Ir ao conteúdo
  • Cadastre-se
DarkReploid

Navegadores fechando sozinhos após atualização do Windows

Recommended Posts

Meu computador foi atualizado hoje, onde este foi reiniciado automaticamente durante a noite. Após isso, notei que meus navegadores* fecham sozinhos, com exceção do Internet Explorer. 

 

*Chrome fecha instantaneamente ao ser aberto 

*Firefox abre e fecha após cerca de alguns minutos

 

Inicialmente, realizei uma varredura com meu antivírus (ESET) que não localizou ameaças. 

Também realizei uma checagem de disco e reinstalação dos navegadores, porém o problema persistiu. 

 

Ao realizar o procedimento inicial obrigatório, o Z-Scan não abre** (talvez um problema de compatibilidade no Windows 10?!)

**testei diferentes modos de compatibilidade

 

Podem me ajudar? 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @DarkReploid

 

Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.

 

Por favor, atente para o seguinte:

  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
  • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
  • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
  • Sempre coloque suas respostas neste tópico... Não abra outro!
  • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
  • Respeite a ordem das instruções passadas.

Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

 

# Etapa nº 1 #
 
Baixe o AdwCleaner e salve em sua Área de trabalho (Desktop)

Execute o arquivo adwcleaner.exe Como Administrador

  • Clique na aba Opções e deixe marcado apenas "Restaurar Políticas do IE" e "Restaurar Políticas do Chrome"
  • Clique no botão Verificar e aguarde o exame finalizar.
  • Clique no botão Limpar.
  • Abrirá um bloco de notas com o resultado.
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.
  • O log também será salvo em C:\AdwCleaner


NOTA: Se o AdwCleaner encontrar arquivos que não consiga remover, poderá ter de reiniciar o PC. Faça isso imediatamente, ao ser perguntado se quer reiniciar.
 
# Etapa nº 2 #
 
Desative temporariamente seu antivirus, antispywares e firewall, para não causar conflitos.

Faça o download do ZHPCleaner e salve em sua Área de trabalho (Desktop)

 

Execute o arquivo ZHPCleaner.exe Como Administrador

  • Clique no botão Scanner.
  • A ferramenta começara o exame do seu sistema.
  • Tenha paciência pois pode demorar um pouco dependendo da quantidades de itens a examinar.
  • Em seguida clique no botão Reparar.
  • Será gerado um log chamado ZHPCleaner.txt
  • Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Seguem logs

 

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2018-12-19.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    12-21-2018
# Duration: 00:00:12
# OS:       Windows 10 Pro
# Scanned:  32218
# Detected: 17


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

Adware.pokki                    C:\Windows\ServiceProfiles\LocalService\AppData\Local\Host App Service
Adware.pokki                    C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Host App Service
Adware.pokki                    C:\ProgramData\Host App Service
Adware.pokki                    C:\Users\darkreploid\AppData\Local\Host App Service
***** [ Files ] *****

Adware.pokki                    C:\Windows\System32\Tasks_Migrated\App Explorer
PUP.Optional.Legacy             C:\Users\guilherme.francisco\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\searchplugins\google-lavasoft.xml
PUP.Optional.Legacy             C:\TOSTACK

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

Adware.pokki                    C:\Windows\System32\Tasks\App Explorer

***** [ Registry ] *****

Adware.pokki                    HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Adware.pokki                    HKCU\Software\Host App Service
Adware.pokki                    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15EE8130-433C-4404-A421-96968E388076} 
Adware.pokki                    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

PUP.Optional.Legacy             Ask Brasil
PUP.Optional.Legacy             Ask Brasil

***** [ Firefox (and derivatives) ] *****

PUP.Optional.Legacy             Search and New Tab by Yahoo

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
 

 

 

~ ZHPCleaner v2018.12.12.205 by Nicolas Coolman (2018/12/12)
~ Run by darkreploid (Administrator)  (21/12/2018 12:14:44)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Certificate ZHPCleaner: Legal
~ Type : Repair
~ Report : C:\Users\darkreploid\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\darkreploid\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit  (Build 17763)


---\\  Alternate Data Stream (ADS). (0)
~ No malicious or unnecessary items found.


---\\  Services (0)
~ No malicious or unnecessary items found.


---\\  Browser internet (0)
~ No malicious or unnecessary items found.


---\\  Hosts file (5)
REPLACED: 127.94.0.1    client.openvpn.net
REPLACED: 127.94.0.2    openvpn-client.vpn-sp2.mandic.net.br
REPLACED: 177.70.125.79 mail.up5consultoria.com.br
REPLACED: 177.70.125.79 autodiscover.up5consultoria.com.br
Number of found redirections 6/34


---\\  Scheduled automatic tasks. (0)
~ No malicious or unnecessary items found.


