Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
caiocosta2008

PUM.Dns encontrado no RogueKiller

Recommended Posts

Boa noite. Hoje de tarde fui fazer uma varredura, como faço normalmente, com o Mcafee antes de entrar na minha steam, porém ele ficou travado no 1% sem analisar nenhum arquivo por uns 10 minutos. Então eu reiniciei o computador no modo de segurança, por medo de ser algum vírus e tentei uma nova varredura. No modo de segurança o Mcafee rodou normalmente, porém ele não encontrou nada. Como eu achei estranho resolvei rodar o RogueKiller, pois uma vez tive um problema parecido e ele resolveu. Após roda-lo ele encontrou dois arquivos PUM.Dns, selecioneis para excluir os dois e reiniciei o computador novamente. Após o computados ter reiniciado no modo normal tentei rodar o Mcafee no modo quick scan so para ver se tinha voltado a funcionar, porém ele continuava com o mesmo problema de ficar travado no 1% (acho q ficava a mensagem "verificando rootkit"). Achando que poderia ser um problema no próprio Mcafee resolvi reinstala-lo, porém ao rodar o programa de instalação, após desinstalar a versão antiga e reiniciar o computador o instalador trava no meio da instalação, bugando todo o computador e fazendo com que tenha que ser desligado pelo botão de forca. Despois disso rodei novamente o RogueKiller e vi que os dois arquivos PUM.Dns continuam la mesmo eu tendo deletado. Eu não sei se o problema necessariamente no meu computador são esse arquivos PUM.Dns, mas eu acredito que tenha alguma coisa, pois mais tarde recebi uma notificação no celular que alguém tentou logar com meu facebook no Arkansas. Agradeço desde já.

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @caiocosta2008

 

Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.

 

Por favor, atente para o seguinte:

  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Sempre coloque suas respostas neste tópico... Não abra outro!
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Respeite a ordem das instruções passadas.

Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

# Etapa nº 1 #
 
Baixe o AdwCleaner e salve em sua Área de trabalho (Desktop)

Execute o arquivo adwcleaner.exe Como Administrador

  • Clique na aba Opções e deixe marcado apenas "Restaurar Políticas do IE" e "Restaurar Políticas do Chrome"
  • Clique no botão Verificar e aguarde o exame finalizar.
  • Clique no botão Limpar.
  • Abrirá um bloco de notas com o resultado.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.
  • O log também será salvo em C:\AdwCleaner


NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar.
 
# Etapa nº 2 #
 
Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom dia,  seguem os logs

 

# AdwCleaner 7.0.7.0 - Logfile created on Tue Jan 30 10:46:31 2018
# Updated on 2018/18/01 by Malwarebytes
# Running on Windows 10 Home Single Language (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::IE policies deleted
::Chrome policies deleted
::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1147 B] - [2017/9/21 20:23:2]
C:/AdwCleaner/AdwCleaner[C1].txt - [1414 B] - [2017/11/6 23:8:27]
C:/AdwCleaner/AdwCleaner[C2].txt - [1549 B] - [2017/11/23 3:50:0]
C:/AdwCleaner/AdwCleaner[C3].txt - [3893 B] - [2018/1/14 14:58:38]
C:/AdwCleaner/AdwCleaner[C4].txt - [2241 B] - [2018/1/26 16:34:25]
C:/AdwCleaner/AdwCleaner[S0].txt - [961 B] - [2017/9/21 20:22:25]
C:/AdwCleaner/AdwCleaner[S1].txt - [1095 B] - [2017/9/23 4:59:1]
C:/AdwCleaner/AdwCleaner[S2].txt - [1161 B] - [2017/10/13 2:16:57]
C:/AdwCleaner/AdwCleaner[S3].txt - [1229 B] - [2017/11/6 23:8:6]
C:/AdwCleaner/AdwCleaner[S4].txt - [1362 B] - [2017/11/23 3:31:39]
C:/AdwCleaner/AdwCleaner[S5].txt - [3828 B] - [2018/1/14 14:56:41]
C:/AdwCleaner/AdwCleaner[S6].txt - [2080 B] - [2018/1/26 16:32:31]
C:/AdwCleaner/AdwCleaner[S7].txt - [1769 B] - [2018/1/30 10:44:47]


########## EOF - C:\AdwCleaner\AdwCleaner[C5].txt ##########

 

~ ZHPCleaner v2018.1.29.20 by Nicolas Coolman (2018/01/29)
~ Run by caioc (Administrator)  (30/01/2018 10:23:25)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\caioc\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\caioc\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home Single Language, 64-bit  (Build 16299)


---\\  Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (0)
~ No malicious or unnecessary items found.


---\\  Hosts file (1)
~ The hosts file is legitimate (21)


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (0)
~ No malicious or unnecessary items found.


---\\  Registry ( Key, Value, Data) (0)
~ No malicious or unnecessary items found.


---\\  Other deletions. (33)
~ Registry Keys Tracing deleted (33)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)
~ Browser not found (Opera Software)


---\\ Statistics
~ Items scanned : 624
~ Items found : 0
~ Items cancelled : 0
~ Items options : 0/7
~ Space saving (bytes) : 0


~ End of clean in 00h00mn03s
~====================
ZHPCleaner-[R]-30012018-10_23_28.txt
ZHPCleaner--30012018-09_28_39.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @caiocosta2008

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o Farbar Recovery Scan Tool e salve-o na Área de Trabalho (Desktop).


32 bit (x86) ou 64 bit (x64)

