-03 19:14 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-01-03 19:14 - 2018-01-03 19:14 - 000001827 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-01-03 19:14 - 2018-01-03 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-01-03 19:14 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2018-01-03 19:12 - 2018-01-03 19:13 - 083316440 _____ (Malwarebytes ) C:\Users\7\Desktop\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe
2018-01-03 15:29 - 2018-01-03 15:29 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign955b16516e42e408
2018-01-03 14:39 - 2018-01-03 18:00 - 078347306 _____ C:\Users\7\Desktop\base - GUIA².psd
2018-01-03 14:16 - 2018-01-03 14:16 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignab8837a0942df619
2018-01-03 14:13 - 2018-01-03 14:13 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigna260b99fd6722a94
2018-01-03 14:13 - 2018-01-03 14:13 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign363803c04483540b
2018-01-03 13:50 - 2018-01-03 13:50 - 000000257 _____ C:\folders.txt
2018-01-03 13:50 - 2018-01-03 13:45 - 000024064 _____ C:\Windows\zoek-delete.exe
2018-01-03 13:43 - 2018-01-03 13:43 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignc08adeb7e93c8d8f
2018-01-03 13:43 - 2018-01-03 13:43 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign46568d7998884084
2018-01-03 13:43 - 2018-01-03 13:43 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign04b89988a831fb6c
2018-01-02 23:23 - 2018-01-02 23:28 - 000000000 ____D C:\zoek_backup
2018-01-01 21:18 - 2018-01-01 21:18 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigna2a7f539bb1d1805
2018-01-01 21:17 - 2018-01-01 21:17 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignf9928af20279b9a4
2018-01-01 21:17 - 2018-01-01 21:17 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignd78e8b73b4982cf0
2018-01-01 21:17 - 2018-01-01 21:17 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign13a0fc784dd3b364
2018-01-01 15:03 - 2018-01-01 21:51 - 000110856 _____ C:\Users\7\Documents\Partidos.xlsx
2018-01-01 15:03 - 2018-01-01 18:52 - 000019478 _____ C:\Users\7\Documents\604E4C7A.tmp
2018-01-01 14:12 - 2018-01-01 14:12 - 000018278 _____ C:\Users\7\Desktop\ZA-Scan.txt
2018-01-01 14:08 - 2018-01-01 14:08 - 000000000 ____D C:\Users\7\Desktop\zoek_backup
2018-01-01 14:07 - 2018-01-01 14:07 - 001368576 _____ C:\Users\7\Desktop\ZA-Scan.exe
2017-12-31 20:53 - 2005-01-11 16:17 - 000000730 _____ C:\Users\7\Downloads\readme.html
2017-12-31 20:53 - 2000-05-20 17:14 - 012582912 _____ C:\Users\7\Desktop\Mortal Kombat Trilogy.z64
2017-12-31 20:44 - 2017-12-31 20:44 - 000000000 ____D C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\project64 1.6
2017-12-31 20:44 - 2017-12-31 20:44 - 000000000 ____D C:\Program Files (x86)\Project64 1.6
2017-12-31 17:53 - 2018-01-03 14:51 - 000000000 ____D C:\Users\7\AppData\LocalLow\uTorrent
2017-12-31 17:19 - 2017-12-31 17:19 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign24eb60e0598fe4bb
2017-12-31 16:59 - 2017-12-31 16:59 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign646c15b09aea2fd5
2017-12-31 15:13 - 2017-12-31 15:13 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign1c532e2cd2138881
2017-12-31 13:37 - 2017-12-31 13:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign83c5d1a8318bba51
2017-12-31 13:37 - 2017-12-31 13:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign4cfb40deb632b782
2017-12-31 13:37 - 2017-12-31 13:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign35bd7810d6fb00fd
2017-12-27 22:20 - 2017-12-27 22:20 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignf3ffb2dc1d911503
2017-12-27 22:20 - 2017-12-27 22:20 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignc188e22507df0272
2017-12-27 22:20 - 2017-12-27 22:20 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign3c56beda100a870d
2017-12-27 15:16 - 2017-12-27 15:16 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignb46174f774d14852
2017-12-27 13:50 - 2017-12-27 13:50 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignd3afe427848f74a2
2017-12-27 13:37 - 2017-12-27 13:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign3e68b8cbf1b80d29
2017-12-27 13:37 - 2017-12-27 13:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign2e59795e9afb3b54
2017-12-27 13:37 - 2017-12-27 13:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign0fafafbe213522fb
2017-12-26 23:15 - 2017-12-26 23:15 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign798fa7e218c65be3
2017-12-26 23:13 - 2017-12-26 23:13 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignc8f8126a71473c97
2017-12-26 23:13 - 2017-12-26 23:13 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign82eda4d40e527e72
2017-12-26 23:13 - 2017-12-26 23:13 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign7c3040ac438a09d5
2017-12-26 21:03 - 2017-12-26 21:03 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignce0af28e48edcef8
2017-12-26 20:05 - 2017-12-26 20:05 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign6a27bcfcd07ad91c
2017-12-26 19:53 - 2017-12-26 19:53 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignbe6d4a29205d68de
2017-12-26 19:53 - 2017-12-26 19:53 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign16f34db6f4b93a23
2017-12-25 21:11 - 2017-12-25 21:11 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignf322df3b824ca5e8
2017-12-25 20:56 - 2017-12-25 20:56 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignf81c858f18b2e172
2017-12-25 20:39 - 2017-12-31 15:22 - 000001456 _____ C:\Users\7\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2017-12-25 20:18 - 2017-12-25 20:18 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignc0cc40fca4c49a60
2017-12-25 19:22 - 2017-12-25 19:22 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigna9c0e67534d54e52
2017-12-25 19:21 - 2017-12-25 19:21 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignd2afd85568133454
2017-12-25 19:21 - 2017-12-25 19:21 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign0b5a56c535deead7
2017-12-25 19:20 - 2017-12-25 19:20 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign88278001e8b329fb
2017-12-25 19:20 - 2017-12-25 19:20 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign7b63186e528c7168
2017-12-25 18:31 - 2017-12-25 18:31 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign7d6151818d3a9877
2017-12-25 18:31 - 2017-12-25 18:31 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign50fae6893d011cb7
2017-12-25 18:30 - 2017-12-25 18:30 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignfde6067194df73e5
2017-12-25 18:30 - 2017-12-25 18:30 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigndf4ba1742c35bd2b
2017-12-25 18:08 - 2017-12-26 22:30 - 000000000 ____D C:\Program Files\Opera
2017-12-25 18:08 - 2017-12-25 18:08 - 000003814 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1514232514
2017-12-25 18:08 - 2017-12-25 18:08 - 000001053 _____ C:\Users\Public\Desktop\Navegador Opera.lnk
2017-12-25 18:08 - 2017-12-25 18:08 - 000001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2017-12-25 18:08 - 2017-12-25 18:08 - 000000000 ____D C:\Users\7\AppData\Roaming\Opera Software
2017-12-25 18:08 - 2017-12-25 18:08 - 000000000 ____D C:\Users\7\AppData\Local\Opera Software
2017-12-25 18:02 - 2017-12-25 18:02 - 000000000 ____D C:\Users\7\AppData\Roaming\Bitdefender
2017-12-25 17:58 - 2017-12-25 17:58 - 000198629 _____ C:\Users\Todos os Usuários\cl.uninstall.1514231623.bdinstall.bin
2017-12-25 17:58 - 2017-12-25 17:58 - 000198629 _____ C:\ProgramData\cl.uninstall.1514231623.bdinstall.bin
2017-12-25 17:58 - 2017-12-25 17:58 - 000030267 _____ C:\Users\Todos os Usuários\agent.uninstall.1514231925.bdinstall.bin
2017-12-25 17:58 - 2017-12-25 17:58 - 000030267 _____ C:\ProgramData\agent.uninstall.1514231925.bdinstall.bin
2017-12-25 17:51 - 2017-12-25 17:51 - 000038551 _____ C:\Users\Todos os Usuários\dm.uninstall.1514231470.bdinstall.bin
2017-12-25 17:51 - 2017-12-25 17:51 - 000038551 _____ C:\ProgramData\dm.uninstall.1514231470.bdinstall.bin
2017-12-25 16:14 - 2017-12-25 16:14 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign1962152232f9a784
2017-12-25 15:54 - 2017-12-25 15:54 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigne3f2b8af8f724377
2017-12-25 15:39 - 2017-12-25 15:39 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigne146b765f014427b
2017-12-25 15:39 - 2017-12-25 15:39 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignd17a2e34d3031cc5
2017-12-25 15:39 - 2017-12-25 15:39 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign019a2f60276ce190
2017-12-24 18:03 - 2017-12-24 18:03 - 000262144 _____ C:\Windows\Minidump\122417-31843-01.dmp
2017-12-24 13:27 - 2018-01-02 21:41 - 000000000 ____D C:\Users\7\AppData\Local\Thunderbird
2017-12-23 19:11 - 2017-12-23 19:11 - 000004530 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-12-22 22:57 - 2017-12-24 18:03 - 381686400 _____ C:\Windows\MEMORY.DMP
2017-12-22 22:57 - 2017-12-22 22:57 - 000282856 _____ C:\Windows\Minidump\122217-50781-01.dmp
2017-12-22 13:47 - 2017-12-22 13:47 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign92b87b19c24354c2
2017-12-22 13:47 - 2017-12-22 13:47 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign912400aa81251eda
2017-12-22 13:47 - 2017-12-22 13:47 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign36def66d81b14648
2017-12-19 17:32 - 2017-12-19 17:32 - 000000000 ____D C:\Users\7\AppData\Roaming\TP-LINK
2017-12-19 17:31 - 2017-12-19 17:31 - 000002291 _____ C:\Users\Public\Desktop\TP-LINK Wireless Configuration Utility.lnk
2017-12-19 17:31 - 2017-12-19 17:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK
2017-12-19 17:31 - 2017-12-19 17:31 - 000000000 ____D C:\Program Files (x86)\TP-LINK
2017-12-19 17:28 - 2017-12-19 17:31 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-12-19 15:06 - 2017-12-31 17:24 - 117986918 _____ C:\Users\7\Desktop\251 - 300.psd
2017-12-19 14:54 - 2017-12-19 14:54 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign461645559fb0e5a1
2017-12-19 14:51 - 2017-12-19 14:51 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign8087c57fbf88f0c2
2017-12-19 14:51 - 2017-12-19 14:51 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign51c45a48f97f4356
2017-12-19 14:02 - 2017-12-19 14:02 - 000000000 ____H C:\Users\Todos os Usuários\DP45977C.lfl
2017-12-19 14:02 - 2017-12-19 14:02 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2017-12-19 14:01 - 2017-12-19 14:01 - 000000000 ____D C:\Windows\system32\DAX3
2017-12-19 14:01 - 2017-12-19 14:01 - 000000000 ____D C:\Windows\system32\DAX2
2017-12-19 14:01 - 2017-12-19 14:01 - 000000000 ____D C:\Users\Todos os Usuários\Audyssey Labs
2017-12-19 14:01 - 2017-12-19 14:01 - 000000000 ____D C:\ProgramData\Audyssey Labs
2017-12-19 14:00 - 2017-12-19 14:00 - 000000000 ____D C:\Program Files\Realtek
