Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Guilherme Mehl

Cmd abrindo e fechando sozinho

Recommended Posts

Estou com pc novo, a algumas semanas fui lotando ele com jogos. Passei alguns anti malwares e listou 15 arquivos maliciosos, feito a limpa um deles persiste, não lembro exatamente o nome dele, mas era algo tipo win32/bitminer ou algo do tipo.

O CMD também fica abrindo e fechando de repente de hora em hora quase (segue print)

 

PC ta novo ainda, e não queria formatar agora  =/

Sem título.jpg

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Guilherme Mehl

 

Por favor, atente para o seguinte:

  • Sobre o Fórum: Este é um espaço privado, não público. Seu uso é um privilégio, não um direito.
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Respeite a ordem das instruções passadas.
  • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

Ao invés de criar um novo tópico, peço que você continue com este e faça uma resposta anexando o log do ZA-Scan, de acordo com essas instruções:

https://www.clubedohardware.com.br/forums/topic/1105783-como-criar-seu-t%C3%B3pico/

 

 

 

 

  • Amei 1

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Guilherme Mehl

 

Citação

Launched: C:\Users\Extreme\Downloads\ZA-Scan.exe [Z-Analyse Scan]

 

Na próxima vez que executar o ZA-Scan, favor executar diretamente em sua área de trabalho.

 

1)

 

Baixe o Malwarebytes Anti-Malware (MBAM) e salve em sua Área de Trabalho (Desktop).
 

  • Clique duas vezes no mb3-setup-consumer para instalar o programa.
  • Clique em Análise  -> Análise Customatizada, em seguida Configurar Análise 
  • Certifique-se que todas a caixas estão marcadas no lado esquerdo, inclusive Procurar rootkits
  • No lado direito marque todas caixas, referente as unidades do sistema.
  • Em seguida clique no botão Analisar Agora.
  • Começará então o exame. Aguarde, pois pode demorar.
  • Ao acabar o exame, se houver itens encontrados, certifique-se que estejam todas marcados e clique no botão Mover para Quarentena
  • Ao final da desinfecção, poderá aparecer um aviso se quer reiniciar o PC. (Ver Nota abaixo)
  • O log é automaticamente salvo pelo MBAM e para vê-lo, clique em Relatórios -> Visualizar o relatório.
  • Clique duas vezes no log (Relatorio de Análise). Utilize o formato .txt para exportar o log para seu desktop.
  • Selecione, copie e cole o conteúdo deste log em sua próxima resposta.

NOTA: Se o MBAM encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC (talvez mais de uma vez). Faça isso imediatamente, ao ser perguntado se quer reiniciar o PC.

 

2)

 

Execute o ZA-Scan e poste o novo log.

  • Amei 1

Compartilhar este post


Link para o post
Compartilhar em outros sites

Segue os logs, agora feitos a partir do desktop.

 

ZA-Scan.txt

-

Malwarebytes.txt

-

Era apenas para por os itens encontrados em quarentena? ou era p excluir os mesmos tb? notei q o malwarebytes encontrou 17 itens, mas n conseguiu remover alguns, e o cmd ainda persiste em abrir, mas agora aparece outras mensagens.

 

Editado por Guilherme Mehl

Compartilhar este post


Link para o post
Compartilhar em outros sites

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

 

createsrpoint;
chrdefaults;
fakechrprofiles;delete
{8E8F97CD-60B5-456F-A201-73065652D099};c
C:\WINDOWS\ZAM.KRNL.TRACE;f
C:\USERS\EXTREME\APPDATA\LOCAL\WMI.INI;f
C:\WINDOWS\SysNative\tasks\aOrOBuRzkSmo;fs
C:\WINDOWS\SysNative\tasks\EIIOiweOYA;fs
C:\WINDOWS\QGiQkzrAGvyR.exe;f
C:\Program Files (x86)\ofHBbceKDa.bat;f
C:\WINDOWS\SysNative\tasks\ZHYU;fs
C:\WINDOWS\SysWOW64\YeLA.bat;f
emptyclsid;
shortcutfix;
emptyalltemp; 

 

Salve este arquivo na na sua área de trabalho com o nome zascript

Novamente, execute o ZA-Scan.exe e aguarde.
Copie e cole o conteúdo desse arquivo em sua próxima resposta.

  • Amei 1

Compartilhar este post


Link para o post
Compartilhar em outros sites

Programa reiniciou e criou este log @Turco 

 

 

 

ZA-Scan V1.0.0.5 Updated 24-October-2017
Tool run by Extreme on 06/01/2018 at 15:40:43,65.
Microsoft Windows 10 Pro 10.0.16299  x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Extreme\Desktop\ZA-Scan.exe
Script used: C:\Users\Extreme\Desktop\zascript.txt

==== System Restore Info ======================

06/01/2018 15:41:43 Zoek.exe System Restore Point Created Successfully.

==== Deleting CLSID Registry Keys ======================

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8E8F97CD-60B5-456F-A201-73065652D099} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E8F97CD-60B5-456F-A201-73065652D099} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1417731217-2092515398-3923220243-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{8E8F97CD-60B5-456F-A201-73065652D099} deleted successfully

==== Deleting Files \ Folders ======================

C:\WINDOWS\SysNative\tasks\aOrOBuRzkSmo deleted
C:\WINDOWS\SysNative\tasks\EIIOiweOYA deleted
C:\WINDOWS\SysNative\tasks\ZHYU deleted
"C:\WINDOWS\ZAM.krnl.trace" deleted
"C:\USERS\EXTREME\APPDATA\LOCAL\WMI.ini" deleted
"C:\WINDOWS\QGiQkzrAGvyR.exe" deleted
"C:\Program Files (x86)\ofHBbceKDa.bat" deleted
"C:\WINDOWS\SysWOW64\YeLA.bat" deleted
"C:\WINDOWS\ZAM.krnl.trace" deleted
"C:\USERS\EXTREME\APPDATA\LOCAL\WMI.ini" deleted
"C:\WINDOWS\QGiQkzrAGvyR.exe" deleted
"C:\Program Files (x86)\ofHBbceKDa.bat" deleted
"C:\WINDOWS\SysWOW64\YeLA.bat" deleted

==== Reset Google Chrome ======================

C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Extreme\Desktop\AxiomVerge.lnk - C:\Games\Axiom_Verge_v1.41\Axiom_Verge_v1.41\AxiomVerge.exe 
C:\Users\Extreme\Desktop\DOOM (Vulkan mode).lnk - C:\Games\DOOM\DOOMx64vk.exe 
C:\Users\Extreme\Desktop\Fate Extella.lnk - C:\Program Files (x86)\Fate Extella\game.exe 
C:\Users\Extreme\Desktop\Hollow Knight The Grimm Troupe.lnk - C:\Program Files (x86)\Hollow Knight The Grimm Troupe\hollow_knight.exe 
C:\Users\Extreme\Desktop\Injustice Gods Among Us Ultimate Edition.lnk - C:\Program Files (x86)\Injustice Gods Among Us Ultimate Edition\DiscContentPCG\Injustice.exe 
C:\Users\Extreme\Desktop\League of Legends.lnk - C:\Riot Games\League of Legends\LeagueClient.exe 
C:\Users\Extreme\Desktop\Mortal Kombat XL.lnk - C:\Program Files (x86)\Mortal Kombat XL\Binaries\Retail\MK10.exe 
C:\Users\Extreme\Desktop\Resident Evil HD Remaster.lnk - C:\Program Files (x86)\Resident Evil HD Remaster\bhd.exe 
C:\Users\Extreme\Desktop\TEKKEN 7.lnk - C:\Program Files (x86)\Tekken 7\TEKKEN 7.exe 

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Killer Instinct.lnk - C:\Games\Killer Instinct\KillerInstinctX64_r.exe 
C:\Users\Public\Desktop\Malwarebytes.lnk - C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe 
C:\Users\Public\Desktop\Marvel VS Capcom - Infinite.lnk - C:\Program Files (x86)\Marvel VS Capcom - Infinite\MVCI\Binaries\Win64\MVCI.exe 
C:\Users\Public\Desktop\NieR - Automata.lnk - C:\Games\NieR - Automata\NieRAutomata.exe 
C:\Users\Public\Desktop\Rise of the Tomb Raider.lnk - C:\Games\Rise of the Tomb Raider\ROTTR.exe 
C:\Users\Public\Desktop\Sid Meiers Civilization VI.lnk - C:\Program Files\Sid Meiers Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe 
C:\Users\Public\Desktop\The King of Fighters XIV Steam Edition.lnk - C:\Games\The King of Fighters XIV Steam Edition\kofxiv.exe 
C:\Users\Public\Desktop\Tomb Raider GOTY Edition.lnk - C:\Program Files (x86)\Eidos Interactive\Tomb Raider GOTY Edition\TombRaider.exe 
C:\Users\Public\Desktop\World of Final Fantasy.lnk - C:\Games\World of Final Fantasy\WOFF.exe 

==== shortcuts in Users Start Menu ======================

C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk -  
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk -  
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk - C:\Users\Extreme\AppData\Local\Microsoft\OneDrive\OneDrive.exe 
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk - C:\Program Files (x86)\internet explorer\iexplore.exe 
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk - C:\Program Files (x86)\WinRAR\Rar.txt 
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\What is new in the latest version.lnk - C:\Program Files (x86)\WinRAR\WhatsNew.txt 
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk - C:\Program Files (x86)\WinRAR\WinRAR.chm 
C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.exe 

