Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
mocci

Vários Cliques ao invés de um!

Recommended Posts

saudações amigos e amigas do Clube do Hardware!
recentemente o meu computador começou a dar diversos cliques ao invés de um. isto está me atrapalhando muito, principalmente quando eu vou realizar trabalhos no ps.

gostaria de solicitar a ajuda da comunidade para que, juntos possamos acabar com esse possível impasse (que eu acredito que seja um malware).

 

estarei a disposição para seguir todas as orientações e passos futuros.

desde já agradeço pela atenção e disposição, obrigado!  

Compartilhar este post


Link para o post
Compartilhar em outros sites

opa, peço desculpas pela minha falta de atenção.

segue em anexo o log da minha maquina.

ZA-Scan.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Tranquilo!

 

Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.

 

Por favor, atente para o seguinte:

  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Sempre coloque suas respostas neste tópico... Não abra outro!
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Respeite a ordem das instruções passadas.

Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

# Etapa nº 1 #
 
Baixe o AdwCleaner e salve em sua Área de trabalho (Desktop)

Execute o arquivo adwcleaner.exe Como Administrador

  • Clique na aba Opções e deixe marcado apenas "Restaurar Políticas do IE" e "Restaurar Políticas do Chrome"
  • Clique no botão Verificar e aguarde o exame finalizar.
  • Clique no botão Limpar.
  • Abrirá um bloco de notas com o resultado.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.
  • O log também será salvo em C:\AdwCleaner


NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar.
 
# Etapa nº 2 #
 
Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

ETAPA 1 - ADWCLEANER

 

# -------------------------------
# Malwarebytes AdwCleaner 7.2.1.0
# -------------------------------
# Build:    06-26-2018
# Database: 2018-06-25.3
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    06-28-2018
# Duration: 00:00:49
# OS:       Windows 7 Ultimate
# Cleaned:  31
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted       C:\Users\7\AppData\LocalLow\IObit\Advanced SystemCare
Deleted       C:\Users\7\AppData\Roaming\IObit\Advanced SystemCare
Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
Deleted       C:\ProgramData\ByteFence
Deleted       C:\Program Files\ByteFence

***** [ Files ] *****

Deleted       C:\Users\7\Desktop\ByteFence Anti-Malware.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted       C:\Windows\System32\Tasks\Driver Booster Scheduler

***** [ Registry ] *****

Deleted       HKLM\Software\Wow6432Node\POLICIES\GOOGLE\Chrome
Deleted       HKLM\SOFTWARE\POLICIES\GOOGLE\Chrome
Deleted       HKLM\Software\Wow6432Node\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted       HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted       HKLM\Software\Wow6432Node\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted       HKU\S-1-5-18\Software\ByteFence
Deleted       HKCU\Software\ByteFence
Deleted       HKU\.DEFAULT\Software\ByteFence
Deleted       HKLM\Software\Wow6432Node\ByteFence
Deleted       HKLM\Software\ByteFence
Deleted       HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
Deleted       HKCU\Software\csastats
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted       HKCU\Software\Lavasoft\Web Companion
Deleted       HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted       HKLM\SOFTWARE\Classes\Directory\shell\ByteFence Folder Scan
Deleted       HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{074DD208-ED18-4C29-ABA2-9C498F19C285}
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
Deleted       HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}

***** [ Chromium (and derivatives) ] *****

Deleted       Panda Safe Web

***** [ Chromium URLs ] *****

Deleted       Ask Brasil

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3715 octets] - [28/06/2018 11:32:52]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
 

ETAPA 2 - ZHP CLEANER

 

~ ZHPCleaner v2018.6.28.142 by Nicolas Coolman (2018/06/28)
~ Run by 7 (Administrator)  (28/06/2018 12:28:53)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version KO
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\7\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\7\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)


---\\  Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (1)
DELETED data: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride [Bad : 127.0.0.1;localhost;<local>;*.local]  =>Hijacker.Proxy


---\\  Hosts file (1)
~ The hosts file is legitimate (63)


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (474)
MOVED file: C:\Users\7\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\µTorrent.lnk  [Bad : C:\Users\7\AppData\Roaming\uTorrent\uTorrent.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign00ddabaa2aea5260  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign01223a4562d911ea  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign01590256133e35cc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign018e25c538c86c9c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign01b7ebb167eeb2fc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign01fdc6f2c8e481d5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign028512cfa13a3247  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign02fc759db212a717  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign034b295715a90083  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign036a3cadefa0068d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign03726e7022b87674  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0381d1d318fa564f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign040be946adf2e922  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign049a43d79b5c3f1a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign04a9358508719216  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0567baaad2a9221c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign06e536dff4e9a83b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign076181dbee6a86f4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign076b8ea99389cbbf  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0874c496af1455e3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign08a7deeb4209ddd7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign09438f2e70a67b5f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign09782c276a2d07af  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign09be923594d853fb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0ae8b10fdd3e591b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0cc9de18565d8052  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0cff25eb2f6946c8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0d5dd61a880b4039  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0dab75831fed0de7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0ec63b1443108cf2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0f24d957db7f2484  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign0ff435fc0e631628  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1030ba7685c69f4a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign117dd3b22d9a72ef  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign12059900d864c17e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign12214858380cc27f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1284d2030718de80  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign135e0a07db0df442  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign13762d14672c4a79  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign13c3092c30de931b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign13d49372fa2ad89f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign147eeab1455fb3d5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign154fcdd10afe3577  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1589113fbe5fa0ef  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1597f0d06e896693  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign16826a67bd083088  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign16f48944b1738d09  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign170a3aeffc946f1f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign18338d211b1cd22a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign19324d21e0769733  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign19629d52525185aa  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign19867be92c091d35  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign19ee6766b2d4a9fd  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1a96595f82e28751  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1aea5b726a6bc953  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1b01840b8f14b7e0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1b4a1c8a8977d37c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1b728d8c5a7d325e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1ba996f7eb5a489c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1bc314502c4549cb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1c1108c1bdaf3076  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1cc76026f6e50d79  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1d6357a6ac6b037a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1de37be5694234b9  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1e2f71fb0b9be870  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1e34b4896a1485d2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1e43f65f97a3451a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign1f321a115a5f2811  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign20e0d7ba06ea800e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign22311ef4a0ef35e4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign22b5932c165dbeac  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign22ba11e84219a5e7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign22da1bcff3a012da  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign22fb0c3a6dff4533  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign231eb90084a8f9a4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2403ec2181bbbfd3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign241061e3d55892a1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign24753d8735511a2d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign24f27949fbde5234  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign25520afa27a82b72  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign255b166eaa695808  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign255ccb680abbba55  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign256990a1bfa4034b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign260ef408a81c1c31  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign26a362d7f2f3d884  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign26ed02b3efd1f283  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign26f7b49e513c65a9  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2792f46466f34671  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign27e6e2c7bde2d53b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign27faffaebfe9c92f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign29cc1488379d1890  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign29faf290ac322533  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2acc8ebb51dcc869  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2acee68d5464cb18  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2b95868205e01f36  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2b97df234132465b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2d288943dd099b02  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2d65ebe8b276eb2b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2d77f26b08236f5c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2d91b1aeeb820ddb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2da7a05f4f5d860e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2dc24a9d7d051d67  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2dce6fe230d0f59a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2f37059d1556b186  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2f51708147001430  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2f608ba742233a6a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign2f9d2fb8df65b7a7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign313f4054dbe1460e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign31d4b29e813f5406  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign31e708e356a497c3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign32a2d8b72f38cb78  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign32cca3cdf42d3e35  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign32ea93aa2199f3e6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign33256860232c18b5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3390090a92a02076  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign339518cb675d0a12  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign357ea0517a352a33  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign35e4f1f7e92e0142  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign36833c7f62f3cc47  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign36fe4a3c36c9ea7d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign386330e77875efce  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign38e22712bdeaaade  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign398dc0ec1ae71995  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign39a0a624150115c5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3a111b8da58cc5c8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3a6933e20a2f1b10  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3ab84381f9ab8b08  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3acaab8a3ae9b952  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3ad6a879efa37151  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3b3f49c6874c7f33  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3bfdacf479eb3d57  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3c8f5fde4522db03  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3e996156b9aa3204  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign3fdd59dc56f38bdb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4064d4b28bb000a2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign40f5eba4723bec72  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign42017040ca7a2b5f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4224c23008441e5d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign427c5191544ee52b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign42c83b8abf64e30f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign42e1ca8326da0011  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign43643977345ccb21  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign43b20ea79495665c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign43e33827dde4ea1f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign44150c18c871e063  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4442b20aa00ac20d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign44c7e168ec4343fb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign44c7ea65e091402f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign471b817a3c071a54  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign480d22534b3acb73  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4a835228385795d7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4a995a787182cab7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4aab67800a3fe775  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4ad562ed3501f944  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4afb8c9992fbb4a5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4b6ddddaef572879  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4b7e3bb500824e98  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4b7eaf4204adff55  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4c560f59b88e7330  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4cc10a4faf88ced6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4da42575e63b086a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4dce663c11889630  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4e24223720a1eddf  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign4eb9a83fcce20959  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5091659848e2487f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign50b654691d33172d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign50c33fc752620d39  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign50fc5808d31ec3e9  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5100cac00a1ecdfb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5185254b2f63c0d4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5201aba03b067af4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign52424e823dc676c2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign537c8ea90faac222  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign53be2eba4bc88243  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5479ac805c64f16c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign551f7c460ab02b4b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign552972c8fad84ffc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign552aee9a6bc21e74  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign55f87314f88f4bea  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5610a273174ab54d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign56625caa730ddf49  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign56743d8dc4eb09aa  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5691a183997d7ab8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5707341c130ff76b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign579512ff58c3cafb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign581a91e37892ca08  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5843b12eb44689b1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5b264ad6db3e30f0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5b2e54cd45c44888  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5c38e0d6402a3217  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5c530cc666d26262  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5c6e51d7cc575699  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5d1ba643d3d68d25  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5d2dcc1d05668655  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5d664f2efa52db63  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5ea431d812082af7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5ed999362561aef6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5ee01db397ae86af  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5f19c2ad2099804c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5f6993e4db62f6f1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign5f6b4e1d11c7dda1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign600275c22f89f5f3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6090c49d3dfa0e2c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6095e36a6f1f5aa7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign60c7d710d57ce757  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign60e1fbcf32060f57  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign612e7db5d15ce555  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign61998eadc9c41f71  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign62430137451db408  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6304b14b7d3ec674  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign63daff90a60a499f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign645c18cf1bc2ba76  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6541b619988e46a6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign658429f459a53de6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign65e2807560ee20b5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign671b895689e12a13  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign693afc4b80484d7e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6a7493dbbd1316d0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6c3e18dd49e18e23  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6d4ee01b8638d18c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6f27c07de6bbab37  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6f3ec86483fc31fb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign6fe20f4c1d9b6e7c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign71827922e731e47e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign71e9121be65e8561  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign72345bcdb4e6f986  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7240a264bbb6d972  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign724f9098c8157685  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign728243ea40c50344  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign72cbd5f4fd0da29b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign72e307974848729d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign748bc282a7774e10  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign74b58111bc57aa0a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7678f7ebf09ac59f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7689f4190441f7ed  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign76dad87f77ca8483  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign77343f61cdb33997  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign77395bc58f1ebdd9  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign77a3d249bbaddd9b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign781ebc63750a0f07  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7826a36c695aca05  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign78777a27e8f8a4ea  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign78c8012bf6ffc09a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign78e32031316ef6ba  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign79675630db744b33  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7a57923097ac12d5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7a96a3b2bfb8e2d6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7ac8c905b3cc89fd  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7b32db9570ba2b8c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7b99225a12de8f69  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7bfa8d894da18819  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7c9dd05cf8ab08e0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7ce91dba0efa7899  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7d40da419448572b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7dbeb6dfefce7c13  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7e269a7b20c73f6d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7fd2451b5c4d641e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign7ff2578bed342cd5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8023b253e88c5d7f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign808206927e12dfde  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign80fd62e8ff0b424a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign810f9a405c4dc8d7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign814e456ceb76a238  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign81573b5eb42f6d22  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign81d3b8009e9e5755  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign81e5cacec9996ba4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign81fa0f22821578b2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign835079b87622ada7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign83d2acf8c141eb6e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8417964841759ad2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8424e34f4f82e576  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign843ff7393ad3b3a6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign84e0aab74f192fa0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign878a477102d073d8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign87fd68bcba267935  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign88a6b2a217adaa4e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign89349508c1af2248  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign89c2070cdd583776  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8b0e9e938acc4795  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8b4e73371ae8046d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8c31fda469849618  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8c5789e294aa171c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8c61c13b73a45974  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8e5d2005bd28f777  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8f14e85eaae10013  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8f50bab8db6d4cd1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8f742bd0b4282779  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8f7a5e40c0144a32  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign8ff74b46bfc3273e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9100c6c1e0205f5d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign91a3395249d50049  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign921704945e49dc11  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign92a2a5fef9674864  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign934259d581bb91db  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9396d655303f5a2a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign941243e950bcfd7a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign949729904d2f02bf  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign95652adf455d824d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign976a325c282ff6c0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign97b7032ae7ca71ae  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign98da45efd45a9ed8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign998b1009c2f531c4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign99ae64e00fa4fbe2  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign99e9ecb0ccfd59f8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9ab49f7055bdb095  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9b1edbeecec83141  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9bf577fc9ed30197  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9cc7bc649230e898  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9ceda9ced76219eb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9cf1e1d0d9252df0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9d30574f576930e4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9d835123e219732f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9d8999e43ef82bff  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9d9fb464dbe0e989  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9e1aa6de84b93da1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9e43bd4f290b7f32  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9ef276bb9f181c52  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9efe46db19f92685  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9f263ab6657f2203  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9fa79f957073d964  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsign9fe202026ab4f186  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna0cd2af942654eae  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna24119db6ebdff2b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna241d6dcf7cfb598  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna3ee38f057fe7de3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna4e628769e7c6fa7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna5b57ddb09b048ba  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna6f66e76527b8c05  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna706e101df9bae96  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna74b6c2dca63beb7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna87aada09e369909  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigna9088c2383d0e68c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignaa20a4fd78633f62  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignaadd18e295f65eae  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignaae068bf38a594cc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignab71a7a16535db67  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignab97af2cb3c80edb  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignabf61b5ec355c624  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignac04d1ddbe368f7b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignaca89f857198a8a8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignacaffeab96cfa963  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignad72481324664605  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignade14238a802d5be  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignaea39b13c96a4a45  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignaf1aba7358d33ad3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb00b9fbc6d13961a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb08bb7244a79aa22  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb18a7ba4c5eadb82  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb1b2ac3c0d8f9488  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb261ec3ff0f1bca3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb358311cf1429af6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb3e5a2cf29f7cb31  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb41b14eadb263e0b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb4951237aab3a5d6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb60417c256e0254b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb659254154c090ae  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb70949b75e4ce6aa  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb749e9e184e74b30  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb76c32f60409c1d3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb7d376509570b6c1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb7fc6bae633e2154  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb8181d4e5e3b4b96  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb8ca39ca52c7e97b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb8f77709f7f817c6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb90b461ef0d7108b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignb94fd4a7012d2bc0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignba35107f5162e3d8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignba6c9059f4ed9ee4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbb3d8bbba3be0390  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbbb6e5523de86111  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbe116a872304c3c5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbea5973427f31c55  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbeb0bfc9949a9afc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbee7478cea81b52b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignbf08597307dde99a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc0ebd2bcbcdf2001  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc263568eb61443ff  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc2bf9d0cd298fd5c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc2c2f6812b2951c5  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc2d8f097caea47e7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc3009d124146489d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc40424726bf18dbc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc486efd3e25841c4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc4d955ce64991a8b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc5358d31ad9fb782  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc631ece80a6c18bd  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc7099bbe3a0cc606  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc8e2ddd515f4e521  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc915480a01095a1a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignc9e6436e09029b32  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignca8eda51e86cfb33  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncace8fe798a09e11  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncb21c8111d68bc41  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncb4ff49e789d13a3  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncb956eab92822279  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignce078b2921991e03  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignce8cb9c6b16505b4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncea8b01c0347f393  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignceab607786af38bd  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncf1488b35d17c2d0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncfcd7994d71582ae  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigncfd1e62f9a423957  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd112f43c5b582712  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd2649ffa4c79679f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd3502a32f8b62fde  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd386102f22a4df7a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd44cb63ccb02cb71  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd4a4a1466d06ceb9  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd5533b356ccf2b90  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd56186ce4fbc31b0  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd57bce4e6d9f3d0b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd6447d5baa887256  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd70ad2218a9798fd  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd773c28438805e06  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd7bde618ec7de2ee  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd861714b797506dc  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd8c91a98d0c2d332  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd8f50ec5351b7445  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignd93006816dbcbf4c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigndb723a6b99e92818  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigndb75ade109719274  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigndc9f23809c4dfa31  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigndcc81422d107c329  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigndf59812929cd0898  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigndfc1a53e45ac8597  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne0320dbf5cf62240  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne037b4222029d7ca  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne070546a88e19962  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne0bd5a02f04d5565  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne1a3dedb7316cee1  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne230e968ffca3c99  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne3c282b129fd5d05  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne43b048f3c66b2a4  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne780fc5b0575058e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne78125b665eb4ca7  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne7d1711d66ae0221  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne8515a7dc52929d6  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne98b2740b20855ff  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne9ce53cd060eb5d8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne9e34ca1ec371417  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigne9fbba1f6dae5eed  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignea37714794f1daae  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignea619b62eb70ad3a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigneaec1f7ad766ee9b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigneb27bc9605acc42f  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigneb7a86c93fa212ab  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignec3bbf162ad67576  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigned1ebe0067e25e1a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsigned9cd3af2ad71137  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignede4814af878da69  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignef884ed4472d209d  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf0094d540c8e3bab  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf11f47f75a0f4d73  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf2ba563ad147d510  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf30ca206a3a4c62b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf3306ec1765a64fe  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf45294dddea9fd71  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf4b9167bf1d43941  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf4c395c9dc2b5860  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf557c358ae950057  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf6676f8d67442d28  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf67067d7b4de26ad  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf7cb588a5116788c  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf89d5ddf6cbbd7ee  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignf98b7d54aa08a8d8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfa51009597175911  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfa7dfd271cd8e8de  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfbd486b4e7409b6e  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfc165f15ca8872c8  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfc40f23eefd94a50  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfca37734d219e90b  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfff0fe28e88af19a  =>.SUP.Temporary
MOVED folder: C:\Users\7\AppData\Local\Tempzxpsignfff13372aac430e8  =>.SUP.Temporary