---\\  Explorer ( File, Folder) (154)
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\https+++pxlsfmde-a.akamaihd.net\.metadata    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\https+++pxlsfmde-a.akamaihd.net\.metadata-v2    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\https+++pxlsfmde-a.akamaihd.net\idb\2532886276bta_fcpe_.sqlite    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\https+++pxlclnmdecom-a.akamaihd.net\.metadata    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\https+++pxlclnmdecom-a.akamaihd.net\.metadata-v2    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\https+++pxlclnmdecom-a.akamaihd.net\idb\2532886276bta_fcpe_.sqlite    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\http+++pxlclnmdecom-a.akamaihd.net\.metadata    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\http+++pxlclnmdecom-a.akamaihd.net\.metadata-v2    =>.SUP.AkamaiHD
MOVED file: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default\storage\default\http+++pxlclnmdecom-a.akamaihd.net\idb\2532886276bta_fcpe_.sqlite    =>.SUP.AkamaiHD
MOVED file: C:\Windows\Installer\wix{C9552825-7BF2-4344-BA91-D3CD46F4C442}.SchedServiceConfig.rmi    =>.SUP.Empty
MOVED file: C:\Windows\Installer\wix{F255C3B6-F053-4592-9325-34898BF5EB46}.SchedServiceConfig.rmi    =>.SUP.Empty
MOVED file: C:\ProgramData\Lenovo\ImController\Plugins\GenericMessagingPlugin\x86\SLSCore.dll [SweetLabs, Inc. - SLSCore]  =>.SUP.SweetLabs
MOVED file: C:\ProgramData\Lenovo\ImController\Plugins\GenericMessagingPlugin\x86\SLSLib.dll [SweetLabs, Inc. - SLSLib]  =>.SUP.SweetLabs
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\561699_153283_exemplo-bloco-designado.png    =>.SUP.Temporary.Picture
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\aria-debug-11868.log    =>.SUP.Temporary.OneDrive
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\aria-debug-14608.log    =>.SUP.Temporary.OneDrive
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\aria-debug-57820.log    =>.SUP.Temporary.OneDrive
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\aria-debug-7788.log    =>.SUP.Temporary.OneDrive
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\GREQ561699_153384_informacoes.png    =>.SUP.Temporary.Picture
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\GREQ561699_153387_GREQ561699 - Designação OK.PNG    =>.SUP.Temporary.Picture
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\oct9290.tmp.exe [SweetLabs,Inc. - App Explorer]  =>.SUP.Temporary.Installer
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\PCW89D5.tmp    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\PCWB8CF.tmp    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\PCWD4CA.tmp    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct1474.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct1D6C.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct2368.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct3079.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct4151.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct49C3.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct4D08.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct55C4.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct6F66.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct767B.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct79D.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct8BDD.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wct9A93.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctB16C.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctB519.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctB8A1.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctD207.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctF66F.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctFAC6.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\wctFF20.tmp    =>.SUP.Temporary.Office
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{1E2AD7FA-16D0-4D8C-A4FD-F64A8700B1B0} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{770EF7EF-781B-476E-A9BC-2F8333C54A86} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{D51202A2-0650-471D-B0F5-DE32C1436246} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{D8315B42-A813-4ADD-A254-B3B1442704C2} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{E43C8E50-0A04-45EB-A506-0C816FDCF534} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{F895B93B-E6A5-47F4-8306-3E77AAF5FBBC} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{F8B04C2C-ADD3-4EDB-9AD9-597313EC3E52} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Temp\{FA0543A7-01E2-4866-B9C5-1487D4633629} - OProcSessId.dat    =>.SUP.Temporary.Empty
MOVED file: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage    =>.SUP.AudienceInsights
MOVED file: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal    =>.SUP.AudienceInsights
MOVED file: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ufreegames.com_0.localstorage    =>PUP.Optional.ScriptHost
MOVED file: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ufreegames.com_0.localstorage-journal    =>PUP.Optional.ScriptHost
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\004  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\005  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\006  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\007  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\009  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\010  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\012  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\013  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\014  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\015  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\016  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\017  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\018  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\020  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\021  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\022  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\023  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\024  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\027  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\028  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\030  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\031  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\032  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\034  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\035  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\036  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\037  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\038  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\039  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\041  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\044  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\045  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\046  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\047  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\048  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\049  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\051  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\052  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\053  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\054  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\058  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\060  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\061  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\062  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\063  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\064  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\065  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\066  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\069  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\070  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\071  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\072  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\073  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\075  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\076  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\078  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\079  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\080  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\083  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\084  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\085  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\086  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\136  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\145  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\147  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\148  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\149  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\150  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\151  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\152  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\153  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\154  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\155  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\156  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\157  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\158  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\159  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\160  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\161  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\162  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\163  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\164  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\165  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\166  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\167  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\168  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\169  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\170  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\File System\Plugins  =>.SUP.Temporary.Chrome
MOVED folder: C:\Users\darkreploid\AppData\Local\OneDrive  =>PUP.Optional.Y2Go
MOVED folder: C:\WINDOWS\Installer\MSIDB77.tmp-  =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIDBD5.tmp-  =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIDF91.tmp-  =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIFCCE.tmp-  =>.SUP.Empty
MOVED folder: C:\WINDOWS\Installer\MSIFD8B.tmp-  =>.SUP.Empty
MOVED folder: C:\Users\darkreploid\AppData\LocalLow\Lenovo  =>.SUP.Empty
MOVED folder: C:\Users\darkreploid\AppData\LocalLow\uTorrent  =>.SUP.Empty


---\\  Registry ( Key, Value, Data) (4)
DELETED key*: [X64] HKLM\SOFTWARE\Classes\Record\{D62A94D9-8DF8-379A-A000-6B1B548F5475} [Gecko.Sound+EventSound]  =>Adware.Kazy
DELETED key*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00C1A3E572C4C8C55B4C13D57F383BAC [C:\Program Files (x86)\mRemoteNG\Help\QuickReference.htm]  =>PUP.Optional.QuickRef
DELETED value: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\Dashlane [0x020000000000000000000000]  =>Hijacker.Agent
DELETED value: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\DashlanePlugin [0x020000000000000000000000]  =>Hijacker.Agent