  • Clique com o botão direito e escolha Executar como Administrador;
  • Marque a caixa Arquivos 90 dias,  e clique no botão Examinar;
  • Aguarde e ao final os logs FRST.txt e Addition.txt serão salvos em sua Área de Trabalho (Desktop);
  • Selecione, copie e cole o conteúdo do log  FRST.txt em sua próxima resposta;
  • Anexe o log Addition.txt.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 27.01.2018
Executado por caioc (administrador) em DESKTOP-FHE277N (02-02-2018 17:18:54)
Executando a partir de C:\Users\caioc\Desktop
Perfis Carregados: caioc (Perfis Disponíveis: defaultuser0 & caioc)
Platform: Windows 10 Home Single Language Versão 1709 16299.192 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Edge)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Microsoft Corporation) C:\Windows\System32\wscript.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_453d2af85bf95078\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_453d2af85bf95078\IntelCpHDCPSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Scarlet.Crush Productions) C:\Program Files\Scarlet Crush Productions\ScpServer\bin\ScpService.exe
(McAfee LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee LLC) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(McAfee LLC) C:\Windows\System32\mfevtps.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_453d2af85bf95078\IntelCpHeciSvc.exe
(McAfee LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
() C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_453d2af85bf95078\igfxEM.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Flux Software LLC) C:\Users\caioc\AppData\Local\FluxSoftware\Flux\flux.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9226752 2017-05-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-05-04] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3075552 2015-04-29] (Dell Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2016-04-28] (Intel Corporation)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-05-04] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Audio Ltd.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-22] (Oracle Corporation)
HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation)
HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\...\Run: [f.lux] => C:\Users\caioc\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-05] (Flux Software LLC)
HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{44cdfd14-9442-4924-afb5-dbd3ac7e6f2b}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
SearchScopes: HKU\S-1-5-21-3575996810-2506534700-3124070724-1001 -> DefaultScope {B902D1F1-3986-453C-BA6C-92D0E126FC89} URL =
SearchScopes: HKU\S-1-5-21-3575996810-2506534700-3124070724-1001 -> {B902D1F1-3986-453C-BA6C-92D0E126FC89} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-01-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-08-01] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-01] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-01-22] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-08-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-08-21] (NVIDIA Corporation)
FF Plugin-x32: @ptc.com/IsoView -> C:\Program Files (x86)\Common Files\PTC\npisoview.dll [2015-11-12] (PTC Inc.)
FF Plugin-x32: @ptc.com/ProductViewLite -> C:\Program Files (x86)\Common Files\PTC\np6_pvapplite9.dll [2015-11-12] (PTC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default [2018-02-02]
CHR Extension: (Apresentações) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Documentos) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-23]
CHR Extension: (YouTube) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-23]
CHR Extension: (Adobe Acrobat) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-06-12]
CHR Extension: (Planilhas) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Documentos Google off-line) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-26]
CHR Extension: (AdBlock) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-02-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-25]
CHR Extension: (Gmail) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-23]
CHR Extension: (Chrome Media Router) - C:\Users\caioc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AtherosSvc; C:\WINDOWS\system32\DRIVERS\AdminService.exe [414728 2017-11-08] (Windows (R) Win 7 DDK provider)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-13] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7780528 2018-01-15] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-20] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-20] (Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [208792 2017-12-14] (Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3294608 2017-12-14] (Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217488 2017-12-14] (Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc.)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [87888 2016-05-19] ()
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [232320 2017-11-21] (Dell Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
R2 Ds3Service; C:\Program Files\Scarlet Crush Productions\ScpServer\bin\ScpService.exe [381952 2014-04-02] (Scarlet.Crush Productions) [Arquivo não assinado]
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1585784 2016-06-03] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18504 2016-04-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [357840 2017-09-29] (McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [509904 2017-09-29] (McAfee LLC)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [466384 2017-09-29] (McAfee LLC)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2123104 2017-11-22] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3002728 2017-11-22] (Electronic Arts)
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [147792 2017-08-11] (Razer Inc)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2017-05-04] (Realtek Semiconductor)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [185216 2017-08-22] (Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [252176 2017-08-31] (Razer Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [41432 2017-12-22] (Dell Inc.)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [615384 2017-02-07] (Waves Audio Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-01-27] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-01-27] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [70544 2017-11-08] (Qualcomm)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77280 2017-10-19] (McAfee LLC)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [41608 2017-12-14] (Dell Inc.)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2017-12-14] (Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [70208 2016-05-19] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [65088 2016-05-19] (Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-04-01] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-04-01] (Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [343608 2016-05-19] (Intel Corporation)
S3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [84264 2015-06-17] (Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193968 2018-01-29] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-01-30] (Malwarebytes)
R3 mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [492512 2017-10-19] (McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [355808 2017-10-19] (McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [84016 2017-10-19] (McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [506336 2017-10-19] (McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [938464 2017-10-19] (McAfee LLC)
R3 mfeplk; C:\WINDOWS\system32\drivers\mfeplk.sys [115168 2017-10-19] (McAfee LLC)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [125688 2017-08-14] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252896 2017-10-19] (McAfee LLC)
S3 MFE_RR; C:\Users\caioc\AppData\Local\Temp\mfe_rr.sys [24120 2018-01-27] (McAfee, Inc.) <==== ATENÇÃO
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_075f9899ae0e17a2\nvlddmkm.sys [15600248 2017-08-22] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-11-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-11-15] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [777944 2016-03-21] (Realsil Semiconductor Corporation)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [139704 2017-08-19] (Razer, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-01-27] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2018-01-27] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-01-27] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-02-02 17:18 - 2018-02-02 17:19 - 000024121 _____ C:\Users\caioc\Desktop\FRST.txt
2018-02-02 17:17 - 2018-02-02 17:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-02-02 06:04 - 2018-02-02 06:04 - 002393088 _____ (Farbar) C:\Users\caioc\Desktop\FRST64.exe
2018-02-01 22:00 - 2018-02-01 22:00 - 000003664 _____ C:\WINDOWS\System32\Tasks\Pcd.DriverScan.3MW71
2018-02-01 18:41 - 2018-02-01 18:41 - 000000000 ___HD C:\OneDriveTemp
2018-01-30 10:36 - 2018-01-30 10:36 - 000001540 _____ C:\Users\caioc\Desktop\ZHPCleaner.txt
2018-01-30 09:47 - 2018-01-30 09:47 - 000000000 _____ C:\Users\caioc\Desktop\Novo Documento de Texto.txt
2018-01-30 08:55 - 2018-01-30 10:36 - 000000000 ____D C:\Users\caioc\AppData\Roaming\ZHP
2018-01-30 08:55 - 2018-01-30 08:55 - 000000879 _____ C:\Users\caioc\Desktop\ZHPCleaner.lnk
2018-01-30 08:55 - 2018-01-30 08:55 - 000000000 ____D C:\Users\caioc\AppData\Local\ZHP
2018-01-30 08:47 - 2018-01-30 08:47 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-01-30 00:56 - 2018-02-02 17:09 - 000000000 ____D C:\Users\caioc\Desktop\clean
2018-01-29 00:12 - 2018-01-29 00:12 - 000193968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-01-28 15:56 - 2018-01-28 15:57 - 000000016 _____ C:\InjectIntoProcess crash
2018-01-27 11:50 - 2018-01-27 11:50 - 036961664 _____ (McAfee, Inc.) C:\Users\caioc\Desktop\Setup_serial_4lzq1mAt6NFLBINMmvZqjA2_key_affid_739_akey.exe
2018-01-27 04:08 - 2018-01-27 04:08 - 000234238 _____ C:\Users\caioc\Documents\cc_20180127_040805.reg
2018-01-27 02:51 - 2018-01-27 02:51 - 000025399 _____ C:\ZA-Scan.txt
2018-01-27 02:43 - 2018-01-27 02:43 - 000000000 ____D C:\zoek_backup
2018-01-27 01:23 - 2018-01-27 01:23 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2018-01-27 00:53 - 2018-01-27 00:53 - 000000000 ____D C:\Program Files\Common Files\McAfee
2018-01-26 21:37 - 2018-01-26 21:37 - 001368576 _____ C:\Users\caioc\Desktop\ZA-Scan.exe
2018-01-26 20:25 - 2018-02-02 17:18 - 000000000 ____D C:\FRST
2018-01-26 19:53 - 2018-01-29 00:12 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2018-01-26 19:53 - 2018-01-26 19:53 - 000001922 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-01-26 19:53 - 2018-01-26 19:53 - 000000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2018-01-26 19:53 - 2018-01-26 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-01-26 19:53 - 2018-01-26 19:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-01-26 19:53 - 2018-01-26 19:53 - 000000000 ____D C:\Program Files\Malwarebytes
2018-01-26 19:39 - 2018-01-26 19:39 - 000000000 ___HD C:\$SysReset
2018-01-26 15:37 - 2018-01-26 18:15 - 000359532 _____ C:\WINDOWS\ntbtlog.txt
2018-01-26 15:37 - 2018-01-26 15:37 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-01-25 19:02 - 2018-01-25 19:02 - 000000000 ____D C:\Users\caioc\AppData\LocalLow\uTorrent
2018-01-25 08:50 - 2017-09-29 16:41 - 000466384 _____ (McAfee LLC) C:\WINDOWS\system32\mfevtps.exe
2018-01-25 08:43 - 2018-01-25 08:43 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3575996810-2506534700-3124070724-1001
2018-01-25 08:43 - 2018-01-25 08:43 - 000002375 _____ C:\Users\caioc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-01-24 16:00 - 2018-01-24 16:00 - 000750773 _____ C:\Users\caioc\Documents\Rg pai e mae.pdf
2018-01-24 15:59 - 2018-01-24 15:59 - 009169199 _____ C:\Users\caioc\Documents\Documentação_Locação_Caio (1).pdf
2018-01-24 15:57 - 2018-01-24 15:57 - 001933506 _____ C:\Users\caioc\Documents\Historico Escolar Colegial.pdf
2018-01-23 20:49 - 2018-01-23 20:49 - 000058725 _____ C:\Users\caioc\Documents\HistoricoEscolar.pdf
2018-01-23 12:23 - 2018-01-23 12:23 - 000043176 _____ C:\Users\caioc\Documents\AtestadoMatricula.pdf
2018-01-23 12:02 - 2018-01-23 12:02 - 000015784 _____ C:\Users\caioc\Documents\Relação de Documentos.xlsx
2018-01-21 23:32 - 2018-01-26 14:13 - 000002102 _____ C:\Users\caioc\Desktop\Rkill.txt
2018-01-19 15:58 - 2018-01-19 15:58 - 000000000 ____D C:\Users\caioc\AppData\LocalLow\Cathouse Tale Team
2018-01-14 15:43 - 2018-01-14 15:43 - 000000000 ____D C:\Program Files (x86)\Dell Update
2018-01-11 15:06 - 2017-12-22 11:45 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-01-11 15:06 - 2017-12-22 11:45 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-11 12:33 - 2018-01-19 14:33 - 000000032 _____ C:\Users\caioc\Desktop\estag.txt
2018-01-10 18:31 - 2018-01-10 18:31 - 000000000 ____D C:\Users\Todos os Usuários\Dell Inc
2018-01-10 18:31 - 2018-01-10 18:31 - 000000000 ____D C:\ProgramData\Dell Inc
2018-01-10 01:04 - 2018-01-10 01:19 - 000000000 ____D C:\Users\caioc\AppData\LocalLow\by redamz
2018-01-09 20:11 - 2018-01-10 00:44 - 000000000 ____D C:\Users\caioc\AppData\Local\PlaceholderTileLogoFolder
2018-01-06 17:55 - 2018-01-06 17:55 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-01-06 17:53 - 2018-01-06 17:53 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-01-06 17:53 - 2018-01-06 17:53 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-01-06 17:51 - 2018-01-01 10:51 - 001055128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-01-06 17:51 - 2018-01-01 10:51 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