---\\  Registry ( Key, Value, Data) (4)
DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{9354C108-EBDD-481B-88D9-1C195824AE17}\\DhcpNameServer [Bad : 187.122.127.35 187.122.127.59]  =>Hijacker.Browser
DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer [Bad : 187.122.127.35 187.122.127.59]  =>Hijacker.Browser
DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.]  =>BitTorrent (P2P)
DELETED key*: HKCU\Software\undefined []  =>.SUP.Downloader


---\\  Summary of the elements found (5)
https://nicolascoolman.eu/2017/04/03/hijacker-proxy/  =>Hijacker.Proxy
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary
https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/  =>Hijacker.Browser
https://nicolascoolman.eu/2017/12/22/sup-downloader/  =>.SUP.Downloader


---\\  Other deletions. (5)
~ Registry Keys Tracing deleted (3)
~ Remove the old reports ZHPCleaner. (2)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Mozilla Firefox)


---\\ Statistics
~ Items scanned : 682
~ Items found : 0
~ Items cancelled : 0
~ Items options : 0/7
~ Space saving (bytes) : 0


~ End of clean in 00h00mn30s

---\\  Reports (3)
ZHPCleaner--28062018-12_10_27.txt
ZHPCleaner--28062018-12_26_18.txt
ZHPCleaner-[R]-28062018-12_29_23.txt
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o Farbar Recovery Scan Tool e salve-o na Área de Trabalho (Desktop).


32 bit (x86) ou 64 bit (x64)

  • Clique com o botão direito e escolha Executar como Administrador;
  • Marque a caixa Arquivos 90 dias,  e clique no botão Examinar;
  • Aguarde e ao final os logs FRST.txt e Addition.txt serão salvos em sua Área de Trabalho (Desktop);
  • Selecione, copie e cole o conteúdo do log  FRST.txt em sua próxima resposta;
  • Anexe o log Addition.txt.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano  boa noite!

segue o FRST:

 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20.06.2018
Executado por 7 (administrador) em 7-PC (29-06-2018 21:06:36)
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 &  (Perfis Disponíveis: 7)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Google) C:\Users\7\AppData\Local\Google\Chrome\User Data\SwReporter\30.160.202\software_reporter_tool.exe
(Google) C:\Users\7\AppData\Local\Google\Chrome\User Data\SwReporter\30.160.202\software_reporter_tool.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google) C:\Users\7\AppData\Local\Google\Chrome\User Data\SwReporter\30.160.202\software_reporter_tool.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avBugReport.exe
(AVAST Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-12-19] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-24] (AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-06-23]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2017-12-19]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 187.122.127.35 187.122.127.59
Tcpip\..\Interfaces\{9354C108-EBDD-481B-88D9-1C195824AE17}: [DhcpNameServer] 187.122.127.35 187.122.127.59