2017-12-19 13:58 - 2017-12-19 13:58 - 015202032 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 005826560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-12-19 13:58 - 2017-12-19 13:58 - 003410832 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 003299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 003122656 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 002190976 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 002110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 001435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 001382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 001337640 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000965024 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000852128 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000568256 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000381408 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000258856 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000209528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000158696 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-12-19 13:58 - 2017-12-19 13:58 - 000075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 024608272 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 023863048 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 023764392 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 014057248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 013122576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 012988336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 012334923 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-12-19 13:57 - 2017-12-19 13:57 - 010536152 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 007172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 007096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 006410088 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 006264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 005938904 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 005804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2017-12-19 13:57 - 2017-12-19 13:57 - 005593608 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 005346992 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 004059960 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 003509256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 003507688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 003205120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 003092336 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 002993720 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 002444680 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 002291304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 002210304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 002050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001959600 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001920870 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2017-12-19 13:57 - 2017-12-19 13:57 - 001780616 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001616680 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001554600 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001422920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001347136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001334376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001326424 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001213656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001186832 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001170872 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001166152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001133064 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001016928 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 001003856 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000999848 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000931616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000923736 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000877424 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000868176 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000866640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000737960 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000691680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000680544 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000678176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000677664 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000618184 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000609392 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000525768 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000514520 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000504304 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000500552 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000447712 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000445392 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000428224 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000406448 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000366120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000360344 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000330552 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000327448 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000203840 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000118592 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000118584 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000115120 _____ (Conexant System, Inc.) C:\Windows\system32\Caf64api.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000110976 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000105304 _____ C:\Windows\system32\audioLibVc.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000088312 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000084608 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-12-19 13:57 - 2017-12-19 13:57 - 000005604 _____ C:\Windows\system32\cxapo.lncs
2017-12-19 13:57 - 2017-12-19 13:57 - 000000864 _____ C:\Windows\system32\cxapo.prop
2017-12-19 13:56 - 2017-12-19 13:57 - 072520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2017-12-19 13:56 - 2017-12-19 13:56 - 003677160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-12-19 13:56 - 2017-12-19 13:56 - 000000000 ____D C:\Program Files\LSI SoftModem
2017-12-19 13:55 - 2017-12-19 13:55 - 001212416 _____ (LSI Corporation) C:\Windows\system32\Drivers\agrsm64.sys
2017-12-19 13:55 - 2017-12-19 13:55 - 000064000 _____ (LSI Corporation) C:\Windows\agrsmdel.exe
2017-12-19 13:55 - 2017-12-19 13:55 - 000042496 _____ (LSI Corporation) C:\Windows\agrdel64.exe
2017-12-19 13:55 - 2017-12-19 13:55 - 000027648 _____ (LSI Corporation) C:\Windows\system32\agrsco64.dll
2017-12-18 22:18 - 2017-12-18 22:18 - 000045765 _____ C:\Users\Todos os Usuários\dm.update.1513642628.bdinstall.bin
2017-12-18 22:18 - 2017-12-18 22:18 - 000045765 _____ C:\ProgramData\dm.update.1513642628.bdinstall.bin
2017-12-18 22:18 - 2017-12-18 22:18 - 000000000 ____D C:\Users\7\AppData\Local\Apple Computer
2017-12-18 22:10 - 2017-12-18 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-12-18 22:10 - 2017-12-18 22:10 - 000000000 ____D C:\Program Files\iPod
2017-12-18 22:09 - 2017-12-18 22:10 - 000000000 ____D C:\Program Files\iTunes
2017-12-18 22:07 - 2017-12-18 22:07 - 000002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-12-18 22:07 - 2017-12-18 22:07 - 000000000 ____D C:\Windows\System32\Tasks\Apple
2017-12-18 22:07 - 2017-12-18 22:07 - 000000000 ____D C:\Users\7\AppData\Local\Apple
2017-12-18 22:06 - 2017-12-18 22:07 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2017-12-18 22:05 - 2017-12-18 22:06 - 000000000 ____D C:\Program Files\Common Files\Apple
2017-12-14 11:23 - 2017-12-14 11:23 - 000193875 _____ C:\Users\7\Desktop\reservista 2017.xps
2017-12-13 20:25 - 2017-12-14 11:03 - 000000000 ____D C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-12-13 20:25 - 2017-12-13 20:37 - 000000000 ____D C:\Users\7\AppData\Roaming\discord
2017-12-13 20:24 - 2017-12-14 11:03 - 000000000 ____D C:\Users\7\AppData\Local\Discord
2017-12-13 20:24 - 2017-12-13 20:26 - 000000000 ____D C:\Users\7\AppData\Local\SquirrelTemp
2017-12-13 14:40 - 2017-12-13 14:40 - 052371456 _____ C:\Windows\system32\config\COMPONENTS.iobit
2017-12-12 23:32 - 2017-12-12 23:33 - 099028992 _____ C:\Windows\system32\config\SOFTWARE.iobit
2017-12-12 23:32 - 2017-12-12 23:32 - 000290816 _____ C:\Windows\system32\config\DEFAULT.iobit
2017-12-12 23:32 - 2017-12-12 23:32 - 000065536 _____ C:\Windows\system32\config\SAM.iobit
2017-12-12 23:32 - 2017-12-12 23:32 - 000024576 _____ C:\Windows\system32\config\SECURITY.iobit
2017-12-12 23:13 - 2018-01-04 18:37 - 000002870 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (7)
2017-12-12 23:13 - 2017-12-19 18:48 - 000002274 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2017-12-12 23:13 - 2017-12-12 23:13 - 000027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2017-12-12 23:13 - 2017-12-12 23:13 - 000003238 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2017-12-12 23:13 - 2017-12-12 23:13 - 000000000 ____D C:\Windows\IObit
2017-12-12 23:13 - 2017-12-12 23:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2017-12-12 23:11 - 2017-12-12 23:11 - 000000000 ____D C:\Users\Todos os Usuários\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-12-12 23:11 - 2017-12-12 23:11 - 000000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-12-12 23:10 - 2017-12-12 23:10 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled
2017-12-12 23:10 - 2017-12-12 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2017-12-12 18:53 - 2017-11-17 02:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-12 18:53 - 2017-11-14 23:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-12 18:53 - 2017-11-14 22:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-12 18:53 - 2017-11-14 01:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-12 18:53 - 2017-11-14 01:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-12 18:53 - 2017-11-14 01:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-12 18:53 - 2017-11-14 01:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-12 18:53 - 2017-11-14 01:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-12 18:53 - 2017-11-14 01:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-12 18:53 - 2017-11-14 01:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-12 18:53 - 2017-11-14 01:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-12 18:53 - 2017-11-14 01:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-12 18:53 - 2017-11-14 01:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-12 18:53 - 2017-11-14 01:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-12 18:53 - 2017-11-14 01:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-12 18:53 - 2017-11-14 01:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-12 18:53 - 2017-11-14 01:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-12 18:53 - 2017-11-14 01:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-12 18:53 - 2017-11-14 01:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-12 18:53 - 2017-11-14 00:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-12 18:53 - 2017-11-14 00:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-12 18:53 - 2017-11-14 00:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-12 18:53 - 2017-11-14 00:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-12 18:53 - 2017-11-14 00:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-12 18:53 - 2017-11-14 00:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-12 18:53 - 2017-11-14 00:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-12 18:53 - 2017-11-14 00:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-12 18:53 - 2017-11-14 00:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-12 18:53 - 2017-11-13 23:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-12 18:53 - 2017-11-13 23:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-12 18:53 - 2017-11-13 23:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-12 18:53 - 2017-11-13 23:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-12 18:53 - 2017-11-13 22:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-12 18:53 - 2017-11-07 18:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-12 18:53 - 2017-11-07 18:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-12 18:53 - 2017-11-07 18:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-12 18:53 - 2017-11-07 18:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-12 18:53 - 2017-11-07 18:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-12 18:53 - 2017-11-07 18:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-12 18:53 - 2017-11-07 18:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-12 18:53 - 2017-11-07 18:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-12 18:53 - 2017-11-07 18:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-12 18:53 - 2017-11-07 18:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-12 18:53 - 2017-11-07 18:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-12 18:53 - 2017-11-07 18:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-12 18:53 - 2017-11-07 18:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-12 18:53 - 2017-11-07 18:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-12 18:53 - 2017-11-07 18:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-12 18:53 - 2017-11-07 18:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-12 18:53 - 2017-11-07 18:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-12 18:53 - 2017-11-07 18:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-12 18:53 - 2017-11-07 18:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-12 18:53 - 2017-11-07 17:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-12 18:53 - 2017-11-04 13:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-12 18:53 - 2017-11-04 13:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-12 18:53 - 2017-11-04 13:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-12 18:53 - 2017-11-04 13:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-12 18:53 - 2017-11-02 14:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-12 18:53 - 2017-11-02 14:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-12 18:53 - 2017-11-02 14:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-12 18:53 - 2017-11-02 14:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-12 18:53 - 2017-11-02 13:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-12 18:53 - 2017-11-02 13:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-12 18:53 - 2017-11-02 13:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-12 18:53 - 2017-11-02 12:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-12 18:53 - 2017-10-16 21:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-12 18:53 - 2017-10-16 20:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-12 18:53 - 2017-10-11 22:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-12 18:52 - 2017-11-14 01:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-12 18:52 - 2017-11-14 01:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-12 18:52 - 2017-11-14 01:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-12 18:52 - 2017-11-14 01:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-12 18:52 - 2017-11-14 01:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-12 18:52 - 2017-11-14 01:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-12 18:52 - 2017-11-14 01:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-12 18:52 - 2017-11-14 01:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-12 18:52 - 2017-11-14 01:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-12 18:52 - 2017-11-14 00:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-12 18:52 - 2017-11-13 23:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-12 18:52 - 2017-11-13 22:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-12 18:52 - 2017-11-07 18:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-12 18:52 - 2017-11-07 18:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-12 18:52 - 2017-11-07 18:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-12 18:52 - 2017-11-07 18:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-12 18:52 - 2017-11-07 14:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-12 18:52 - 2017-11-07 14:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-12 18:13 - 2017-04-06 10:23 - 000026272 _____ (IObit.com) C:\Windows\system32\Drivers\IMFCameraProtect.sys
2017-12-12 18:12 - 2017-12-12 18:12 - 000001173 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2017-12-12 18:12 - 2017-12-12 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2017-12-12 18:10 - 2017-12-12 23:12 - 000000000 ____D C:\Program Files (x86)\IObit
2017-12-12 18:09 - 2017-12-31 20:44 - 000000000 ____D C:\Users\7\AppData\Local\VirtualStore
2017-12-09 20:40 - 2017-12-09 20:40 - 000145960 _____ C:\Users\7\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-09 14:52 - 2017-12-09 14:52 - 000000000 ____D C:\Users\Todos os Usuários\MB3CoreBackup
2017-12-09 14:52 - 2017-12-09 14:52 - 000000000 ____D C:\ProgramData\MB3CoreBackup
2017-12-08 12:18 - 2018-01-03 19:13 - 000000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2017-12-08 12:18 - 2018-01-03 19:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-07 15:24 - 2017-12-07 15:24 - 000000000 ____D C:\Users\Todos os Usuários\panda_url_filtering
2017-12-07 15:24 - 2017-12-07 15:24 - 000000000 ____D C:\ProgramData\panda_url_filtering
2017-12-07 15:21 - 2017-12-07 15:21 - 000000000 ____D C:\Users\7\AppData\Roaming\Panda Security
2017-12-07 15:20 - 2017-12-07 15:24 - 000002208 _____ C:\Users\Public\Desktop\Panda Protection.lnk
2017-12-07 15:20 - 2017-12-07 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Protection
2017-12-07 15:19 - 2017-12-07 15:22 - 000000000 ____D C:\Program Files (x86)\Panda Security
2017-12-07 15:16 - 2017-12-07 15:22 - 000000000 ____D C:\Users\Todos os Usuários\Panda Security
2017-12-07 15:16 - 2017-12-07 15:22 - 000000000 ____D C:\ProgramData\Panda Security
2017-12-02 20:45 - 2017-12-02 20:45 - 000000000 ____D C:\Users\7\Desktop\pedra
2017-11-29 17:10 - 2017-03-15 12:41 - 000781056 _____ (INCA Internet Co.,Ltd.) C:\Windows\SysWOW64\npggNT.des
2017-11-20 14:54 - 2017-11-20 15:16 - 000000000 ____D C:\Users\7\Desktop\Equips iRO
2017-11-16 14:06 - 2008-03-20 05:25 - 000001265 _____ C:\Users\7\Desktop\base.spr
2017-11-16 14:06 - 2007-11-11 09:22 - 000000116 _____ C:\Users\7\Desktop\base.act
2017-11-15 21:26 - 2017-11-16 14:02 - 000000000 ____D C:\Users\7\Desktop\OFICIAL
2017-11-15 15:18 - 2017-10-18 00:06 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-15 15:18 - 2017-10-18 00:06 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-15 15:18 - 2017-10-18 00:06 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-15 15:18 - 2017-10-18 00:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-15 15:18 - 2017-10-18 00:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-15 15:18 - 2017-10-18 00:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-15 15:18 - 2017-10-18 00:06 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-15 15:18 - 2017-10-16 21:07 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-15 15:18 - 2017-10-16 19:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-15 15:18 - 2017-10-11 22:58 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 014635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-11-15 15:18 - 2017-10-11 22:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-11-15 15:18 - 2017-10-11 22:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-11-15 15:18 - 2017-10-11 22:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-11-15 15:18 - 2017-10-11 22:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-11-15 15:18 - 2017-10-11 22:39 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-11-15 15:18 - 2017-10-11 22:38 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-11-15 15:18 - 2017-10-11 22:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-11-15 15:18 - 2017-10-11 22:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-11-15 15:18 - 2017-10-11 22:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-11-15 15:18 - 2017-10-11 22:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-11-15 15:18 - 2017-10-11 22:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-11-15 15:18 - 2017-10-11 22:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-11-15 15:18 - 2017-10-11 22:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-11-15 15:18 - 2017-10-11 22:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-11-15 15:18 - 2017-10-11 22:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-11-15 15:18 - 2017-10-11 22:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-11-15 15:18 - 2017-10-11 22:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-11-15 15:18 - 2017-10-11 22:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-15 15:18 - 2017-10-11 22:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-11-15 15:18 - 2017-09-07 11:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-11-15 15:14 - 2017-10-18 00:34 - 000134376 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-11-15 15:14 - 2017-10-18 00:30 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-11-15 15:14 - 2017-10-15 20:04 - 000407392 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-11-15 15:14 - 2017-10-04 11:04 - 002023936 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2017-11-15 15:14 - 2017-10-04 11:04 - 001570304 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-11-15 15:14 - 2017-10-04 11:04 - 000670208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-11-15 15:14 - 2017-10-04 11:04 - 000603648 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-11-15 15:14 - 2017-10-04 11:04 - 000370688 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-11-15 15:14 - 2017-10-04 11:04 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-11-15 15:14 - 2017-10-04 11:04 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-11-14 23:48 - 2017-11-14 23:48 - 000003258 _____ C:\Windows\System32\Tasks\{3127B44D-14D2-4B89-8B32-77F41E1EA428}
2017-11-03 01:13 - 2017-11-03 01:13 - 000000000 ____D C:\Users\Usuário Padrão\AppData\Local\Trusteer
2017-11-03 01:13 - 2017-11-03 01:13 - 000000000 ____D C:\Users\Default\AppData\Local\Trusteer
2017-11-03 01:13 - 2017-11-03 01:13 - 000000000 ____D C:\Users\Default User\AppData\Local\Trusteer
2017-10-18 19:25 - 2017-04-09 11:25 - 007521480 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\GameMon.des