2018-01-06 17:51 - 2018-01-01 10:49 - 008605080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-06 17:51 - 2018-01-01 10:48 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-01-06 17:51 - 2018-01-01 10:48 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-06 17:51 - 2018-01-01 10:47 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-06 17:51 - 2018-01-01 10:46 - 002709704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-06 17:51 - 2018-01-01 10:46 - 000471960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-06 17:51 - 2018-01-01 10:45 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-06 17:51 - 2018-01-01 10:45 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-06 17:51 - 2018-01-01 10:45 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-06 17:51 - 2018-01-01 10:42 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-06 17:51 - 2018-01-01 10:40 - 001206680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-01-06 17:51 - 2018-01-01 10:39 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-06 17:51 - 2018-01-01 10:39 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-01-06 17:51 - 2018-01-01 10:39 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-06 17:51 - 2018-01-01 10:37 - 001426664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-01-06 17:51 - 2018-01-01 10:36 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-06 17:51 - 2018-01-01 10:35 - 001170008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-01-06 17:51 - 2018-01-01 10:34 - 007385088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-06 17:51 - 2018-01-01 10:33 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-01-06 17:51 - 2018-01-01 10:32 - 004481240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-01-06 17:51 - 2018-01-01 10:27 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-06 17:51 - 2018-01-01 10:26 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-06 17:51 - 2018-01-01 10:25 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-01-06 17:51 - 2018-01-01 10:25 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-06 17:51 - 2018-01-01 09:53 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-01-06 17:51 - 2018-01-01 09:45 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-01-06 17:51 - 2018-01-01 09:45 - 002192624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-06 17:51 - 2018-01-01 09:42 - 006479552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-01-06 17:51 - 2018-01-01 09:42 - 004644912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-01-06 17:51 - 2018-01-01 09:42 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-01-06 17:51 - 2018-01-01 09:42 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-01-06 17:51 - 2018-01-01 09:37 - 025247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-06 17:51 - 2018-01-01 09:34 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-06 17:51 - 2018-01-01 09:25 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-01-06 17:51 - 2018-01-01 09:25 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-01-06 17:51 - 2018-01-01 09:24 - 003668480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-06 17:51 - 2018-01-01 09:24 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-01-06 17:51 - 2018-01-01 09:23 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-01-06 17:51 - 2018-01-01 09:23 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-01-06 17:51 - 2018-01-01 09:21 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-06 17:51 - 2018-01-01 09:20 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-06 17:51 - 2018-01-01 09:20 - 018917888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-01-06 17:51 - 2018-01-01 09:19 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-01-06 17:51 - 2018-01-01 09:19 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-01-06 17:51 - 2018-01-01 09:19 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-01-06 17:51 - 2018-01-01 09:19 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-06 17:51 - 2018-01-01 09:18 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-06 17:51 - 2018-01-01 09:18 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-06 17:51 - 2018-01-01 09:18 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-01-06 17:51 - 2018-01-01 09:17 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-06 17:51 - 2018-01-01 09:17 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-06 17:51 - 2018-01-01 09:17 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-06 17:51 - 2018-01-01 09:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-06 17:51 - 2018-01-01 09:16 - 003676672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-06 17:51 - 2018-01-01 09:16 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-06 17:51 - 2018-01-01 09:16 - 000812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-06 17:51 - 2018-01-01 09:16 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-06 17:51 - 2018-01-01 09:16 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-06 17:51 - 2018-01-01 09:16 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-06 17:51 - 2018-01-01 09:15 - 012687872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-01-06 17:51 - 2018-01-01 09:15 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-01-06 17:51 - 2018-01-01 09:15 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-06 17:51 - 2018-01-01 09:14 - 023655936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-06 17:51 - 2018-01-01 09:14 - 002465280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-01-06 17:51 - 2018-01-01 09:13 - 013657600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-01-06 17:51 - 2018-01-01 09:13 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-06 17:51 - 2018-01-01 09:13 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-06 17:51 - 2018-01-01 09:12 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-06 17:51 - 2018-01-01 09:12 - 001547776 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-06 17:51 - 2018-01-01 09:12 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-06 17:51 - 2018-01-01 09:11 - 008108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-06 17:51 - 2018-01-01 09:11 - 004748288 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-06 17:51 - 2018-01-01 09:11 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-06 17:51 - 2018-01-01 09:11 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-01-06 17:51 - 2018-01-01 09:11 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-06 17:51 - 2018-01-01 09:09 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-01-06 17:51 - 2018-01-01 09:09 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-06 17:51 - 2018-01-01 09:08 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-01-06 17:50 - 2018-01-01 15:15 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-06 17:50 - 2018-01-01 10:54 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-06 17:50 - 2018-01-01 10:53 - 001090984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-06 17:50 - 2018-01-01 10:52 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-01-06 17:50 - 2018-01-01 10:51 - 001414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-06 17:50 - 2018-01-01 10:51 - 001209240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-06 17:50 - 2018-01-01 10:51 - 000191816 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-01-06 17:50 - 2018-01-01 10:50 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-01-06 17:50 - 2018-01-01 10:50 - 000780464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-06 17:50 - 2018-01-01 10:50 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-01-06 17:50 - 2018-01-01 10:50 - 000077208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-01-06 17:50 - 2018-01-01 10:49 - 000599448 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-01-06 17:50 - 2018-01-01 10:49 - 000319352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-06 17:50 - 2018-01-01 10:49 - 000292376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-06 17:50 - 2018-01-01 10:48 - 000382360 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-06 17:50 - 2018-01-01 10:47 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-06 17:50 - 2018-01-01 10:46 - 000898216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-01-06 17:50 - 2018-01-01 10:46 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-01-06 17:50 - 2018-01-01 10:43 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-06 17:50 - 2018-01-01 10:43 - 000367336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-06 17:50 - 2018-01-01 10:43 - 000062872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-06 17:50 - 2018-01-01 10:42 - 001029016 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2018-01-06 17:50 - 2018-01-01 10:42 - 000494488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-06 17:50 - 2018-01-01 10:42 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-06 17:50 - 2018-01-01 10:42 - 000109976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-06 17:50 - 2018-01-01 10:41 - 007676296 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-06 17:50 - 2018-01-01 10:41 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-06 17:50 - 2018-01-01 10:41 - 000549552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-06 17:50 - 2018-01-01 10:39 - 000677784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-06 17:50 - 2018-01-01 10:39 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-01-06 17:50 - 2018-01-01 10:38 - 003904808 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-01-06 17:50 - 2018-01-01 10:38 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-06 17:50 - 2018-01-01 10:38 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-01-06 17:50 - 2018-01-01 10:38 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-01-06 17:50 - 2018-01-01 10:38 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2018-01-06 17:50 - 2018-01-01 10:37 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-01-06 17:50 - 2018-01-01 10:36 - 000413888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-01-06 17:50 - 2018-01-01 10:36 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
2018-01-06 17:50 - 2018-01-01 10:36 - 000113560 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-06 17:50 - 2018-01-01 10:36 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-06 17:50 - 2018-01-01 10:35 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-01-06 17:50 - 2018-01-01 10:34 - 001336344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-06 17:50 - 2018-01-01 10:34 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-01-06 17:50 - 2018-01-01 10:34 - 000087384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-01-06 17:50 - 2018-01-01 10:33 - 002773400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-06 17:50 - 2018-01-01 10:32 - 000617304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-01-06 17:50 - 2018-01-01 10:27 - 000163736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-06 17:50 - 2018-01-01 10:26 - 000081304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-06 17:50 - 2018-01-01 10:23 - 021352144 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-06 17:50 - 2018-01-01 10:21 - 001103768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-06 17:50 - 2018-01-01 10:21 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-06 17:50 - 2018-01-01 10:06 - 000311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-06 17:50 - 2018-01-01 10:03 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-06 17:50 - 2018-01-01 10:03 - 000650328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-01-06 17:50 - 2018-01-01 10:03 - 000566664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-01-06 17:50 - 2018-01-01 10:03 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2018-01-06 17:50 - 2018-01-01 09:49 - 000481464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-06 17:50 - 2018-01-01 09:49 - 000258808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-01-06 17:50 - 2018-01-01 09:46 - 003485392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-01-06 17:50 - 2018-01-01 09:46 - 000289816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-06 17:50 - 2018-01-01 09:45 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-01-06 17:50 - 2018-01-01 09:45 - 000450928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-01-06 17:50 - 2018-01-01 09:43 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-06 17:50 - 2018-01-01 09:42 - 001003152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-06 17:50 - 2018-01-01 09:42 - 000386424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2018-01-06 17:50 - 2018-01-01 09:42 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-01-06 17:50 - 2018-01-01 09:42 - 000074992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2018-01-06 17:50 - 2018-01-01 09:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-01-06 17:50 - 2018-01-01 09:25 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-06 17:50 - 2018-01-01 09:25 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
2018-01-06 17:50 - 2018-01-01 09:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
2018-01-06 17:50 - 2018-01-01 09:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-06 17:50 - 2018-01-01 09:24 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-06 17:50 - 2018-01-01 09:23 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-01-06 17:50 - 2018-01-01 09:23 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-06 17:50 - 2018-01-01 09:23 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-01-06 17:50 - 2018-01-01 09:23 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
2018-01-06 17:50 - 2018-01-01 09:23 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-06 17:50 - 2018-01-01 09:23 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-01-06 17:50 - 2018-01-01 09:23 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-06 17:50 - 2018-01-01 09:22 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-01-06 17:50 - 2018-01-01 09:22 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-01-06 17:50 - 2018-01-01 09:22 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-06 17:50 - 2018-01-01 09:21 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-06 17:50 - 2018-01-01 09:21 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-01-06 17:50 - 2018-01-01 09:21 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-06 17:50 - 2018-01-01 09:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-06 17:50 - 2018-01-01 09:21 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2018-01-06 17:50 - 2018-01-01 09:21 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-06 17:50 - 2018-01-01 09:21 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-06 17:50 - 2018-01-01 09:20 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-06 17:50 - 2018-01-01 09:20 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-01-06 17:50 - 2018-01-01 09:20 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-06 17:50 - 2018-01-01 09:20 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 008014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-06 17:50 - 2018-01-01 09:19 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-06 17:50 - 2018-01-01 09:19 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-06 17:50 - 2018-01-01 09:19 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-01-06 17:50 - 2018-01-01 09:19 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-06 17:50 - 2018-01-01 09:19 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-06 17:50 - 2018-01-01 09:18 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 006564864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-06 17:50 - 2018-01-01 09:17 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-06 17:50 - 2018-01-01 09:17 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000966656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000956928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-01-06 17:50 - 2018-01-01 09:16 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 000970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-06 17:50 - 2018-01-01 09:15 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-06 17:50 - 2018-01-01 09:14 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-01-06 17:50 - 2018-01-01 09:14 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-06 17:50 - 2018-01-01 09:14 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-06 17:50 - 2018-01-01 09:14 - 000985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-06 17:50 - 2018-01-01 09:14 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-01-06 17:50 - 2018-01-01 09:14 - 000870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-01-06 17:50 - 2018-01-01 09:13 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-06 17:50 - 2018-01-01 09:13 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-06 17:50 - 2018-01-01 09:13 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-06 17:50 - 2018-01-01 09:13 - 001474560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-06 17:50 - 2018-01-01 09:13 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-06 17:50 - 2018-01-01 09:12 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-01-06 17:50 - 2018-01-01 09:12 - 001573376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-06 17:50 - 2018-01-01 09:12 - 000760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-06 17:50 - 2018-01-01 09:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 003165696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 002082304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-06 17:50 - 2018-01-01 09:11 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 001597952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 001343488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 001231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-06 17:50 - 2018-01-01 09:11 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-06 17:50 - 2018-01-01 09:10 - 003126272 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-01-06 17:50 - 2018-01-01 09:10 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-06 17:50 - 2018-01-01 09:10 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-01-06 17:50 - 2018-01-01 09:09 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-01-06 17:50 - 2018-01-01 09:09 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-01-06 17:50 - 2018-01-01 09:08 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-06 17:50 - 2018-01-01 09:08 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-06 17:50 - 2018-01-01 09:08 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-06 17:50 - 2018-01-01 09:06 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-06 17:50 - 2018-01-01 09:05 - 002510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-01-06 17:50 - 2018-01-01 09:05 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-01-06 17:50 - 2018-01-01 09:05 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-04 17:58 - 2018-01-04 18:00 - 000000000 ____D C:\Users\caioc\AppData\Local\SniperV2