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
SearchScopes: HKU\S-1-5-21-255323123-3732995248-2485898865-1000 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8135c84434b144eb&q={searchTerms}
SearchScopes: HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8135c84434b144eb&q={searchTerms}
SearchScopes: HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8135c84434b144eb&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-06-24] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-06-24] (AVAST Software)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-06-23] [Legacy] [não assinado]
FF HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-08] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms}
CHR DefaultSearchKeyword: Default -> safeWeb
CHR Profile: C:\Users\7\AppData\Local\Google\Chrome\User Data\Default [2018-06-29]
CHR Extension: (Apresentações) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-07]
CHR Extension: (Documentos) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-07]
CHR Extension: (Google Drive) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-04-07]
CHR Extension: (IBM Security Rapport) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2018-04-07]
CHR Extension: (YouTube) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-07]
CHR Extension: (Avast SafePrice) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-06-22]
CHR Extension: (Panda Safe Web) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\fagakgcelolinfnkfgekcnedpaklfcok [2018-06-28]
CHR Extension: (Planilhas) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-07]
CHR Extension: (Documentos Google off-line) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-04-07]
CHR Extension: (Avast Online Security) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-06-22]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-07]
CHR Extension: (Gmail) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-04-07]
CHR Extension: (Chrome Media Router) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-14]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-255323123-3732995248-2485898865-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-24] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-24] (AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7521480 2017-04-09] (INCA Internet Co., Ltd.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [1997792 2017-07-07] (Scopus Soluções em TI Ltda)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [197160 2018-06-24] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229392 2018-06-24] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201328 2018-06-24] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-06-24] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59592 2018-06-24] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239680 2018-06-24] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-06-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159640 2018-06-24] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111872 2018-06-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-06-24] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027728 2018-06-24] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [463080 2018-06-24] (AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [211160 2018-06-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381584 2018-06-24] (AVAST Software)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-12-12] (REALiX(tm))
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [190696 2018-06-29] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112872 2018-06-29] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [44768 2018-06-29] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-06-29] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [94840 2018-06-29] (Malwarebytes)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-01-08] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-01-08] (Zemana Ltd.)
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-11-13 08:53 - 2020-11-13 08:53 - 000000000 ____D C:\Users\Todos os Usuários\IsolatedStorage
2020-11-13 08:53 - 2020-11-13 08:53 - 000000000 ____D C:\Users\7\AppData\Roaming\IsolatedStorage
2020-11-13 08:53 - 2020-11-13 08:53 - 000000000 ____D C:\ProgramData\IsolatedStorage
2018-06-29 21:12 - 2018-06-29 21:13 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2018-06-29 21:06 - 2018-06-29 21:13 - 000021112 _____ C:\Users\7\Desktop\FRST.txt
2018-06-29 21:06 - 2018-06-29 21:06 - 001773056 _____ (Farbar) C:\Users\7\Desktop\FRST.exe
2018-06-29 21:04 - 2018-06-29 21:06 - 000000000 ____D C:\FRST
2018-06-29 21:03 - 2018-06-29 21:03 - 000190696 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-06-29 21:03 - 2018-06-29 21:03 - 000044768 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-06-29 21:02 - 2018-06-29 21:02 - 002412544 _____ (Farbar) C:\Users\7\Desktop\FRST64.exe
2018-06-29 21:02 - 2018-06-29 21:02 - 000112872 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-06-29 21:02 - 2018-06-29 21:02 - 000094840 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-06-29 20:48 - 2018-06-29 20:48 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-06-28 22:12 - 2018-06-28 22:12 - 000082838 _____ C:\Users\7\Desktop\plano_curricular_simulacao.pdf
2018-06-28 17:58 - 2018-06-28 17:58 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign1692314b8b182007
2018-06-28 17:37 - 2018-06-28 17:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign8ad46ec25da0ed1d
2018-06-28 13:15 - 2018-06-28 13:15 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignbd3237d3ef405a27
2018-06-28 13:12 - 2018-06-28 13:12 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignb302fdfe50ec4f7c
2018-06-28 13:12 - 2018-06-28 13:12 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign74addca4b46fb230
2018-06-28 13:12 - 2018-06-28 13:12 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign6b8023b086272d6b
2018-06-28 12:13 - 2018-06-28 12:13 - 000043597 _____ C:\Users\7\Desktop\ZHPCleaner²³.txt
2018-06-28 12:10 - 2018-06-28 12:29 - 000043481 _____ C:\Users\7\Desktop\ZHPCleaner.txt
2018-06-28 11:47 - 2018-06-28 11:47 - 003256192 _____ C:\Users\7\Desktop\ZHPCleaner.exe
2018-06-28 11:29 - 2018-06-28 11:35 - 000000000 ____D C:\AdwCleaner
2018-06-28 11:20 - 2018-06-28 11:20 - 007395536 _____ (Malwarebytes) C:\Users\7\Desktop\adwcleaner_7.2.1.exe
2018-06-27 21:11 - 2018-06-28 17:36 - 004993077 _____ C:\Users\7\Desktop\Under.psd
2018-06-27 20:51 - 2018-06-27 20:51 - 006828629 _____ C:\Users\7\Desktop\Vlad.psd
2018-06-27 16:32 - 2018-06-27 16:33 - 001843206 _____ C:\Users\7\Desktop\guias 2.psd
2018-06-27 15:24 - 2018-06-27 16:34 - 001450818 _____ C:\Users\7\Desktop\Ryuk e Valdomiro².psd
2018-06-27 14:11 - 2018-06-27 14:16 - 000000000 ____D C:\Users\7\Desktop\gif
2018-06-27 13:43 - 2018-06-27 13:43 - 000023409 _____ C:\ZA-Scan.txt
2018-06-27 13:32 - 2018-06-27 13:32 - 000000000 ____D C:\zoek_backup
2018-06-27 13:32 - 2018-04-19 22:18 - 002041445 _____ C:\Users\7\Desktop\Z-Analyse.exe
2018-06-27 13:32 - 2018-04-18 00:39 - 002038755 _____ C:\Users\7\Desktop\zoek.exe
2018-06-27 13:32 - 2018-04-18 00:39 - 002038755 _____ C:\Users\7\Desktop\ZA-Scan.exe
2018-06-27 13:30 - 2018-06-27 13:30 - 006102389 _____ C:\Users\7\Desktop\zoek.zip
2018-06-26 20:33 - 2018-06-26 20:33 - 000900660 _____ C:\Users\7\Desktop\grupes.psd
2018-06-24 22:15 - 2018-06-24 22:15 - 000001827 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-06-24 22:15 - 2018-06-24 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-06-24 22:14 - 2018-06-27 19:35 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-06-24 22:01 - 2018-06-24 22:01 - 000002201 _____ C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2018-06-24 22:00 - 2018-06-24 22:01 - 000000000 ____D C:\Users\7\AppData\Local\chromium
2018-06-24 21:59 - 2018-06-24 21:59 - 000000000 ____D C:\Windows\System32\Tasks\{03B39B45-697B-8279-7F32-0FDA38FBF100}
2018-06-24 21:58 - 2018-06-24 22:58 - 000000000 ____D C:\Users\7\AppData\Local\Fedok
2018-06-24 21:57 - 2018-06-24 21:57 - 015838840 _____ (Piriform Ltd) C:\Users\7\Downloads\ccleaner.exe
2018-06-24 18:14 - 2018-06-24 18:14 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-06-24 18:13 - 2018-06-24 18:13 - 000378072 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-06-23 22:31 - 2018-06-23 22:31 - 000250869 _____ C:\Users\7\Desktop\OPTATIVAS_DA_UNIDADE.pdf
2018-06-23 22:30 - 2018-06-23 22:30 - 000475282 _____ C:\Users\7\Desktop\10o_SEMESTRE.pdf
2018-06-23 22:30 - 2018-06-23 22:30 - 000257162 _____ C:\Users\7\Desktop\8o_SEMESTRE.pdf
2018-06-23 22:30 - 2018-06-23 22:30 - 000234129 _____ C:\Users\7\Desktop\7o_SEMESTRE.pdf
2018-06-23 22:30 - 2018-06-23 22:30 - 000213492 _____ C:\Users\7\Desktop\9o_SEMESTRE.pdf
2018-06-23 22:29 - 2018-06-23 22:29 - 000259055 _____ C:\Users\7\Desktop\6o_SEMESTRE.pdf
2018-06-22 17:07 - 2018-06-24 18:00 - 000000000 ____D C:\Users\7\AppData\LocalLow\uTorrent
2018-06-21 18:52 - 2018-06-22 16:42 - 003773918 _____ C:\Users\7\Desktop\formação-soa.psd
2018-06-19 14:13 - 2018-06-29 20:51 - 000000000 ____D C:\Users\7\AppData\Local\AVAST Software
2018-06-17 16:40 - 2018-06-17 16:40 - 000000000 ____D C:\Users\7\AppData\Roaming\AVAST Software
2018-06-17 16:29 - 2018-06-17 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-06-17 16:19 - 2018-06-25 16:34 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-06-17 16:17 - 2018-06-24 18:13 - 000211160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000463080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000381584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000197160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000159640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000111872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 001027728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000239680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000229392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000201328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000059592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-06-17 16:14 - 2018-06-17 16:14 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-06-17 16:10 - 2018-06-17 16:10 - 000000000 ____D C:\Program Files\AVAST Software
2018-06-14 15:18 - 2018-06-21 23:04 - 000030832 _____ C:\Users\7\Desktop\ep.xlsx
2018-06-13 19:10 - 2018-06-28 17:36 - 001986479 _____ C:\Users\7\Desktop\base.1.psd
2018-06-13 14:14 - 2018-06-13 14:14 - 003391220 _____ C:\Users\7\Desktop\data.zip
2018-06-13 14:05 - 2018-05-29 17:36 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-06-13 14:05 - 2018-05-29 16:40 - 000348824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-06-13 14:05 - 2018-05-28 23:43 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-06-13 14:05 - 2018-05-28 23:41 - 005577408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-06-13 14:05 - 2018-05-28 23:41 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-06-13 14:05 - 2018-05-28 23:41 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-06-13 14:05 - 2018-05-28 23:41 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-06-13 14:05 - 2018-05-28 23:41 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-06-13 14:05 - 2018-05-28 23:35 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 004050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-06-13 14:05 - 2018-05-28 23:32 - 003962048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-06-13 14:05 - 2018-05-28 23:32 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-06-13 14:05 - 2018-05-28 23:25 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-06-13 14:05 - 2018-05-28 23:22 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-06-13 14:05 - 2018-05-28 23:22 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-06-13 14:05 - 2018-05-28 23:22 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-06-13 14:05 - 2018-05-28 22:59 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-06-13 14:05 - 2018-05-28 22:56 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-06-13 14:05 - 2018-05-28 22:54 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-06-13 14:05 - 2018-05-28 21:04 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-06-13 14:05 - 2018-05-25 02:10 - 025742848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-06-13 14:05 - 2018-05-25 01:46 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-06-13 14:05 - 2018-05-25 01:44 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-06-13 14:05 - 2018-05-25 01:44 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-06-13 14:05 - 2018-05-25 01:38 - 005779968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-06-13 14:05 - 2018-05-25 01:34 - 020286976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-06-13 14:05 - 2018-05-25 01:33 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-06-13 14:05 - 2018-05-25 01:32 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-06-13 14:05 - 2018-05-25 01:32 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-06-13 14:05 - 2018-05-25 01:24 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-06-13 14:05 - 2018-05-25 01:21 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-06-13 14:05 - 2018-05-25 01:16 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-06-13 14:05 - 2018-05-25 01:15 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-06-13 14:05 - 2018-05-25 01:12 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-06-13 14:05 - 2018-05-25 01:10 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-06-13 14:05 - 2018-05-25 01:10 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-06-13 14:05 - 2018-05-25 01:08 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-06-13 14:05 - 2018-05-25 01:07 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-06-13 14:05 - 2018-05-25 01:06 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-06-13 14:05 - 2018-05-25 01:06 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-06-13 14:05 - 2018-05-25 00:57 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-06-13 14:05 - 2018-05-25 00:55 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-06-13 14:05 - 2018-05-25 00:55 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-06-13 14:05 - 2018-05-25 00:53 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-06-13 14:05 - 2018-05-25 00:53 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-06-13 14:05 - 2018-05-25 00:53 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-06-13 14:05 - 2018-05-25 00:42 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-06-13 14:05 - 2018-05-25 00:40 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-06-13 14:05 - 2018-05-25 00:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-06-13 14:05 - 2018-05-25 00:39 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-06-13 14:05 - 2018-05-25 00:38 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-06-13 14:05 - 2018-05-25 00:38 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-06-13 14:05 - 2018-05-25 00:37 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-06-13 14:05 - 2018-05-25 00:29 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-06-13 14:05 - 2018-05-25 00:19 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-06-13 14:05 - 2018-05-25 00:17 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-06-13 14:05 - 2018-05-25 00:15 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-06-13 14:05 - 2018-05-25 00:14 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-06-13 14:05 - 2018-05-15 01:16 - 001681088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-06-13 14:05 - 2018-05-15 00:44 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-06-13 14:05 - 2018-05-15 00:44 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2018-06-13 14:05 - 2018-05-15 00:44 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-06-13 14:05 - 2018-05-15 00:23 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2018-06-13 14:05 - 2018-05-15 00:13 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-06-13 14:05 - 2018-05-15 00:13 - 000782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2018-06-13 14:05 - 2018-05-15 00:13 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-06-13 14:05 - 2018-05-15 00:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2018-06-13 14:05 - 2018-05-14 22:20 - 000467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-06-13 14:05 - 2018-05-14 22:20 - 000459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-06-13 14:05 - 2018-05-11 23:07 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-06-13 14:05 - 2018-05-11 23:07 - 000033152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-06-13 14:05 - 2018-05-11 23:07 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-06-13 14:05 - 2018-05-11 18:19 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-06-13 14:05 - 2018-05-11 18:19 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-06-13 14:05 - 2018-05-10 21:40 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-06-13 14:05 - 2018-05-10 21:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-06-13 14:05 - 2018-04-06 13:39 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-06-13 14:05 - 2018-04-06 13:38 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:03 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-06-13 14:04 - 2018-05-28 23:03 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-06-13 14:04 - 2018-05-28 23:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-06-13 14:04 - 2018-05-28 23:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-06-13 14:04 - 2018-05-28 23:03 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-06-13 14:04 - 2018-05-28 22:59 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-06-13 14:04 - 2018-05-28 22:58 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:55 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-06-13 14:04 - 2018-05-28 22:55 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-06-13 14:04 - 2018-05-28 22:54 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-06-13 14:04 - 2018-05-25 01:59 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-06-13 14:04 - 2018-05-25 01:59 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-06-13 14:04 - 2018-05-25 01:45 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-06-13 14:04 - 2018-05-25 01:44 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-06-13 14:04 - 2018-05-25 01:43 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-06-13 14:04 - 2018-05-25 01:37 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-06-13 14:04 - 2018-05-25 01:36 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-06-13 14:04 - 2018-05-25 01:32 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-06-13 14:04 - 2018-05-25 01:32 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-06-13 14:04 - 2018-05-25 01:28 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-06-13 14:04 - 2018-05-25 01:16 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-06-13 14:04 - 2018-05-25 01:15 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-06-13 14:04 - 2018-05-25 01:14 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-06-13 14:04 - 2018-05-25 01:14 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-06-13 14:04 - 2018-05-25 01:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-06-13 14:04 - 2018-05-25 01:13 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-06-13 14:04 - 2018-05-25 01:09 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-06-13 14:04 - 2018-05-25 01:08 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-06-13 14:04 - 2018-05-25 01:05 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-06-13 14:04 - 2018-05-25 01:05 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-06-13 14:04 - 2018-05-25 00:57 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-06-13 14:04 - 2018-05-25 00:52 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-06-13 14:04 - 2018-05-25 00:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-06-13 14:04 - 2018-05-25 00:51 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-06-13 14:04 - 2018-05-25 00:49 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-06-13 14:04 - 2018-05-25 00:48 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-06-13 14:04 - 2018-05-25 00:47 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-06-13 14:04 - 2018-05-25 00:45 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-06-13 14:04 - 2018-05-15 00:44 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2018-06-13 14:04 - 2018-05-15 00:24 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2018-06-13 14:04 - 2018-05-15 00:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2018-06-13 14:04 - 2018-05-15 00:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2018-06-13 14:04 - 2018-05-11 18:19 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-06-13 14:04 - 2018-05-10 21:40 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-06-13 13:21 - 2018-06-19 14:37 - 000000000 ____D C:\Users\7\Desktop\ROStart
2018-06-12 11:21 - 2018-06-12 11:21 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ragnarök Start.lnk
2018-06-12 11:15 - 2018-06-14 20:40 - 000000000 ____D C:\Program Files (x86)\Ragnarök Start
2018-06-12 11:11 - 2018-06-04 23:36 - 000343232 _____ (Ragnarök Start ) C:\Users\7\Desktop\Ragnarök Start ~ Instalador.exe
2018-06-12 11:05 - 2018-06-12 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Level Up
2018-06-08 15:35 - 2018-06-17 14:29 - 000689529 _____ C:\Users\7\Desktop\case.psd
2018-06-06 12:34 - 2018-06-04 23:36 - 1106532945 _____ C:\Users\7\Desktop\Ragnarök Start ~ Instalador-2.bin
2018-06-06 12:31 - 2018-06-04 23:29 - 2099656448 _____ C:\Users\7\Desktop\Ragnarök Start ~ Instalador-1.bin
2018-06-06 11:50 - 2018-06-06 12:07 - 3206480742 _____ C:\Users\7\Desktop\Ragnarök Start _ Instalador.zip
2018-06-04 10:41 - 2018-06-04 10:41 - 000108368 _____ C:\Users\7\Downloads\Comprovante Pagamento.pdf
2018-06-02 15:09 - 2018-06-21 22:26 - 001071395 _____ C:\Users\7\Desktop\letreiro.psd
2018-06-02 15:06 - 2018-06-21 22:26 - 000965758 _____ C:\Users\7\Desktop\rostart - guia completa.psd
2018-05-29 23:32 - 2018-05-29 23:32 - 000123728 _____ C:\Users\7\Desktop\Orientações Autos Findos.pdf
2018-05-29 17:49 - 2018-05-29 17:50 - 000101290 _____ C:\Users\7\Desktop\A¹².psd
2018-05-29 17:21 - 2018-05-29 17:21 - 001061914 _____ C:\Users\7\Desktop\gow forumeiros².psd
2018-05-27 16:55 - 2018-05-27 16:55 - 000027204 _____ C:\Users\7\Downloads\ROStart _ Bônus por Refinamento (V1.0.0 Closed Beta).xlsx
2018-05-27 16:49 - 2018-05-27 16:49 - 000701419 _____ C:\Users\7\Downloads\Pratica Juridica 7 semestre_N2.pdf
2018-05-26 22:49 - 2018-05-26 23:01 - 001041668 _____ C:\Users\7\Desktop\gow forumeiros.psd
2018-05-26 21:30 - 2018-05-26 22:24 - 000235522 _____ C:\Users\7\Desktop\base.xlsx
2018-05-26 20:48 - 2018-05-26 20:48 - 000639318 _____ C:\Users\7\Desktop\DIREITO-USJT.pdf
2018-05-24 22:02 - 2018-05-24 22:02 - 000177537 _____ C:\Users\7\Desktop\Nomenclatura dos autos.pdf
2018-05-22 23:05 - 2018-05-22 23:06 - 000203189 _____ C:\Users\7\Desktop\donnas.psd
2018-05-22 20:21 - 2018-05-22 20:21 - 000894732 _____ C:\Users\7\Desktop\Ryuk e Valdomiro.psd
2018-05-22 19:20 - 2018-05-22 19:20 - 000063280 _____ C:\Users\7\Downloads\FontsFree-Net-Proxima-Nova-Black-It.otf
2018-05-22 18:21 - 2018-05-22 18:21 - 000497767 _____ C:\Users\7\Downloads\digitalizar0002.pdf
2018-05-11 11:21 - 2018-05-11 11:31 - 020047182 _____ C:\Users\7\Desktop\b-2.psd
2018-05-11 10:59 - 2018-05-11 10:59 - 002901536 _____ C:\Users\7\Desktop\b-1.psd
2018-05-09 22:20 - 2018-04-22 21:00 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000512512 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-05-09 22:20 - 2018-04-22 20:40 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-05-09 22:20 - 2018-04-22 20:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-09 22:20 - 2018-04-22 20:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-05-09 22:20 - 2018-04-22 20:24 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-05-09 22:20 - 2018-04-18 13:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-09 22:20 - 2018-04-18 13:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-05-09 22:20 - 2018-04-18 12:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-09 22:20 - 2018-04-18 12:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-05-09 22:20 - 2018-04-18 12:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-05-09 22:20 - 2018-04-18 12:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-05-09 22:20 - 2018-04-11 13:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-09 22:20 - 2018-04-11 13:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-09 22:20 - 2018-04-11 13:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-09 22:20 - 2018-04-11 13:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-09 22:20 - 2018-04-10 13:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-05-09 22:20 - 2018-04-10 13:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-05-09 22:20 - 2018-04-10 13:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-09 22:20 - 2018-04-10 13:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-09 22:20 - 2018-04-10 13:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-09 22:20 - 2018-04-10 13:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-09 22:20 - 2018-04-10 13:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-05-09 22:20 - 2018-04-10 12:54 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-09 22:20 - 2018-04-10 12:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-05-09 22:20 - 2018-04-10 12:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-09 22:20 - 2018-04-10 12:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-05-09 22:20 - 2018-04-07 13:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-05-09 22:20 - 2018-03-14 14:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-05-09 22:20 - 2018-03-14 14:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-05-09 22:20 - 2018-03-14 14:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-05-09 22:20 - 2018-03-14 14:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-05-09 22:20 - 2018-03-14 14:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-05-09 22:20 - 2018-03-14 13:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-05-09 22:20 - 2018-03-14 13:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-05-09 22:20 - 2018-03-14 13:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-05-09 22:20 - 2018-03-14 13:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-05-09 22:20 - 2018-03-14 13:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-05-09 22:20 - 2018-03-14 13:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-05-09 22:20 - 2018-03-14 13:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-05-09 22:20 - 2018-03-14 13:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-05-09 22:20 - 2018-03-14 13:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-05-09 22:20 - 2018-03-14 13:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-05-09 22:20 - 2018-03-14 13:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-05-08 14:28 - 2018-05-08 14:28 - 003945823 _____ C:\Users\7\Desktop\SOA.psd
2018-05-07 15:52 - 2018-05-07 15:52 - 000042003 _____ C:\Users\7\Desktop\Nube 1L.pdf
2018-04-26 19:18 - 2018-04-26 19:18 - 000109592 _____ C:\Users\7\Downloads\fea909b3-014a-4b7f-aea4-c950aa707714.tmp
2018-04-23 18:10 - 2018-04-23 18:10 - 000001795 _____ C:\Users\7\Downloads\Segue curriculo e foto de Aline Gu... (Anexos).zip
2018-04-23 18:10 - 2018-04-23 18:10 - 000001622 _____ C:\Users\7\Downloads\Curriculo-foto_Aline-Guedes.rar
2018-04-18 17:10 - 2018-04-18 17:11 - 000108213 _____ C:\Users\7\Downloads\Comprovante Transferência.pdf
2018-04-14 14:16 - 2018-04-14 14:16 - 000000000 ____D C:\Level Up
2018-04-14 13:12 - 2018-04-14 13:12 - 000000000 ____D C:\Program Files\Microsoft ASP.NET Core Runtime Package Store
2018-04-13 22:25 - 2018-04-14 13:12 - 000000000 ____D C:\Program Files\dotnet
2018-04-13 22:18 - 2018-04-13 22:22 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2018-04-13 22:18 - 2018-04-13 22:18 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2018-04-13 22:16 - 2018-04-13 22:16 - 000001722 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend para Visual Studio 2017.lnk
2018-04-13 22:16 - 2018-04-13 22:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017
2018-04-13 22:12 - 2018-04-13 22:12 - 000001475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017.lnk
2018-04-13 22:10 - 2018-04-13 22:10 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2018-04-13 22:10 - 2018-04-13 22:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-04-13 22:01 - 2018-04-14 13:11 - 000000000 ____D C:\Users\7\AppData\Roaming\Visual Studio Setup
2018-04-13 22:01 - 2018-04-13 22:01 - 000001286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2018-04-13 22:01 - 2018-04-13 22:01 - 000000000 ____D C:\Users\7\AppData\Roaming\vstelemetry
2018-04-13 22:01 - 2018-04-13 22:01 - 000000000 ____D C:\Users\7\AppData\Roaming\Microsoft Visual Studio
2018-04-13 22:01 - 2018-04-13 22:01 - 000000000 ____D C:\Users\7\AppData\Local\ServiceHub
2018-04-13 22:00 - 2018-04-13 22:00 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft Visual Studio
2018-04-13 22:00 - 2018-04-13 22:00 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2018-04-13 13:59 - 2018-03-10 14:11 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2018-04-13 13:59 - 2018-03-09 15:18 - 000309440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000383680 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-04-13 13:59 - 2018-03-09 15:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-04-13 13:59 - 2018-03-09 15:07 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-04-13 13:59 - 2018-03-09 15:07 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-04-13 13:59 - 2018-03-09 15:07 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-04-13 13:59 - 2018-03-09 15:06 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-04-13 13:59 - 2018-03-09 15:06 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-04-13 13:59 - 2018-03-09 14:31 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-04-13 13:59 - 2018-03-06 15:13 - 000148160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-04-13 13:59 - 2018-03-06 15:11 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-04-13 13:59 - 2018-03-06 15:11 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2018-04-13 13:59 - 2018-03-06 15:10 - 000170176 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-04-13 13:59 - 2018-03-06 15:07 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-04-13 13:59 - 2018-03-06 15:07 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000063832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000020824 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000019800 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000016216 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000922944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000066392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000019800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000017752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000017752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000016216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000015704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000014168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000014168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-04-11 12:52 - 2018-03-14 14:14 - 000135360 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-04-11 12:52 - 2018-03-14 14:09 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-04-11 12:52 - 2018-03-14 10:05 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-04-07 14:29 - 2018-04-07 14:30 - 000000000 ____D C:\Users\7\Downloads\2018
2018-04-07 13:51 - 2018-06-25 20:41 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-04-07 13:50 - 2018-05-18 17:57 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-04-07 13:49 - 2018-05-18 17:57 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-04-07 13:49 - 2018-04-07 14:01 - 000000000 ____D C:\Users\7\AppData\Local\Google
2018-04-07 13:49 - 2018-04-07 13:50 - 000000000 ____D C:\Program Files (x86)\Google
2018-04-03 14:21 - 2018-04-03 14:35 - 2031087080 _____ (Level Up! Games ) C:\Users\7\Desktop\Instalador_Client_Ragnarok_1.1.1.3.exe