---\\  Summary of the elements found (16)
https://nicolascoolman.eu/2017/12/26/sup-akamaihd/  =>.SUP.AkamaiHD
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Empty
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.SweetLabs
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.Picture
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.OneDrive
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.Installer
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.Empty
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.Office
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.AudienceInsights
https://www.nicolascoolman.com/fr/adware-scripthost/  =>PUP.Optional.ScriptHost
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.Steam
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/  =>.SUP.Temporary.Chrome
https://nicolascoolman.eu/2017/04/08/pup-optional-y2go/  =>PUP.Optional.Y2Go
https://www.anti-malware.top/2016/08/09/adware-kazy/  =>Adware.Kazy
https://nicolascoolman.eu/2017/10/06/adware-vitruvian/  =>PUP.Optional.QuickRef
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>Hijacker.Agent


---\\  Other deletions. (0)
~ Registry Keys Tracing deleted (0)
~ Remove the old reports ZHPCleaner. (0)


---\\ Result of repair
~ Repair carried out successfully
~ Browser not found (Opera Software)


---\\ Statistics
~ Items scanned : 1958
~ Items found : 0
~ Items cancelled : 0
~ Items options : 12/12
~ Space saving (bytes) : 29752823


~ End of clean in 00h00mn35s

---\\  Reports (2)
ZHPCleaner--21122018-12_11_49.txt
ZHPCleaner-[R]-21122018-12_15_19.txt
 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @DarkReploid

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o Farbar Recovery Scan Tool e salve-o na Área de Trabalho (Desktop).


32 bit (x86) ou 64 bit (x64)

  • Clique com o botão direito e escolha Executar como Administrador;
  • Marque a caixa Arquivos 90 dias,  e clique no botão Examinar;
  • Aguarde e ao final os logs FRST.txt e Addition.txt serão salvos em sua Área de Trabalho (Desktop);
  • Selecione, copie e cole o conteúdo do log  FRST.txt em sua próxima resposta;
  • Anexe o log Addition.txt.

Feliz Natal 🎅

Compartilhar este post


Link para o post
Compartilhar em outros sites

Seguem

 

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 24.12.2018
Executado por darkreploid (administrador) em MDC-2559 (24-12-2018 14:34:58)
Executando a partir de C:\Users\darkreploid\Desktop
Perfis Carregados: darkreploid (Perfis Disponíveis: darkreploid)
Platform: Windows 10 Pro Versão 1809 17763.195 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\igfxCUIService.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\IntelCpHDCPSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\InstantOn\InstantOnSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_a6dc7343c725f003\driver\tphkload.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Synaptics Incorporated) C:\Windows\System32\valWbioSyncSvc.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\IntelCpHeciSvc.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\tposd.exe
(Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FNE799~1.INF\driver\shtctky.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynFP\Shared\SensorDBSynch.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\igfxext.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(ownCloud) C:\Program Files (x86)\ownCloud\owncloud.exe
(CounterPath) C:\Users\darkreploid\AppData\Local\CounterPath\X-Lite\Current\X-Lite.exe
(The CefSharp Authors) C:\Users\darkreploid\AppData\Local\CounterPath\X-Lite\Current\CefSharp.BrowserSubprocess.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(The CefSharp Authors) C:\Users\darkreploid\AppData\Local\CounterPath\X-Lite\Current\CefSharp.BrowserSubprocess.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
() C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Realtime Soft AG) C:\Program Files\UltraMon\UltraMon.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Realtime Soft AG) C:\Program Files\UltraMon\UltraMonTaskbar.exe
(Realtime Soft Ltd) C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Lenovo Group Limited) C:\Users\darkreploid\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Realtime Soft AG) C:\Program Files\UltraMon\UltraMonUiAcc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Realtime Soft Ltd) C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Microsoft Corporation) C:\Windows\System32\pacjsworker.exe

==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

"Path" (C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Git\cmd;%SYSTEMROOT%\System32\OpenSSH\ -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Git\cmd;%SYSTEMROOT%\System32\OpenSSH\) <==== Repaired successfully
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [324352 2018-01-09] (ESET)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4049216 2018-12-13] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46459080 2018-10-04] ()
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe [3200512 2018-11-07] (ownCloud)
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\...\Run: [X-Lite] => C:\Users\darkreploid\AppData\Local\CounterPath\X-Lite\Current\X-Lite.exe [5645192 2018-11-29] (CounterPath)
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [23776536 2018-12-14] (Microsoft Corporation)
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [54788456 2018-12-11] (Skype Technologies S.A.)
HKLM\...\Drivers32: [MSVideo8] => C:\Windows\System32\VfWWDM32.dll [68096 2018-09-15] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OpenVPN Connect.lnk [2018-12-08]
ShortcutTarget: OpenVPN Connect.lnk -> C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk [2018-03-12]
ShortcutTarget: UltraMon.lnk -> C:\Windows\Installer\{8684F97B-F9AB-46CA-B45C-384CB8677935}\IcoUltraMon.ico ()
Startup: C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar para o OneNote.lnk [2018-11-29]
ShortcutTarget: Enviar para o OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.217.58 192.168.140.13
Tcpip\..\Interfaces\{28b97fe9-2a5b-4b34-adf3-6b32f735b454}: [DhcpNameServer] 10.0.217.58 192.168.140.13
Tcpip\..\Interfaces\{58b9c180-52c2-494b-84cf-2921b375670f}: [DhcpNameServer] 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{c86645d3-1e32-4e71-b04f-58764335ec32}: [DhcpNameServer] 10.0.217.58 192.168.140.13