2018-01-03 18:33 - 2018-01-08 04:15 - 000000000 ____D C:\Users\caioc\AppData\Roaming\RenPy
2018-01-03 15:43 - 2018-01-03 15:43 - 000000000 ____D C:\Users\caioc\AppData\Local\BOTN
2018-01-03 02:53 - 2018-01-03 02:53 - 000000000 ____D C:\Users\caioc\AppData\LocalLow\TeamNimbus
2017-12-27 10:32 - 2017-12-27 10:32 - 000000000 ____D C:\Users\caioc\Documents\FeedbackHub
2017-12-22 03:49 - 2018-01-27 11:49 - 000000125 _____ C:\Users\caioc\Desktop\Mega.txt
2017-12-19 20:46 - 2017-12-19 20:46 - 000000000 ____D C:\Users\caioc\AppData\Roaming\ModLauncherWPF
2017-12-19 20:46 - 2017-12-19 20:46 - 000000000 ____D C:\Users\caioc\AppData\Roaming\FiraxisLive
2017-12-19 17:33 - 2017-12-19 17:33 - 000440440 _____ C:\Users\caioc\Desktop\Matricula 2018.pdf
2017-12-14 11:16 - 2017-12-14 11:16 - 000041608 _____ (Dell Inc.) C:\WINDOWS\system32\Drivers\DDDriver64Dcsa.sys
2017-12-14 11:16 - 2017-12-14 11:16 - 000041208 _____ (Dell Computer Corporation) C:\WINDOWS\system32\Drivers\DellProf.sys
2017-12-13 11:54 - 2017-12-08 04:52 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2017-12-13 11:54 - 2017-12-07 21:34 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-12-13 11:54 - 2017-12-07 21:34 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-12-13 11:54 - 2017-12-07 21:28 - 000710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-12-13 11:54 - 2017-12-07 21:28 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2017-12-13 11:54 - 2017-12-07 21:27 - 004504456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-12-13 11:54 - 2017-12-07 21:26 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2017-12-13 11:54 - 2017-12-07 21:24 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2017-12-13 11:54 - 2017-12-07 21:24 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-12-13 11:54 - 2017-12-07 21:24 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-12-13 11:54 - 2017-12-07 21:22 - 001003104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-12-13 11:54 - 2017-12-07 21:22 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-12-13 11:54 - 2017-12-07 21:22 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2017-12-13 11:54 - 2017-12-07 21:16 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-12-13 11:54 - 2017-12-07 21:15 - 000721592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-12-13 11:54 - 2017-12-07 21:12 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2017-12-13 11:54 - 2017-12-07 20:56 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-12-13 11:54 - 2017-12-07 20:55 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-12-13 11:54 - 2017-12-07 20:55 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2017-12-13 11:54 - 2017-12-07 20:37 - 001145104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-12-13 11:54 - 2017-12-07 20:36 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2017-12-13 11:54 - 2017-12-07 20:33 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-12-13 11:54 - 2017-12-07 20:33 - 000592280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2017-12-13 11:54 - 2017-12-07 20:31 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-12-13 11:54 - 2017-12-07 20:12 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-13 11:54 - 2017-12-07 20:10 - 006466048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-12-13 11:54 - 2017-12-07 20:10 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 11:54 - 2017-12-07 20:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-13 11:54 - 2017-12-07 20:09 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
2017-12-13 11:54 - 2017-12-07 20:09 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2017-12-13 11:54 - 2017-12-07 20:09 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-13 11:54 - 2017-12-07 20:09 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-13 11:54 - 2017-12-07 20:09 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
2017-12-13 11:54 - 2017-12-07 20:08 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 11:54 - 2017-12-07 20:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-13 11:54 - 2017-12-07 20:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-13 11:54 - 2017-12-07 20:07 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2017-12-13 11:54 - 2017-12-07 20:07 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-13 11:54 - 2017-12-07 20:07 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 11:54 - 2017-12-07 20:07 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2017-12-13 11:54 - 2017-12-07 20:06 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2017-12-13 11:54 - 2017-12-07 20:06 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
2017-12-13 11:54 - 2017-12-07 20:06 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-13 11:54 - 2017-12-07 20:05 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-13 11:54 - 2017-12-07 20:05 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-13 11:54 - 2017-12-07 20:05 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2017-12-13 11:54 - 2017-12-07 20:04 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2017-12-13 11:54 - 2017-12-07 20:04 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-12-13 11:54 - 2017-12-07 20:03 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-12-13 11:54 - 2017-12-07 20:03 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-12-13 11:54 - 2017-12-07 20:03 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2017-12-13 11:54 - 2017-12-07 20:03 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-12-13 11:54 - 2017-12-07 20:03 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
2017-12-13 11:54 - 2017-12-07 20:02 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-12-13 11:54 - 2017-12-07 20:02 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-12-13 11:54 - 2017-12-07 20:02 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-12-13 11:54 - 2017-12-07 20:02 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2017-12-13 11:54 - 2017-12-07 20:01 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-12-13 11:54 - 2017-12-07 20:01 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2017-12-13 11:54 - 2017-12-07 20:01 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2017-12-13 11:54 - 2017-12-07 20:01 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2017-12-13 11:54 - 2017-12-07 20:00 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-12-13 11:54 - 2017-12-07 19:59 - 002105856 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-12-13 11:54 - 2017-12-07 19:59 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-12-13 11:54 - 2017-12-07 19:59 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-12-13 11:54 - 2017-12-07 19:58 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-12-13 11:54 - 2017-12-07 19:58 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-12-13 11:54 - 2017-12-07 19:58 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-12-13 11:54 - 2017-12-07 19:56 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-12-13 11:54 - 2017-12-07 19:56 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-12-13 11:54 - 2017-12-07 19:54 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-12-13 11:54 - 2017-11-26 18:35 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2017-12-13 11:54 - 2017-11-26 18:32 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2017-12-13 11:54 - 2017-11-26 18:15 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2017-12-13 11:54 - 2017-11-26 14:43 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2017-12-13 11:54 - 2017-11-26 11:45 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2017-12-13 11:54 - 2017-11-26 11:45 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-12-13 11:54 - 2017-11-26 11:45 - 000198888 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-12-13 11:54 - 2017-11-26 11:41 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-12-13 11:54 - 2017-11-26 11:38 - 001636376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-12-13 11:54 - 2017-11-26 11:32 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-12-13 11:54 - 2017-11-26 11:31 - 000187288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-12-13 11:54 - 2017-11-26 11:30 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-12-13 11:54 - 2017-11-26 11:29 - 003010720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-12-13 11:54 - 2017-11-26 11:29 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-12-13 11:54 - 2017-11-26 11:29 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-12-13 11:54 - 2017-11-26 11:29 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-12-13 11:54 - 2017-11-26 11:29 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-12-13 11:54 - 2017-11-26 11:29 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-12-13 11:54 - 2017-11-26 11:29 - 000436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-12-13 11:54 - 2017-11-26 11:28 - 001259344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-12-13 11:54 - 2017-11-26 11:28 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2017-12-13 11:54 - 2017-11-26 11:28 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-12-13 11:54 - 2017-11-26 11:28 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-12-13 11:54 - 2017-11-26 11:27 - 002446744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-12-13 11:54 - 2017-11-26 11:27 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2017-12-13 11:54 - 2017-11-26 11:27 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-12-13 11:54 - 2017-11-26 11:27 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-12-13 11:54 - 2017-11-26 11:26 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-12-13 11:54 - 2017-11-26 11:23 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-12-13 11:54 - 2017-11-26 11:23 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-12-13 11:54 - 2017-11-26 11:23 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2017-12-13 11:54 - 2017-11-26 11:22 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-12-13 11:54 - 2017-11-26 11:21 - 001585376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-12-13 11:54 - 2017-11-26 11:21 - 000654048 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-12-13 11:54 - 2017-11-26 10:57 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-12-13 11:54 - 2017-11-26 10:55 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-13 11:54 - 2017-11-26 10:55 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2017-12-13 11:54 - 2017-11-26 10:55 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2017-12-13 11:54 - 2017-11-26 10:55 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-12-13 11:54 - 2017-11-26 10:55 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-12-13 11:54 - 2017-11-26 10:55 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2017-12-13 11:54 - 2017-11-26 10:54 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-12-13 11:54 - 2017-11-26 10:54 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-12-13 11:54 - 2017-11-26 10:47 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-12-13 11:54 - 2017-11-26 10:43 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-12-13 11:54 - 2017-11-26 10:36 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-12-13 11:54 - 2017-11-26 10:36 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2017-12-13 11:54 - 2017-11-26 10:36 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-13 11:54 - 2017-11-26 10:35 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
2017-12-13 11:54 - 2017-11-26 10:35 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2017-12-13 11:54 - 2017-11-26 10:34 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2017-12-13 11:54 - 2017-11-26 10:33 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2017-12-13 11:54 - 2017-11-26 10:31 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-12-13 11:54 - 2017-11-26 10:31 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-12-13 11:54 - 2017-11-26 10:29 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-12-13 11:54 - 2017-11-26 10:29 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2017-12-13 11:54 - 2017-11-26 10:28 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2017-12-13 11:54 - 2017-11-26 10:26 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2017-12-13 11:54 - 2017-11-26 10:26 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-12-13 11:54 - 2017-11-26 10:26 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-12-13 11:54 - 2017-11-26 10:25 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-12-13 11:54 - 2017-11-26 10:25 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-12-13 11:54 - 2017-11-26 10:25 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
2017-12-13 11:54 - 2017-11-26 10:25 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2017-12-13 11:54 - 2017-11-26 10:25 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-12-13 11:54 - 2017-11-26 10:19 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-12-13 11:54 - 2017-11-26 10:19 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2017-12-13 11:54 - 2017-11-26 10:19 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
2017-12-13 11:54 - 2017-11-26 10:18 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-12-13 11:54 - 2017-11-26 10:18 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-12-13 11:54 - 2017-11-26 10:17 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-12-13 11:54 - 2017-11-26 10:08 - 017159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-12-13 11:54 - 2017-11-26 10:05 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-12-13 11:54 - 2017-11-26 10:04 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-12-13 11:54 - 2017-11-26 10:04 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-12-13 11:54 - 2017-11-26 10:03 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-12-13 11:54 - 2017-11-26 10:03 - 002783744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-12-13 11:54 - 2017-11-26 10:00 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-12-13 11:54 - 2017-11-26 09:59 - 004814848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-12-13 11:54 - 2017-11-26 09:59 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-12-13 11:54 - 2017-11-26 09:58 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-12-13 11:54 - 2017-11-26 09:48 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2017-12-13 11:54 - 2017-11-26 09:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2017-12-13 11:54 - 2017-11-26 09:21 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2017-12-13 11:54 - 2017-11-26 09:21 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-12-13 11:54 - 2017-11-26 09:02 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2017-12-13 11:54 - 2017-11-26 09:01 - 002339296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-12-13 11:54 - 2017-11-26 09:01 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-12-13 11:54 - 2017-11-26 09:01 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2017-12-13 11:54 - 2017-11-26 09:01 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-12-13 11:54 - 2017-11-26 09:01 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-12-13 11:54 - 2017-11-26 09:01 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2017-12-13 11:54 - 2017-11-26 09:00 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2017-12-13 11:54 - 2017-11-26 09:00 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-12-13 11:54 - 2017-11-26 08:58 - 001148216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-12-13 11:54 - 2017-11-26 08:58 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-12-13 11:54 - 2017-11-26 08:51 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-12-13 11:54 - 2017-11-26 08:51 - 000661664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2017-12-13 11:54 - 2017-11-26 08:41 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2017-12-13 11:54 - 2017-11-26 08:41 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-12-13 11:54 - 2017-11-26 08:41 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2017-12-13 11:54 - 2017-11-26 08:41 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-12-13 11:54 - 2017-11-26 08:41 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2017-12-13 11:54 - 2017-11-26 08:40 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-12-13 11:54 - 2017-11-26 08:38 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2017-12-13 11:54 - 2017-11-26 08:37 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-12-13 11:54 - 2017-11-26 08:36 - 013703168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-12-13 11:54 - 2017-11-26 08:36 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-12-13 11:54 - 2017-11-26 08:36 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-12-13 11:54 - 2017-11-26 08:36 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-12-13 11:54 - 2017-11-26 08:35 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2017-12-13 11:54 - 2017-11-26 08:35 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2017-12-13 11:54 - 2017-11-26 08:35 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