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2028-11-17 07:24 - 2016-11-12 14:22 - 000000000 ____D C:\Users\7\AppData\Roaming\HpUpdate
2019-06-28 04:52 - 2017-02-17 07:56 - 000000046 _____ C:\Windows\SysWOW64\_WKERNEL.SYL
2018-06-29 21:13 - 2018-01-08 21:41 - 000064559 _____ C:\Windows\ZAM.krnl.trace
2018-06-29 21:13 - 2018-01-08 21:41 - 000046036 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-06-29 21:02 - 2009-07-14 01:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-06-29 21:02 - 2009-07-14 01:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-06-29 20:47 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-29 02:00 - 2016-11-12 11:40 - 000000000 ____D C:\Users\7\AppData\Local\Adobe
2018-06-28 17:27 - 2017-12-25 19:39 - 000001456 _____ C:\Users\7\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2018-06-28 12:29 - 2018-01-09 12:13 - 000000000 ____D C:\Users\7\AppData\Roaming\ZHP
2018-06-28 11:49 - 2018-01-09 12:13 - 000000000 ____D C:\Users\7\AppData\Local\ZHP
2018-06-28 11:35 - 2017-12-12 17:10 - 000000000 ____D C:\Program Files (x86)\IObit
2018-06-28 11:35 - 2017-09-24 22:06 - 000000000 ____D C:\Users\7\AppData\Roaming\IObit
2018-06-28 11:35 - 2017-09-24 22:06 - 000000000 ____D C:\Users\7\AppData\LocalLow\IObit
2018-06-25 17:02 - 2017-07-26 19:02 - 000688802 _____ C:\Windows\system32\perfh007.dat
2018-06-25 17:02 - 2017-07-26 19:02 - 000148774 _____ C:\Windows\system32\perfc007.dat
2018-06-25 17:02 - 2011-01-27 20:11 - 000705474 _____ C:\Windows\system32\prfh0416.dat
2018-06-25 17:02 - 2011-01-27 20:11 - 000147314 _____ C:\Windows\system32\prfc0416.dat
2018-06-25 17:02 - 2009-07-14 02:13 - 002471992 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-25 17:02 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2018-06-25 14:20 - 2009-07-14 01:45 - 005122256 _____ C:\Windows\system32\FNTCACHE.DAT
2018-06-25 14:19 - 2017-12-07 14:19 - 000000000 ____D C:\Program Files (x86)\Panda Security
2018-06-25 02:02 - 2016-11-12 15:44 - 000000000 ____D C:\Users\7\AppData\Roaming\uTorrent
2018-06-24 22:07 - 2001-12-31 23:07 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-06-24 22:00 - 2017-12-09 19:40 - 000145808 _____ C:\Users\7\AppData\Local\GDIPFONTCACHEV1.DAT
2018-06-24 18:20 - 2017-12-07 14:16 - 000000000 ____D C:\Users\Todos os Usuários\Panda Security
2018-06-24 18:20 - 2017-12-07 14:16 - 000000000 ____D C:\ProgramData\Panda Security
2018-06-24 18:18 - 2017-12-07 14:21 - 000000000 ____D C:\Users\7\AppData\Roaming\Panda Security
2018-06-24 18:14 - 2017-12-25 17:08 - 000000000 ____D C:\Program Files\Opera
2018-06-24 17:51 - 2018-01-28 11:51 - 002448846 _____ C:\Windows\ntbtlog.txt
2018-06-22 18:53 - 2016-11-12 12:06 - 000000000 ____D C:\Users\7\AppData\Roaming\vlc
2018-06-20 14:44 - 2017-09-24 00:05 - 000000000 ____D C:\Windows\Minidump
2018-06-20 14:44 - 2016-11-12 11:18 - 000317424 ____N C:\Windows\Minidump\062018-26953-01.dmp
2018-06-19 16:19 - 2017-11-20 13:54 - 000000000 ____D C:\Users\7\Desktop\Equips iRO
2018-06-19 15:22 - 2017-09-09 16:05 - 000000000 ____D C:\Users\7\AppData\Roaming\GRF Editor
2018-06-17 16:14 - 2016-11-12 12:12 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2018-06-17 16:14 - 2016-11-12 12:12 - 000000000 ____D C:\ProgramData\AVAST Software
2018-06-16 15:26 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache
2018-06-13 22:41 - 2017-01-25 11:15 - 000000000 ____D C:\Windows\system32\MRT
2018-06-13 22:37 - 2017-10-10 18:31 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-06-13 22:36 - 2017-01-25 11:14 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-06-12 10:42 - 2017-07-07 11:02 - 000000000 ___RD C:\Users\7\Desktop\NOTA FISCAL CONSULTAS E REMEDIOS
2018-06-12 10:40 - 2016-12-14 07:07 - 000000000 ____D C:\Users\7\Documents\Minhas digitalizações
2018-06-09 00:29 - 2017-12-23 18:11 - 000004530 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-06-09 00:29 - 2016-12-28 18:08 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-06-09 00:29 - 2016-12-28 18:08 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-09 00:29 - 2016-12-28 18:08 - 000004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-06-09 00:29 - 2016-12-28 18:08 - 000000000 ____D C:\Windows\system32\Macromed
2018-06-09 00:29 - 2016-11-12 14:20 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-08 22:57 - 2018-03-13 19:11 - 000004518 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-06-04 22:45 - 2016-11-21 16:36 - 000000000 ____D C:\Users\7\AppData\LocalLow\Mozilla
2018-06-02 15:57 - 2016-11-12 11:18 - 000317560 ____N C:\Windows\Minidump\060218-28640-01.dmp