Internet Explorer:
==================
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <==== ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1506343736-902235651-3257822511-2147\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-1506343736-902235651-3257822511-2147 -> DefaultScope {10E5BF9D-1411-4C93-A6E9-5F53DEC5428F} URL = 
SearchScopes: HKU\S-1-5-21-1506343736-902235651-3257822511-2147 -> {10E5BF9D-1411-4C93-A6E9-5F53DEC5428F} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-12-14] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-11-30] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-12-16] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-16] (Oracle Corporation)
IE Session Restore: HKU\S-1-5-21-1506343736-902235651-3257822511-2147 -> está habilitado.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-11-30] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: yl42et1p.default
FF ProfilePath: C:\Users\darkreploid\AppData\Roaming\Mozilla\Firefox\Profiles\yl42et1p.default [2018-12-24]
FF NewTab: Mozilla\Firefox\Profiles\yl42et1p.default -> about:home
FF HKU\S-1-5-21-1506343736-902235651-3257822511-2147\...\Firefox\Extensions: [owasmime@microsoft.com] - C:\Users\darkreploid\AppData\Local\SmimeAX\MozExtension
FF Extension: (Microsoft OWA S/MIME) - C:\Users\darkreploid\AppData\Local\SmimeAX\MozExtension [2018-10-25] [Legacy] [não assinado]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-03-02] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-03-02] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-16] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-09-07] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-07] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconf_warsaw.js [2018-12-24]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default [2018-12-24]
CHR Extension: (Slides) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-25]
CHR Extension: (Docs) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-25]
CHR Extension: (Google Drive) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (MEGA) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2018-12-21]
CHR Extension: (YouTube) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-25]
CHR Extension: (Adblock Plus) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-12-04]
CHR Extension: (Dashlane - Password Manager) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2018-12-12]
CHR Extension: (Full Page Screen Capture) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2018-09-21]
CHR Extension: (Sheets) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-25]
CHR Extension: (Google Docs Offline) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Vysor) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2018-11-16]
CHR Extension: (Helium Backup) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2018-02-25]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-02-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-09]
CHR Extension: (TeamViewer) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\oooiobdokpcfdlahlmcddobejikcmkfo [2018-11-05]
CHR Extension: (Gmail) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-25]
CHR Extension: (Chrome Media Router) - C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-21]
CHR Profile: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-09-13]
CHR Profile: C:\Users\darkreploid\AppData\Local\Google\Chrome\User Data\System Profile [2018-09-13]
CHR HKU\S-1-5-21-1506343736-902235651-3257822511-2147\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Serviços (Whitelisted) ====================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [424288 2018-05-28] (Windows (R) Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-12-07] (Microsoft Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [139584 2016-12-06] (Conexant Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-02-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-02-25] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2018-12-13] (Dropbox, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc.)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55928 2018-01-09] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2002928 2018-01-09] (ESET)
S3 eshasrv; C:\Program Files\ESET\ESET Security\eshasrv.exe [197240 2018-01-09] (ESET)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [71040 2018-11-16] (Lenovo Group Ltd.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [742704 2017-09-21] (Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [668472 2017-09-21] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-09-25] (Intel Corporation)
R2 Lenovo Instant On; C:\Program Files\Lenovo\InstantOn\InstantOnSrv.exe [3118376 2017-10-05] (Lenovo Group Limited)
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [773944 2018-09-12] (Lenovo.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
R2 OpenVPNAccessClient; C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [24064 2014-06-05] () [Arquivo não assinado]
R2 SAService; C:\WINDOWS\system32\SAsrv.exe [416576 2016-12-06] (Conexant Systems, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381624 2018-09-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23880 2018-10-22] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [268328 2018-06-27] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-09-10] (TeamViewer GmbH)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_a6dc7343c725f003\driver\TPHKLOAD.exe [422544 2018-07-19] (Lenovo Group Limited)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77824 2016-10-03] (Synaptics Incorporated)
R2 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48136 2016-10-03] (Synaptics Incorporated)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1077592 2018-10-18] (GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830488 2018-09-15] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe [120096 2018-01-16] (Wondershare)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [174928 2018-01-26] (BayHubTech/O2Micro )
R3 BtFilter; C:\WINDOWS\System32\drivers\btfilter.sys [72024 2018-05-28] (Qualcomm)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [133832 2017-12-19] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-06-04] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180064 2017-12-19] (ESET)
R1 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [77696 2017-12-19] (ESET)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [941624 2018-01-26] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_59c2df45e749b4c4\nvlddmkm.sys [17200384 2018-06-29] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-14] (NVIDIA Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [41272 2018-09-12] (Lenovo.)
S3 pmxdrv; C:\WINDOWS\system32\drivers\pmxdrv.sys [31152 2018-07-22] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1026896 2018-02-25] (Realtek )
S3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3236840 2017-08-03] (Realtek Semiconductor Corp.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46120 2018-06-27] (Synaptics Incorporated)
R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31480 2016-10-03] (Synaptics Incorporated)
R3 tapoas; C:\WINDOWS\System32\drivers\tapoas.sys [26624 2014-05-08] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Corporation)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [28376 2018-12-24] (GAS Tecnologia)
R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [56872 2018-04-25] (GAS Tecnologia)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [44624 2017-11-29] (GAS Tecnologia)
R3 wsddprm; C:\WINDOWS\system32\drivers\wsddprm.sys [43560 2018-04-10] (GAS Tecnologia)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-08-11] (BigNox Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-12-24 14:34 - 2018-12-24 14:35 - 000029276 _____ C:\Users\darkreploid\Desktop\FRST.txt
2018-12-24 14:34 - 2018-12-24 14:34 - 000000000 ____D C:\FRST
2018-12-24 14:33 - 2018-12-24 14:33 - 002421760 _____ (Farbar) C:\Users\darkreploid\Desktop\FRST64.exe
2018-12-24 14:24 - 2018-12-24 14:25 - 000002378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-24 14:24 - 2018-12-24 14:25 - 000002337 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-12-24 14:03 - 2018-12-24 14:03 - 000000000 ___HD C:\OneDriveTemp
2018-12-24 13:12 - 2018-12-24 13:45 - 000000000 ____D C:\Users\darkreploid\Desktop\kawaks emulator-1850
2018-12-24 13:11 - 2018-12-24 13:43 - 026881336 _____ C:\Users\darkreploid\Desktop\kawaks emulator-1850.rar
2018-12-24 12:37 - 2018-12-24 12:38 - 000000000 ____D C:\Users\darkreploid\Desktop\fba64_029743
2018-12-24 12:36 - 2018-12-24 12:37 - 005044950 _____ C:\Users\darkreploid\Desktop\fba64_029743.7z
2018-12-24 03:05 - 2018-12-24 03:05 - 000029867 _____ C:\Users\darkreploid\Desktop\fadel
2018-12-21 17:31 - 2018-12-21 17:51 - 000018545 _____ C:\Users\darkreploid\Documents\marco.sellin@polofilms.com.br - recebidas.xlsx
2018-12-21 17:27 - 2018-12-21 17:25 - 000022770 _____ C:\Users\darkreploid\Documents\marco.sellin@polofilms.com.br - recebidas.csv
2018-12-21 12:11 - 2018-12-21 12:15 - 000023425 _____ C:\Users\darkreploid\Desktop\ZHPCleaner.txt