2017-12-13 11:54 - 2017-11-26 08:31 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-12-13 11:54 - 2017-11-26 08:31 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-12-13 11:54 - 2017-11-26 08:30 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-12-13 11:54 - 2017-11-26 08:30 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-12-13 11:54 - 2017-11-26 08:29 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-12-13 11:54 - 2017-11-26 08:28 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-12-13 11:54 - 2017-11-26 08:24 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2017-12-13 11:54 - 2017-11-26 08:24 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2017-12-13 11:54 - 2017-11-19 05:35 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2017-12-13 11:54 - 2017-11-19 00:20 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2017-12-13 10:31 - 2017-12-13 10:31 - 000000000 ____D C:\Users\caioc\AppData\Local\FortniteGame
2017-12-13 05:08 - 2017-12-13 05:08 - 000000000 ____D C:\Program Files\Epic Games
2017-12-12 23:09 - 2017-12-12 23:13 - 000000020 _____ C:\Users\caioc\Desktop\warframe.txt
2017-12-12 11:19 - 2017-12-23 15:21 - 000000000 ____D C:\Windows.old
2017-12-12 11:16 - 2017-12-12 11:19 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-12-12 11:14 - 2017-12-12 11:16 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-12-12 11:14 - 2017-12-12 11:14 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-12-12 11:14 - 2017-12-12 11:14 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2017-12-12 11:14 - 2017-12-12 11:14 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-12-12 11:12 - 2017-12-15 03:59 - 000000000 ____D C:\Users\caioc\AppData\Local\PackageStaging
2017-12-12 11:12 - 2017-12-12 11:12 - 000000000 ___HD C:\Users\caioc\MicrosoftEdgeBackups
2017-12-12 11:11 - 2018-01-08 06:40 - 000000000 ___RD C:\Users\caioc\3D Objects
2017-12-12 11:11 - 2017-12-12 11:11 - 006791472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 006015200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 002972672 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 002717392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 002465848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 002269080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001970520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001806336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001507736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001454568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001377080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 001015008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000975872 _____ C:\WINDOWS\system32\FaceProcessor.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000612760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000555416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-12-12 11:11 - 2017-12-12 11:11 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000362176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2017-12-12 11:11 - 2017-12-12 11:11 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000269696 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
2017-12-12 11:11 - 2017-12-12 11:11 - 000045464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdrleakdiag.exe
2017-12-12 11:11 - 2017-12-12 11:11 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-12-12 11:11 - 2017-12-12 11:11 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcVSp1res.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-12-12 11:11 - 2017-12-12 11:11 - 000000020 ___SH C:\Users\caioc\ntuser.ini
2017-12-12 11:07 - 2017-12-12 11:07 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-12-12 11:07 - 2017-12-12 11:07 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-12-12 11:07 - 2017-12-12 11:07 - 000000000 ____D C:\Program Files\MSBuild
2017-12-12 11:07 - 2017-12-12 11:07 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-12-12 11:07 - 2017-12-12 11:07 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-12-12 11:06 - 2017-12-12 11:06 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-12-12 11:06 - 2017-12-12 11:06 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-12-12 11:06 - 2017-12-12 11:06 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-12-12 11:06 - 2017-12-12 11:06 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-12-12 11:06 - 2017-12-12 11:06 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-12-12 11:06 - 2017-12-12 11:06 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-12-12 11:03 - 2017-12-12 11:04 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2017-12-12 11:03 - 2017-12-12 11:04 - 000011433 _____ C:\WINDOWS\diagerr.xml
2017-12-12 10:51 - 2018-01-30 08:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-12 10:51 - 2018-01-27 00:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-12-12 10:51 - 2017-12-13 12:03 - 000003560 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2017-12-12 10:51 - 2017-12-12 10:52 - 000003812 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2017-12-12 10:51 - 2017-12-12 10:52 - 000003560 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-12-12 10:51 - 2017-12-12 10:52 - 000003514 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-12 10:51 - 2017-12-12 10:52 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-12-12 10:51 - 2017-12-12 10:52 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000003336 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-12-12 10:51 - 2017-12-12 10:52 - 000003290 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-12 10:51 - 2017-12-12 10:52 - 000003258 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2017-12-12 10:51 - 2017-12-12 10:52 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000003098 _____ C:\WINDOWS\System32\Tasks\PCDDataUploadTask
2017-12-12 10:51 - 2017-12-12 10:52 - 000002984 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2017-12-12 10:51 - 2017-12-12 10:52 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-12 10:51 - 2017-12-12 10:52 - 000002318 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2017-12-12 10:51 - 2017-12-12 10:52 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2017-12-12 10:51 - 2017-12-12 10:52 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-12-12 10:51 - 2017-12-12 10:52 - 000002060 _____ C:\WINDOWS\System32\Tasks\Dell Cleanup
2017-12-12 10:47 - 2018-01-30 08:55 - 002314610 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-12 10:34 - 2017-12-12 10:34 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-12-12 10:34 - 2017-12-12 10:34 - 000000000 ____D C:\Users\Todos os Usuários\USOShared
2017-12-12 10:34 - 2017-12-12 10:34 - 000000000 ____D C:\ProgramData\USOShared
2017-12-12 10:32 - 2018-01-30 20:55 - 000000000 ____D C:\Users\caioc\AppData\Local\Packages
2017-12-12 10:31 - 2018-01-29 01:39 - 000000000 ____D C:\Users\caioc
2017-12-12 10:31 - 2017-12-12 10:51 - 000000000 ____D C:\Users\defaultuser0
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Modelos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Meus Documentos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Menu Iniciar
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Minhas Músicas
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Minhas Imagens
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Meus Vídeos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Dados de Aplicativos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Configurações Locais
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Histórico
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Dados de Aplicativos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Ambiente de Rede
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\defaultuser0\Ambiente de Impressão
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Modelos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Meus Documentos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Menu Iniciar
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Documents\Minhas Músicas
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Documents\Minhas Imagens
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Documents\Meus Vídeos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Dados de Aplicativos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Configurações Locais
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\AppData\Local\Histórico
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\AppData\Local\Dados de Aplicativos
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Ambiente de Rede
2017-12-12 10:31 - 2017-12-12 10:31 - 000000000 _SHDL C:\Users\caioc\Ambiente de Impressão
2017-12-12 10:29 - 2017-12-12 10:29 - 000000000 ____D C:\Program Files\Waves
2017-12-12 10:28 - 2017-08-21 20:33 - 000135800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-12-12 10:28 - 2017-07-20 15:21 - 000905504 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-12-12 10:28 - 2017-07-20 15:21 - 000776992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-12-12 10:28 - 2017-07-20 15:21 - 000578848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-12-12 10:28 - 2017-07-20 15:21 - 000477472 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-12-12 10:27 - 2017-09-29 11:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-12-12 10:26 - 2017-12-12 10:26 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-12-12 10:26 - 2017-09-08 02:50 - 000140296 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-12-12 10:26 - 2017-09-08 02:50 - 000116744 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2017-12-12 10:23 - 2018-02-02 17:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-12 10:23 - 2018-01-27 12:07 - 000381928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-12 02:51 - 2017-12-13 10:31 - 000000000 ____D C:\Users\caioc\AppData\Local\UnrealEngine
2017-12-12 02:51 - 2017-12-12 02:51 - 000000000 ____D C:\Users\caioc\AppData\Local\UnrealEngineLauncher
2017-12-12 02:51 - 2017-12-12 02:51 - 000000000 ____D C:\Users\caioc\AppData\Local\EpicGamesLauncher
2017-12-12 02:50 - 2017-12-13 05:06 - 000000000 ____D C:\Users\Todos os Usuários\Epic
2017-12-12 02:50 - 2017-12-13 05:06 - 000000000 ____D C:\ProgramData\Epic
2017-12-12 02:50 - 2017-12-12 02:50 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-12-12 02:50 - 2017-12-12 02:50 - 000001280 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2017-12-12 02:50 - 2017-12-12 02:50 - 000000000 ____D C:\Program Files (x86)\Epic Games
2017-12-05 13:33 - 2017-12-05 13:33 - 000017616 _____ C:\Users\caioc\Documents\amifldrv64.sys
2017-12-05 13:20 - 2017-12-05 13:20 - 008608192 _____ C:\Users\caioc\Documents\Inspiron_7559_1.2.4.EXE
2017-12-03 23:44 - 2017-12-03 23:44 - 000641696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2017-12-03 23:44 - 2017-12-03 23:44 - 000389296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2017-12-03 23:44 - 2017-12-03 23:44 - 000331432 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2017-12-03 23:44 - 2017-12-03 23:44 - 000087728 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2017-12-03 23:38 - 2017-12-03 23:38 - 000440128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2017-12-03 23:38 - 2017-12-03 23:38 - 000263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2017-12-03 23:38 - 2017-12-03 23:38 - 000242496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
2017-12-03 23:38 - 2017-12-03 23:38 - 000083792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2017-12-03 04:20 - 2018-01-17 02:28 - 000000488 _____ C:\Users\caioc\Desktop\Filmes.txt
2017-12-03 04:12 - 2017-12-03 05:41 - 000000111 _____ C:\Users\caioc\Desktop\Documentarios.txt
2017-12-03 02:01 - 2017-12-03 02:02 - 000000142 _____ C:\Users\caioc\Desktop\MKX.txt
2017-12-01 14:07 - 2017-12-01 14:07 - 000000000 ____D C:\Users\caioc\AppData\Roaming\MK10
2017-12-01 14:06 - 2017-11-15 23:41 - 002404800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-12-01 14:06 - 2017-11-15 23:41 - 002070976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-12-01 14:05 - 2017-11-15 23:41 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-11-30 11:55 - 2017-12-12 11:11 - 000000000 ___DC C:\WINDOWS\Panther
2017-11-30 11:01 - 2017-11-30 11:01 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 23:55 - 2017-11-29 23:58 - 000000000 ____D C:\Users\caioc\Desktop\Receitas
2017-11-29 18:52 - 2017-12-19 17:33 - 000000277 _____ C:\Users\caioc\Desktop\Horario 2018.txt
2017-11-25 09:45 - 2017-11-25 09:45 - 008608192 _____ C:\Users\caioc\Documents\Inspiron_7559_1.2.4 (1).EXE
2017-11-25 02:29 - 2017-11-25 02:29 - 000000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
2017-11-25 02:28 - 2017-12-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2017-11-25 02:26 - 2017-12-05 13:20 - 000000000 ____D C:\Users\caioc\Documents\Dell Downloads
2017-11-25 02:23 - 2018-01-10 18:31 - 000000000 ____D C:\Users\caioc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2017-11-25 02:23 - 2018-01-10 18:31 - 000000000 ____D C:\Users\caioc\AppData\Local\Apps\2.0
2017-11-08 03:26 - 2017-11-08 03:26 - 000414728 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\AdminService.exe
2017-11-08 03:26 - 2017-11-08 03:26 - 000070544 _____ (Qualcomm) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-11-08 03:18 - 2017-11-08 03:18 - 000058488 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000200.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000057624 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000300.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000043064 _____ C:\WINDOWS\system32\Drivers\AthrBT_TF_0x00000302.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000040876 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000302.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001982 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48_NFA435_10dbm.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001982 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48_NFA354A_10db.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001982 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48_NFA435_10db.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48_NFA354.dfu
2017-11-08 03:18 - 2017-11-08 03:18 - 000001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48.dfu