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk - C:\WINDOWS\Installer\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}\SC_Reader.ico 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos Interactive\Tomb Raider GOTY Edition\Desinstalar Tomb Raider GOTY Edition.lnk - C:\Program Files (x86)\Eidos Interactive\Tomb Raider GOTY Edition\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos Interactive\Tomb Raider GOTY Edition\Tomb Raider GOTY Edition.lnk - C:\Program Files (x86)\Eidos Interactive\Tomb Raider GOTY Edition\TombRaider.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fate Extella\Fate Extella.lnk - C:\Program Files (x86)\Fate Extella\game.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fate Extella\Uninstall Fate Extella.lnk - C:\Program Files (x86)\Fate Extella\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\DOOM\DOOM Vulkan.lnk - C:\Games\DOOM\DOOMx64vk.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\DOOM\DOOM.lnk - C:\Games\DOOM\DOOMx64.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\DOOM\Uninstall DOOM.lnk - C:\Games\DOOM\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\NieR - Automata\NieR - Automata.lnk - C:\Games\NieR - Automata\NieRAutomata.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\NieR - Automata\Uninstall NieR - Automata.lnk - C:\Games\NieR - Automata\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Rise of the Tomb Raider\Rise of the Tomb Raider.lnk - C:\Games\Rise of the Tomb Raider\ROTTR.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Rise of the Tomb Raider\Uninstall Rise of the Tomb Raider.lnk - C:\Games\Rise of the Tomb Raider\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hollow Knight The Grimm Troupe\Hollow Knight The Grimm Troupe.lnk - C:\Program Files (x86)\Hollow Knight The Grimm Troupe\hollow_knight.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hollow Knight The Grimm Troupe\Uninstall Hollow Knight The Grimm Troupe.lnk - C:\Program Files (x86)\Hollow Knight The Grimm Troupe\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configurar Java.lnk - C:\Program Files (x86)\Java\jre1.8.0_152\bin\javacpl.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Sobre o Java.lnk - C:\Program Files (x86)\Java\jre1.8.0_152\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Verificar Atualizações.lnk -  
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Instinct\Desinstalar Killer Instinct.lnk - C:\Games\Killer Instinct\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Instinct\Killer Instinct.lnk - C:\Games\Killer Instinct\KillerInstinctX64_r.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico\Log KMSpico.lnk - C:\Program Files\KMSpico\scripts\Log.cmd 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico\Uninstall KMSpico.lnk - C:\Program Files\KMSpico\UninsHs.exe /u0=KMSpico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends\League of Legends.lnk - C:\Riot Games\League of Legends\LeagueClient.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends\Uninstall League of Legends.lnk - C:\Riot Games\League of Legends\Uninstall League of Legends.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Malwarebytes.lnk - C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Uninstall Malwarebytes.lnk - C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe  /LOG
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marvel VS Capcom - Infinite\Marvel VS Capcom - Infinite.lnk - C:\Program Files (x86)\Marvel VS Capcom - Infinite\MVCI\Binaries\Win64\MVCI.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marvel VS Capcom - Infinite\Uninstall Marvel VS Capcom - Infinite.lnk - C:\Program Files (x86)\Marvel VS Capcom - Infinite\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Silverlight.Configuration.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mortal Kombat XL\Mortal Kombat XL.lnk - C:\Program Files (x86)\Mortal Kombat XL\Binaries\Retail\MK10.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mortal Kombat XL\Uninstall Mortal Kombat XL.lnk - C:\Program Files (x86)\Mortal Kombat XL\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe /show
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment\Arc\Arc.lnk - C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\ArcLauncher.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment\Arc\Repair Arc.lnk - C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\ArcRepair.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment\Gigantic Launcher\Uninstall Arc.lnk - C:\Program Files (x86)\InstallShield Installation Information\{CED8E25B-122A-4E80-B612-7F99B93284B3}\setup.exe -runfromtemp -l0x0409  -removeonly
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil HD Remaster\Resident Evil HD Remaster.lnk - C:\Program Files (x86)\Resident Evil HD Remaster\bhd.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil HD Remaster\Uninstall.lnk - C:\Program Files (x86)\Resident Evil HD Remaster\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Desinstalar Revo Uninstaller Pro.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller Pro\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro Help.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\Revo Uninstaller Pro Help.pdf 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro\Revo Uninstaller Pro.lnk - C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tekken 7\Tekken 7.lnk - C:\Program Files (x86)\Tekken 7\TEKKEN 7.ex 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tekken 7\Uninstall Tekken 7.lnk - C:\Program Files (x86)\Tekken 7\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The King of Fighters XIV Steam Edition\Desinstalar The King of Fighters XIV Steam Edition.lnk - C:\Games\The King of Fighters XIV Steam Edition\unins000.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The King of Fighters XIV Steam Edition\The King of Fighters XIV Steam Edition.lnk - C:\Games\The King of Fighters XIV Steam Edition\kofxiv.exe 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk - C:\Program Files (x86)\WinRAR\Rar.txt 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\What is new in the latest version.lnk - C:\Program Files (x86)\WinRAR\WhatsNew.txt 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk - C:\Program Files (x86)\WinRAR\WinRAR.chm 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files (x86)\WinRAR\WinRAR.exe 

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Extreme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Extreme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\Extreme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  
C:\Users\Extreme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -  
C:\Users\Extreme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
C:\Users\Extreme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Steam.lnk - C:\Program Files (x86)\Steam\Steam.exe 
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -  
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -  

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Extreme\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Extreme\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Extreme\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Extreme\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Extreme\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 06/01/2018 at 15:51:06,14 ======================
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Guilherme Mehl

 

Faça o download Zemana AntiMalware do seguinte local e salve-o em sua área de trabalho:
https://www.bleepingcomputer.com/download/zemana-antimalware/
1
Uma vez baixado, feche todos os programas e janelas abertas no seu computador.

2
Agora clique duas vezes no ícone na área de trabalho Zemana.AntiMalware.Setup.exe

Isto irá iniciar a instalação do Zemana AntiMalware em seu computador.

3
Quando a instalação começar, continue seguindo as instruções, a fim de continuar com o processo de instalação. Não faça quaisquer alterações nas configurações padrão e quando o programa estiver instalado, Zemana irá iniciar e exibir a tela principal automaticamente.
4
Clique no botão SCAN
5
Zemana AntiMalware vai agora começar a varredura de malware no computador. Este processo pode demorar um pouco, por isso sugerimos que você fazer outra coisa e verificar periodicamente sobre o estado da verificação para ver quando ele for concluído.
6
Quando Zemana terminar o scan ele irá exibir uma tela com os malwareres que foram detectados. Por favor, note que as infecções encontradas pode ser diferente do que é mostrado na imagem abaixo.

Resultados da verificação Zemana Anti-Malware

Verifique os resultados da verificação e, quando estiver pronto para continuar com o processo de limpeza, clique no seguinte botão para eliminar ou reparar todos os resultados selecionados. Depois de clicar no botão Avançar, Zemana irá remover quaisquer arquivos indesejados e corrigir quaisquer arquivos legítimos modificados. Se você receber um aviso de que Zemana precisa fechar seus browsers abertos, por favor, feche todos os navegadores da web que podem ser abertos e, em seguida, clique no OK botão para continuar.

Zemana agora irá criar um ponto de restauração e remover os arquivos detectados e reparar quaisquer arquivos que foram modificados.

Poste o resultado no seu proximo post.

  • Amei 1

Compartilhar este post


Link para o post
Compartilhar em outros sites

Scan executado e nao foi encontrado nada, se for isso, realmente mt obrigado pelo help cara, d vdd.
Só mais uma duvida, os programas instalados, eu os mantenho ou posso desinstalar eles?

Editado por Guilherme Mehl

Compartilhar este post


Link para o post
Compartilhar em outros sites
Em 06/01/2018 às 16:18, Guilherme Mehl disse:

Só mais uma duvida, os programas instalados, eu os mantenho ou posso desinstalar eles?

 

Pode desinstalar.

 

Vamos fazer uma verificação no programas de segurança.

 

Baixe Security Check, by glax24 e salve em sua Área de trabalho (Desktop).

 

Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: VRIfczU.png

  • Aguarde enquanto a ferramenta faz o exame.
  • Ao final abrirá um log: SecurityCheck.txt.
  • Este log é salvo em C: (Disco local) na pasta SecurityCheck que foi criada.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites

SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17]
WebSite: www.safezone.cc
DateLog: 09.01.2018 20:44:37
Path starting: C:\Users\Extreme\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: Extreme
VersionXML: 4.82is-05.01.2018
___________________________________________________________________________

Windows 10(6.3.16299) (x64) Professional Release: 1709 Lang: Portuguese(0416)
Installation date OS: 15.12.2017 05:33:06
LicenseStatus: Windows(R), Professional edition Volume activation will expire : 221669 minutes
Boot Mode: Normal
Default Browser: Microsoft Edge (C:\WINDOWS\system32\LaunchWinApp.exe)
SystemDrive: C: FS: [NTFS] Capacity: [1862.5 Gb] Used: [539.2 Gb] Free: [1323.3 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.192.16299.0 [+]
User Account Control enabled (Level 3)
Windows Update (wuauserv) - The service has stopped
Central de Segurança (wscsvc) - The service is running
Registro remoto (RemoteRegistry) - The service has stopped
Descoberta SSDP (SSDPSRV) - The service is running
Serviços de Área de Trabalho Remota (TermService) - The service has stopped
Windows Remote Management (WS-Management) (WinRM) - The service has stopped
---------------------------- [ Antivirus_WMI ] ----------------------------
Windows Defender (enabled and up to date)
--------------------------- [ FirewallWindows ] ---------------------------
Windows Defender Firewall (MpsSvc) - The service is running
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Windows Defender (enabled and up to date)
--------------------------- [ OtherUtilities ] ----------------------------
WinRAR 5.50 (64-bit) v.5.50.0
Microsoft Silverlight v.5.1.50907.0
--------------------------------- [ P2P ] ---------------------------------
µTorrent v.3.5.1.44332 Warning! P2P-client.
-------------------------------- [ Java ] ---------------------------------
Java 8 Update 152 v.8.0.1520.16
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Flash Player 28 NPAPI v.28.0.0.137 [+]
Adobe Shockwave Player 12.3 v.12.3.1.201
Adobe Acrobat Reader DC - Português v.18.009.20050
------------------------------- [ Browser ] -------------------------------
Google Chrome v.63.0.3239.132
--------------------------- [ RunningProcess ] ----------------------------
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe v.63.0.3239.132
------------------ [ AntivirusFirewallProcessServices ] -------------------
C:\Program Files\Windows Defender\MsMpEng.exe v.4.12.16299.15
C:\Program Files\Windows Defender\NisSrv.exe v.4.12.16299.15
Serviço Windows Defender Antivirus (WinDefend) - The service is running
Serviço de Inspeção de Rede do Windows Defender Antivirus (WdNisSvc) - The service is running
----------------------------- [ End of Log ] ------------------------------
 

adicionado 1 minuto depois

Apos td o que fiz acima o pc ficou um pouco mais rápido, mas o cmd abre e fecha mt mais rapidamente do q antes as vezes em periodos aleatorios, n da nem p ver o que tem escrito porque ele abre e fecha sozinho mt rápido, diferente de antes q dava p printar ate

Compartilhar este post


Link para o post
Compartilhar em outros sites

Hey @Turco, agora alem dele abrir e fechar mt rapidamente a internet para de funcionar qd coloco qqer coisa  carregar, tipo youtube ou qqer streaming, ate videos em facebook, eu reparei q começou a cair do nada a net, mas foi d repente dps d passar o antimalware.

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Guilherme Mehl

 

Faça o reset e reconfigure seus aparelhos (modem, roteador).

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o Farbar Recovery Scan Tool e salve-o na Área de Trabalho (Desktop).


32 bit (x86) ou 64 bit (x64)

  • Clique com o botão direito e escolha Executar como Administrador;
  • Marque a caixa Arquivos 90 dias,  e clique no botão Examinar;
  • Aguarde e ao final os logs FRST.txt e Addition.txt serão salvos em sua Área de Trabalho (Desktop);
  • Selecione, copie e cole o conteúdo do log  FRST.txt em sua próxima resposta;
  • Anexe o log Addition.txt.