2018-12-21 12:00 - 2018-12-21 12:15 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\ZHP
2018-12-21 12:00 - 2018-12-21 12:00 - 000000896 _____ C:\Users\darkreploid\Desktop\ZHPCleaner.lnk
2018-12-21 12:00 - 2018-12-21 12:00 - 000000000 ____D C:\Users\darkreploid\AppData\Local\ZHP
2018-12-21 11:55 - 2018-12-21 11:55 - 007320272 _____ (Malwarebytes) C:\Users\darkreploid\Desktop\adwcleaner_7.2.6.0.exe
2018-12-21 11:54 - 2018-12-21 11:58 - 000000000 ____D C:\AdwCleaner
2018-12-21 11:50 - 2018-12-21 11:50 - 000000000 ____D C:\Users\darkreploid\Desktop\adm
2018-12-21 11:48 - 2018-12-21 11:48 - 003296128 _____ C:\Users\darkreploid\Desktop\ZHPCleaner.exe
2018-12-20 16:02 - 2018-12-20 16:02 - 009677624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-12-20 16:02 - 2018-12-20 16:02 - 007856640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 007645584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 006541440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 005439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 002469632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 001255952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-12-20 16:02 - 2018-12-20 16:02 - 001051176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-12-20 16:02 - 2018-12-20 16:02 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2018-12-20 16:02 - 2018-12-20 16:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2018-12-17 16:03 - 2018-12-17 16:03 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 012151296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 004588736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003951192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002985328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 002435296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-12-17 16:03 - 2018-12-17 16:03 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2018-12-17 16:03 - 2018-12-17 16:03 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-17 16:03 - 2018-12-17 16:03 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001641592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-17 16:03 - 2018-12-17 16:03 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-12-17 16:03 - 2018-12-17 16:03 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2018-12-17 16:03 - 2018-12-17 16:03 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2018-12-17 16:03 - 2018-12-17 16:03 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-17 16:03 - 2018-12-17 16:03 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-17 16:03 - 2018-12-17 16:03 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-12-17 16:03 - 2018-12-17 16:03 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 003337800 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 002020560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001751560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001612808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001401864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 001053352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000828936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000743432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000667152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000649736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000495624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-17 16:02 - 2018-12-17 16:02 - 000046392 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2018-12-17 16:02 - 2018-12-17 16:02 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-17 16:02 - 2018-12-17 16:02 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-17 11:08 - 2018-12-17 11:08 - 000012019 _____ C:\Users\darkreploid\Documents\joca.joyce@gmail.com.xlsx
2018-12-17 10:55 - 2018-12-17 10:58 - 000005625 _____ C:\Users\darkreploid\Documents\joca.joyce@gmail.csv
2018-12-17 10:40 - 2018-12-24 13:42 - 000002098 __RSH C:\Users\darkreploid\ntuser.pol
2018-12-16 16:06 - 2018-12-16 16:06 - 000000080 ___SH C:\bootTel.dat
2018-12-16 15:03 - 2018-12-16 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ownCloud
2018-12-16 14:01 - 2018-12-16 14:01 - 000000000 ____D C:\Users\Todos os Usuários\Microsoft OneDrive
2018-12-16 14:01 - 2018-12-16 14:01 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-12-16 13:59 - 2018-12-16 13:59 - 000000020 ___SH C:\Users\darkreploid\ntuser.ini
2018-12-16 11:04 - 2018-12-16 10:14 - 000000000 ____D C:\Windows.old
2018-12-16 10:59 - 2018-12-16 11:04 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-12-16 10:58 - 2018-12-16 10:59 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-12-16 10:58 - 2018-12-16 10:58 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-12-16 10:55 - 2018-12-16 10:55 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-12-16 10:55 - 2018-12-16 10:55 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-12-16 10:55 - 2018-12-16 10:55 - 000000000 ____D C:\Program Files\MSBuild
2018-12-16 10:55 - 2018-12-16 10:55 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-12-16 10:55 - 2018-12-16 10:55 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-12-16 10:55 - 2018-09-14 22:41 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-12-16 10:55 - 2018-09-14 22:34 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-12-16 10:55 - 2018-09-14 21:57 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-12-16 10:55 - 2018-09-14 21:52 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-12-16 10:55 - 2018-09-09 18:17 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-12-16 10:55 - 2018-09-09 18:16 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-12-16 10:55 - 2018-09-09 18:16 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-12-16 10:55 - 2018-08-29 18:56 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-12-16 10:55 - 2018-08-29 18:56 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-12-16 10:55 - 2018-08-29 18:56 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-12-16 10:55 - 2018-08-09 15:49 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-12-16 10:55 - 2018-08-08 21:58 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-12-16 10:54 - 2018-09-14 19:05 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2018-12-16 10:54 - 2018-09-14 19:04 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2018-12-16 10:54 - 2018-09-14 18:50 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2018-12-16 10:54 - 2018-09-14 18:34 - 005489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2018-12-16 10:15 - 2018-12-24 14:07 - 001742320 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-16 10:14 - 2018-12-24 14:01 - 000003700 _____ C:\WINDOWS\System32\Tasks\Lenovo Power Management Driver PnP Task
2018-12-16 10:14 - 2018-12-24 14:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-16 10:14 - 2018-12-24 11:50 - 000004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2E29D79C-AFC8-4BD1-ADA9-74B1B38758BE}
2018-12-16 10:14 - 2018-12-19 15:58 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-16 10:14 - 2018-12-19 15:58 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-16 10:14 - 2018-12-16 10:14 - 000003574 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2018-12-16 10:14 - 2018-12-16 10:14 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000003350 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2018-12-16 10:14 - 2018-12-16 10:14 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000003140 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2018-12-16 10:14 - 2018-12-16 10:14 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3062175493-3372157304-2349046055-1001
2018-12-16 10:14 - 2018-12-16 10:14 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1506343736-902235651-3257822511-16146
2018-12-16 10:14 - 2018-12-16 10:14 - 000002856 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1506343736-902235651-3257822511-2147
2018-12-16 10:14 - 2018-12-16 10:14 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-16 10:14 - 2018-12-16 10:14 - 000002552 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2018-12-16 10:14 - 2018-12-16 10:14 - 000002024 _____ C:\WINDOWS\System32\Tasks\RTFTrack
2018-12-16 10:14 - 2018-12-16 10:14 - 000002016 _____ C:\WINDOWS\System32\Tasks\RtsCM
2018-12-16 10:14 - 2018-12-16 10:14 - 000001992 _____ C:\WINDOWS\System32\Tasks\Rerun Warsaw's CoreFixer
2018-12-16 10:14 - 2018-12-16 10:14 - 000000000 ____D C:\WINDOWS\System32\Tasks\TVT
2018-12-16 10:14 - 2018-12-16 10:14 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2018-12-16 10:14 - 2018-12-16 10:14 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2018-12-16 10:14 - 2018-12-16 10:14 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2018-12-16 10:13 - 2018-12-16 10:14 - 000015243 _____ C:\WINDOWS\diagwrn.xml
2018-12-16 10:13 - 2018-12-16 10:14 - 000015243 _____ C:\WINDOWS\diagerr.xml
2018-12-16 10:10 - 2018-12-16 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office
2018-12-16 10:09 - 2018-12-16 10:09 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-12-16 10:08 - 2018-12-24 13:42 - 000000000 ____D C:\Users\darkreploid