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-02-02 17:16 - 2017-03-20 18:56 - 000000000 ____D C:\Program Files (x86)\Steam
2018-02-02 17:15 - 2017-05-17 12:00 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2018-02-02 17:15 - 2017-05-17 12:00 - 000000000 ____D C:\ProgramData\NVIDIA
2018-02-02 17:13 - 2017-02-16 00:39 - 000000000 ___RD C:\Users\caioc\OneDrive
2018-02-02 17:13 - 2017-02-16 00:36 - 000000000 __SHD C:\Users\caioc\IntelGraphicsProfiles
2018-02-02 17:13 - 2016-10-18 15:50 - 000000000 ____D C:\Users\Todos os Usuários\Dell
2018-02-02 17:13 - 2016-10-18 15:50 - 000000000 ____D C:\ProgramData\Dell
2018-02-02 17:13 - 2016-10-18 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2018-02-02 17:13 - 2016-10-18 10:14 - 000000000 ____D C:\Program Files\Dell
2018-02-02 01:16 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-02-02 01:15 - 2017-09-29 11:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-02-02 01:15 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-02-01 02:51 - 2017-07-26 16:48 - 000000000 ____D C:\Users\caioc\AppData\Roaming\vlc
2018-01-31 04:18 - 2017-10-15 02:20 - 000000121 _____ C:\Users\caioc\Desktop\serie.txt
2018-01-30 08:55 - 2017-09-30 12:35 - 000920910 _____ C:\WINDOWS\system32\prfh0416.dat
2018-01-30 08:55 - 2017-09-30 12:35 - 000259078 _____ C:\WINDOWS\system32\prfc0416.dat
2018-01-30 08:46 - 2017-09-29 06:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-01-30 08:46 - 2017-09-21 18:19 - 000000000 ____D C:\AdwCleaner
2018-01-30 00:53 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\rescache
2018-01-28 16:10 - 2017-09-29 11:44 - 000000000 ____D C:\WINDOWS\INF
2018-01-27 18:20 - 2017-03-22 09:38 - 000000000 ____D C:\Users\caioc\AppData\Local\CrashDumps
2018-01-27 12:07 - 2017-09-30 12:36 - 000000000 ____D C:\WINDOWS\OCR
2018-01-27 12:03 - 2017-09-29 11:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-01-27 12:01 - 2017-09-21 18:28 - 000000000 ____D C:\Users\caioc\Documents\Cleaners
2018-01-27 04:09 - 2017-04-01 19:24 - 000000000 ____D C:\Users\caioc\AppData\Roaming\DAEMON Tools Lite
2018-01-27 04:09 - 2017-03-26 03:31 - 000000000 ____D C:\Users\caioc\AppData\Roaming\uTorrent
2018-01-27 02:35 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-01-27 01:44 - 2017-09-29 11:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-27 01:19 - 2017-03-26 03:40 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-01-27 01:13 - 2017-09-29 06:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-01-27 00:53 - 2016-10-18 10:33 - 000000000 ____D C:\Users\Todos os Usuários\McAfee
2018-01-27 00:53 - 2016-10-18 10:33 - 000000000 ____D C:\ProgramData\McAfee
2018-01-27 00:52 - 2016-10-18 10:33 - 000000000 ____D C:\Program Files\mcafee
2018-01-22 14:04 - 2017-03-24 01:15 - 000000000 ____D C:\Users\caioc\AppData\Local\Warframe
2018-01-22 12:27 - 2017-09-29 11:46 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2018-01-22 12:27 - 2017-09-29 11:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-01-22 12:26 - 2016-10-18 10:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-01-22 05:17 - 2017-04-13 02:39 - 000000000 ____D C:\Users\caioc\AppData\Local\Ubisoft Game Launcher
2018-01-10 12:45 - 2017-03-20 21:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-10 12:42 - 2017-10-11 00:47 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 12:42 - 2017-03-20 21:17 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-10 00:56 - 2017-11-02 15:44 - 000000000 ___RD C:\Users\caioc\Desktop\Jogos
2018-01-09 23:42 - 2017-03-30 14:58 - 000000000 ____D C:\Users\caioc\Documents\My Games
2018-01-08 06:40 - 2016-10-18 10:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-01-08 06:36 - 2017-09-29 11:46 - 000000000 ____D C:\WINDOWS\Provisioning
2018-01-08 06:36 - 2017-09-29 06:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-01-06 12:50 - 2017-03-23 15:06 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