 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Turco

 

 

 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 02.01.2018
Executado por Extreme (administrador) em DESKTOP-FT80SPK (10-01-2018 22:24:51)
Executando a partir de C:\Users\Extreme\Desktop
Perfis Carregados: Extreme (Perfis Disponíveis: Extreme)
Platform: Windows 10 Pro Versão 1709 16299.192 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2e329e8610bbb375\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\slui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-14] (Oracle Corporation)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{772c7557-a1ef-4b72-ab8e-7dc5adfe5221}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{b1e4063d-3a58-4c8e-84aa-2b3d8e9113bc}: [DhcpNameServer] 192.168.15.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope valor está ausente
SearchScopes: HKU\S-1-5-21-1417731217-2092515398-3923220243-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_152\bin\ssv.dll [2017-12-14] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\Plugins\ArcPluginIE.dll [2017-12-14] (Perfect World Entertainment Inc)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_152\bin\jp2ssv.dll [2017-12-14] (Oracle Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2017-11-02] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.152.2 -> C:\Program Files (x86)\Java\jre1.8.0_152\bin\dtplugin\npDeployJava1.dll [2017-12-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.152.2 -> C:\Program Files (x86)\Java\jre1.8.0_152\bin\plugin2\npjp2.dll [2017-12-14] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-01-03] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-01-03] (NVIDIA Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\Plugins\npArcPluginFF.dll [2017-12-14] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default [2018-01-10]
CHR Extension: (Apresentações) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-06]
CHR Extension: (Documentos) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-06]
CHR Extension: (Google Drive) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-06]
CHR Extension: (YouTube) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-06]
CHR Extension: (Planilhas) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-06]
CHR Extension: (Documentos Google off-line) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-01-06]
CHR Extension: (Gmail) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-06]
CHR Extension: (Chrome Media Router) - C:\Users\Extreme\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-06]

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 ArcService; C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\ArcService.exe [87064 2017-12-14] (Perfect World Entertainment Inc)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2017-12-21] (EasyAntiCheat Ltd)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4329952 2017-12-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 Updater.Mail.Ru; C:\Program Files (x86)\Mail.Ru\MailRuUpdater\MailRuUpdater.exe --s [X]