2017-10-18 19:25 - 2004-12-30 10:43 - 000004682 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\npptNT2.sys
2017-10-18 19:25 - 2003-07-15 19:17 - 000005174 _____ C:\Windows\SysWOW64\nppt9x.vxd
2017-10-18 19:24 - 2017-10-18 19:24 - 000000000 ____D C:\Program Files\Common Files\INCA Shared
2017-10-18 18:26 - 2017-12-16 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ragnamite
2017-10-18 18:17 - 2017-12-13 00:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ragnarok
2017-10-10 19:31 - 2017-12-13 03:13 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-10 16:20 - 2017-09-13 13:33 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-10-10 16:20 - 2017-09-13 13:32 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-10 16:20 - 2017-09-13 13:32 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-10-10 16:20 - 2017-09-13 13:32 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-10 16:20 - 2017-09-13 13:32 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-10 16:20 - 2017-09-13 13:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-10 16:20 - 2017-09-13 13:28 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-10 16:20 - 2017-09-13 13:28 - 000886272 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-10 16:20 - 2017-09-13 13:28 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-10 16:20 - 2017-09-13 13:28 - 000414208 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2017-10-10 16:20 - 2017-09-13 13:28 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2017-10-10 16:20 - 2017-09-13 13:28 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-10-10 16:20 - 2017-09-13 13:27 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-10-10 16:20 - 2017-09-13 13:13 - 004001512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-10-10 16:20 - 2017-09-13 13:13 - 003945704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-10-10 16:20 - 2017-09-13 13:10 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-10 16:20 - 2017-09-13 13:09 - 000830464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-10 16:20 - 2017-09-13 13:09 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2017-10-10 16:20 - 2017-09-13 13:09 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2017-10-10 16:20 - 2017-09-13 13:09 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2017-10-10 16:20 - 2017-09-13 13:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-10-10 16:20 - 2017-09-13 13:08 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-10-10 16:20 - 2017-09-13 13:05 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-10 16:20 - 2017-09-13 12:53 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-10 16:20 - 2017-09-08 13:30 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-10-10 16:20 - 2017-09-08 13:10 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-10-10 16:20 - 2017-09-08 12:20 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-10 16:20 - 2017-09-08 12:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-10 16:20 - 2017-09-07 13:31 - 002851328 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2017-10-10 16:20 - 2017-09-07 13:12 - 002755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2017-10-10 16:20 - 2017-09-07 12:55 - 000461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-10 16:20 - 2017-09-07 12:55 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-10 16:20 - 2017-08-19 13:28 - 004121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-10-10 16:20 - 2017-08-19 13:28 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-10 16:20 - 2017-08-19 13:10 - 003209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-10-10 16:20 - 2017-08-14 15:35 - 001032192 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-10-10 16:20 - 2017-08-14 15:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-10-10 16:20 - 2017-08-14 15:35 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-10-10 16:20 - 2017-08-13 19:46 - 001112576 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-10-10 16:20 - 2017-08-13 19:45 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-10-10 16:19 - 2017-09-13 13:28 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-10-10 16:19 - 2017-09-13 13:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-10-10 16:19 - 2017-09-13 13:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 13:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-10-10 16:19 - 2017-09-13 13:00 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-10-10 16:19 - 2017-09-13 13:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-10-10 16:19 - 2017-09-13 13:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-10-10 16:19 - 2017-09-13 12:57 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-10-10 16:19 - 2017-09-13 12:56 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-10-10 16:19 - 2017-09-13 12:53 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-10-10 16:19 - 2017-09-13 12:53 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-10 16:19 - 2017-09-13 12:52 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-10-10 16:19 - 2017-09-13 12:52 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-10 16:19 - 2017-09-13 12:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-10-10 16:19 - 2017-09-13 12:47 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-10-10 16:19 - 2017-09-13 12:46 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-10-10 16:19 - 2017-09-13 12:46 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-10-10 16:19 - 2017-09-13 12:46 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-10-10 16:19 - 2017-09-13 12:46 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 12:46 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 12:46 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 12:46 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-10-10 16:19 - 2017-09-13 12:46 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-10-10 16:19 - 2017-09-07 12:55 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-10 16:19 - 2017-08-19 13:28 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-10-10 16:19 - 2017-08-19 13:10 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2017-10-10 16:19 - 2017-08-19 13:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2017-10-10 16:19 - 2017-08-19 13:08 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-10-10 16:19 - 2017-08-19 13:08 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-10-10 16:19 - 2017-08-19 12:57 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2017-10-10 16:19 - 2017-08-19 12:57 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2017-10-10 16:19 - 2017-08-13 19:45 - 000162816 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-10-10 16:19 - 2017-08-13 19:45 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2028-11-17 08:24 - 2016-11-12 15:22 - 000000000 ____D C:\Users\7\AppData\Roaming\HpUpdate
2019-06-28 05:52 - 2017-02-17 08:56 - 000000046 _____ C:\Windows\SysWOW64\_WKERNEL.SYL
2018-01-04 18:52 - 2009-07-14 02:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-04 18:52 - 2009-07-14 02:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-04 18:32 - 2009-07-14 03:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-04 02:00 - 2016-11-12 12:40 - 000000000 ____D C:\Users\7\AppData\Local\Adobe
2018-01-04 00:33 - 2016-11-12 16:44 - 000000000 ____D C:\Users\7\AppData\Roaming\uTorrent
2018-01-03 19:14 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\inf
2018-01-03 16:51 - 2016-11-12 13:06 - 000000000 ____D C:\Users\7\AppData\Roaming\vlc
2018-01-02 21:45 - 2016-11-21 17:36 - 000000000 ____D C:\Users\7\AppData\LocalLow\Mozilla
2018-01-02 13:57 - 2017-07-26 20:02 - 000688802 _____ C:\Windows\system32\perfh007.dat
2018-01-02 13:57 - 2017-07-26 20:02 - 000148774 _____ C:\Windows\system32\perfc007.dat
2018-01-02 13:57 - 2011-01-27 21:11 - 000705474 _____ C:\Windows\system32\prfh0416.dat
2018-01-02 13:57 - 2011-01-27 21:11 - 000147314 _____ C:\Windows\system32\prfc0416.dat
2018-01-02 13:57 - 2009-07-14 03:13 - 002471992 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-31 17:32 - 2017-10-05 22:21 - 000000000 ____D C:\Users\7\Desktop\bdD
2017-12-27 22:52 - 2016-12-11 20:25 - 000000000 ____D C:\Users\7\AppData\Roaming\MediaMonkey
2017-12-25 17:57 - 2017-09-26 16:09 - 000000000 ____D C:\Users\Todos os Usuários\Bitdefender
2017-12-25 17:57 - 2017-09-26 16:09 - 000000000 ____D C:\ProgramData\Bitdefender
2017-12-25 17:55 - 2017-09-26 17:05 - 000054488 _____ C:\bdlog.txt
2017-12-25 17:54 - 2017-09-28 17:01 - 000000000 ____D C:\Users\7\Downloads\Bitdefender Safepay
2017-12-24 18:03 - 2017-09-24 01:05 - 000000000 ____D C:\Windows\Minidump
2017-12-23 19:11 - 2016-12-28 19:08 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-12-23 19:11 - 2016-12-28 19:08 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-23 19:11 - 2016-12-28 19:08 - 000004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-12-23 19:11 - 2016-12-28 19:08 - 000000000 ____D C:\Windows\system32\Macromed
2017-12-23 19:11 - 2016-11-12 15:20 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-12-20 13:37 - 2009-07-14 03:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-19 18:46 - 2016-11-12 13:04 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2017-12-19 17:30 - 2016-11-12 15:44 - 000000000 ____D C:\Users\Todos os Usuários\TP-LINK
2017-12-19 17:30 - 2016-11-12 15:44 - 000000000 ____D C:\ProgramData\TP-LINK
2017-12-19 17:09 - 2016-11-30 07:30 - 000000000 ____D C:\Users\7\AppData\Local\ElevatedDiagnostics
2017-12-19 14:25 - 2017-09-24 23:01 - 000000000 ____D C:\Users\Todos os Usuários\IObit
2017-12-19 14:25 - 2017-09-24 23:01 - 000000000 ____D C:\ProgramData\IObit
2017-12-19 14:23 - 2016-12-02 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Act Editor
2017-12-19 14:13 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\system32\NDF
2017-12-18 23:13 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\rescache
2017-12-18 22:04 - 2016-11-12 16:30 - 000000000 ____D C:\Users\Todos os Usuários\Apple
2017-12-18 22:04 - 2016-11-12 16:30 - 000000000 ____D C:\ProgramData\Apple
2017-12-13 14:27 - 2009-07-14 02:45 - 005155240 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-13 04:15 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-13 04:15 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-13 03:42 - 2016-11-12 13:11 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2017-12-13 03:36 - 2017-01-25 12:15 - 000000000 ____D C:\Windows\system32\MRT
2017-12-13 03:10 - 2017-01-25 12:14 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-13 00:18 - 2016-11-12 13:17 - 000000000 ____D C:\Windows\Panther
2017-12-12 23:13 - 2017-09-24 23:07 - 000000000 ____D C:\Users\Todos os Usuários\ProductData
2017-12-12 23:13 - 2017-09-24 23:07 - 000000000 ____D C:\ProgramData\ProductData
2017-12-12 23:12 - 2017-09-24 23:06 - 000000000 ____D C:\Users\7\AppData\Roaming\IObit
2017-12-08 16:09 - 2009-07-14 03:32 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-12-08 16:02 - 2017-08-11 17:08 - 000000000 ____D C:\Users\Todos os Usuários\Google
2017-12-08 16:02 - 2017-08-11 17:08 - 000000000 ____D C:\ProgramData\Google
2017-12-07 15:21 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2017-12-07 15:21 - 2009-07-14 01:20 - 000000000 ____D C:\Windows\system32\GroupPolicy