2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Modelos
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Meus Documentos
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Menu Iniciar
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Documents\Minhas Músicas
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Documents\Minhas Imagens
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Documents\Meus Vídeos
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Dados de Aplicativos
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Configurações Locais
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\AppData\Local\Histórico
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\AppData\Local\Dados de Aplicativos
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Ambiente de Rede
2018-12-16 10:08 - 2018-12-16 10:08 - 000000000 _SHDL C:\Users\darkreploid\Ambiente de Impressão
2018-12-16 10:08 - 2018-09-15 05:29 - 000001105 _____ C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-16 10:07 - 2018-12-16 10:07 - 000000000 ____D C:\Users\Todos os Usuários\USOShared
2018-12-16 10:07 - 2018-12-16 10:07 - 000000000 ____D C:\ProgramData\USOShared
2018-12-16 10:07 - 2018-09-15 05:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-12-16 10:05 - 2018-03-27 00:40 - 000144808 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-12-16 10:04 - 2018-12-24 13:39 - 000439176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-16 10:04 - 2018-12-24 10:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-14 17:07 - 2018-12-14 17:07 - 001132735 _____ C:\Users\darkreploid\Downloads\IPS-ASP03 (1).xlsx
2018-12-13 21:53 - 2018-12-16 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-12-13 14:43 - 2018-12-13 14:43 - 000022675 _____ C:\Users\darkreploid\Downloads\contas-cert.txt
2018-12-13 03:12 - 2018-12-13 03:12 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2018-12-13 03:12 - 2018-12-13 03:12 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2018-12-13 03:12 - 2018-12-13 03:12 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2018-12-13 03:12 - 2018-12-13 03:12 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2018-12-09 06:31 - 2018-12-09 06:31 - 000019428 _____ C:\Users\darkreploid\Downloads\historico-faturamento.pdf
2018-12-08 01:36 - 2018-12-08 01:36 - 000001455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN Connect.lnk
2018-12-08 01:36 - 2018-12-08 01:36 - 000001443 _____ C:\Users\Public\Desktop\OpenVPN Connect.lnk
2018-12-08 01:35 - 2018-12-08 01:35 - 005317089 _____ C:\Users\darkreploid\Downloads\openvpn-connect-2.0.8.106 (1).msi
2018-12-07 17:38 - 2018-12-07 17:38 - 000002180 _____ C:\Users\darkreploid\Downloads\email.txt
2018-12-05 14:21 - 2018-12-05 14:21 - 000000000 ____D C:\Program Files\DIFX
2018-12-05 08:42 - 2018-12-05 08:42 - 000012541 _____ C:\Users\darkreploid\Documents\IPTU_2018_P10.pdf
2018-12-05 08:42 - 2018-12-05 08:42 - 000012539 _____ C:\Users\darkreploid\Documents\IPTU_2018_P9.pdf
2018-12-05 08:42 - 2018-12-05 08:42 - 000012539 _____ C:\Users\darkreploid\Documents\IPTU_2018_P8.pdf
2018-12-05 08:42 - 2018-12-05 08:42 - 000012539 _____ C:\Users\darkreploid\Documents\IPTU_2018_P7.pdf
2018-12-05 08:41 - 2018-12-05 08:41 - 000012543 _____ C:\Users\darkreploid\Documents\IPTU_2018_P4.pdf
2018-12-05 08:41 - 2018-12-05 08:41 - 000012542 _____ C:\Users\darkreploid\Documents\IPTU_2018_P6.pdf
2018-12-05 08:41 - 2018-12-05 08:41 - 000012542 _____ C:\Users\darkreploid\Documents\IPTU_2018_P5.pdf
2018-12-05 08:41 - 2018-12-05 08:41 - 000012537 _____ C:\Users\darkreploid\Documents\IPTU_2018_P2.pdf
2018-12-05 08:41 - 2018-12-05 08:41 - 000012535 _____ C:\Users\darkreploid\Documents\IPTU_2018_P3.pdf
2018-12-05 08:40 - 2018-12-05 08:40 - 000012537 _____ C:\Users\darkreploid\Documents\IPTU_2018_P1.pdf
2018-12-04 15:17 - 2018-12-16 10:10 - 000002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-12-04 15:17 - 2018-12-16 10:10 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-12-04 15:16 - 2018-12-04 15:16 - 007684768 _____ (Tim Kosse) C:\Users\darkreploid\Downloads\FileZilla_3.39.0_win64-setup.exe
2018-12-03 17:25 - 2018-12-03 17:25 - 000065871 _____ C:\Users\darkreploid\Downloads\Formulário Horas Extras - Novembro.xlsx
2018-11-29 09:32 - 2018-11-29 09:33 - 983634555 _____ C:\Users\darkreploid\Downloads\[Infinite Fansub] Maken-Ki - 09 [BD 1080p FLAC][0885C3E1].mkv
2018-11-28 11:06 - 2018-12-16 13:59 - 000000000 ___DC C:\WINDOWS\Panther
2018-11-26 11:32 - 2018-11-16 02:44 - 000425344 _____ (Lenovo Group Limited) C:\WINDOWS\system32\iMDriverHelper.dll
2018-11-26 11:32 - 2018-11-16 02:44 - 000206208 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.CoreTypes.dll
2018-11-26 11:32 - 2018-11-16 02:44 - 000130432 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.Utilities.dll
2018-11-26 11:32 - 2018-11-16 02:44 - 000104832 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll
2018-11-26 11:32 - 2018-11-16 02:44 - 000097664 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.Modern.ImController.ImClient.dll
2018-11-26 11:32 - 2018-11-16 02:44 - 000053632 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe
2018-11-26 11:32 - 2018-11-16 02:44 - 000043904 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\Lenovo.ImController.EventLogging.dll
2018-11-25 21:48 - 2018-12-16 16:53 - 000002317 _____ C:\Users\darkreploid\Desktop\Itaú.lnk
2018-11-25 21:48 - 2018-12-16 10:09 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo Itaú
2018-11-21 14:21 - 2018-09-12 03:41 - 000855864 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmsvc.exe
2018-11-21 14:21 - 2018-09-12 03:41 - 000773944 _____ (Lenovo.) C:\WINDOWS\system32\LPlatSvc.exe
2018-11-21 14:21 - 2018-09-12 03:41 - 000543544 _____ (Lenovo.) C:\WINDOWS\system32\tpinspm.dll
2018-11-21 14:21 - 2018-09-12 03:41 - 000104248 _____ (Lenovo.) C:\WINDOWS\system32\ibmpmctl.exe
2018-11-21 14:21 - 2018-09-12 03:41 - 000085304 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\ibmpmdrv.sys
2018-11-21 14:21 - 2018-09-12 03:41 - 000041272 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\pmdrvs.sys
2018-11-18 20:17 - 2018-11-18 20:19 - 005317089 _____ C:\Users\darkreploid\Downloads\openvpn-connect-2.0.8.106.msi
2018-11-16 13:10 - 2018-12-16 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo
2018-11-16 13:10 - 2018-11-16 13:10 - 000000296 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2018-11-13 15:55 - 2018-11-13 15:55 - 000011374 _____ C:\Users\darkreploid\Downloads\Checklist - Cloudmark.xlsx
2018-11-10 17:57 - 2018-11-10 17:57 - 000000000 ____D C:\Users\Todos os Usuários\Blizzard Entertainment
2018-11-10 17:57 - 2018-11-10 17:57 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2018-11-10 13:03 - 2018-11-10 13:03 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Blizzard Entertainment
2018-11-10 13:02 - 2018-12-16 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2018-11-10 13:02 - 2018-11-12 10:52 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Battle.net
2018-11-10 13:02 - 2018-11-10 17:57 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Battle.net
2018-11-10 13:01 - 2018-11-10 17:56 - 000000000 ____D C:\Program Files (x86)\Battle.net
2018-11-10 12:56 - 2018-11-10 12:56 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Blizzard
2018-11-10 12:50 - 2018-11-10 12:55 - 000000000 ____D C:\Users\Todos os Usuários\Battle.net
2018-11-10 12:50 - 2018-11-10 12:55 - 000000000 ____D C:\ProgramData\Battle.net
2018-11-10 12:50 - 2018-11-10 12:50 - 004703728 _____ (Blizzard Entertainment) C:\Users\darkreploid\Downloads\Battle.net-Setup.exe
2018-11-08 23:14 - 2018-12-21 22:15 - 000000000 ____D C:\Users\darkreploid\AppData\Local\SquirrelTemp
2018-11-07 14:23 - 2018-03-27 00:40 - 000144808 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2018-11-07 14:23 - 2018-03-27 00:40 - 000119720 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2018-11-07 14:23 - 2018-03-27 00:39 - 000278440 _____ C:\WINDOWS\system32\igfxCPL.cpl
2018-11-07 14:22 - 2018-03-26 21:23 - 000757436 _____ C:\WINDOWS\system32\cp_resources.bin
2018-11-07 14:22 - 2018-03-09 01:04 - 000820168 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys
2018-11-06 21:40 - 2018-12-08 18:04 - 000000000 ____D C:\Users\darkreploid\AppData\Local\D3DSCache
2018-11-05 11:16 - 2018-11-05 11:16 - 000010461 _____ C:\Users\darkreploid\Downloads\512003_148243_bloqueio_05112018.xlsx
2018-11-04 18:42 - 2018-11-04 18:42 - 000001417 _____ C:\Users\darkreploid\Desktop\Microsoft Edge.lnk
2018-11-04 01:29 - 2018-11-04 01:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-11-04 01:14 - 2018-11-04 01:19 - 000000000 ____D C:\WINDOWS\CSC
2018-11-04 00:23 - 2018-11-04 00:23 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Lenovo
2018-11-04 00:23 - 2018-11-04 00:23 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Google
2018-11-04 00:23 - 2018-11-04 00:23 - 000000000 ____D C:\Users\adm_gfrancisco\AppData\Local\Lenovo
2018-11-04 00:23 - 2018-11-04 00:23 - 000000000 ____D C:\Users\adm_gfrancisco\AppData\Local\Google
2018-11-04 00:21 - 2018-12-16 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2018-11-01 19:44 - 2018-11-01 19:44 - 000036352 _____ C:\Users\darkreploid\Downloads\510610_147985_emails ativos para bloquear 30_10.xls
2018-10-30 20:22 - 2018-10-30 20:22 - 007693048 _____ (Tim Kosse) C:\Users\darkreploid\Downloads\FileZilla_3.38.1_win64-setup.exe
2018-10-29 21:02 - 2018-10-29 21:02 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-10-29 21:02 - 2018-10-29 21:02 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-10-29 21:02 - 2018-10-29 21:02 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-10-29 21:02 - 2018-10-29 21:02 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-10-29 21:02 - 2018-10-29 21:02 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2018-10-29 21:02 - 2018-10-29 21:02 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2018-10-01 15:12 - 2018-10-25 16:05 - 000000000 ____D C:\Users\darkreploid\AppData\Local\SmimeAX
2018-09-26 16:22 - 2018-09-26 16:22 - 007792496 _____ (Tim Kosse) C:\Users\darkreploid\Downloads\FileZilla_3.37.1_win64-setup.exe
2018-09-25 10:44 - 2018-12-16 15:03 - 000001879 _____ C:\Users\Public\Desktop\ownCloud.lnk