Alguns arquivos em TEMP:
====================
2018-01-26 18:15 - 2018-01-01 10:48 - 001954048 _____ (Microsoft Corporation) C:\Users\caioc\AppData\Local\Temp\dllnt_dump.dll

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2018-01-23 13:00

==================== Fim de FRST.txt ============================

Addition.txt

Editado por caiocosta2008

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @caiocosta2008

 

Desculpe a demora :)

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o arquivo (fixlist.txt) no anexo deste post e salve-o na Área de Trabalho (Desktop).

Execute o FRST.exe (ou FRST64.exe) e clique no botão Corrigir.

Aguarde... ao final será gerado o log Fixlog.txt  salvo em sua Área de Trabalho (Desktop).

Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

Abraços :D

fixlist.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Obrigado pela resposta :)

Segue o logo

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 07.02.2018 01
Executado por caioc (07-02-2018 22:31:30) Run:1
Executando a partir de C:\Users\caioc\Desktop
Perfis Carregados: caioc (Perfis Disponíveis: defaultuser0 & caioc)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
SearchScopes: HKU\S-1-5-21-3575996810-2506534700-3124070724-1001 -> DefaultScope {B902D1F1-3986-453C-BA6C-92D0E126FC89} URL =
SearchScopes: HKU\S-1-5-21-3575996810-2506534700-3124070724-1001 -> {B902D1F1-3986-453C-BA6C-92D0E126FC89} URL =
S3 MFE_RR; C:\Users\caioc\AppData\Local\Temp\mfe_rr.sys [24120 2018-01-27] (McAfee, Inc.) <==== ATENÇÃO
C:\Users\caioc\AppData\Local\Temp\mfe_rr.sys
2018-01-26 18:15 - 2018-01-01 10:48 - 001954048 _____ (Microsoft Corporation) C:\Users\caioc\AppData\Local\Temp\dllnt_dump.dll
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Nenhum Arquivo
Task: {343B7E87-286D-43A5-A114-43E361F021F5} - \Microsoft\Windows\UNP\RunCampaignManager -> Nenhum Arquivo <==== ATENÇÃO
CMD: ipconfig /flushdns
EmptyTemp:

*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
"HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removido (a) com sucesso.
"HKU\S-1-5-21-3575996810-2506534700-3124070724-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B902D1F1-3986-453C-BA6C-92D0E126FC89}" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{B902D1F1-3986-453C-BA6C-92D0E126FC89} => chave não encontrado (a)
"HKLM\System\CurrentControlSet\Services\MFE_RR" => removido (a) com sucesso.
MFE_RR => serviço removido (a) com sucesso.
"C:\Users\caioc\AppData\Local\Temp\mfe_rr.sys" => não encontrado (a)
"C:\Users\caioc\AppData\Local\Temp\dllnt_dump.dll" => não encontrado (a)
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => chave não encontrado (a)
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{343B7E87-286D-43A5-A114-43E361F021F5} => Não pode ser removido chave. ErrorCode1: 0x00000002
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{343B7E87-286D-43A5-A114-43E361F021F5}" => removido (a) com sucesso.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => chave não encontrado (a)

========= ipconfig /flushdns =========


Configura‡Æo de IP do Windows

Libera‡Æo do Cache do DNS Resolver bem-sucedida.

========= Fim de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13790798 B
Java, Flash, Steam htmlcache => 382210725 B
Windows/system/drivers => 4667924 B
Edge => 25590951 B
Chrome => 101290780 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 26350 B
NetworkService => 227266680 B
defaultuser0 => 0 B
caioc => 90728323 B

RecycleBin => 0 B
EmptyTemp: => 813.9 MB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 22:36:29 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @caiocosta2008

 

Acesse o site Malwarebytes, clique em Download Gratuito e baixe o arquivo para sua Área de Trabalho (Desktop).

 

Desative antivírus, antispywares, enfim, programas de prevenção para não causar conflitos.