==================== Arquivos na raiz de alguns diretórios =======

2017-06-11 18:39 - 2017-08-16 15:28 - 000000034 _____ () C:\Users\7\AppData\Roaming\AdobeWLCMCache.dat
2017-05-30 22:45 - 2017-07-18 23:45 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato BMP do Adobe CS6
2017-07-14 20:19 - 2017-07-15 13:29 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato GIF do Adobe CS6
2016-11-12 17:53 - 2017-08-10 15:17 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2017-09-22 23:32 - 2017-09-25 22:54 - 000205790 _____ () C:\Users\7\AppData\Roaming\_encryptiondb.grf
2017-12-25 20:39 - 2017-12-31 15:22 - 000001456 _____ () C:\Users\7\AppData\Local\Adobe Salvar para Web 13.0 Prefs

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2018-01-03 18:38

==================== Fim de FRST.txt ============================

 

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

Citação

E:\y\Ragnamite Jogar.exe

 

Conhece esse arquivo?

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

 

CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
FF user.js: detected! => C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\user.js [2018-01-02]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
CMD: bitsadmin /reset /allusers
CMD: fltmc instances  
EmptyTemp:
  • Salve este arquivo na Área de Trabalho (Desktop) como fixlist.txt
  • Execute novamente o FRST e clique no botão Corrigir;
  • Aguarde... ao final será gerado o log Fixlog.txt em sua Área de Trabalho (Desktop).
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco


conheço o arquivo, trata-se deu app no pen-drive (E:\y).