==================== Arquivos na raiz de alguns diretórios =======

2017-06-11 17:39 - 2017-08-16 14:28 - 000000034 _____ () C:\Users\7\AppData\Roaming\AdobeWLCMCache.dat
2017-05-30 21:45 - 2017-07-18 22:45 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato BMP do Adobe CS6
2017-07-14 19:19 - 2017-07-15 12:29 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato GIF do Adobe CS6
2016-11-12 16:53 - 2017-08-10 14:17 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2017-09-22 22:32 - 2018-05-24 17:37 - 000469320 _____ () C:\Users\7\AppData\Roaming\_encryptiondb.grf
2017-12-25 19:39 - 2018-06-28 17:27 - 000001456 _____ () C:\Users\7\AppData\Local\Adobe Salvar para Web 13.0 Prefs

Alguns arquivos em TEMP:
====================
2018-03-18 21:13 - 2018-03-18 21:13 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001359768.dll
2018-03-18 21:14 - 2018-03-18 21:14 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001400505.dll
2018-03-18 21:14 - 2018-03-18 21:14 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001403029.dll
2018-04-04 17:07 - 2018-04-04 17:07 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200758015.dll
2018-04-04 17:08 - 2018-04-04 17:08 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200800671.dll
2018-04-04 17:08 - 2018-04-04 17:08 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200802140.dll
2018-06-27 13:32 - 2009-11-10 20:09 - 000157184 _____ () C:\Users\7\AppData\Local\Temp\virustotal.exe
2018-06-19 13:10 - 2018-06-23 21:36 - 000391024 _____ (adaware) C:\Users\7\AppData\Local\Temp\wcupdater.exe

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2018-06-28 12:53

==================== Fim de FRST.txt ============================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Desinstale os seguintes programas:

 

Zemana AntiMalware
Malwarebytes

 

Mantenha somente um antivírus e um antispyware ativado.

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o arquivo (fixlist.txt) no anexo deste post e salve-o na Área de Trabalho (Desktop).

Execute o FRST.exe (ou FRST64.exe) e clique no botão Corrigir.

Aguarde... ao final será gerado o log Fixlog.txt  salvo em sua Área de Trabalho (Desktop).

Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

Abraços :D

fixlist.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano boa tarde!

eu já cheguei a desinstalar o Malwarebytes, porém o Zemana AntiMalware está dando um erro:

 

image.png.d31b4593f358fa0cbf1659f4d21d1c0a.png

 

poderia me orientar quanto a desinstalação desse programa?
desde já agradeço pela atenção! 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Amigo, siga com o procedimento do meu último post que depois dou conta dele. ;)

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano  me desculpe pelo questionamento, eu sinceramente não tinha entendido.

segue a seguir o procedimento solicitado:

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 20.06.2018
Executado por 7 (03-07-2018 13:33:59) Run:1
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms}
CHR DefaultSearchKeyword: Default -> safeWeb
2018-06-24 22:01 - 2018-06-24 22:01 - 000002201 _____ C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2018-06-24 22:00 - 2018-06-24 22:01 - 000000000 ____D C:\Users\7\AppData\Local\chromium
FirewallRules: [{11B1B1AC-1CBC-4A14-A7AE-278C9F8EBC4F}] => (Allow) C:\Users\7\AppData\Local\Chromium\Application\chrome.exe
2018-03-18 21:13 - 2018-03-18 21:13 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001359768.dll
2018-03-18 21:14 - 2018-03-18 21:14 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001400505.dll
2018-03-18 21:14 - 2018-03-18 21:14 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001403029.dll
2018-04-04 17:07 - 2018-04-04 17:07 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200758015.dll
2018-04-04 17:08 - 2018-04-04 17:08 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200800671.dll
2018-04-04 17:08 - 2018-04-04 17:08 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200802140.dll
2018-06-27 13:32 - 2009-11-10 20:09 - 000157184 _____ () C:\Users\7\AppData\Local\Temp\virustotal.exe
2018-06-19 13:10 - 2018-06-23 21:36 - 000391024 _____ (adaware) C:\Users\7\AppData\Local\Temp\wcupdater.exe
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} =>  -> Nenhum Arquivo
CMD: ipconfig /flushdns
EmptyTemp:

*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
"HKU\S-1-5-21-255323123-3732995248-2485898865-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium" => removido (a) com sucesso.
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors) => Erro: Nenhuma correção automática foi encontrada para esta entrada.
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors) => Erro: Nenhuma correção automática foi encontrada para esta entrada.
"HKLM\SOFTWARE\Policies\Google" => removido (a) com sucesso.
"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removido (a) com sucesso.
"Chrome DefaultSearchURL" => removido (a) com sucesso.
"Chrome DefaultSearchKeyword" => removido (a) com sucesso.
C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk => movido com sucesso
C:\Users\7\AppData\Local\chromium => movido com sucesso
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11B1B1AC-1CBC-4A14-A7AE-278C9F8EBC4F}" => removido (a) com sucesso.
C:\Users\7\AppData\Local\Temp\Opera_installer_180319001359768.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180319001400505.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180319001403029.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180404200758015.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180404200800671.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180404200802140.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\virustotal.exe => movido com sucesso
C:\Users\7\AppData\Local\Temp\wcupdater.exe => movido com sucesso
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{B19ED566-D419-470b-B111-3C89040BC027} => não encontrado (a)

========= ipconfig /flushdns =========


Configura‡Æo de IP do Windows

Libera‡Æo do Cache do DNS Resolver bem-sucedida.

========= Fim de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 36496603 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1049563983 B
Edge => 0 B
Chrome => 405257599 B
Firefox => 0 B
Opera => 82865833 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 43892 B
7 => 12582913110 B

RecycleBin => 12625357303 B
EmptyTemp: => 25 GB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 13:38:49 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Faça um novo log com o FRST, porém antes de clicar no botão Examinar, marque a opção Addition.

 

Anexe os logs, por favor.

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano aqui está:
 

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 20.06.2018
Executado por 7 (03-07-2018 13:33:59) Run:1
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms}
CHR DefaultSearchKeyword: Default -> safeWeb
2018-06-24 22:01 - 2018-06-24 22:01 - 000002201 _____ C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2018-06-24 22:00 - 2018-06-24 22:01 - 000000000 ____D C:\Users\7\AppData\Local\chromium
FirewallRules: [{11B1B1AC-1CBC-4A14-A7AE-278C9F8EBC4F}] => (Allow) C:\Users\7\AppData\Local\Chromium\Application\chrome.exe
2018-03-18 21:13 - 2018-03-18 21:13 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001359768.dll
2018-03-18 21:14 - 2018-03-18 21:14 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001400505.dll
2018-03-18 21:14 - 2018-03-18 21:14 - 002153984 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180319001403029.dll
2018-04-04 17:07 - 2018-04-04 17:07 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200758015.dll
2018-04-04 17:08 - 2018-04-04 17:08 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200800671.dll
2018-04-04 17:08 - 2018-04-04 17:08 - 002183680 _____ (Opera Software) C:\Users\7\AppData\Local\Temp\Opera_installer_180404200802140.dll
2018-06-27 13:32 - 2009-11-10 20:09 - 000157184 _____ () C:\Users\7\AppData\Local\Temp\virustotal.exe
2018-06-19 13:10 - 2018-06-23 21:36 - 000391024 _____ (adaware) C:\Users\7\AppData\Local\Temp\wcupdater.exe
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} =>  -> Nenhum Arquivo
CMD: ipconfig /flushdns
EmptyTemp:

*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
"HKU\S-1-5-21-255323123-3732995248-2485898865-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium" => removido (a) com sucesso.
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018205202621\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors) => Erro: Nenhuma correção automática foi encontrada para esta entrada.
HKU\S-1-5-21-255323123-3732995248-2485898865-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06292018210415202\...\Run: [Chromium] => c:\users\7\appdata\local\chromium\application\chrome.exe [1053184 2016-03-09] (The Chromium Authors) => Erro: Nenhuma correção automática foi encontrada para esta entrada.
"HKLM\SOFTWARE\Policies\Google" => removido (a) com sucesso.
"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removido (a) com sucesso.
"Chrome DefaultSearchURL" => removido (a) com sucesso.
"Chrome DefaultSearchKeyword" => removido (a) com sucesso.
C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk => movido com sucesso
C:\Users\7\AppData\Local\chromium => movido com sucesso
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11B1B1AC-1CBC-4A14-A7AE-278C9F8EBC4F}" => removido (a) com sucesso.
C:\Users\7\AppData\Local\Temp\Opera_installer_180319001359768.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180319001400505.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180319001403029.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180404200758015.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180404200800671.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\Opera_installer_180404200802140.dll => movido com sucesso
C:\Users\7\AppData\Local\Temp\virustotal.exe => movido com sucesso
C:\Users\7\AppData\Local\Temp\wcupdater.exe => movido com sucesso
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{B19ED566-D419-470b-B111-3C89040BC027} => não encontrado (a)

========= ipconfig /flushdns =========


Configura‡Æo de IP do Windows

Libera‡Æo do Cache do DNS Resolver bem-sucedida.

========= Fim de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 36496603 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1049563983 B
Edge => 0 B
Chrome => 405257599 B
Firefox => 0 B
Opera => 82865833 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 43892 B
7 => 12582913110 B

RecycleBin => 12625357303 B
EmptyTemp: => 25 GB de dados temporários Removidos.

================================


O sistema precisou ser reiniciado.

==== Fim de Fixlog 13:38:49 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci

 

Creio que se confundiu, não era para repetir a correção, somente fazer um novo log do FRST... qualquer dúvida fique a vontade em perguntar. :thumbsup:

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano opa, certamente eu me confundi, poderia me orientar quanto ao log?
eu devo executar o FRST como adm:

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 20.06.2018
Executado por 7 (administrador) em 7-PC (06-07-2018 14:07:23)
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-12-19] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-24] (AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-06-23]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2017-12-19]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 187.122.127.35 187.122.127.59
Tcpip\..\Interfaces\{9354C108-EBDD-481B-88D9-1C195824AE17}: [DhcpNameServer] 187.122.127.35 187.122.127.59