 

Clique com o botão direito do mouse no arquivo setup.exe e escolha: Executar como Administrador

 

  • Siga os passos para a instalação;
  • Ao clicar em Concluir aguarde o programa ser aberto;
  • No alto à direita clique em Atualizar agora;
  • O navegador irá abrir, pode fechá-lo e aguarde o término das atualizações;
  • No painel à esquerda clique em Configurações;
  • Na aba Proteção ative Procurar rootkits;
  • Depois clique em Análise no painel à esquerda;
  • Então clique no botão Iniciar Análise e aguarde;
  • Quando o scan terminar uma janela irá se abrir próximo ao relógio;
  • Nela clique em Ver Resultado;
  • Deixe todas as entradas marcadas e clique no botão Colocar em Quarentena;
  • Na janela que abrir clique em Sim para que o computador seja reiniciado;
  • Uma vez reiniciado, abra novamente o Malwarebytes e clique em Histórico e cliquem em Excluir Tudo (opcional);
  • O log será salvo automaticamente pelo programa.
  • Para exportá-lo, clique na aba Histórico > Registros do aplicativo na janela principal do programa;
  • Clique duas vezes em cima do log mais atual e exporte em .TXT;
  • Poste em sua próxima resposta.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa tarde Diego.

Como o McAfee parou de funcionar no meu computador eu havia instalado o Malwarebytes antes mesmo de informar neste fórum. Desculpe não ter avisado antes. E como estava na versão de teste premium ele fazia scan diariamente de modo automático. Então quando eu fiz a análise do modo que você explicou, ele não encontrou nenhuma entrada e não colocou nenhum item em quarentena. Vale ressaltar que a opção de procurar rootkits também já estava marcada quando eu fui nas configurações. Quando o scan terminou apareceu a mensagem de que "sua analise e quarentena esta concluída" (com um certo verde em cima) e as opções abaixo para serem escolhidas: "exportar resumo" e "visualizar o relatório".

Não consegui encontrar o Histórico e não solicito a reinicialização do computador. Na duvida vou enviar o resumo da analise:

 

Malwarebytes
www.malwarebytes.com

-Detalhes de registro-
Data da análise: 08/02/18
Hora da análise: 17:25
Arquivo de registro: d596d63e-0d05-11e8-999d-f48e38ea7e6c.json
Administrador: Sim

-Informação do software-
Versão: 3.3.1.2183
Versão de componentes: 1.0.262
Versão do pacote de definições: 1.0.3901
Licença: Gratuita

-Informação do sistema-
Sistema operacional: Windows 10 (Build 16299.192)
CPU: x64
Sistema de arquivos: NTFS
Usuário: DESKTOP-FHE277N\caioc

-Resumo da análise-
Tipo de análise: Análise de Ameaças
Resultado: Concluído
Objetos verificados: 329569
Ameaças detectadas: 0
(Nenhum item malicioso detectado)
Ameaças em quarentena: 0
(Nenhum item malicioso detectado)
Tempo decorrido: 12 min, 55 seg

-Opções da análise-
Memória: Habilitado
Inicialização: Habilitado
Sistema de arquivos: Habilitado
Arquivos compactados: Habilitado
Rootkits: Habilitado
Heurística: Habilitado
PUP: Detectar
PUM: Detectar

-Detalhes da análise-
Processo: 0
(Nenhum item malicioso detectado)

Módulo: 0
(Nenhum item malicioso detectado)

Chave de registro: 0
(Nenhum item malicioso detectado)

Valor de registro: 0
(Nenhum item malicioso detectado)

Dados de registro: 0
(Nenhum item malicioso detectado)

Fluxo de dados: 0
(Nenhum item malicioso detectado)

Pasta: 0
(Nenhum item malicioso detectado)

Arquivo: 0
(Nenhum item malicioso detectado)

Setor físico: 0
(Nenhum item malicioso detectado)


(end)

 

Obrigado, e desculpa caso tenha feito algum passo errado.

 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Acredito que meu Windows tenha voltado ao normal. Agora consegui instalar o McAfee novamente, e roda-lo normalmente no meu computador. Muito obrigado pela ajuda Diego. Ajudou muito !

Abraço. :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @caiocosta2008

 

Que bom! :)

 

Mas só falta mais uma etapa. ;)

 

Baixe Security Check, by glax24 e salve em sua Área de trabalho (Desktop).

 

Execute o arquivo como Administrador

  • Aguarde enquanto a ferramenta faz o exame.
  • Ao final salve log como SecurityCheck.html
  • Abra o arquivo com o bloco de notas;
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Segue o Log

SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17]
WebSite: www.safezone.cc
DateLog: 15.02.2018 22:13:57
Path starting: C:\Users\caioc\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: caioc
VersionXML: 4.73s-27.10.2017
___________________________________________________________________________

Windows 10(6.3.16299) (x64) CoreSingleLanguage Release: 1709 Lang: Portuguese(0416)
Installation date OS: 12.12.2017 13:06:02
LicenseStatus: Windows(R), CoreSingleLanguage edition The machine is permanently activated.
LicenseStatus: Office 16, Office16O365HomePremR_Subscription4 edition Timebased activation will expire :44480 minutes
Boot Mode: Normal
Default Browser: Microsoft Edge (C:\WINDOWS\system32\LaunchWinApp.exe)
SystemDrive: C: FS: [NTFS] Capacity: [919.6 Gb] Used: [816.2 Gb] Free: [103.4 Gb]
---------------------- [ AntiVirusFirewallInstall ] -----------------------
McAfee Internet Security v.16.0 R7
McAfee WebAdvisor v.4.0.163
-------------------------- [ SecurityUtilities ] --------------------------
Malwarebytes versão 3.3.1.2183 v.3.3.1.2183
--------------------------- [ OtherUtilities ] ----------------------------
7-Zip 18.01 (x64) v.18.01 [+]
VLC media player v.2.2.8 [+]
--------------------------------- [ P2P ] ---------------------------------
µTorrent v.3.5.1.44332 Warning! P2P-client.
-------------------------------- [ Java ] ---------------------------------
Java 8 Update 144 v.8.0.1440.1 Warning! Download Update
Uninstall old version and install new one (jre-8u152-windows-i586.exe).
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Acrobat Reader DC - Português v.18.011.20036 [+]
------------------------------- [ Browser ] -------------------------------
Google Chrome v.64.0.3282.167 [+]
--------------------------- [ RunningProcess ] ----------------------------
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe v.11.0.16299.248
------------------ [ AntivirusFirewallProcessServices ] -------------------
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe v.3.0.0.1284
Malwarebytes Service (MBAMService) - The service is running
C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe v.3.1.0.595
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe v.15.7.0.665
McAfee Validation Trust Protection Service (mfevtp) - The service is running
C:\Windows\System32\mfevtps.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe v.1.5.0.7961
McAfee Firewall Core Service (mfefire) - The service has stopped
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe v.15.7.0.665
McAfee AP Service (McAPExe) - The service is running
C:\Program Files\Common Files\McAfee\VSCore_15_7\mcapexe.exe v.7.7.123.0
C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe v.9.5.168.0
McAfee CSP Service (mccspsvc) - The service is running
C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe v.2.7.371.0
McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) - The service is running
C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe v.4.0.7.163
McAfee Service Controller (mfemms) - The service is running
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe v.15.7.0.665
McAfee Module Core Service (ModuleCoreService) - The service is running
C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe v.2.3.127.0
C:\Program Files\Windows Defender\MSASCuiL.exe v.4.12.16299.15
Serviço Windows Defender Antivirus (WinDefend) - The service has stopped
Serviço de Inspeção de Rede do Windows Defender Antivirus (WdNisSvc) - The service has stopped
----------------------------- [ End of Log ] ------------------------------

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @caiocosta2008

 

# Etapa nº 1 #

 

Baixe o Delfix by Xplode e salve na sua área de trabalho.

 

Clique duas vezes no delfix.exe para executá-lo. Marque as caixas conforme imagem.

 

** Usuários do Windows Vista ou Windows 7 clique com o direito sobre o arquivo delfix.exe, depois clique em execadmin.png.

 

2mez6ld.png

 

Clique no botão Executar.

 

Ao final será gerado um log, mas não é necessário postar.

# Etapa nº 2 #

imageproxy.php?img=http%3A%2F%2Fi65.tiny Versões antigas de programas têm vulnerabilidades que alguns malwares podem usar para infectar o seu sistema.

Por isso, é recomendável atualizar os programas que o Security Check apontou como desatualizados (os updates opcionais ficam ao seu critério).

Basta clicar no Download Update de cada aviso (post acima), que irá para o site do desenvolvedor.

<<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!

 

# Etapa nº 3 #

 

O Ccleaner é um excelente utilitário de limpeza para o computador.

 

Faça o download dele aqui Ccleaner

 

  • Após a instalação vá até o local onde o programa foi instalado, geralmente em C:\Arquivos de programas\CCleaner.
  • Clique duas vezes nesta pasta;
  • Numa área vazia desta janela, clique com o botão direito do mouse e escolha Novo > pasta e crie uma nova pasta;
  • Coloque o nome de backups.
  • Abra o programa e clique em Executar Limpeza;
  • Clique no botão Registro > Procurar Erros > Corrigir erro(s) seleciona(s)...
  • Observação: Não se esqueça de aceitar o backup das correções, e salvá-los nas pasta criada acima!

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×