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [49312 2016-08-25] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
R1 MpKsl49a13ded; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8B94E2AE-75F1-4F30-A920-D986D276D8F7}\MpKsl49a13ded.sys [58120 2018-01-10] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5601d21ccd639df9\nvlddmkm.sys [17486096 2018-01-05] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-11-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2018-01-03] (NVIDIA Corporation)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [151552 2017-09-30] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-12-29] (Zemana Ltd.)
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-01-10 22:24 - 2018-01-10 22:25 - 000012632 _____ C:\Users\Extreme\Desktop\FRST.txt
2018-01-10 22:24 - 2018-01-10 22:24 - 000000000 ____D C:\FRST
2018-01-10 22:21 - 2018-01-10 22:22 - 002393088 _____ (Farbar) C:\Users\Extreme\Desktop\FRST64.exe
2018-01-10 17:20 - 2018-01-10 19:20 - 000000000 ____D C:\Users\Extreme\AppData\LocalLow\uTorrent
2018-01-10 11:45 - 2018-01-10 18:57 - 000000000 ____D C:\Users\Extreme\Downloads\OKAMI.HD-CODEX
2018-01-10 11:35 - 2018-01-10 11:38 - 000000000 ____D C:\Users\Extreme\Downloads\The Witcher 3 - Wild Hunt [FitGirl Repack]
2018-01-09 20:55 - 2018-01-09 20:55 - 000000615 _____ C:\Users\Public\Desktop\PBE.lnk
2018-01-09 20:30 - 2018-01-09 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PBE
2018-01-09 20:27 - 2018-01-09 20:28 - 085053544 _____ (Riot Games, Inc) C:\Users\Extreme\Downloads\League of Legends installer PBE.exe
2018-01-08 14:31 - 2018-01-08 14:37 - 157188026 _____ C:\Users\Extreme\Downloads\Bo Sinn_ dotadão ***** Thyle -  Bareback
2018-01-08 14:12 - 2018-01-03 22:01 - 000137528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-01-08 14:10 - 2018-01-08 14:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-01-08 14:07 - 2018-01-03 23:44 - 040269624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 035179080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 019796520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 016449872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 013430632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 012843496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 011015584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 010900432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 004306736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 003707888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 001975184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439065.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 001674544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439065.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 001134952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 001125960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 001053768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000988656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000938896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000885680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000740336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000616248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000599536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000506864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-01-08 14:07 - 2018-01-03 23:44 - 000045600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2018-01-07 19:01 - 2018-01-07 19:01 - 000001258 _____ C:\Users\Public\Desktop\Tomb Raider GOTY.lnk
2018-01-07 19:01 - 2018-01-07 19:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2018-01-07 18:49 - 2018-01-07 18:49 - 000000000 ____D C:\Program Files (x86)\Mr DJ
2018-01-07 15:35 - 2018-01-07 18:44 - 000000000 ____D C:\Users\Extreme\Downloads\Tomb Raider GOTY repack Mr DJ
2018-01-07 15:34 - 2018-01-07 15:34 - 000022624 _____ C:\Users\Extreme\Downloads\TRGOTY-ByStiff.torrent
2018-01-06 16:19 - 2018-01-06 19:02 - 001171840 _____ C:\WINDOWS\ZAM.krnl.trace
2018-01-06 15:44 - 2018-01-06 15:40 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2018-01-06 12:26 - 2018-01-01 15:15 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-06 12:26 - 2018-01-01 10:54 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-06 12:26 - 2018-01-01 10:53 - 001090984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-06 12:26 - 2018-01-01 10:52 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-01-06 12:26 - 2018-01-01 10:51 - 001414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-06 12:26 - 2018-01-01 10:51 - 001209240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-06 12:26 - 2018-01-01 10:51 - 001055128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-01-06 12:26 - 2018-01-01 10:51 - 000191816 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-01-06 12:26 - 2018-01-01 10:51 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-01-06 12:26 - 2018-01-01 10:50 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-01-06 12:26 - 2018-01-01 10:50 - 000780464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-06 12:26 - 2018-01-01 10:50 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-01-06 12:26 - 2018-01-01 10:50 - 000077208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-01-06 12:26 - 2018-01-01 10:49 - 008605080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-06 12:26 - 2018-01-01 10:49 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-01-06 12:26 - 2018-01-01 10:49 - 000319352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-06 12:26 - 2018-01-01 10:49 - 000292376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-06 12:26 - 2018-01-01 10:48 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-01-06 12:26 - 2018-01-01 10:48 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-06 12:26 - 2018-01-01 10:48 - 000382360 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-06 12:26 - 2018-01-01 10:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-06 12:26 - 2018-01-01 10:47 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-06 12:26 - 2018-01-01 10:46 - 002709704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-06 12:26 - 2018-01-01 10:46 - 000898216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-01-06 12:26 - 2018-01-01 10:46 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-01-06 12:26 - 2018-01-01 10:46 - 000471960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-06 12:26 - 2018-01-01 10:45 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-06 12:26 - 2018-01-01 10:45 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-06 12:26 - 2018-01-01 10:45 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-06 12:26 - 2018-01-01 10:43 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-06 12:26 - 2018-01-01 10:43 - 000367336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-06 12:26 - 2018-01-01 10:43 - 000062872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-06 12:26 - 2018-01-01 10:42 - 001029016 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-01-06 12:26 - 2018-01-01 10:42 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-06 12:26 - 2018-01-01 10:42 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-06 12:26 - 2018-01-01 10:42 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-06 12:26 - 2018-01-01 10:42 - 000109976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-06 12:26 - 2018-01-01 10:41 - 007676296 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-06 12:26 - 2018-01-01 10:41 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-06 12:26 - 2018-01-01 10:41 - 000549552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-06 12:26 - 2018-01-01 10:40 - 001206680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-01-06 12:26 - 2018-01-01 10:39 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-06 12:26 - 2018-01-01 10:39 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-06 12:26 - 2018-01-01 10:39 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-01-06 12:26 - 2018-01-01 10:39 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-01-06 12:26 - 2018-01-01 10:39 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-06 12:26 - 2018-01-01 10:38 - 003904808 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-01-06 12:26 - 2018-01-01 10:38 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-06 12:26 - 2018-01-01 10:38 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-06 12:26 - 2018-01-01 10:38 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-01-06 12:26 - 2018-01-01 10:38 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-01-06 12:26 - 2018-01-01 10:37 - 001426664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-01-06 12:26 - 2018-01-01 10:37 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-01-06 12:26 - 2018-01-01 10:36 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-06 12:26 - 2018-01-01 10:36 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-01-06 12:26 - 2018-01-01 10:36 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-06 12:26 - 2018-01-01 10:36 - 000113560 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-06 12:26 - 2018-01-01 10:36 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-06 12:26 - 2018-01-01 10:35 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-01-06 12:26 - 2018-01-01 10:35 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-06 12:26 - 2018-01-01 10:34 - 007385088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-06 12:26 - 2018-01-01 10:34 - 001336344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-06 12:26 - 2018-01-01 10:34 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-01-06 12:26 - 2018-01-01 10:34 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-06 12:26 - 2018-01-01 10:33 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-06 12:26 - 2018-01-01 10:33 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-01-06 12:26 - 2018-01-01 10:32 - 004481240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-01-06 12:26 - 2018-01-01 10:32 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-01-06 12:26 - 2018-01-01 10:27 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-06 12:26 - 2018-01-01 10:27 - 000163736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-06 12:26 - 2018-01-01 10:26 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-06 12:26 - 2018-01-01 10:26 - 000081304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-06 12:26 - 2018-01-01 10:25 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-01-06 12:26 - 2018-01-01 10:25 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-06 12:26 - 2018-01-01 10:23 - 021352144 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-06 12:26 - 2018-01-01 10:21 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-06 12:26 - 2018-01-01 10:21 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-06 12:26 - 2018-01-01 10:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-06 12:26 - 2018-01-01 10:03 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-06 12:26 - 2018-01-01 10:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-01-06 12:26 - 2018-01-01 10:03 - 000566664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-01-06 12:26 - 2018-01-01 10:03 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2018-01-06 12:26 - 2018-01-01 09:53 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-01-06 12:26 - 2018-01-01 09:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-06 12:26 - 2018-01-01 09:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-01-06 12:26 - 2018-01-01 09:46 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-01-06 12:26 - 2018-01-01 09:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-06 12:26 - 2018-01-01 09:45 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-01-06 12:26 - 2018-01-01 09:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-01-06 12:26 - 2018-01-01 09:45 - 002192624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-06 12:26 - 2018-01-01 09:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-01-06 12:26 - 2018-01-01 09:43 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 006479552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 004644912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-01-06 12:26 - 2018-01-01 09:42 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2018-01-06 12:26 - 2018-01-01 09:37 - 025247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-06 12:26 - 2018-01-01 09:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-06 12:26 - 2018-01-01 09:25 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-01-06 12:26 - 2018-01-01 09:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-01-06 12:26 - 2018-01-01 09:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-06 12:26 - 2018-01-01 09:25 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-01-06 12:26 - 2018-01-01 09:25 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
2018-01-06 12:26 - 2018-01-01 09:24 - 003668480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-06 12:26 - 2018-01-01 09:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-06 12:26 - 2018-01-01 09:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-01-06 12:26 - 2018-01-01 09:23 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-01-06 12:26 - 2018-01-01 09:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-06 12:26 - 2018-01-01 09:23 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-01-06 12:26 - 2018-01-01 09:23 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-01-06 12:26 - 2018-01-01 09:23 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-06 12:26 - 2018-01-01 09:21 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-06 12:26 - 2018-01-01 09:21 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-06 12:26 - 2018-01-01 09:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-01-06 12:26 - 2018-01-01 09:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-06 12:26 - 2018-01-01 09:20 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 018917888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-06 12:26 - 2018-01-01 09:20 - 000212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-01-06 12:26 - 2018-01-01 09:20 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 008014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-06 12:26 - 2018-01-01 09:19 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-06 12:26 - 2018-01-01 09:19 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-06 12:26 - 2018-01-01 09:19 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-01-06 12:26 - 2018-01-01 09:19 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-06 12:26 - 2018-01-01 09:18 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 006564864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-06 12:26 - 2018-01-01 09:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 003676672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-01-06 12:26 - 2018-01-01 09:16 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-06 12:26 - 2018-01-01 09:15 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 023655936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 002465280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-01-06 12:26 - 2018-01-01 09:14 - 000870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-01-06 12:26 - 2018-01-01 09:13 - 013657600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-01-06 12:26 - 2018-01-01 09:13 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-06 12:26 - 2018-01-01 09:13 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-06 12:26 - 2018-01-01 09:13 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-06 12:26 - 2018-01-01 09:13 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-06 12:26 - 2018-01-01 09:13 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-06 12:26 - 2018-01-01 09:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-06 12:26 - 2018-01-01 09:12 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-06 12:26 - 2018-01-01 09:12 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-06 12:26 - 2018-01-01 09:12 - 001573376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-06 12:26 - 2018-01-01 09:12 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-06 12:26 - 2018-01-01 09:12 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-06 12:26 - 2018-01-01 09:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 008108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 003165696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-06 12:26 - 2018-01-01 09:11 - 001955328 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 001231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-06 12:26 - 2018-01-01 09:11 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-06 12:26 - 2018-01-01 09:10 - 003126272 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-01-06 12:26 - 2018-01-01 09:10 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-06 12:26 - 2018-01-01 09:09 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-01-06 12:26 - 2018-01-01 09:09 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-06 12:26 - 2018-01-01 09:09 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-01-06 12:26 - 2018-01-01 09:09 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-06 12:26 - 2018-01-01 09:08 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-06 12:26 - 2018-01-01 09:08 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-06 12:26 - 2018-01-01 09:08 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-06 12:26 - 2018-01-01 09:05 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-01-06 12:26 - 2018-01-01 09:05 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-01-06 12:25 - 2018-01-01 09:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-06 12:25 - 2018-01-01 09:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-06 12:25 - 2018-01-01 09:23 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2018-01-06 12:25 - 2018-01-01 09:23 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-06 12:25 - 2018-01-01 09:23 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-01-06 12:25 - 2018-01-01 09:23 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-06 12:25 - 2018-01-01 09:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2018-01-06 12:25 - 2018-01-01 09:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-06 12:25 - 2018-01-01 09:22 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-01-06 12:25 - 2018-01-01 09:22 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-06 12:25 - 2018-01-01 09:21 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-06 12:25 - 2018-01-01 09:21 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-01-06 12:25 - 2018-01-01 09:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-06 12:25 - 2018-01-01 09:21 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-06 12:25 - 2018-01-01 09:21 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-06 12:25 - 2018-01-01 09:20 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-06 12:25 - 2018-01-01 09:19 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-06 12:25 - 2018-01-01 09:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-06 12:25 - 2018-01-01 09:19 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-01-06 12:25 - 2018-01-01 09:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-06 12:25 - 2018-01-01 09:19 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-06 12:25 - 2018-01-01 09:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2018-01-06 12:25 - 2018-01-01 09:19 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-06 12:25 - 2018-01-01 09:19 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-06 12:25 - 2018-01-01 09:18 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-01-06 12:25 - 2018-01-01 09:17 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-06 12:25 - 2018-01-01 09:17 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-01-06 12:25 - 2018-01-01 09:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-01-06 12:25 - 2018-01-01 09:16 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-06 12:25 - 2018-01-01 09:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-06 12:25 - 2018-01-01 09:13 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-06 12:25 - 2018-01-01 09:12 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-06 12:25 - 2018-01-01 09:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-01-06 12:25 - 2018-01-01 09:08 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-06 12:25 - 2018-01-01 09:06 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-06 12:25 - 2018-01-01 09:05 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-06 06:46 - 2018-01-06 06:46 - 000000000 ____D C:\Program Files\Malwarebytes
2018-01-05 14:11 - 2018-01-05 14:11 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-01-05 14:11 - 2018-01-05 14:11 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-01-05 14:11 - 2018-01-05 14:11 - 000000000 ____D C:\Program Files\MSBuild
2018-01-05 14:11 - 2018-01-05 14:11 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-01-05 14:07 - 2017-09-28 15:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-01-05 14:07 - 2017-09-28 15:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-01-05 14:07 - 2017-09-28 15:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-01-05 14:07 - 2017-09-22 18:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-01-05 14:07 - 2017-09-22 18:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-01-05 14:07 - 2017-09-22 18:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-01-05 14:04 - 2018-01-06 15:42 - 000000000 ____D C:\zoek_backup
2018-01-03 22:11 - 2018-01-03 22:11 - 000000000 ____D C:\Users\Todos os Usuários\King of Fighters XIV
2018-01-03 22:11 - 2018-01-03 22:11 - 000000000 ____D C:\ProgramData\King of Fighters XIV
2018-01-03 15:08 - 2018-01-03 15:08 - 000000000 ____D C:\Users\Extreme\Downloads\The King of Fighters XIV Steam Edition
2018-01-03 14:43 - 2018-01-03 14:43 - 000000857 _____ C:\Users\Public\Desktop\Killer Instinct.lnk
2018-01-03 14:43 - 2018-01-03 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Instinct
2018-01-02 21:50 - 2018-01-06 19:11 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-01-02 16:20 - 2018-01-02 16:20 - 000000000 ____D C:\Users\Extreme\Downloads\Killer Instinct
2018-01-02 13:12 - 2018-01-09 20:44 - 000000000 ____D C:\SecurityCheck
2018-01-02 12:17 - 2018-01-02 12:17 - 000000000 ____D C:\Users\Extreme\AppData\LocalLow\Adobe
2018-01-02 12:16 - 2018-01-02 12:18 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-01-02 12:16 - 2018-01-02 12:16 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-01-02 12:15 - 2018-01-02 12:18 - 000000000 ____D C:\Users\Todos os Usuários\Adobe
2018-01-02 12:15 - 2018-01-02 12:18 - 000000000 ____D C:\ProgramData\Adobe
2018-01-02 12:15 - 2018-01-02 12:15 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-01-02 12:14 - 2018-01-02 12:17 - 000000000 ____D C:\Users\Extreme\AppData\Local\Adobe
2018-01-01 21:38 - 2018-01-01 21:38 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Google
2018-01-01 21:28 - 2018-01-01 21:28 - 000000000 ____D C:\Users\Todos os Usuários\VS Revo Group
2018-01-01 21:28 - 2018-01-01 21:28 - 000000000 ____D C:\ProgramData\VS Revo Group
2018-01-01 21:05 - 2018-01-06 17:15 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-01 20:14 - 2018-01-05 16:14 - 000153088 _____ C:\WINDOWS\SysWOW64\conhost64.exe
2018-01-01 20:13 - 2018-01-05 16:14 - 000000000 ____D C:\Users\Extreme\AppData\Local\ReinstallBackups
2018-01-01 17:00 - 2018-01-01 17:04 - 000000000 ____D C:\Users\Extreme\Documents\Rise of the Tomb Raider
2018-01-01 17:00 - 2018-01-01 17:00 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Crystal Dynamics
2018-01-01 16:11 - 2018-01-01 16:11 - 000001473 _____ C:\Users\Public\Desktop\Rise of the Tomb Raider.lnk
2017-12-31 19:21 - 2017-12-31 19:21 - 000000279 _____ C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk
2017-12-31 04:26 - 2018-01-01 21:05 - 000000000 ____D C:\Users\Extreme\AppData\Local\ESET
2017-12-30 23:37 - 2018-01-04 01:22 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Injustice
2017-12-30 23:34 - 2018-01-04 01:21 - 000001588 _____ C:\Users\Extreme\Desktop\Injustice Gods Among Us Ultimate Edition.lnk
2017-12-30 23:00 - 2017-12-30 23:34 - 000000000 ____D C:\Program Files (x86)\Injustice Gods Among Us Ultimate Edition
2017-12-30 04:09 - 2018-01-07 17:50 - 000000000 ____D C:\Users\Extreme\Downloads\Nova pasta
2017-12-29 20:21 - 2018-01-10 22:25 - 000179417 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-12-29 20:21 - 2017-12-29 20:21 - 000203680 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard64.sys
2017-12-29 20:21 - 2017-12-29 20:21 - 000000000 ____D C:\Users\Extreme\AppData\Local\Zemana
2017-12-29 20:17 - 2017-12-29 21:20 - 000000000 ____D C:\Users\Extreme\AppData\LocalLow\Unity
2017-12-29 20:17 - 2017-12-29 21:20 - 000000000 ____D C:\Users\Extreme\AppData\Local\Unity
2017-12-29 20:16 - 2017-12-29 21:19 - 000000000 ____D C:\Users\Extreme\AppData\Local\Go!
2017-12-29 20:13 - 2017-09-29 11:42 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\OoaC.exe
2017-12-29 20:13 - 2017-09-29 11:42 - 000001118 _____ C:\Users\Extreme\IAyawb
2017-12-29 20:13 - 2017-09-29 11:42 - 000000977 _____ C:\Users\Extreme\AppData\Roaming\TAKElu
2017-12-29 20:13 - 2017-09-29 11:42 - 000000069 _____ C:\Program Files (x86)\ofHBbceKDa
2017-12-29 20:13 - 2017-09-29 11:42 - 000000053 _____ C:\WINDOWS\SysWOW64\YeLA
2017-12-29 18:08 - 2017-12-30 01:56 - 000001084 _____ C:\Users\Extreme\Desktop\Fate Extella.lnk
2017-12-29 18:08 - 2017-12-29 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fate Extella