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-255323123-3732995248-2485898865-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-8135c84434b144eb
SearchScopes: HKU\S-1-5-21-255323123-3732995248-2485898865-1000 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-8135c84434b144eb&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-06-24] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-06-24] (AVAST Software)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-06-23] [Legacy] [não assinado]
FF HKU\S-1-5-21-255323123-3732995248-2485898865-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-08] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms}
CHR DefaultSearchKeyword: Default -> safeWeb
CHR Profile: C:\Users\7\AppData\Local\Google\Chrome\User Data\Default [2018-07-06]
CHR Extension: (IBM Security Rapport) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2018-07-03]
CHR Extension: (Avast SafePrice) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-07-03]
CHR Extension: (Panda Safe Web) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\fagakgcelolinfnkfgekcnedpaklfcok [2018-07-03]
CHR Extension: (Avast Online Security) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-07-03]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-03]
CHR Extension: (Chrome Media Router) - C:\Users\7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-03]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-255323123-3732995248-2485898865-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-24] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-24] (AVAST Software)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7521480 2017-04-09] (INCA Internet Co., Ltd.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [1997792 2017-07-07] (Scopus Soluções em TI Ltda)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [197160 2018-06-24] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229392 2018-06-24] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201328 2018-06-24] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-06-24] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59592 2018-06-24] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239680 2018-06-24] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-06-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159640 2018-06-24] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111872 2018-06-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-06-24] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027728 2018-06-24] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [463080 2018-06-24] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [211160 2018-06-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381584 2018-06-24] (AVAST Software)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-12-12] (REALiX(tm))
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-01-08] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-01-08] (Zemana Ltd.)
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]
S3 MBAMFarflt; system32\DRIVERS\farflt.sys [X]
S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X]
S3 MBAMWebProtection; system32\DRIVERS\mwac.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2020-11-13 08:53 - 2020-11-13 08:53 - 000000000 ____D C:\Users\Todos os Usuários\IsolatedStorage
2020-11-13 08:53 - 2020-11-13 08:53 - 000000000 ____D C:\Users\7\AppData\Roaming\IsolatedStorage
2020-11-13 08:53 - 2020-11-13 08:53 - 000000000 ____D C:\ProgramData\IsolatedStorage
2018-07-06 14:07 - 2018-07-06 14:13 - 000016830 _____ C:\Users\7\Desktop\FRST.txt
2018-07-05 20:12 - 2018-07-05 20:12 - 000102400 _____ C:\Users\7\Desktop\CIEE.pdf
2018-07-04 13:15 - 2018-07-04 13:15 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignfdd42127f09cf9db
2018-07-04 12:19 - 2018-07-04 12:19 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignfe4314744342341c
2018-07-04 12:19 - 2018-07-04 12:19 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigndd818e2919a2e0d6
2018-07-04 12:19 - 2018-07-04 12:19 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign39f827fa8742e1e7
2018-07-03 16:17 - 2018-07-03 16:17 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign61a37acca434ae34
2018-07-03 16:16 - 2018-07-03 16:16 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignfaa069de9d1f47d3
2018-07-03 16:16 - 2018-07-03 16:16 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsigna5dc0bf13cc47eef
2018-07-02 15:59 - 2018-07-02 15:59 - 008208409 _____ C:\Users\7\Desktop\nythra.psd
2018-07-02 14:38 - 2018-07-02 14:38 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignfc359e086e84ea8f
2018-07-02 14:38 - 2018-07-02 14:38 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignddf4abb5452f0bb4
2018-07-02 14:38 - 2018-07-02 14:38 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign569779a0d41803ad
2018-06-29 21:04 - 2018-07-06 14:07 - 000000000 ____D C:\FRST
2018-06-29 21:02 - 2018-06-29 21:02 - 002412544 _____ (Farbar) C:\Users\7\Desktop\FRST64.exe
2018-06-28 22:12 - 2018-06-28 22:12 - 000082838 _____ C:\Users\7\Desktop\plano_curricular_simulacao.pdf
2018-06-28 17:58 - 2018-06-28 17:58 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign1692314b8b182007
2018-06-28 17:37 - 2018-06-28 17:37 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign8ad46ec25da0ed1d
2018-06-28 13:15 - 2018-06-28 13:15 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignbd3237d3ef405a27
2018-06-28 13:12 - 2018-06-28 13:12 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsignb302fdfe50ec4f7c
2018-06-28 13:12 - 2018-06-28 13:12 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign74addca4b46fb230
2018-06-28 13:12 - 2018-06-28 13:12 - 000000000 ____D C:\Users\7\AppData\Local\Tempzxpsign6b8023b086272d6b
2018-06-28 11:47 - 2018-06-28 11:47 - 003256192 _____ C:\Users\7\Desktop\ZHPCleaner.exe
2018-06-28 11:29 - 2018-06-28 11:35 - 000000000 ____D C:\AdwCleaner
2018-06-28 11:20 - 2018-06-28 11:20 - 007395536 _____ (Malwarebytes) C:\Users\7\Desktop\adwcleaner_7.2.1.exe
2018-06-27 21:11 - 2018-06-28 17:36 - 004993077 _____ C:\Users\7\Desktop\Under.psd
2018-06-27 20:51 - 2018-06-27 20:51 - 006828629 _____ C:\Users\7\Desktop\Vlad.psd
2018-06-27 16:32 - 2018-06-27 16:33 - 001843206 _____ C:\Users\7\Desktop\guias 2.psd
2018-06-27 15:24 - 2018-06-27 16:34 - 001450818 _____ C:\Users\7\Desktop\Ryuk e Valdomiro².psd
2018-06-27 14:11 - 2018-07-02 15:17 - 000000000 ____D C:\Users\7\Desktop\gif
2018-06-27 13:43 - 2018-06-27 13:43 - 000023409 _____ C:\ZA-Scan.txt
2018-06-27 13:32 - 2018-06-27 13:32 - 000000000 ____D C:\zoek_backup
2018-06-27 13:32 - 2018-04-19 22:18 - 002041445 _____ C:\Users\7\Desktop\Z-Analyse.exe
2018-06-27 13:32 - 2018-04-18 00:39 - 002038755 _____ C:\Users\7\Desktop\zoek.exe
2018-06-27 13:32 - 2018-04-18 00:39 - 002038755 _____ C:\Users\7\Desktop\ZA-Scan.exe
2018-06-27 13:30 - 2018-06-27 13:30 - 006102389 _____ C:\Users\7\Desktop\zoek.zip
2018-06-26 20:33 - 2018-06-26 20:33 - 000900660 _____ C:\Users\7\Desktop\grupes.psd
2018-06-24 21:59 - 2018-06-24 21:59 - 000000000 ____D C:\Windows\System32\Tasks\{03B39B45-697B-8279-7F32-0FDA38FBF100}
2018-06-24 21:58 - 2018-06-24 22:58 - 000000000 ____D C:\Users\7\AppData\Local\Fedok
2018-06-24 21:57 - 2018-06-24 21:57 - 015838840 _____ (Piriform Ltd) C:\Users\7\Downloads\ccleaner.exe
2018-06-24 18:14 - 2018-06-24 18:14 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-06-24 18:13 - 2018-06-24 18:13 - 000378072 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-06-23 22:31 - 2018-06-23 22:31 - 000250869 _____ C:\Users\7\Desktop\OPTATIVAS_DA_UNIDADE.pdf
2018-06-23 22:30 - 2018-06-23 22:30 - 000475282 _____ C:\Users\7\Desktop\10o_SEMESTRE.pdf
2018-06-22 17:07 - 2018-07-02 15:59 - 000000000 ____D C:\Users\7\AppData\LocalLow\uTorrent
2018-06-21 18:52 - 2018-06-22 16:42 - 003773918 _____ C:\Users\7\Desktop\formação-soa.psd
2018-06-19 14:13 - 2018-07-06 13:57 - 000000000 ____D C:\Users\7\AppData\Local\AVAST Software
2018-06-17 16:40 - 2018-06-17 16:40 - 000000000 ____D C:\Users\7\AppData\Roaming\AVAST Software
2018-06-17 16:29 - 2018-06-17 16:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-06-17 16:19 - 2018-07-03 12:52 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-06-17 16:17 - 2018-06-24 18:13 - 000211160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000463080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000381584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000197160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000159640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000111872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-06-17 16:16 - 2018-06-24 18:13 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 001027728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000239680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000229392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000201328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-06-17 16:16 - 2018-06-24 18:12 - 000059592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-06-17 16:14 - 2018-06-17 16:14 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-06-17 16:10 - 2018-06-17 16:10 - 000000000 ____D C:\Program Files\AVAST Software
2018-06-14 15:18 - 2018-06-21 23:04 - 000030832 _____ C:\Users\7\Desktop\ep.xlsx
2018-06-13 19:10 - 2018-06-28 17:36 - 001986479 _____ C:\Users\7\Desktop\base.1.psd
2018-06-13 14:14 - 2018-06-13 14:14 - 003391220 _____ C:\Users\7\Desktop\data.zip
2018-06-13 14:05 - 2018-05-29 17:36 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-06-13 14:05 - 2018-05-29 16:40 - 000348824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-06-13 14:05 - 2018-05-28 23:43 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-06-13 14:05 - 2018-05-28 23:41 - 005577408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-06-13 14:05 - 2018-05-28 23:41 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-06-13 14:05 - 2018-05-28 23:41 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-06-13 14:05 - 2018-05-28 23:41 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-06-13 14:05 - 2018-05-28 23:41 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-06-13 14:05 - 2018-05-28 23:35 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 004050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-06-13 14:05 - 2018-05-28 23:32 - 003962048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-06-13 14:05 - 2018-05-28 23:32 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-06-13 14:05 - 2018-05-28 23:32 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-06-13 14:05 - 2018-05-28 23:25 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-06-13 14:05 - 2018-05-28 23:22 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-06-13 14:05 - 2018-05-28 23:22 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-06-13 14:05 - 2018-05-28 23:22 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-06-13 14:05 - 2018-05-28 22:59 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-06-13 14:05 - 2018-05-28 22:56 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-06-13 14:05 - 2018-05-28 22:54 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-06-13 14:05 - 2018-05-28 21:04 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-06-13 14:05 - 2018-05-25 02:10 - 025742848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-06-13 14:05 - 2018-05-25 01:46 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-06-13 14:05 - 2018-05-25 01:44 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-06-13 14:05 - 2018-05-25 01:44 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-06-13 14:05 - 2018-05-25 01:38 - 005779968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-06-13 14:05 - 2018-05-25 01:34 - 020286976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-06-13 14:05 - 2018-05-25 01:33 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-06-13 14:05 - 2018-05-25 01:32 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-06-13 14:05 - 2018-05-25 01:32 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-06-13 14:05 - 2018-05-25 01:24 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-06-13 14:05 - 2018-05-25 01:21 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-06-13 14:05 - 2018-05-25 01:16 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-06-13 14:05 - 2018-05-25 01:15 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-06-13 14:05 - 2018-05-25 01:12 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-06-13 14:05 - 2018-05-25 01:10 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-06-13 14:05 - 2018-05-25 01:10 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-06-13 14:05 - 2018-05-25 01:08 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-06-13 14:05 - 2018-05-25 01:07 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-06-13 14:05 - 2018-05-25 01:06 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-06-13 14:05 - 2018-05-25 01:06 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-06-13 14:05 - 2018-05-25 00:57 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-06-13 14:05 - 2018-05-25 00:55 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-06-13 14:05 - 2018-05-25 00:55 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-06-13 14:05 - 2018-05-25 00:53 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-06-13 14:05 - 2018-05-25 00:53 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-06-13 14:05 - 2018-05-25 00:53 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-06-13 14:05 - 2018-05-25 00:42 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-06-13 14:05 - 2018-05-25 00:40 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-06-13 14:05 - 2018-05-25 00:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-06-13 14:05 - 2018-05-25 00:39 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-06-13 14:05 - 2018-05-25 00:38 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-06-13 14:05 - 2018-05-25 00:38 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-06-13 14:05 - 2018-05-25 00:37 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-06-13 14:05 - 2018-05-25 00:29 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-06-13 14:05 - 2018-05-25 00:19 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-06-13 14:05 - 2018-05-25 00:17 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-06-13 14:05 - 2018-05-25 00:15 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-06-13 14:05 - 2018-05-25 00:14 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-06-13 14:05 - 2018-05-15 01:16 - 001681088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-06-13 14:05 - 2018-05-15 00:44 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-06-13 14:05 - 2018-05-15 00:44 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2018-06-13 14:05 - 2018-05-15 00:44 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-06-13 14:05 - 2018-05-15 00:23 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2018-06-13 14:05 - 2018-05-15 00:13 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-06-13 14:05 - 2018-05-15 00:13 - 000782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2018-06-13 14:05 - 2018-05-15 00:13 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-06-13 14:05 - 2018-05-15 00:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2018-06-13 14:05 - 2018-05-14 22:20 - 000467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-06-13 14:05 - 2018-05-14 22:20 - 000459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-06-13 14:05 - 2018-05-11 23:07 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-06-13 14:05 - 2018-05-11 23:07 - 000033152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-06-13 14:05 - 2018-05-11 23:07 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-06-13 14:05 - 2018-05-11 18:19 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-06-13 14:05 - 2018-05-11 18:19 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-06-13 14:05 - 2018-05-10 21:40 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-06-13 14:05 - 2018-05-10 21:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-06-13 14:05 - 2018-04-06 13:39 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-06-13 14:05 - 2018-04-06 13:38 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 23:03 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-06-13 14:04 - 2018-05-28 23:03 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-06-13 14:04 - 2018-05-28 23:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-06-13 14:04 - 2018-05-28 23:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-06-13 14:04 - 2018-05-28 23:03 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-06-13 14:04 - 2018-05-28 22:59 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-06-13 14:04 - 2018-05-28 22:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-06-13 14:04 - 2018-05-28 22:58 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:58 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:04 - 2018-05-28 22:55 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-06-13 14:04 - 2018-05-28 22:55 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-06-13 14:04 - 2018-05-28 22:54 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-06-13 14:04 - 2018-05-25 01:59 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-06-13 14:04 - 2018-05-25 01:59 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-06-13 14:04 - 2018-05-25 01:45 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-06-13 14:04 - 2018-05-25 01:44 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-06-13 14:04 - 2018-05-25 01:43 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-06-13 14:04 - 2018-05-25 01:37 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-06-13 14:04 - 2018-05-25 01:36 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-06-13 14:04 - 2018-05-25 01:32 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-06-13 14:04 - 2018-05-25 01:32 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-06-13 14:04 - 2018-05-25 01:28 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-06-13 14:04 - 2018-05-25 01:16 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-06-13 14:04 - 2018-05-25 01:15 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-06-13 14:04 - 2018-05-25 01:14 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-06-13 14:04 - 2018-05-25 01:14 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-06-13 14:04 - 2018-05-25 01:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-06-13 14:04 - 2018-05-25 01:13 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-06-13 14:04 - 2018-05-25 01:09 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-06-13 14:04 - 2018-05-25 01:08 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-06-13 14:04 - 2018-05-25 01:05 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-06-13 14:04 - 2018-05-25 01:05 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-06-13 14:04 - 2018-05-25 00:57 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-06-13 14:04 - 2018-05-25 00:52 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-06-13 14:04 - 2018-05-25 00:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-06-13 14:04 - 2018-05-25 00:51 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-06-13 14:04 - 2018-05-25 00:49 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-06-13 14:04 - 2018-05-25 00:48 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-06-13 14:04 - 2018-05-25 00:47 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-06-13 14:04 - 2018-05-25 00:45 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-06-13 14:04 - 2018-05-15 00:44 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2018-06-13 14:04 - 2018-05-15 00:24 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2018-06-13 14:04 - 2018-05-15 00:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2018-06-13 14:04 - 2018-05-15 00:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2018-06-13 14:04 - 2018-05-11 18:19 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-06-13 14:04 - 2018-05-10 21:40 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-06-13 13:21 - 2018-06-19 14:37 - 000000000 ____D C:\Users\7\Desktop\ROStart
2018-06-12 11:21 - 2018-06-12 11:21 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ragnarök Start.lnk
2018-06-12 11:15 - 2018-06-14 20:40 - 000000000 ____D C:\Program Files (x86)\Ragnarök Start
2018-06-12 11:11 - 2018-06-04 23:36 - 000343232 _____ (Ragnarök Start ) C:\Users\7\Desktop\Ragnarök Start ~ Instalador.exe
2018-06-12 11:05 - 2018-06-12 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Level Up
2018-06-08 15:35 - 2018-06-17 14:29 - 000689529 _____ C:\Users\7\Desktop\case.psd
2018-06-06 12:34 - 2018-06-04 23:36 - 1106532945 _____ C:\Users\7\Desktop\Ragnarök Start ~ Instalador-2.bin
2018-06-06 12:31 - 2018-06-04 23:29 - 2099656448 _____ C:\Users\7\Desktop\Ragnarök Start ~ Instalador-1.bin
2018-06-06 11:50 - 2018-06-06 12:07 - 3206480742 _____ C:\Users\7\Desktop\Ragnarök Start _ Instalador.zip
2018-06-04 10:41 - 2018-06-04 10:41 - 000108368 _____ C:\Users\7\Downloads\Comprovante Pagamento.pdf
2018-06-02 15:09 - 2018-07-04 14:25 - 001140016 _____ C:\Users\7\Desktop\letreiro.psd
2018-06-02 15:06 - 2018-07-04 14:12 - 001032450 _____ C:\Users\7\Desktop\rostart - guia completa.psd
2018-05-29 23:32 - 2018-05-29 23:32 - 000123728 _____ C:\Users\7\Desktop\Orientações Autos Findos.pdf
2018-05-29 17:21 - 2018-05-29 17:21 - 001061914 _____ C:\Users\7\Desktop\gow forumeiros².psd
2018-05-27 16:55 - 2018-05-27 16:55 - 000027204 _____ C:\Users\7\Downloads\ROStart _ Bônus por Refinamento (V1.0.0 Closed Beta).xlsx
2018-05-27 16:49 - 2018-05-27 16:49 - 000701419 _____ C:\Users\7\Downloads\Pratica Juridica 7 semestre_N2.pdf
2018-05-26 22:49 - 2018-05-26 23:01 - 001041668 _____ C:\Users\7\Desktop\gow forumeiros.psd
2018-05-26 21:30 - 2018-05-26 22:24 - 000235522 _____ C:\Users\7\Desktop\base.xlsx
2018-05-26 20:48 - 2018-05-26 20:48 - 000639318 _____ C:\Users\7\Desktop\DIREITO-USJT.pdf
2018-05-24 22:02 - 2018-05-24 22:02 - 000177537 _____ C:\Users\7\Desktop\Nomenclatura dos autos.pdf
2018-05-22 23:05 - 2018-05-22 23:06 - 000203189 _____ C:\Users\7\Desktop\donnas.psd
2018-05-22 20:21 - 2018-05-22 20:21 - 000894732 _____ C:\Users\7\Desktop\Ryuk e Valdomiro.psd
2018-05-22 19:20 - 2018-05-22 19:20 - 000063280 _____ C:\Users\7\Downloads\FontsFree-Net-Proxima-Nova-Black-It.otf
2018-05-22 18:21 - 2018-05-22 18:21 - 000497767 _____ C:\Users\7\Downloads\digitalizar0002.pdf
2018-05-11 11:21 - 2018-05-11 11:31 - 020047182 _____ C:\Users\7\Desktop\b-2.psd
2018-05-11 10:59 - 2018-05-11 10:59 - 002901536 _____ C:\Users\7\Desktop\b-1.psd
2018-05-09 22:20 - 2018-04-22 21:00 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000512512 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-05-09 22:20 - 2018-04-22 21:00 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-05-09 22:20 - 2018-04-22 20:40 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-05-09 22:20 - 2018-04-22 20:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-09 22:20 - 2018-04-22 20:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-05-09 22:20 - 2018-04-22 20:24 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-05-09 22:20 - 2018-04-18 13:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-09 22:20 - 2018-04-18 13:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-05-09 22:20 - 2018-04-18 12:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-09 22:20 - 2018-04-18 12:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-05-09 22:20 - 2018-04-18 12:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-05-09 22:20 - 2018-04-18 12:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-05-09 22:20 - 2018-04-11 13:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-09 22:20 - 2018-04-11 13:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-09 22:20 - 2018-04-11 13:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-09 22:20 - 2018-04-11 13:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-09 22:20 - 2018-04-10 13:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-05-09 22:20 - 2018-04-10 13:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-05-09 22:20 - 2018-04-10 13:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-09 22:20 - 2018-04-10 13:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-09 22:20 - 2018-04-10 13:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-09 22:20 - 2018-04-10 13:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-09 22:20 - 2018-04-10 13:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-05-09 22:20 - 2018-04-10 12:54 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-09 22:20 - 2018-04-10 12:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-05-09 22:20 - 2018-04-10 12:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-09 22:20 - 2018-04-10 12:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-05-09 22:20 - 2018-04-07 13:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-05-09 22:20 - 2018-03-14 14:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-05-09 22:20 - 2018-03-14 14:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-05-09 22:20 - 2018-03-14 14:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-05-09 22:20 - 2018-03-14 14:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-05-09 22:20 - 2018-03-14 14:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-05-09 22:20 - 2018-03-14 13:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-05-09 22:20 - 2018-03-14 13:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-05-09 22:20 - 2018-03-14 13:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-05-09 22:20 - 2018-03-14 13:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-05-09 22:20 - 2018-03-14 13:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-05-09 22:20 - 2018-03-14 13:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-05-09 22:20 - 2018-03-14 13:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-05-09 22:20 - 2018-03-14 13:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-05-09 22:20 - 2018-03-14 13:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-05-09 22:20 - 2018-03-14 13:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-05-09 22:20 - 2018-03-14 13:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-05-07 15:52 - 2018-05-07 15:52 - 000042003 _____ C:\Users\7\Desktop\Nube 1L.pdf
2018-04-26 19:18 - 2018-04-26 19:18 - 000109592 _____ C:\Users\7\Downloads\fea909b3-014a-4b7f-aea4-c950aa707714.tmp
2018-04-23 18:10 - 2018-04-23 18:10 - 000001795 _____ C:\Users\7\Downloads\Segue curriculo e foto de Aline Gu... (Anexos).zip
2018-04-23 18:10 - 2018-04-23 18:10 - 000001622 _____ C:\Users\7\Downloads\Curriculo-foto_Aline-Guedes.rar
2018-04-18 17:10 - 2018-04-18 17:11 - 000108213 _____ C:\Users\7\Downloads\Comprovante Transferência.pdf
2018-04-14 14:16 - 2018-04-14 14:16 - 000000000 ____D C:\Level Up
2018-04-14 13:12 - 2018-04-14 13:12 - 000000000 ____D C:\Program Files\Microsoft ASP.NET Core Runtime Package Store
2018-04-13 22:25 - 2018-04-14 13:12 - 000000000 ____D C:\Program Files\dotnet
2018-04-13 22:18 - 2018-04-13 22:22 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2018-04-13 22:18 - 2018-04-13 22:18 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2018-04-13 22:16 - 2018-04-13 22:16 - 000001722 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend para Visual Studio 2017.lnk
2018-04-13 22:16 - 2018-04-13 22:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017
2018-04-13 22:12 - 2018-04-13 22:12 - 000001475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2017.lnk
2018-04-13 22:10 - 2018-04-13 22:10 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2018-04-13 22:10 - 2018-04-13 22:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-04-13 22:01 - 2018-04-14 13:11 - 000000000 ____D C:\Users\7\AppData\Roaming\Visual Studio Setup
2018-04-13 22:01 - 2018-04-13 22:01 - 000001286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2018-04-13 22:01 - 2018-04-13 22:01 - 000000000 ____D C:\Users\7\AppData\Roaming\vstelemetry
2018-04-13 22:01 - 2018-04-13 22:01 - 000000000 ____D C:\Users\7\AppData\Roaming\Microsoft Visual Studio
2018-04-13 22:01 - 2018-04-13 22:01 - 000000000 ____D C:\Users\7\AppData\Local\ServiceHub
2018-04-13 22:00 - 2018-04-13 22:00 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft Visual Studio
2018-04-13 22:00 - 2018-04-13 22:00 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2018-04-13 13:59 - 2018-03-10 14:11 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2018-04-13 13:59 - 2018-03-09 15:18 - 000309440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000383680 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-04-13 13:59 - 2018-03-09 15:12 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2018-04-13 13:59 - 2018-03-09 15:11 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2018-04-13 13:59 - 2018-03-09 15:07 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-04-13 13:59 - 2018-03-09 15:07 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-04-13 13:59 - 2018-03-09 15:07 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2018-04-13 13:59 - 2018-03-09 15:06 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-04-13 13:59 - 2018-03-09 15:06 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2018-04-13 13:59 - 2018-03-09 14:31 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-04-13 13:59 - 2018-03-06 15:13 - 000148160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-04-13 13:59 - 2018-03-06 15:11 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-04-13 13:59 - 2018-03-06 15:11 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2018-04-13 13:59 - 2018-03-06 15:10 - 000170176 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-04-13 13:59 - 2018-03-06 15:07 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-04-13 13:59 - 2018-03-06 15:07 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000063832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000020824 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000019800 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000016216 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000922944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000066392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000019800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000017752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000017752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000016216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000015704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000014168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000014168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-04-13 13:59 - 2018-01-25 11:04 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-04-11 12:52 - 2018-03-14 14:14 - 000135360 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-04-11 12:52 - 2018-03-14 14:09 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-04-11 12:52 - 2018-03-14 10:05 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-04-11 12:52 - 2018-03-14 10:05 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-04-07 14:29 - 2018-04-07 14:30 - 000000000 ____D C:\Users\7\Downloads\2018
2018-04-07 13:51 - 2018-06-25 20:41 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-04-07 13:50 - 2018-05-18 17:57 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-04-07 13:49 - 2018-05-18 17:57 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-04-07 13:49 - 2018-04-07 14:01 - 000000000 ____D C:\Users\7\AppData\Local\Google
2018-04-07 13:49 - 2018-04-07 13:50 - 000000000 ____D C:\Program Files (x86)\Google