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 02.01.2018
Executado por 7 (05-01-2018 11:45:06) Run:1
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
CHR HKLM\SOFTWARE\Policies\Google: Restri��o <==== ATEN��O
FF user.js: detected! => C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\user.js [2018-01-02]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Nenhum Arquivo
CMD: bitsadmin /reset /allusers
CMD: fltmc instances  
EmptyTemp:
*****************

Ponto de Restauração criado com sucesso.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removido (a) com sucesso.
"HKLM\SOFTWARE\Policies\Google" => removido (a) com sucesso.
C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\user.js => movido com sucesso
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => chave não encontrado (a)
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => chave não encontrado (a)

========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

0 out of 0 jobs canceled.

========= Fim de CMD: =========


========= fltmc instances =========

Filtro               Nome do volume                              Altitude        Nome da instƒncia      Quadro VlStatus
--------------------  -------------------------------------  ------------  ---------------------  -----  --------
PSINProc              \Device\Mup                             327620       PSINProc Instance        0    
PSINProc              C:                                      327620       PSINProc Instance        0    
PSINProc                                                      327620       PSINProc Instance        0    
PSINProc              \Device\HarddiskVolumeShadowCopy5       327620       PSINProc Instance        0    
PSINProc              \Device\HarddiskVolumeShadowCopy6       327620       PSINProc Instance        0    
PSINFile              \Device\Mup                             327610       PSINFile Instance        0    
PSINFile              C:                                      327610       PSINFile Instance        0    
PSINFile                                                      327610       PSINFile Instance        0    
PSINFile              \Device\HarddiskVolumeShadowCopy5       327610       PSINFile Instance        0    
PSINFile              \Device\HarddiskVolumeShadowCopy6       327610       PSINFile Instance        0    
luafv                 C:                                      135000       luafv                    0    
FileInfo              \Device\Mup                              45000       FileInfo                 0    
FileInfo              C:                                       45000       FileInfo                 0    
FileInfo                                                       45000       FileInfo                 0    
FileInfo              \Device\HarddiskVolumeShadowCopy5        45000       FileInfo                 0    
FileInfo              \Device\HarddiskVolumeShadowCopy6        45000       FileInfo                 0    

========= Fim de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13818082 B
Java, Flash, Steam htmlcache => 151367348 B
Windows/system/drivers => 2846538 B
Edge => 0 B
Chrome => 0 B
Firefox => 28781264 B
Opera => 176311624 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33125 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33253 B
systemprofile32 => 33125 B
LocalService => 33125 B
NetworkService => 0 B
7 => 30413860 B

RecycleBin => 3260094 B
EmptyTemp: => 396.1 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 11:47:52 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

Favor não colocar os logs em "Spoiler", isso dificulta a leitura.

 

# Etapa nº 1 #
 
Baixe o AdwCleaner e salve em sua Área de trabalho (Desktop)

Execute o arquivo adwcleaner.exe

 

Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: VRIfczU.png
 

  • Clique na aba Opções e deixe marcado apenas "Restaurar Políticas do IE" e "Restaurar Políticas do Chrome"
  • Clique no botão Verificar e aguarde o exame finalizar.
  • Clique no botão Limpar.
  • Abrirá um bloco de notas com o resultado.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.
  • O log também será salvo em C:\AdwCleaner


NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar.
 
# Etapa nº 2 #
 

Desative temporariamente seu Antivírus

 

  • Segure o botão Ctrl e clique neste link para abrir o ESET Online Scanner em uma nova janela.
  • Clique neste botão SCAN NOW
  • Clique em Accept 
  • Clique em Start.
  • Marque: "Enable detection of potentially unwanted applications"
  • Clique em Hide Advanced settings e marque o seguinte:
    • Enable detection of potentially unsafe applications
    • Enable detection of suspicious applications
    • Scan archives
    • Enable Anti-Stealth technology
    • Clean threats automatically
  • Clique Change.. e marque também a caixa Computador.
  • Clique em Scan
  • Ele vai atualizar por conta própria, e escanear o computador. Tenha paciência, o processo pode demorar horas.
  • Quando o scan terminar, clique em List of found threats
  • Clique em Export to text file e salve o log na sua área de trabalho.
  • Clique em Back.
  • Clique em Finish.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
me desculpe pelos spoiler, as próximas respostas serão enviados conforme solicitado.

Etapa nº 1

 

# AdwCleaner 7.0.6.0 - Logfile created on Sat Jan 06 13:55:24 2018
# Updated on 2017/21/12 by Malwarebytes 
# Running on Windows 7 Ultimate (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\7\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\7\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\Todos os Usuários\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\7\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\7\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\Todos os Usuários\IObit\Advanced SystemCare
Deleted: C:\Users\7\AppData\LocalLow\HPAppData
Deleted: C:\Users\7\AppData\Roaming\HPAppData
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
Deleted: C:\Users\Todos os Usuários\IObit\ASCDownloader
Deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare


***** [ Files ] *****

Deleted: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\pandasecuritytb\geodata.xml
Deleted: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\pandasecuritytb\guid.dat
Deleted: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\pandasecuritytb\setupCfg.xml


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted: Driver Booster Scheduler


***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\IObit\ASC
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Advanced SystemCare_is1
Deleted: [Key] - HKU\S-1-5-21-255323123-3732995248-2485898865-1000\Software\drpsu
Deleted: [Key] - HKCU\Software\drpsu


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::TCP/IP settings cleared
::IE policies deleted
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [5797 B] - [2018/1/6 13:54:1]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

 


Etapa nº 2

C:\Program Files\Adobe\Adobe Photoshop CC 2017\Adobe CC 2015.5 XFORCE Activation\disable_activation.cmd    BAT/HostsChanger.A potentially unsafe application    cleaned by deleting
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

O problema inicial continua?

 

Execute o FRST e poste o novo log.

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
o problema ainda continua.
segue em anexo o log, conforme solicitado.

FRST.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

 

CreateRestorePoint:
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\MountPoints2: {064dbff0-52b5-11e7-a0c0-001d92fa22c2} - E:\AutoRun.exe
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\MountPoints2: {4a59878e-d80b-11e6-83db-001d92fa22c2} - F:\Lenovo_Suite.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder [2017-12-25] ()
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [X]
EmptyTemp:
  • Salve este arquivo na Área de Trabalho (Desktop) como fixlist.txt
  • Execute novamente o FRST e clique no botão Corrigir;
  • Aguarde... ao final será gerado o log Fixlog.txt em sua Área de Trabalho (Desktop).
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 02.01.2018
Executado por 7 (08-01-2018 16:59:06) Run:2
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\MountPoints2: {064dbff0-52b5-11e7-a0c0-001d92fa22c2} - E:\AutoRun.exe
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\MountPoints2: {4a59878e-d80b-11e6-83db-001d92fa22c2} - F:\Lenovo_Suite.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder [2017-12-25] ()
CHR HKLM\SOFTWARE\Policies\Google: Restri��o <==== ATEN��O
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [X]
EmptyTemp:
*****************

Ponto de Restauração criado com sucesso.
"HKU\S-1-5-21-255323123-3732995248-2485898865-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{064dbff0-52b5-11e7-a0c0-001d92fa22c2}" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{064dbff0-52b5-11e7-a0c0-001d92fa22c2} => chave não encontrado (a)
"HKU\S-1-5-21-255323123-3732995248-2485898865-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a59878e-d80b-11e6-83db-001d92fa22c2}" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{4a59878e-d80b-11e6-83db-001d92fa22c2} => chave não encontrado (a)
Não pode ser movido "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder" => Agendado para ser movido na reinicialização.
"HKLM\SOFTWARE\Policies\Google" => removido (a) com sucesso.
"HKLM\System\CurrentControlSet\Services\IUFileFilter" => removido (a) com sucesso.
IUFileFilter => serviço removido (a) com sucesso.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5860547 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 3941136 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 326893626 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 1330 B
7 => 47631175 B

RecycleBin => 44658090 B
EmptyTemp: => 417.1 MB de dados temporários Removidos.