2017-12-29 18:06 - 2017-12-29 18:10 - 000000000 ____D C:\Program Files (x86)\Fate Extella
2017-12-27 19:57 - 2017-12-27 19:57 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1417731217-2092515398-3923220243-1001
2017-12-26 07:02 - 2018-01-10 19:20 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\uTorrent
2017-12-26 07:02 - 2017-12-26 07:02 - 000000878 _____ C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2017-12-26 06:09 - 2018-01-10 22:13 - 000001318 _____ C:\Users\Extreme\Desktop\League of Legends.lnk
2017-12-26 04:49 - 2017-12-26 04:49 - 000000000 ____D C:\Users\Extreme\AppData\Local\TekkenGame
2017-12-26 04:49 - 2017-12-26 04:49 - 000000000 ____D C:\Users\Extreme\ansel
2017-12-26 04:48 - 2018-01-04 01:22 - 000001080 _____ C:\Users\Extreme\Desktop\TEKKEN 7.lnk
2017-12-26 04:26 - 2017-12-26 04:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tekken 7
2017-12-26 03:54 - 2017-12-26 04:26 - 000000000 ____D C:\Program Files (x86)\Tekken 7
2017-12-26 01:35 - 2017-12-26 01:35 - 000000000 ____D C:\Users\Extreme\AppData\Local\NetworkTiles
2017-12-24 18:52 - 2017-12-24 18:52 - 000001691 _____ C:\Users\Public\Desktop\Marvel VS Capcom - Infinite.lnk
2017-12-24 18:52 - 2017-12-24 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marvel VS Capcom - Infinite
2017-12-24 18:29 - 2017-12-24 18:29 - 000000000 ____D C:\Program Files (x86)\Marvel VS Capcom - Infinite
2017-12-24 11:38 - 2017-12-26 04:49 - 000000000 ____D C:\Users\Extreme\AppData\Local\UnrealEngine
2017-12-22 21:58 - 2017-12-30 00:57 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\MK10
2017-12-22 21:55 - 2017-12-26 23:24 - 000001366 _____ C:\Users\Extreme\Desktop\Mortal Kombat XL.lnk
2017-12-22 21:55 - 2017-12-22 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mortal Kombat XL
2017-12-22 21:30 - 2017-12-22 22:00 - 000000000 ____D C:\Program Files (x86)\Mortal Kombat XL
2017-12-22 03:18 - 2017-12-22 03:18 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Steam
2017-12-22 03:18 - 2017-12-22 03:18 - 000000000 ____D C:\Users\Extreme\AppData\Local\CAPCOM
2017-12-22 01:47 - 2017-12-22 01:47 - 000001168 _____ C:\Users\Extreme\Desktop\Resident Evil HD Remaster.lnk
2017-12-22 01:47 - 2017-12-22 01:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil HD Remaster
2017-12-22 01:42 - 2017-12-22 01:42 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\NVIDIA
2017-12-22 01:34 - 2017-12-22 02:13 - 000000000 ____D C:\Program Files (x86)\Resident Evil HD Remaster
2017-12-21 16:55 - 2017-12-21 16:55 - 000000222 _____ C:\Users\Extreme\Desktop\Gigantic.url
2017-12-21 16:48 - 2017-12-21 16:48 - 000788520 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2017-12-21 16:46 - 2017-12-21 16:46 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\EasyAntiCheat
2017-12-21 16:14 - 2017-12-21 16:54 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Arc
2017-12-21 16:14 - 2017-12-21 16:14 - 000000000 ____D C:\Users\Public\Documents\Arc
2017-12-21 16:14 - 2017-12-21 00:57 - 000383016 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2017-12-21 16:11 - 2017-12-21 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment
2017-12-21 12:29 - 2018-01-01 17:00 - 000000000 ____D C:\Users\Extreme\Documents\CPY_SAVES
2017-12-21 11:39 - 2017-12-21 11:39 - 000001451 _____ C:\Users\Public\Desktop\NieR - Automata.lnk
2017-12-20 21:29 - 2017-12-20 21:29 - 000000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2017-12-20 21:29 - 2017-12-20 21:29 - 000000000 ____D C:\ProgramData\Electronic Arts
2017-12-20 20:14 - 2017-12-26 17:17 - 000001515 _____ C:\Users\Extreme\Desktop\AxiomVerge.lnk
2017-12-20 19:44 - 2017-12-20 19:44 - 000000000 ____D C:\Users\Extreme\Documents\Universe Sandbox ²
2017-12-20 19:43 - 2017-12-20 19:43 - 000000000 ____D C:\Users\Extreme\Documents\ALI213
2017-12-20 19:43 - 2017-12-20 19:43 - 000000000 ____D C:\Users\Extreme\AppData\LocalLow\Giant Army
2017-12-20 17:54 - 2017-12-20 17:54 - 000000827 _____ C:\Users\Public\Desktop\World of Final Fantasy.lnk
2017-12-20 16:36 - 2018-01-02 02:12 - 000001081 _____ C:\Users\Extreme\Desktop\DOOM (Vulkan mode).lnk
2017-12-20 15:44 - 2017-12-20 15:44 - 000000000 ____D C:\Users\Extreme\AppData\Local\DBG
2017-12-20 11:57 - 2017-12-20 11:58 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Battlerite
2017-12-20 09:10 - 2017-12-20 09:10 - 000000000 ____D C:\Users\Extreme\AppData\Local\id Software
2017-12-20 09:01 - 2018-01-07 18:49 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2017-12-20 09:01 - 2018-01-07 18:46 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-12-20 02:01 - 2018-01-06 19:02 - 000000000 ____D C:\Games
2017-12-20 02:01 - 2018-01-01 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-12-19 05:57 - 2017-12-19 05:57 - 000000219 _____ C:\Users\Extreme\Desktop\Dota 2.url
2017-12-18 14:47 - 2017-12-18 14:47 - 000000000 ____D C:\Users\Extreme\AppData\LocalLow\Team Cherry
2017-12-18 14:46 - 2017-12-18 14:46 - 000000000 ____D C:\Users\Public\Documents\Steam
2017-12-18 14:44 - 2017-12-18 14:44 - 000001259 _____ C:\Users\Extreme\Desktop\Hollow Knight The Grimm Troupe.lnk
2017-12-18 14:43 - 2017-12-18 14:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hollow Knight The Grimm Troupe
2017-12-18 14:40 - 2017-12-18 14:45 - 000000000 ____D C:\Program Files (x86)\Hollow Knight The Grimm Troupe
2017-12-15 07:37 - 2017-12-23 14:22 - 000000000 ____D C:\Users\Extreme\AppData\Local\PlaceholderTileLogoFolder
2017-12-15 07:21 - 2017-12-15 07:21 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2017-12-15 07:21 - 2017-12-15 07:21 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-12-15 07:20 - 2017-12-15 07:20 - 000000000 ___HD C:\Users\Extreme\MicrosoftEdgeBackups
2017-12-15 07:19 - 2018-01-06 15:51 - 000000000 ___RD C:\Users\Extreme\3D Objects
2017-12-15 07:18 - 2017-12-15 07:18 - 000000020 ___SH C:\Users\Extreme\ntuser.ini
2017-12-15 07:18 - 2017-12-15 07:18 - 000000000 ____D C:\Users\Extreme\AppData\Local\ConnectedDevicesPlatform
2017-12-15 04:07 - 2017-12-15 04:08 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-12-15 04:07 - 2017-12-15 04:07 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-12-15 04:06 - 2017-12-15 04:06 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-12-15 04:05 - 2017-12-15 04:05 - 000000000 ____D C:\WINDOWS\containers
2017-12-15 04:04 - 2017-12-15 04:04 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 017159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 013703168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 006791472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 006466048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 006015200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 004814848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 004504456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 003010720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002972672 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002783744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002717392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002465848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002446744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002339296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002269080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002220952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 002105856 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001970520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001806336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001778584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001636376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001628056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001585376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001507736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001490840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001454568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001420696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001377080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001259344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001148216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001145104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001015008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 001003104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000975872 _____ C:\WINDOWS\system32\FaceProcessor.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000831384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000819096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000813976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000744856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000721592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000669592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000661664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000654048 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000645528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000612760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000592280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000555416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-12-15 04:04 - 2017-12-15 04:04 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-12-15 04:04 - 2017-12-15 04:04 - 000436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000362176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000269696 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000198888 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000187288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-15 04:04 - 2017-12-15 04:04 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterShim.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000045464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdrleakdiag.exe
2017-12-15 04:04 - 2017-12-15 04:04 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-12-15 04:04 - 2017-12-15 04:04 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcVSp1res.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-15 04:04 - 2017-12-15 04:04 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-15 03:30 - 2018-01-10 18:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-15 03:30 - 2018-01-09 19:50 - 000004494 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-12-15 03:30 - 2017-12-20 01:38 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-20 01:38 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-15 03:30 - 2017-12-15 03:31 - 000003514 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-15 03:30 - 2017-12-15 03:31 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1417731217-2092515398-3923220243-1001
2017-12-15 03:30 - 2017-12-15 03:30 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2017-12-15 03:30 - 2017-12-15 03:30 - 000007623 _____ C:\WINDOWS\diagerr.xml
2017-12-15 03:30 - 2017-12-15 03:30 - 000003290 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-15 03:29 - 2017-12-15 03:29 - 000022956 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-12-15 03:22 - 2017-12-15 03:22 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-12-15 03:22 - 2017-12-15 03:22 - 000000000 ____D C:\Users\Todos os Usuários\USOShared
2017-12-15 03:22 - 2017-12-15 03:22 - 000000000 ____D C:\ProgramData\USOShared
2017-12-15 03:19 - 2018-01-06 11:38 - 000000000 ____D C:\Users\Extreme
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Modelos
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Meus Documentos
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Menu Iniciar
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Documents\Minhas Músicas
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Documents\Minhas Imagens
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Documents\Meus Vídeos
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Dados de Aplicativos
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Configurações Locais
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\AppData\Local\Histórico
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\AppData\Local\Dados de Aplicativos
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Ambiente de Rede
2017-12-15 03:19 - 2017-12-15 03:19 - 000000000 _SHDL C:\Users\Extreme\Ambiente de Impressão
2017-12-15 03:14 - 2017-09-29 11:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-12-15 03:13 - 2017-12-15 03:13 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-12-15 03:13 - 2017-12-07 16:22 - 000131544 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-12-15 03:10 - 2018-01-10 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-15 03:10 - 2018-01-06 15:49 - 000222352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-15 02:09 - 2017-12-15 02:09 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2017-12-15 01:57 - 2018-01-07 19:02 - 000000000 ____D C:\Users\Todos os Usuários\Steam
2017-12-15 01:57 - 2018-01-07 19:02 - 000000000 ____D C:\ProgramData\Steam
2017-12-15 01:57 - 2017-12-21 16:48 - 000000000 ____D C:\Users\Extreme\Documents\My Games
2017-12-15 01:57 - 2017-12-15 01:57 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\FiraxisLive
2017-12-15 01:47 - 2017-12-15 01:47 - 000001087 _____ C:\Users\Public\Desktop\Sid Meiers Civilization VI.lnk
2017-12-15 01:47 - 2017-12-15 01:47 - 000000000 ____D C:\Program Files\Sid Meiers Civilization VI
2017-12-15 01:41 - 2017-12-15 01:41 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes
2017-12-15 00:57 - 2017-12-15 00:57 - 000000000 ____D C:\Users\Extreme\AppData\Local\UNP
2017-12-15 00:54 - 2018-01-09 19:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-15 00:54 - 2018-01-09 19:56 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-15 00:54 - 2018-01-09 19:56 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-15 00:54 - 2017-12-15 00:57 - 000000000 ____D C:\Program Files\rempl
2017-12-15 00:43 - 2018-01-09 20:54 - 000000000 ____D C:\Riot Games
2017-12-15 00:43 - 2017-12-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2017-12-15 00:43 - 2017-12-15 00:43 - 000000000 ____D C:\Users\Todos os Usuários\Riot Games
2017-12-15 00:43 - 2017-12-15 00:43 - 000000000 ____D C:\ProgramData\Riot Games
2017-12-15 00:43 - 2008-07-12 08:18 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-12-15 00:43 - 2008-07-12 08:18 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-12-15 00:43 - 2008-07-12 08:18 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-12-15 00:35 - 2017-12-15 04:08 - 000000000 ____D C:\Program Files\UNP
2017-12-15 00:34 - 2017-11-20 18:32 - 000545440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-12-15 00:30 - 2017-12-15 00:37 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Easeware
2017-12-15 00:30 - 2017-12-15 00:30 - 000000000 ____D C:\Users\Extreme\AppData\Local\PeerDistRepub
2017-12-15 00:25 - 2018-01-08 14:11 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-12-15 00:25 - 2017-11-02 18:15 - 000928568 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-12-15 00:25 - 2017-11-02 18:15 - 000798520 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-12-15 00:25 - 2017-11-02 18:15 - 000490808 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-12-15 00:25 - 2017-11-02 18:14 - 000591672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-12-15 00:05 - 2017-12-15 00:05 - 000016526 _____ C:\WINDOWS\system32\results.xml
2017-12-15 00:00 - 2017-12-15 00:00 - 000000000 ____D C:\Users\Todos os Usuários\Intel
2017-12-15 00:00 - 2017-12-15 00:00 - 000000000 ____D C:\ProgramData\Intel
2017-12-14 23:59 - 2017-12-19 00:14 - 000000000 __SHD C:\Users\Extreme\IntelGraphicsProfiles
2017-12-14 23:59 - 2017-12-15 00:00 - 000000000 ____D C:\Program Files (x86)\Intel
2017-12-14 23:59 - 2017-12-14 23:59 - 000000000 ____D C:\Users\Extreme\Intel
2017-12-14 23:59 - 2015-05-07 20:31 - 000404752 _____ (Intel Corporation) C:\WINDOWS\system32\PROUnstl.exe
2017-12-14 23:59 - 2015-05-07 20:17 - 000001904 _____ C:\WINDOWS\system32\SetupBD.din
2017-12-14 23:58 - 2018-01-08 14:12 - 000000000 ____D C:\Users\Extreme\AppData\Local\NVIDIA
2017-12-14 23:57 - 2017-12-14 23:57 - 000000000 ____D C:\Users\Extreme\AppData\Local\CEF
2017-12-14 23:56 - 2017-12-15 04:07 - 000000000 ____D C:\Program Files\Realtek
2017-12-14 23:56 - 2017-12-15 03:14 - 000000000 ____D C:\WINDOWS\system32\DAX2
2017-12-14 23:56 - 2017-12-15 03:13 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-12-14 23:56 - 2017-12-15 03:13 - 000000000 ____D C:\Intel
2017-12-14 23:56 - 2017-12-14 23:56 - 000000000 _____ C:\Users\Todos os Usuários\DP45977C.lfl
2017-12-14 23:56 - 2017-12-14 23:56 - 000000000 _____ C:\ProgramData\DP45977C.lfl
2017-12-14 23:56 - 2015-12-24 23:49 - 003299824 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2017-12-14 23:56 - 2015-12-24 23:49 - 002190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2017-12-14 23:56 - 2015-12-24 23:49 - 002110592 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2017-12-14 23:56 - 2015-12-24 23:49 - 000888480 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2017-12-14 23:56 - 2015-12-24 23:49 - 000596120 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2017-12-14 23:56 - 2015-12-24 23:49 - 000224264 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2017-12-14 23:56 - 2015-12-24 23:49 - 000172584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 072203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-12-14 23:56 - 2015-12-24 23:48 - 013120760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 012986528 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 007172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2017-12-14 23:56 - 2015-12-24 23:48 - 005782384 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 005289952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 004718336 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-12-14 23:56 - 2015-12-24 23:48 - 004710388 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-12-14 23:56 - 2015-12-24 23:48 - 003271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 003195648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 003152591 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2017-12-14 23:56 - 2015-12-24 23:48 - 003059608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 002894968 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-12-14 23:56 - 2015-12-24 23:48 - 002697456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 002030200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001928632 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001356504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001286152 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001008360 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 001003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000933640 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000923744 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000873472 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000716104 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000677672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000589080 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2017-12-14 23:56 - 2015-12-24 23:48 - 000532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000467168 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000448592 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000341160 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000341160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000258504 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000221976 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000214840 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000209544 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000192992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000158704 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000088320 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2017-12-14 23:56 - 2015-12-24 23:48 - 000023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-12-14 23:56 - 2014-07-22 23:59 - 000003008 _____ C:\WINDOWS\system32\Drivers\DTSU2P.DAT
2017-12-14 23:55 - 2017-12-21 16:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-12-14 23:55 - 2017-12-15 04:08 - 000000000 ____D C:\Program Files\Intel
2017-12-14 23:55 - 2017-12-14 23:56 - 000000000 ___HD C:\Program Files (x86)\Temp
2017-12-14 23:55 - 2017-12-14 23:55 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-12-14 23:55 - 2015-12-24 23:48 - 014057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 010521552 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 007096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 006264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 005338936 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 003282032 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 002823280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 002437144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 002050184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001601944 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001421104 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001334384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001211832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001186168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 001164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000998032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000952984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000678192 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000471336 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000417024 _____ (TODO: <Company name>) C:\WINDOWS\system32\HMUI.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000371248 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000369304 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000362056 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000361888 _____ C:\WINDOWS\system32\HMClariFi.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000203336 _____ C:\WINDOWS\system32\HMHVS.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000190432 _____ C:\WINDOWS\system32\HMEQ.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000189912 _____ C:\WINDOWS\system32\HMEQ_Voice.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000179088 _____ C:\WINDOWS\system32\HMLimiter.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000122328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2017-12-14 23:55 - 2015-12-24 23:48 - 000105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2017-12-14 23:55 - 2015-10-13 05:14 - 002826832 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2017-12-14 23:54 - 2018-01-04 16:58 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 23:54 - 2018-01-01 21:37 - 000000000 ____D C:\Users\Extreme\AppData\Local\Google
2017-12-14 23:54 - 2018-01-01 21:37 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-14 23:53 - 2017-12-15 00:00 - 000000647 _____ C:\WINDOWS\Ascd_ProcessLog.ini
2017-12-14 23:53 - 2017-12-14 23:53 - 000037439 _____ C:\WINDOWS\Ascd_tmp.ini
2017-12-14 23:53 - 2017-12-14 23:53 - 000000000 ____D C:\Program Files (x86)\ASUS
2017-12-14 23:53 - 2014-09-09 00:14 - 000028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2017-12-14 23:53 - 2014-09-09 00:14 - 000015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2017-12-14 23:46 - 2015-11-12 10:05 - 001467912 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-12-14 23:45 - 2017-12-14 23:45 - 000000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-12-14 22:56 - 2018-01-07 20:25 - 000000000 ____D C:\Users\Extreme\AppData\Local\CrashDumps
2017-12-14 22:16 - 2017-12-14 22:16 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\.mono
2017-12-14 21:59 - 2017-12-15 07:18 - 000000000 ___DC C:\WINDOWS\Panther
2017-12-14 21:22 - 2017-12-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-12-14 21:22 - 2017-12-14 21:22 - 001207319 _____ C:\WINDOWS\unins000.exe
2017-12-14 21:22 - 2017-12-14 21:22 - 000010836 _____ C:\WINDOWS\unins000.dat
2017-12-14 21:22 - 2017-04-01 20:44 - 003450616 _____ (Red Hat) C:\WINDOWS\system32\cygwin1.dll
2017-12-14 21:22 - 2017-01-26 07:25 - 001265664 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libeay32.dll
2017-12-14 21:22 - 2017-01-26 07:25 - 000274944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\ssleay32.dll
2017-12-14 21:22 - 2017-01-26 07:25 - 000274944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libssl32.dll
2017-12-14 21:22 - 2015-07-10 11:51 - 000456008 _____ (AutoIt Team) C:\WINDOWS\system32\autoitx3.dll
2017-12-14 21:22 - 2014-01-31 03:14 - 001055676 _____ (Free Software Foundation) C:\WINDOWS\system32\libiconv2.dll
2017-12-14 21:22 - 2014-01-25 14:30 - 000131072 _____ (Sereby Corporation) C:\WINDOWS\system32\AiORuntimes.dll