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2028-11-17 07:24 - 2016-11-12 14:22 - 000000000 ____D C:\Users\7\AppData\Roaming\HpUpdate
2019-06-28 04:52 - 2017-02-17 07:56 - 000000046 _____ C:\Windows\SysWOW64\_WKERNEL.SYL
2018-07-06 14:13 - 2018-01-08 21:41 - 000054671 _____ C:\Windows\ZAM.krnl.trace
2018-07-06 14:13 - 2018-01-08 21:41 - 000050474 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-07-06 14:05 - 2009-07-14 01:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-06 14:05 - 2009-07-14 01:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-06 13:54 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-05 14:37 - 2017-07-26 19:02 - 000688802 _____ C:\Windows\system32\perfh007.dat
2018-07-05 14:37 - 2017-07-26 19:02 - 000148774 _____ C:\Windows\system32\perfc007.dat
2018-07-05 14:37 - 2011-01-27 20:11 - 000705474 _____ C:\Windows\system32\prfh0416.dat
2018-07-05 14:37 - 2011-01-27 20:11 - 000147314 _____ C:\Windows\system32\prfc0416.dat
2018-07-05 14:37 - 2009-07-14 02:13 - 002471992 _____ C:\Windows\system32\PerfStringBackup.INI
2018-07-05 14:37 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2018-07-05 14:32 - 2017-06-23 11:25 - 000211475 _____ C:\Windows\hpoins46.dat
2018-07-05 12:04 - 2016-11-12 11:40 - 000000000 ____D C:\Users\7\AppData\Local\Adobe
2018-07-02 18:23 - 2016-11-12 15:44 - 000000000 ____D C:\Users\7\AppData\Roaming\uTorrent
2018-07-02 17:16 - 2016-11-12 12:06 - 000000000 ____D C:\Users\7\AppData\Roaming\vlc
2018-07-02 15:03 - 2017-12-25 19:39 - 000001456 _____ C:\Users\7\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2018-07-02 14:17 - 2018-01-08 21:41 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-07-02 14:07 - 2017-12-08 11:18 - 000000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2018-07-02 14:07 - 2017-12-08 11:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-07-02 13:59 - 2018-01-28 11:51 - 002600076 _____ C:\Windows\ntbtlog.txt
2018-06-28 12:29 - 2018-01-09 12:13 - 000000000 ____D C:\Users\7\AppData\Roaming\ZHP
2018-06-28 11:49 - 2018-01-09 12:13 - 000000000 ____D C:\Users\7\AppData\Local\ZHP
2018-06-28 11:35 - 2017-12-12 17:10 - 000000000 ____D C:\Program Files (x86)\IObit
2018-06-28 11:35 - 2017-09-24 22:06 - 000000000 ____D C:\Users\7\AppData\Roaming\IObit
2018-06-28 11:35 - 2017-09-24 22:06 - 000000000 ____D C:\Users\7\AppData\LocalLow\IObit
2018-06-25 14:20 - 2009-07-14 01:45 - 005122256 _____ C:\Windows\system32\FNTCACHE.DAT
2018-06-25 14:19 - 2017-12-07 14:19 - 000000000 ____D C:\Program Files (x86)\Panda Security
2018-06-24 22:07 - 2001-12-31 23:07 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-06-24 22:00 - 2017-12-09 19:40 - 000145808 _____ C:\Users\7\AppData\Local\GDIPFONTCACHEV1.DAT
2018-06-24 18:20 - 2017-12-07 14:16 - 000000000 ____D C:\Users\Todos os Usuários\Panda Security
2018-06-24 18:20 - 2017-12-07 14:16 - 000000000 ____D C:\ProgramData\Panda Security
2018-06-24 18:18 - 2017-12-07 14:21 - 000000000 ____D C:\Users\7\AppData\Roaming\Panda Security
2018-06-24 18:14 - 2017-12-25 17:08 - 000000000 ____D C:\Program Files\Opera
2018-06-20 14:44 - 2017-09-24 00:05 - 000000000 ____D C:\Windows\Minidump
2018-06-20 14:44 - 2016-11-12 11:18 - 000317424 ____N C:\Windows\Minidump\062018-26953-01.dmp
2018-06-19 16:19 - 2017-11-20 13:54 - 000000000 ____D C:\Users\7\Desktop\Equips iRO
2018-06-19 15:22 - 2017-09-09 16:05 - 000000000 ____D C:\Users\7\AppData\Roaming\GRF Editor
2018-06-17 16:14 - 2016-11-12 12:12 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software
2018-06-17 16:14 - 2016-11-12 12:12 - 000000000 ____D C:\ProgramData\AVAST Software
2018-06-16 15:26 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache
2018-06-13 22:41 - 2017-01-25 11:15 - 000000000 ____D C:\Windows\system32\MRT
2018-06-13 22:37 - 2017-10-10 18:31 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-06-13 22:36 - 2017-01-25 11:14 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-06-12 10:42 - 2017-07-07 11:02 - 000000000 ___RD C:\Users\7\Desktop\NOTA FISCAL CONSULTAS E REMEDIOS
2018-06-12 10:40 - 2016-12-14 07:07 - 000000000 ____D C:\Users\7\Documents\Minhas digitalizações
2018-06-09 00:29 - 2017-12-23 18:11 - 000004530 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-06-09 00:29 - 2016-12-28 18:08 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-06-09 00:29 - 2016-12-28 18:08 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-09 00:29 - 2016-12-28 18:08 - 000004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-06-09 00:29 - 2016-12-28 18:08 - 000000000 ____D C:\Windows\system32\Macromed
2018-06-09 00:29 - 2016-11-12 14:20 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-08 22:57 - 2018-03-13 19:11 - 000004518 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier

==================== Arquivos na raiz de alguns diretórios =======

2017-06-11 17:39 - 2017-08-16 14:28 - 000000034 _____ () C:\Users\7\AppData\Roaming\AdobeWLCMCache.dat
2017-05-30 21:45 - 2017-07-18 22:45 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato BMP do Adobe CS6
2017-07-14 19:19 - 2017-07-15 12:29 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato GIF do Adobe CS6
2016-11-12 16:53 - 2017-08-10 14:17 - 000000132 _____ () C:\Users\7\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2017-09-22 22:32 - 2018-05-24 17:37 - 000469320 _____ () C:\Users\7\AppData\Roaming\_encryptiondb.grf
2017-12-25 19:39 - 2018-07-02 15:03 - 000001456 _____ () C:\Users\7\AppData\Local\Adobe Salvar para Web 13.0 Prefs

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

LastRegBack: 2018-06-28 12:53

==================== Fim de FRST.txt ============================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o arquivo (fixlist.txt) no anexo deste post e salve-o na Área de Trabalho (Desktop).

Execute o FRST.exe (ou FRST64.exe) e clique no botão Corrigir.

Aguarde... ao final será gerado o log Fixlog.txt  salvo em sua Área de Trabalho (Desktop).

Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

PS: como está seu Windows?

 

Abraços :D

fixlist.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano algumas vezes o windows demora para responder e outras vezes ele executa as coisas sozinho, ontem mesmo ele ficou saindo diversas vezes da minha conexão para entrar em outra conexão de rede (wifi), acho que isso aconteceu pelo fato dessa "rede" ser pública (net-claro). eu só não consigo entender o motivo que o faz ficar saindo da minha rede toda hora...


as atualizações programadas pelo sistema são bem demoradas, mas nada demais.
outro ponto estranho é que ele deixa as janelas que eu estou executado como "desativada", isso geralmente acontece quando eu estou navegado, jogando ou até mesmo mexendo no Photoshop.ele praticamente sai da tela e para que eu possa voltar a interagir, eu tenho que clicar novamente no que eu estava fazendo para poder voltar a interagir. (isso acontece com muita frequência, sem contar que o duplo clique)

dito isso, deixo aqui o fixlog como solicitado:

 

Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 20.06.2018
Executado por 7 (09-07-2018 13:11:07) Run:2
Executando a partir de C:\Users\7\Desktop
Perfis Carregados: 7 (Perfis Disponíveis: 7)
Modo da Inicialização: Normal
==============================================

fixlist Conteúdo:
*****************
CreateRestorePoint:
CloseProcesses:
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-01-08] (Zemana Ltd.)
C:\Windows\System32\drivers\zam64.sys
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-01-08] (Zemana Ltd.)
C:\Windows\System32\drivers\zamguard64.sys
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
C:\Program Files (x86)\Zemana AntiMalware
2018-07-02 14:17 - 2018-01-08 21:41 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-01-08] ()
C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-01-08] ()
2018-01-08 21:41 - 2018-01-08 21:41 - 000155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
Reboot:

*****************

Ponto de Restauração criado com sucesso.
Processos fechados com sucesso.
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.) => Erro: Nenhuma correção automática foi encontrada para esta entrada.
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe => Não foi possível fechar o processo
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe => Não foi possível fechar o processo
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ZAM" => removido (a) com sucesso.
"HKLM\System\CurrentControlSet\Services\ZAMSvc" => removido (a) com sucesso.
ZAMSvc => serviço removido (a) com sucesso.
ZAM => Serviço finalizado com sucesso.
"HKLM\System\CurrentControlSet\Services\ZAM" => removido (a) com sucesso.
ZAM => serviço removido (a) com sucesso.
C:\Windows\System32\drivers\zam64.sys => movido com sucesso
ZAM_Guard => Serviço finalizado com sucesso.
"HKLM\System\CurrentControlSet\Services\ZAM_Guard" => removido (a) com sucesso.
ZAM_Guard => serviço removido (a) com sucesso.
C:\Windows\System32\drivers\zamguard64.sys => movido com sucesso
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe => movido com sucesso
C:\Program Files (x86)\Zemana AntiMalware => movido com sucesso
"C:\Program Files (x86)\Zemana AntiMalware" => não encontrado (a)
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\2.0 Zemana AntiMalware" => removido (a) com sucesso.
"HKLM\Software\Classes\CLSID\{6ABB1C11-E261-4CEA-BBB5-3836225689DD}" => removido (a) com sucesso.
"C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll" => não encontrado (a)
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\2.0 Zemana AntiMalware" => removido (a) com sucesso.
HKLM\Software\Classes\CLSID\{6ABB1C11-E261-4CEA-BBB5-3836225689DD} => não encontrado (a)
"C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll" => não encontrado (a)


O sistema precisou ser reiniciado.

==== Fim de Fixlog 13:11:58 ====

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Já pensou numa possível formatação e reinstalação do sistema?

 

Vamos tentar reparar.

 

Baixe o Windows Repair (All In One) e salve em sua Área de Trabalho (Desktop).

  • Execute-o como Administrador;
  • Execute a Step3 e Step4 clicando no botão Do It;
  • Na Step5 faça o backup do Registro clicando no botão Backup e crie um Ponto de Restauração clicando no botão Create;
  • Na aba Start Repairs clique no botão Start;
  • Reinicie o Windows.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano não tinha pensando em formatar o sistema, mas vou começar a pensar a respeito.

realizei o download e instalei o programa conforme orientado, porém, eu não achei o botão "Do it", apareceram as opções "Check" e "Open Check Disk and At Nest Boot".

eu executei a opção Check no Step 3 e Step 4, o quinto não estava disponível (não existe).
depois de realizar o procedimento nos steps, foi na aba "Repairs - main" e em seguida "open reapir"
o sistema reiniciou e voltou no modo de segurança. seria esse o procedimento correto?

desde já agradeço pela atenção, obrigado! 

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano depois de ter realizado os procedimentos do step, o sistema reiniciou e voltou no modo de segurança, um programa abriu mas depois nada aconteceu. eu fiz o procedimento correto?

Compartilhar este post


Link para o post
Compartilhar em outros sites

@mocci  de acordo com sua descrição parece que o programa foi atualizado e eu não fiquei sabendo, mas acredito que foi executado corretamente.

 

Agora preciso sabe se está acessando o Windows em modo normal.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @mocci

 

Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Baixe o Stinger e salve em sua Área de trabalho (Desktop).
32 bit (x86) ou 64 bit (x64)

  • Execute o arquivo Stinger.exe como Administrador.
  • Clique no botão “I Accept”


Stinger%20a.png

Na nova janela clique em “Advanced” e depois “Settings”

Stinger%20b.png

Na janela configurações deixe conforme imagem abaixo e clique no botão “Save”

9hnsyu.png

Clique em “Customize my Scan”

Stinger%20f.png

Selecione as unidades do sistema e em seguida clique no botão “Scan”

Stinger%20g.png

Ao final clique em “View log”, será aberto uma janela com o log em seu navegador.
Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

@diego_moicano aqui está:

McAfee Stinger Scan Results

McAfee® Labs Stinger™ Version 12.1.0.2835 built on Jul 16 2018 at 00:29:07 Copyright© 2013-2018, McAfee, LLC. All Rights Reserved.

AV Engine version v6000.8370 for Windows.
Virus data file v1000.0 created on Jul 16, 2018
Ready to scan for 8811 viruses, trojans and variants.

Custom scan initiated on segunda-feira, julho 16, 2018 18:28:25

Rootkit scan result : Not Scanned.

C:\Users\7\Desktop\Z-Analyse.exe\z8.scf is infected with Artemis!CC7AA7B42CF4
C:\Users\7\Desktop\Z-Analyse.exe\z8.scf has been Deleted
C:\Users\7\Desktop\ZA-Scan.exe [MD5:294dbd73a55af616b18771026b499b53] is infected with Artemis!294DBD73A55A
C:\Users\7\Desktop\ZA-Scan.exe has been Deleted
C:\Users\7\Desktop\zoek.exe [MD5:294dbd73a55af616b18771026b499b53] is infected with Artemis!294DBD73A55A
C:\Users\7\Desktop\zoek.exe has been Deleted
C:\Users\7\Desktop\zoek.zip\Z-Analyse.exe\z8.scf is infected with Artemis!CC7AA7B42CF4 C:\Users\7\Desktop\zoek.zip\Z-Analyse.exe\z8.scf has been Deleted
C:\Users\7\Desktop\zoek.zip\ZA-Scan.exe is infected with Artemis!294DBD73A55A C:\Users\7\Desktop\zoek.zip\ZA-Scan.exe has been Deleted
C:\Users\7\Desktop\zoek.zip\zoek.exe is infected with Artemis!294DBD73A55A C:\Users\7\Desktop\zoek.zip\zoek.exe has been Deleted

Summary Report on C:
D:
File(s)
TotalFiles:............ 710200
Clean:................. 342249
Not Scanned:........... 367945
Possibly Infected:..... 6
Time: 04:46:13

Scan completed on segunda-feira, julho 16, 2018 23:14:38

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário






Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×