================================

Resultado dos arquivos que foram agendados para serem movidos (Modo de Inicialização: Normal) (Data&Hora: 08-01-2018 17:27:16)

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder => foi movido com sucesso

==== Fim de Fixlog 17:27:16 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

Ok,

 

Faça o download Zemana AntiMalware do seguinte local e salve-o em sua área de trabalho:
https://www.bleepingcomputer.com/download/zemana-antimalware/
1
Uma vez baixado, feche todos os programas e janelas abertas no seu computador.

2
Agora clique duas vezes no ícone na área de trabalho Zemana.AntiMalware.Setup.exe

Isto irá iniciar a instalação do Zemana AntiMalware em seu computador.

3
Quando a instalação começar, continue seguindo as instruções, a fim de continuar com o processo de instalação. Não faça quaisquer alterações nas configurações padrão e quando o programa estiver instalado, Zemana irá iniciar e exibir a tela principal automaticamente.
4
Clique no botão SCAN
5
Zemana AntiMalware vai agora começar a varredura de malware no computador. Este processo pode demorar um pouco, por isso sugerimos que você fazer outra coisa e verificar periodicamente sobre o estado da verificação para ver quando ele for concluído.
6
Quando Zemana terminar o scan ele irá exibir uma tela com os malwareres que foram detectados. Por favor, note que as infecções encontradas pode ser diferente do que é mostrado na imagem abaixo.

Resultados da verificação Zemana Anti-Malware

Verifique os resultados da verificação e, quando estiver pronto para continuar com o processo de limpeza, clique no seguinte botão para eliminar ou reparar todos os resultados selecionados. Depois de clicar no botão Avançar, Zemana irá remover quaisquer arquivos indesejados e corrigir quaisquer arquivos legítimos modificados. Se você receber um aviso de que Zemana precisa fechar seus browsers abertos, por favor, feche todos os navegadores da web que podem ser abertos e, em seguida, clique no OK botão para continuar.

Zemana agora irá criar um ponto de restauração e remover os arquivos detectados e reparar quaisquer arquivos que foram modificados.

Poste o resultado no seu proximo post.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 
10 horas atrás, mocci disse:


segue o resultado:
 

 

Você clicou no botão Próximo, para reparar o itens encontrados?  

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
sim, cliquei no botão próximo.

Compartilhar este post


Link para o post
Compartilhar em outros sites
5 minutos atrás, mocci disse:

@Turco
sim, cliquei no botão próximo.

 

Não gerou um relatório?
 
Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

 

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
me desculpe, acabei esquecendo de apresentar o relatório:
 

7 minutos atrás, Turco disse:

Não gerou um relatório?


 

Zemana AntiMalware 2.74.179.150 (instalado)

-------------------------------------------------------
Scan Result            : Concluído
Scan Date              : 2018/1/8
Operating System       : Windows 7 64-bit
Processor              : 2X Intel(R) Pentium(R) Dual CPU E2220 @ 2.40GHz
BIOS Mode              : Legacy
CUID                   : 12D6AFAEE8B2D3FD83B59A
Scan Type              : Análise do Sistema
Duration               : 12m 47s
Scanned Objects        : 107933
Detected Objects       : 5
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : Activado
Detect All Extensions  : Desactivado
Scan Documents         : Desactivado
Domain Info            : WORKGROUP,0,2

Detected Objects
-------------------------------------------------------

Firefox Search
Status             : Analisados
Object             : MercadoLivre - http://pmstrk.mercadolivre.com.br
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : Configuração do navegador suspeito
Cleaning Action    : Reparar
Related Objects    :
                Configuração do navegador - Firefox Search

Firefox Search
Status             : Analisados
Object             : BuscaPé - http://busca.buscape.com.br
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : Configuração do navegador suspeito
Cleaning Action    : Reparar
Related Objects    :
                Configuração do navegador - Firefox Search

{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
Status             : Analisados
Object             : %appdata%\mozilla\firefox\profiles\k8v295re.default\extensions\{b821bf60-5c2d-41eb-92dc-3e4ccd3a22e4}.xpi
MD5                : CB6D2467070FE9F1BC3ADE93A2C5ECCE
Publisher          : -
Size               : 868919
Version            : -
Detection          : PUA.FirefoxExt!Gr
Cleaning Action    : Reparar
Related Objects    :
                Extensão do navegador - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
                Arquivo - %appdata%\mozilla\firefox\profiles\k8v295re.default\extensions\{b821bf60-5c2d-41eb-92dc-3e4ccd3a22e4}.xpi

trash
Status             : Analisados
Object             : %appdata%\mozilla\firefox\profiles\k8v295re.default\extensions\trash
MD5                : -
Publisher          : -
Size               : -
Version            : -
Detection          : PUA.FirefoxExt!Gr
Cleaning Action    : Reparar
Related Objects    :
                Extensão do navegador - trash

firefox@mega.co.nz
Status             : Analisados
Object             : %appdata%\mozilla\firefox\profiles\k8v295re.default\extensions\firefox@mega.co.nz.xpi
MD5                : 2BC022811F208132D8E725740DD3D116
Publisher          : -
Size               : 4175148
Version            : -
Detection          : PUA.FirefoxExt!Gr
Cleaning Action    : Reparar
Related Objects    :
                Extensão do navegador - firefox@mega.co.nz
                Arquivo - %appdata%\mozilla\firefox\profiles\k8v295re.default\extensions\firefox@mega.co.nz.xpi


Cleaning Result
-------------------------------------------------------
Cleaned               : 5
Reported as safe      : 0
Failed                : 0
 

adicionado 17 minutos depois
25 minutos atrás, Turco disse:

Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

~ ZHPCleaner v2018.1.8.6 by Nicolas Coolman (2018/01/08)
~ Run by 7 (Administrator)  (09/01/2018 13:24:38)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\7\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\7\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)


---\\  Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (1)
DELETED data: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride [Bad : 127.0.0.1;localhost;<local>;]  =>Hijacker.Proxy


---\\  Hosts file (1)
~ The hosts file is legitimate (21)


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (68)
MOVED file: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\storage\default\https+++n64-emulator.br.uptodown.com\.metadata    =>PUP.Optional.UpToDown
MOVED file: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\k8v295re.default\storage\default\https+++n64-emulator.br.uptodown.com\.metadata-v2    =>PUP.Optional.UpToDown
MOVED folder*: C:\ProgramData\panda_url_filtering  =>.SUP.StartSearch
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign019a2f60276ce190  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign04b89988a831fb6c  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign0b5a56c535deead7  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign0fafafbe213522fb  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign1092e4f3c648ddb5  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign13a0fc784dd3b364  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign16f34db6f4b93a23  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign17a6fbde7e10aa40  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign18fddbf81dc192ac  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign1962152232f9a784  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign1c532e2cd2138881  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign24eb60e0598fe4bb  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign2e59795e9afb3b54  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign35bd7810d6fb00fd  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign363803c04483540b  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign36def66d81b14648  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign3c56beda100a870d  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign3e68b8cbf1b80d29  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign461645559fb0e5a1  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign46568d7998884084  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign4cfb40deb632b782  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign4ed7019e70d5091e  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign50fae6893d011cb7  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign515ecf66f26eed64  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign51c45a48f97f4356  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign61d4739bc7cf9014  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign646c15b09aea2fd5  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign6a27bcfcd07ad91c  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign798fa7e218c65be3  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign7b3234fb88146d6e  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign7b63186e528c7168  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign7c3040ac438a09d5  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign7d6151818d3a9877  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign8087c57fbf88f0c2  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign82eda4d40e527e72  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign83c5d1a8318bba51  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign88278001e8b329fb  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign912400aa81251eda  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign92b87b19c24354c2  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsign955b16516e42e408  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigna2302ac805a0b7a2  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigna260b99fd6722a94  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigna2a7f539bb1d1805  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigna9c0e67534d54e52  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignab8837a0942df619  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignb46174f774d14852  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignbe6d4a29205d68de  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignc08adeb7e93c8d8f  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignc0cc40fca4c49a60  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignc188e22507df0272  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignc8f8126a71473c97  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigncd4b94b9b9f4e23a  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignce0af28e48edcef8  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignd17a2e34d3031cc5  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignd2afd85568133454  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignd3afe427848f74a2  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignd78e8b73b4982cf0  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigndf4ba1742c35bd2b  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigne146b765f014427b  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsigne3f2b8af8f724377  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignf322df3b824ca5e8  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignf3ffb2dc1d911503  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignf81c858f18b2e172  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignf9928af20279b9a4  =>.SUP.Temporary
MOVED folder*: C:\Users\7\AppData\Local\Tempzxpsignfde6067194df73e5  =>.SUP.Temporary