2017-12-14 21:22 - 2013-12-23 15:44 - 000163480 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 001070232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscomctl.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000660120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscomct2.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000617896 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000444328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshflxgd.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000416408 _____ (Microsoft Corporation ) C:\WINDOWS\system32\comct332.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000279192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdatgrd.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000259736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msflxgrd.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000253080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdatlst.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000222360 _____ (Microsoft Corporation) C:\WINDOWS\system32\tabctl32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000219288 _____ (Microsoft Corporation) C:\WINDOWS\system32\richtx32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000218776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dblist32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000212112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mci32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000179352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmask32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\system32\comct232.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000131728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinet.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000130712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msstdfmt.dll
2017-12-14 21:22 - 2013-12-20 01:48 - 000127640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswinsck.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000119960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscomm32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000108696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msstkprp.dll
2017-12-14 21:22 - 2013-12-20 01:48 - 000104088 _____ (Microsoft Corporation) C:\WINDOWS\system32\picclp32.ocx
2017-12-14 21:22 - 2013-12-20 01:48 - 000084624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysinfo.ocx
2017-12-14 21:22 - 2012-06-14 15:36 - 000107520 _____ C:\WINDOWS\system32\zlib1.dll
2017-12-14 21:22 - 2012-04-03 17:11 - 000138752 _____ C:\WINDOWS\system32\libpng15.dll
2017-12-14 21:22 - 2011-10-12 04:09 - 004033440 _____ (Intel Corporation) C:\WINDOWS\system32\libmmd.dll
2017-12-14 21:22 - 2011-10-01 09:16 - 000445016 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2017-12-14 21:22 - 2011-10-01 09:16 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\openal32.dll
2017-12-14 21:22 - 2011-01-12 14:36 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71u.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71DEU.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71ITA.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71FRA.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71ESP.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71ENU.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71KOR.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71JPN.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71CHT.dll
2017-12-14 21:22 - 2011-01-12 14:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71CHS.dll
2017-12-14 21:22 - 2011-01-12 14:19 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2017-12-14 21:22 - 2011-01-12 13:53 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl71.dll
2017-12-14 21:22 - 2010-06-27 18:44 - 000053248 _____ (Adobe Systems, Incorporated) C:\WINDOWS\system\plugin.dll
2017-12-14 21:22 - 2010-03-18 21:21 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdia100.dll
2017-12-14 21:22 - 2008-08-26 07:40 - 000162304 _____ C:\WINDOWS\system32\libpng13.dll
2017-12-14 21:22 - 2007-02-01 23:13 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2017-12-14 21:22 - 2007-02-01 20:11 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2017-12-14 21:22 - 2007-01-30 23:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr70.dll
2017-12-14 21:22 - 2006-08-26 01:28 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70u.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70ITA.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70FRA.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70ESP.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70DEU.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70ENU.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70KOR.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70JPN.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70CHT.dll
2017-12-14 21:22 - 2006-08-26 01:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70CHS.dll
2017-12-14 21:22 - 2006-08-26 01:07 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70.dll
2017-12-14 21:22 - 2006-08-26 00:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl70.dll
2017-12-14 21:22 - 2005-05-06 14:52 - 000103424 _____ (GNU <www.gnu.org>) C:\WINDOWS\system32\libintl3.dll
2017-12-14 21:22 - 2005-01-20 20:25 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvci70.dll
2017-12-14 21:22 - 2002-01-05 06:40 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp70.dll
2017-12-14 21:22 - 1996-01-12 04:00 - 000935632 _____ (Microsoft Corporation) C:\WINDOWS\system\vb40016.dll
2017-12-14 21:22 - 1996-01-12 04:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vb40032.dll
2017-12-14 21:22 - 1994-11-17 14:00 - 000210944 _____ C:\WINDOWS\system\msvcrt10.dll
2017-12-14 21:22 - 1993-05-11 20:00 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system\vbrun300.dll
2017-12-14 21:22 - 1992-10-21 01:00 - 000356992 _____ (Microsoft Corporation) C:\WINDOWS\system\vbrun200.dll
2017-12-14 21:22 - 1991-05-10 02:00 - 000271264 _____ C:\WINDOWS\system\vbrun100.dll
2017-12-14 21:21 - 2017-12-15 04:08 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2017-12-14 21:21 - 2017-12-14 21:21 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Macromedia
2017-12-14 21:21 - 2017-12-14 21:21 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2017-12-14 21:21 - 2017-12-14 21:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-12-14 20:50 - 2017-12-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-12-14 20:50 - 2017-12-14 20:50 - 000097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-12-14 20:50 - 2017-12-14 20:50 - 000000000 ____D C:\Users\Todos os Usuários\Oracle
2017-12-14 20:50 - 2017-12-14 20:50 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Sun
2017-12-14 20:50 - 2017-12-14 20:50 - 000000000 ____D C:\ProgramData\Oracle
2017-12-14 20:50 - 2017-12-14 20:50 - 000000000 ____D C:\Program Files (x86)\Java
2017-12-14 19:13 - 2017-12-14 19:13 - 000000000 __RHD C:\WINDOWS\KMS
2017-12-14 18:55 - 2017-12-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2017-12-14 18:55 - 2017-12-14 20:19 - 000000000 ____D C:\Program Files\KMSpico
2017-12-14 18:55 - 2010-12-06 00:16 - 000090112 _____ (Vestris Inc.) C:\WINDOWS\system32\Vestris.ResourceLib.dll
2017-12-14 06:42 - 2017-12-15 04:08 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-12-14 06:42 - 2017-12-15 04:07 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2017-12-14 06:42 - 2017-12-15 04:07 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-12-14 06:29 - 2017-12-14 06:29 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\WinRAR
2017-12-14 06:28 - 2017-12-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-12-14 06:28 - 2017-12-15 03:23 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-12-14 06:28 - 2017-12-14 06:28 - 000000000 ____D C:\Program Files\WinRAR
2017-12-14 06:09 - 2017-12-14 06:09 - 000000222 _____ C:\Users\Extreme\Desktop\Battlerite.url
2017-12-14 06:00 - 2017-12-14 06:00 - 000000000 ____D C:\Users\Extreme\AppData\Local\Steam
2017-12-14 05:55 - 2018-01-10 22:12 - 000000000 ____D C:\Program Files (x86)\Steam
2017-12-14 05:55 - 2017-12-15 04:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-12-14 05:06 - 2017-12-16 12:06 - 000000000 ____D C:\Users\Extreme\AppData\Local\ElevatedDiagnostics
2017-12-14 04:36 - 2017-12-14 04:36 - 000000000 ____D C:\Users\Extreme\Documents\League of Legends
2017-12-13 02:17 - 2017-12-15 07:20 - 000000000 ____D C:\Users\Extreme\AppData\Local\MicrosoftEdge
2017-12-13 02:12 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-12-13 02:12 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-12-13 02:12 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-12-13 02:12 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-12-13 02:12 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-12-13 02:12 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-12-13 02:12 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-12-13 02:12 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2017-12-13 02:12 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-12-13 02:12 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-12-13 02:12 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-12-13 02:12 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-12-13 02:12 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-12-13 02:12 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-12-13 02:12 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-12-13 02:12 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-12-13 02:12 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-12-13 02:12 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-12-13 02:12 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-12-13 02:12 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-12-13 02:12 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-12-13 02:12 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-12-13 02:12 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-12-13 02:12 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-12-13 02:12 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-12-13 02:12 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-12-13 02:12 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-12-13 02:12 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-12-13 02:12 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-12-13 02:12 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-12-13 02:12 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-12-13 02:12 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-12-13 02:12 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-12-13 02:12 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-12-13 02:12 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-12-13 02:12 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-12-13 02:12 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-12-13 02:12 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-12-13 02:12 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-12-13 02:12 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-12-13 02:12 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-12-13 02:12 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-12-13 02:12 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-12-13 02:12 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-12-13 02:12 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-12-13 02:12 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-12-13 02:12 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-12-13 02:12 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-12-13 02:12 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-12-13 02:12 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-12-13 02:12 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-12-13 02:12 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-12-13 02:12 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-12-13 02:12 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-12-13 02:12 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-12-13 02:12 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-12-13 02:12 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-12-13 02:12 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-12-13 02:12 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-12-13 02:12 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-12-13 02:12 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-12-13 02:12 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-12-13 02:12 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-12-13 02:12 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-12-13 02:12 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-12-13 02:12 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-12-13 02:12 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-12-13 02:12 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-12-13 02:12 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-12-13 02:12 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-12-13 02:12 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-12-13 02:12 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-12-13 02:12 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-12-13 02:12 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-12-13 02:12 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-12-13 02:12 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-12-13 02:12 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-12-13 02:12 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-12-13 02:12 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-12-13 02:12 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-12-13 02:12 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-12-13 02:12 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-12-13 02:12 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-12-13 02:12 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-12-13 02:12 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-12-13 02:12 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-12-13 02:12 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-12-13 02:12 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-12-13 02:12 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-12-13 02:12 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-12-13 02:12 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-12-13 02:12 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-12-13 02:12 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-12-13 02:12 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-12-13 02:12 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-12-13 02:12 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-12-13 02:12 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-12-13 02:12 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-12-13 02:12 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-12-13 02:12 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-12-13 02:12 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-12-13 02:12 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-12-13 02:12 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-12-13 02:12 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-12-13 02:12 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-12-13 02:12 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-12-13 02:12 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-12-13 02:12 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-12-13 02:12 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-12-13 02:12 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-12-13 02:12 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-12-13 02:12 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-12-13 02:12 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-12-13 02:12 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-12-13 02:12 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-12-13 02:12 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-12-13 02:12 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-12-13 02:12 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-12-13 02:12 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-12-13 02:12 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-12-13 02:12 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-12-13 02:12 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-12-13 02:12 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-12-13 02:12 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-12-13 02:12 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-12-13 02:12 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-12-13 02:12 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-12-13 02:12 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-12-13 02:12 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-12-13 02:12 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-12-13 02:12 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-12-13 02:12 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-12-13 02:12 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-12-13 02:12 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-12-13 02:12 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-12-13 02:12 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-12-13 02:12 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-12-13 02:12 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-12-13 02:12 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-12-13 02:12 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-12-13 02:12 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-12-13 02:12 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-12-13 02:12 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-12-13 02:12 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-12-13 02:12 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-12-13 02:12 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-12-13 02:12 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-12-13 02:12 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-12-13 02:12 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-12-13 02:12 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-12-13 02:07 - 2017-12-20 01:39 - 000000000 ____D C:\Users\Extreme\AppData\Local\NVIDIA Corporation
2017-12-13 02:06 - 2017-12-29 09:19 - 000000000 ____D C:\Users\Extreme\AppData\Local\Comms
2017-12-13 02:03 - 2018-01-08 14:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-13 02:03 - 2017-11-15 23:41 - 002404800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-12-13 02:03 - 2017-11-15 23:41 - 002070976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-12-13 02:03 - 2017-11-15 23:41 - 001309120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-12-13 02:03 - 2017-11-15 22:53 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-12-13 02:03 - 2017-05-18 05:35 - 001755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-12-13 02:03 - 2017-05-18 05:35 - 001317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-12-13 02:03 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-12-13 02:03 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-12-13 02:03 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-12-13 02:03 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-12-13 02:03 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-12-13 02:03 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-12-13 02:02 - 2018-01-10 18:59 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2017-12-13 02:02 - 2018-01-10 18:59 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-13 02:02 - 2018-01-08 14:12 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2017-12-13 02:02 - 2018-01-08 14:12 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-13 02:02 - 2018-01-03 22:33 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-12-13 02:02 - 2018-01-03 21:50 - 005951336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-12-13 02:02 - 2018-01-03 21:50 - 002588232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-12-13 02:02 - 2018-01-03 21:50 - 001768480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-12-13 02:02 - 2018-01-03 21:50 - 000631880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-12-13 02:02 - 2018-01-03 21:50 - 000450352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-12-13 02:02 - 2018-01-03 21:50 - 000123704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-12-13 02:02 - 2018-01-03 21:50 - 000081992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-12-13 02:02 - 2017-12-24 17:07 - 007928821 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-12-13 02:02 - 2017-12-20 15:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-12-13 02:01 - 2018-01-01 16:53 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache
2017-12-13 02:01 - 2018-01-01 16:53 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-13 02:00 - 2018-01-03 23:44 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-12-13 02:00 - 2017-11-15 23:41 - 000186304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-12-13 02:00 - 2017-11-15 23:41 - 000152512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-12-13 02:00 - 2017-10-10 23:05 - 000050624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-12-13 02:00 - 2017-05-18 05:35 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438233.dll
2017-12-13 02:00 - 2017-05-18 05:35 - 001606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-12-13 01:59 - 2018-01-08 14:12 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-13 01:47 - 2017-12-15 00:07 - 000002379 _____ C:\Users\Extreme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-12-13 01:47 - 2017-12-15 00:07 - 000000000 ___RD C:\Users\Extreme\OneDrive
2017-12-13 01:47 - 2017-12-13 01:47 - 000000000 ____D C:\Users\Extreme\AppData\Local\ActiveSync
2017-12-13 01:46 - 2018-01-10 19:00 - 002053360 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-13 01:45 - 2018-01-06 19:17 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-12-13 01:45 - 2018-01-02 12:17 - 000000000 ____D C:\Users\Extreme\AppData\Roaming\Adobe
2017-12-13 01:45 - 2017-12-23 13:51 - 000000000 ____D C:\Users\Extreme\AppData\Local\Packages
2017-12-13 01:45 - 2017-12-15 07:43 - 000000000 ____D C:\Users\Extreme\AppData\Local\Publishers
2017-12-13 01:45 - 2017-12-15 07:19 - 000000000 ____D C:\Users\Extreme\AppData\Local\TileDataLayer
2017-12-13 01:45 - 2017-12-13 01:45 - 000000000 ____D C:\Users\Extreme\AppData\Local\VirtualStore
2017-12-13 01:42 - 2017-12-13 01:42 - 000000000 ____D C:\WINDOWS\CSC
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Usuário Padrão
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Todos os Usuários\Modelos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Todos os Usuários\Documentos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Todos os Usuários\Dados de Aplicativos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Todos os Usuários
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Músicas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Public\Documents\Minhas Imagens
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Public\Documents\Meus Vídeos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Modelos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Meus Documentos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Menu Iniciar
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Dados de Aplicativos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Configurações Locais
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Ambiente de Rede
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default\Ambiente de Impressão
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default User\Documents\Minhas Músicas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default User\Documents\Minhas Imagens
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default User\Documents\Meus Vídeos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Dados de Aplicativos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\ProgramData\Modelos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\ProgramData\Menu Iniciar
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\ProgramData\Documentos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\ProgramData\Dados de Aplicativos
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Program Files\Common Files\Sistema
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Program Files\Arquivos Comuns
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Documents and Settings
2017-12-13 01:40 - 2017-12-13 01:40 - 000000000 _SHDL C:\Arquivos de Programas
2017-12-13 01:37 - 2018-01-02 21:16 - 000579320 _____ C:\DUMP6b5c.tmp
2017-12-07 16:22 - 2017-12-07 16:22 - 000131544 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-12-07 16:22 - 2017-12-07 16:22 - 000107984 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-12-07 16:21 - 2017-12-07 16:21 - 000268240 _____ C:\WINDOWS\system32\igfxCPL.cpl
2017-12-07 11:46 - 2017-12-07 11:46 - 000756652 _____ C:\WINDOWS\system32\cp_resources.bin
2017-11-09 04:38 - 2018-01-03 23:44 - 001682288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-11-09 04:38 - 2018-01-03 23:44 - 000226760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-11-09 04:38 - 2017-11-09 04:38 - 001997752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438813.dll
2017-11-09 04:38 - 2017-11-09 04:38 - 001682544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438813.dll
2017-11-09 04:25 - 2018-01-03 23:44 - 004580320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-11-09 04:25 - 2018-01-03 23:44 - 003893792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-11-09 03:57 - 2018-01-03 23:44 - 000048282 _____ C:\WINDOWS\system32\nvinfo.pb
2017-11-02 18:15 - 2017-11-02 18:15 - 000928568 _____ C:\WINDOWS\system32\vulkan-1-1-0-65-0.dll
2017-11-02 18:15 - 2017-11-02 18:15 - 000798520 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-65-0.dll
2017-11-02 18:15 - 2017-11-02 18:15 - 000490808 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-65-0.exe
2017-11-02 18:14 - 2017-11-02 18:14 - 000591672 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-65-0.exe