---\\  Registry ( Key, Value, Data) (5)
DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{9354C108-EBDD-481B-88D9-1C195824AE17}\\DhcpNameServer [Bad : 187.122.127.34 187.122.127.58]  =>Hijacker.Browser
DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer [Bad : 187.122.127.34 187.122.127.58]  =>Hijacker.Browser
DELETED key*: HKLM\SYSTEM\CurrentControlSet\Services\iobit_monitor_server [\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys (Not File)]  =>.SUP.AdvancedSystemCare
DELETED key*: HKLM\SYSTEM\CurrentControlSet\Services\panda_url_filteringd [\C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys (Not File)]  =>.SUP.StartSearch
DELETED key*: [X64] HKLM\SOFTWARE\Solvusoft Corporation []  =>.SUP.Solvusoft


---\\  Summary of the elements found (7)
https://nicolascoolman.eu/2017/04/03/hijacker-proxy/  =>Hijacker.Proxy
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.UpToDown
https://nicolascoolman.eu/2017/09/11/sup-startsearch/  =>.SUP.StartSearch
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary
https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/12/26/sup-advancedsystemcare/  =>.SUP.AdvancedSystemCare
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Solvusoft


---\\  Other deletions. (22)
~ Registry Keys Tracing deleted (22)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Google Chrome)


---\\ Statistics
~ Items scanned : 811
~ Items found : 0
~ Items cancelled : 0
~ Items repaired : 74


~ End of clean in 00h00mn50s
~====================
ZHPCleaner-[R]-09012018-13_25_28.txt
ZHPCleaner--09012018-13_24_00.txt
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

O problema ainda persiste?

 

Baixe Security Check, by glax24 e salve em sua Área de trabalho (Desktop).

 

Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: VRIfczU.png

  • Aguarde enquanto a ferramenta faz o exame.
  • Ao final abrirá um log: SecurityCheck.txt.
  • Este log é salvo em C: (Disco local) na pasta SecurityCheck que foi criada.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites
 

@Turco
aparentemente ele parou.

 

segue o log - Security Check

 

SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17]
WebSite: www.safezone.cc
DateLog: 11.01.2018 19:15:53
Path starting: C:\Users\7\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: 7
VersionXML: 4.82is-05.01.2018
___________________________________________________________________________

Windows 7(6.1.7601) Service Pack 1 (x64) Ultimate Lang: Portuguese(0416)
Installation date OS: 12.11.2016 14:24:30
LicenseStatus: Windows(R) 7, Ultimate edition The machine is permanently activated.
Boot Mode: Normal
Default Browser: C:\Program Files\Opera\Launcher.exe
SystemDrive: C: FS: [NTFS] Capacity: [298 Gb] Used: [70.4 Gb] Free: [227.6 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.0.9600.18893 [+]
User Account Control enabled (Level 3)
Automatically download and schedule installation
Date install updates: 2018-01-11 10:43:21
Windows Update (wuauserv) - The service is running
Central de Segurança (wscsvc) - The service is running
Registro remoto (RemoteRegistry) - The service has stopped
Descoberta SSDP (SSDPSRV) - The service is running
Serviços de Área de Trabalho Remota (TermService) - The service is running
Windows Remote Management (WS-Management) (WinRM) - The service has stopped
------------------------------ [ MS Office ] ------------------------------
Microsoft Office 2007 v.12.0.6612.1000
---------------------------- [ Antivirus_WMI ] ----------------------------
Panda Protection (enabled)
--------------------------- [ FirewallWindows ] ---------------------------
Firewall do Windows (MpsSvc) - The service is running
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Windows Defender (enabled and up to date)
Panda Protection (enabled)
IObit Malware Fighter (enabled)
---------------------- [ AntiVirusFirewallInstall ] -----------------------
Panda Protection v.8.93.00
Panda Devices Agent v.1.03.08
-------------------------- [ SecurityUtilities ] --------------------------
Malwarebytes versão 3.3.1.2183 v.3.3.1.2183
Zemana AntiMalware v.2.74.0.150
--------------------------- [ OtherUtilities ] ----------------------------
VLC media player v.2.2.6 Warning! Download Update
Arquivo do WinRAR
--------------------------------- [ P2P ] ---------------------------------
µTorrent v.3.5.1.44332 Warning! P2P-client.
--------------------------- [ AppleProduction ] ---------------------------
Bonjour v.3.1.0.1
iTunes v.12.7.2.60
Serviço do Bonjour (Bonjour Service) - The service has stopped
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Flash Player 28 NPAPI v.28.0.0.137 [+]
Adobe Flash Player 28 PPAPI v.28.0.0.137 [+]
Adobe Reader 9.3 - Português v.9.3.0 Warning! This software is no longer supported. Please uninstall it and use Adobe Reader XI or Adobe Acrobat Reader DC.
------------------------------- [ Browser ] -------------------------------
Opera Stable 49.0.2725.64 v.49.0.2725.64 Warning! Download Update
----------------------------- [ EmailClient ] -----------------------------
Mozilla Thunderbird 52.3.0 (x86 pt-BR) v.52.3.0 Warning! Download Update
--------------------------- [ RunningProcess ] ----------------------------
C:\Program Files\Opera\49.0.2725.64\opera.exe v.49.0.2725.64
------------------ [ AntivirusFirewallProcessServices ] -------------------
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe v.3.0.0.1284
Malwarebytes Service (MBAMService) - The service is running
C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe v.3.1.0.595
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe v.4.0.2.1
Panda Protection Service (NanoServiceMain) - The service is running
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe v.4.0.3.0
Panda Product Service (PSUAService) - The service is running
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe v.4.0.2.1
Panda Devices Agent (PandaAgent) - The service is running
C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe v.1.3.8.0
Windows Defender (WinDefend) - The service is running
ZAM Controller Service (ZAMSvc) - The service is running
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe v.2.74.0.150
---------------------------- [ UnwantedApps ] -----------------------------
Driver Booster 5 v.5.1.0 Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering.
IObit Malware Fighter 5 v.5.4 Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering.
MSN Toolbar Platform v.4.0.0357.1 << Hidden Warning! Browser's toolbar. It can slow down the working of your browser and have violation privacy problems.
Skype Click to Call v.8.5.0.9167 Warning! Browser's toolbar. It can slow down the working of your browser and have violation privacy problems.
----------------------------- [ End of Log ] ------------------------------
 

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×