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-01-10 19:00 - 2017-09-30 12:29 - 000844710 _____ C:\WINDOWS\system32\prfh0416.dat
2018-01-10 19:00 - 2017-09-30 12:29 - 000207460 _____ C:\WINDOWS\system32\prfc0416.dat
2018-01-10 19:00 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-01-10 18:52 - 2017-09-29 06:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-01-10 18:49 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-01-10 02:16 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\rescache
2018-01-09 19:56 - 2017-09-29 11:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-09 19:55 - 2017-09-29 11:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-09 19:55 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-09 19:50 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-01-09 19:50 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-01-08 14:13 - 2017-09-29 11:44 - 000000000 ____D C:\WINDOWS\INF
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\Provisioning
2018-01-06 15:45 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-01-06 15:45 - 2017-09-29 06:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-01-05 14:19 - 2017-09-29 11:41 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-01-05 14:18 - 2017-09-29 11:41 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-01-05 14:18 - 2017-09-29 11:41 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-01-05 14:11 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-01-05 14:11 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-12-31 06:04 - 2017-09-29 11:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-12-29 20:12 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-12-22 11:45 - 2017-09-29 11:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-22 11:45 - 2017-09-29 11:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-20 09:26 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-12-16 12:02 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\appcompat
2017-12-15 04:10 - 2017-09-29 11:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-12-15 04:08 - 2017-09-29 11:49 - 000000000 ____D C:\WINDOWS\Setup
2017-12-15 04:08 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\spool
2017-12-15 04:08 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\System
2017-12-15 04:08 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\Help
2017-12-15 04:08 - 2017-09-29 11:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-12-15 04:08 - 2015-10-30 05:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-12-15 04:05 - 2017-09-30 12:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\te-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\si-LK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\or-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\km-KH
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\is-IS
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\id-ID
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\be-BY
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\as-IN
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\am-ET
2017-12-15 04:05 - 2017-09-30 12:30 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2017-12-15 04:05 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-12-15 04:05 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-12-15 04:05 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-12-15 04:05 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-12-15 04:05 - 2017-09-29 11:46 - 000000000 ____D C:\Program Files\Windows Defender
2017-12-15 04:05 - 2017-09-29 11:46 - 000000000 ____D C:\PerfLogs
2017-12-15 03:32 - 2017-09-29 11:46 - 000000000 ____D C:\Program Files\windows nt
2017-12-15 03:31 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-12-15 03:30 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\Registration
2017-12-15 03:30 - 2017-09-29 06:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-12-15 03:29 - 2017-09-29 11:46 - 000000000 __RHD C:\Users\Public\Libraries
2017-12-15 03:22 - 2017-09-29 11:46 - 000000000 ____D C:\Users\Todos os Usuários\USOPrivate
2017-12-15 03:22 - 2017-09-29 11:46 - 000000000 ____D C:\ProgramData\USOPrivate
2017-12-15 03:18 - 2017-09-29 06:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-12-15 03:16 - 2017-09-29 11:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
2017-12-15 03:16 - 2017-09-29 11:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel

==================== Arquivos na raiz de alguns diretórios =======

2017-09-29 11:42 - 2017-09-29 11:42 - 000001118 _____ () C:\Users\Extreme\IAyawb.bat
2017-12-29 20:13 - 2017-09-29 11:42 - 000000069 _____ () C:\Program Files (x86)\ofHBbceKDa
2017-12-29 20:13 - 2017-09-29 11:42 - 000000977 _____ () C:\Users\Extreme\AppData\Roaming\TAKElu
2017-09-29 11:42 - 2017-09-29 11:42 - 000000977 _____ () C:\Users\Extreme\AppData\Roaming\TAKElu.bat

Alguns arquivos em TEMP:
====================
2018-01-08 14:08 - 2017-10-27 14:06 - 000370296 _____ (NVIDIA Corporation) C:\Users\Extreme\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2018-01-05 18:43

==================== Fim de FRST.txt ============================

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Guilherme Mehl

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Abra o seu Bloco de Notas, copie (control + c) e cole (control + v) todo o texto que está abaixo:

 

CreateRestorePoint:
CloseProcesses:
2017-12-29 20:13 - 2017-09-29 11:42 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\OoaC.exe
2017-12-29 20:13 - 2017-09-29 11:42 - 000001118 _____ C:\Users\Extreme\IAyawb
2017-12-29 20:13 - 2017-09-29 11:42 - 000000977 _____ C:\Users\Extreme\AppData\Roaming\TAKElu
2017-12-29 20:13 - 2017-09-29 11:42 - 000000069 _____ C:\Program Files (x86)\ofHBbceKDa
2017-12-29 20:13 - 2017-09-29 11:42 - 000000053 _____ C:\WINDOWS\SysWOW64\YeLA
2017-09-29 11:42 - 2017-09-29 11:42 - 000000977 _____ () C:\Users\Extreme\AppData\Roaming\TAKElu.bat
Task: {10BD8C53-CF34-47E0-84E9-D9B4352695A3} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATENÇÃO
Task: {A4CE1CB1-1DEC-4F1A-8FC1-A9DEE2D48E80} - \aOrOBuRzkSmo -> Nenhum Arquivo <==== ATENÇÃO
Task: {ABCAFE15-1BEB-452A-A2C1-167C237CA2D5} - \MailRuUpdater -> Nenhum Arquivo <==== ATENÇÃO
Task: {B71134C2-1EA7-48D4-9184-8805D5A67AF8} - \ZHYU -> Nenhum Arquivo <==== ATENÇÃO
Task: {F7327DE1-3FC6-4EDF-A06A-D1A1752D58FD} - \EIIOiweOYA -> Nenhum Arquivo <==== ATENÇÃO
CMD: bitsadmin /reset /allusers
EmptyTemp:
  • Salve este arquivo na Área de Trabalho (Desktop) como fixlist.txt
  • Execute novamente o FRST e clique no botão Corrigir;
  • Aguarde... ao final será gerado o log Fixlog.txt em sua Área de Trabalho (Desktop).
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Turco Segue o Fixlog gerado.

 

 

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 02.01.2018
Executado por Extreme (11-01-2018 17:36:35) Run:1
Executando a partir de C:\Users\Extreme\Desktop
Perfis Carregados: Extreme (Perfis Disponíveis: Extreme)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
2017-12-29 20:13 - 2017-09-29 11:42 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\OoaC.exe
2017-12-29 20:13 - 2017-09-29 11:42 - 000001118 _____ C:\Users\Extreme\IAyawb
2017-12-29 20:13 - 2017-09-29 11:42 - 000000977 _____ C:\Users\Extreme\AppData\Roaming\TAKElu
2017-12-29 20:13 - 2017-09-29 11:42 - 000000069 _____ C:\Program Files (x86)\ofHBbceKDa
2017-12-29 20:13 - 2017-09-29 11:42 - 000000053 _____ C:\WINDOWS\SysWOW64\YeLA
2017-09-29 11:42 - 2017-09-29 11:42 - 000000977 _____ () C:\Users\Extreme\AppData\Roaming\TAKElu.bat
Task: {10BD8C53-CF34-47E0-84E9-D9B4352695A3} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATEN��O
Task: {A4CE1CB1-1DEC-4F1A-8FC1-A9DEE2D48E80} - \aOrOBuRzkSmo -> Nenhum Arquivo <==== ATEN��O
Task: {ABCAFE15-1BEB-452A-A2C1-167C237CA2D5} - \MailRuUpdater -> Nenhum Arquivo <==== ATEN��O
Task: {B71134C2-1EA7-48D4-9184-8805D5A67AF8} - \ZHYU -> Nenhum Arquivo <==== ATEN��O
Task: {F7327DE1-3FC6-4EDF-A06A-D1A1752D58FD} - \EIIOiweOYA -> Nenhum Arquivo <==== ATEN��O
CMD: bitsadmin /reset /allusers
EmptyTemp:
*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
C:\WINDOWS\OoaC.exe => movido com sucesso
C:\Users\Extreme\IAyawb => movido com sucesso
C:\Users\Extreme\AppData\Roaming\TAKElu => movido com sucesso
C:\Program Files (x86)\ofHBbceKDa => movido com sucesso
C:\WINDOWS\SysWOW64\YeLA => movido com sucesso
C:\Users\Extreme\AppData\Roaming\TAKElu.bat => movido com sucesso
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{10BD8C53-CF34-47E0-84E9-D9B4352695A3} => Não pode ser removido chave. ErrorCode1: 0x00000002
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{10BD8C53-CF34-47E0-84E9-D9B4352695A3}" => removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => chave não encontrado (a)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4CE1CB1-1DEC-4F1A-8FC1-A9DEE2D48E80}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4CE1CB1-1DEC-4F1A-8FC1-A9DEE2D48E80}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\aOrOBuRzkSmo" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{ABCAFE15-1BEB-452A-A2C1-167C237CA2D5}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABCAFE15-1BEB-452A-A2C1-167C237CA2D5}" => removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MailRuUpdater => chave não encontrado (a)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B71134C2-1EA7-48D4-9184-8805D5A67AF8}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B71134C2-1EA7-48D4-9184-8805D5A67AF8}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ZHYU" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F7327DE1-3FC6-4EDF-A06A-D1A1752D58FD}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F7327DE1-3FC6-4EDF-A06A-D1A1752D58FD}" => removido (a) com sucesso.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EIIOiweOYA" => removido (a) com sucesso.

========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {B6BEB339-85C0-4F5F-8D90-F5FDE75D406B}.
{5B2E2501-ECB5-4F70-A317-699CAB2251A8} canceled.
{B454725C-D0BE-4666-93B3-5CBD0E0123E5} canceled.
{B3E21EE5-26C3-49AE-ABC1-F6F03A84396F} canceled.
{E7522C16-AE40-400E-8868-B30FF0EFEA52} canceled.
{F19C8A01-2BBB-4E27-9A94-2ED2CF42702E} canceled.
{8F2A28B9-4B30-45F7-92D7-665C9F9B9827} canceled.
6 out of 7 jobs canceled.

========= Fim de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 50258350 B
Java, Flash, Steam htmlcache => 166331154 B
Windows/system/drivers => 362506 B
Edge => 2091055 B
Chrome => 790311686 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 5796 B
NetworkService => 30673010 B
Extreme => 300740222 B

RecycleBin => 1206098 B
EmptyTemp: => 1.3 GB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 17:38:43 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

Ok,

 

# Etapa nº 1 #
 
Baixe o AdwCleaner e salve em sua Área de trabalho (Desktop)

Execute o arquivo adwcleaner.exe

 

Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: VRIfczU.png
 

  • Clique na aba Opções e deixe marcado apenas "Restaurar Políticas do IE" e "Restaurar Políticas do Chrome"
  • Clique no botão Verificar e aguarde o exame finalizar.
  • Clique no botão Limpar.
  • Abrirá um bloco de notas com o resultado.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.
  • O log também será salvo em C:\AdwCleaner

NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar.
 
# Etapa nº 2 #
 

Desative temporariamente seu Antivírus

 

  • Segure o botão Ctrl e clique neste link para abrir o ESET Online Scanner em uma nova janela.
  • Clique neste botão SCAN NOW
  • Clique em Accept 
  • Clique em Start.
  • Marque: "Enable detection of potentially unwanted applications"
  • Clique em Hide Advanced settings e marque o seguinte:
    • Enable detection of potentially unsafe applications
    • Enable detection of suspicious applications
    • Scan archives
    • Enable Anti-Stealth technology
    • Clean threats automatically
  • Clique Change.. e marque também a caixa Computador.
  • Clique em Scan
  • Ele vai atualizar por conta própria, e escanear o computador. Tenha paciência, o processo pode demorar horas.
  • Quando o scan terminar, clique em List of found threats
  • Clique em Export to text file e salve o log na sua área de trabalho.
  • Clique em Back.
  • Clique em Finish.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Log do adwcleaner @Turco

Posto o log do ESET assim que ele terminar o scan

 


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AE298D-7E8A-4F53-BE55-15D2B065F6C0}
Deleted: [Key] - HKU\S-1-5-21-1417731217-2092515398-3923220243-1001\Software\AppDataLow\Software\Mail.Ru
Deleted: [Key] - HKCU\Software\AppDataLow\Software\Mail.Ru


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::TCP/IP settings cleared
::IE policies deleted
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [1394 B] - [2018/1/12 14:29:3]


########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Compartilhar este post


Link para o post
Compartilhar em outros sites

@Guilherme Mehl

 

Para finalizar:

 

# Etapa nº 1 #

 

Baixe o Delfix by Xplode e salve na sua área de trabalho.

 

Clique duas vezes no delfix.exe para executá-lo. Marque as caixas conforme imagem.

 

** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo delfix.exe, depois clique em execadmin.png.

 

2mez6ld.png

 

Clique no botão Executar.

 

Ao final será gerado um log, mas não é necessário postar.
 
# Etapa nº 2 #
 
imageproxy.php?img=http%3A%2F%2Fi65.tiny Versões antigas de programas têm vulnerabilidades que alguns malwares podem usar para infectar o seu sistema.
 
Por isso, é recomendável atualizar os programas que o Security Check apontou como desatualizados (os updates opcionais ficam ao seu critério).
 
Basta clicar no Download Update de cada aviso, que irá para o site do desenvolvedor.

<<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×