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2018-12-24 14:34 - 2018-02-25 21:22 - 000000000 ____D C:\Users\darkreploid\AppData\LocalLow\Mozilla
2018-12-24 14:24 - 2018-02-25 21:22 - 000000000 ____D C:\Program Files (x86)\Google
2018-12-24 14:23 - 2018-09-15 05:33 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2018-12-24 14:23 - 2018-09-15 05:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-24 14:07 - 2018-09-15 14:43 - 000752640 _____ C:\WINDOWS\system32\prfh0416.dat
2018-12-24 14:07 - 2018-09-15 14:43 - 000148656 _____ C:\WINDOWS\system32\prfc0416.dat
2018-12-24 14:07 - 2018-09-15 05:31 - 000000000 ____D C:\WINDOWS\INF
2018-12-24 14:03 - 2018-02-25 22:22 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\ownCloud
2018-12-24 14:03 - 2018-02-25 21:54 - 000000000 ___RD C:\Users\darkreploid\Google Drive
2018-12-24 14:03 - 2018-02-25 21:50 - 000000000 ___RD C:\Users\darkreploid\Dropbox
2018-12-24 14:03 - 2018-02-20 13:35 - 000000000 __SHD C:\Users\darkreploid\IntelGraphicsProfiles
2018-12-24 14:03 - 2017-11-27 16:41 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA
2018-12-24 14:03 - 2017-11-27 16:41 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-24 14:01 - 2018-09-15 04:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-12-24 14:01 - 2018-03-13 00:47 - 000028376 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2018-12-24 14:01 - 2018-02-25 21:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-12-24 14:01 - 2018-02-24 21:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-12-24 14:01 - 2018-02-20 13:30 - 000000120 _____ C:\WINDOWS\system32\config\netlogon.ftl
2018-12-24 14:01 - 2017-11-27 16:42 - 000000000 ____D C:\Users\Todos os Usuários\Synaptics
2018-12-24 14:01 - 2017-11-27 16:42 - 000000000 ____D C:\ProgramData\Synaptics
2018-12-24 14:00 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-12-24 13:57 - 2018-09-15 05:33 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-24 13:46 - 2018-02-20 13:35 - 000000000 ____D C:\Users\darkreploid\AppData\Local\VirtualStore
2018-12-24 13:42 - 2018-02-20 13:35 - 000000000 ___RD C:\Users\darkreploid\3D Objects
2018-12-24 13:42 - 2017-03-23 15:27 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-24 13:40 - 2018-02-20 13:31 - 000009298 __RSH C:\Users\Todos os Usuários\ntuser.pol
2018-12-24 13:40 - 2018-02-20 13:31 - 000009298 __RSH C:\ProgramData\ntuser.pol
2018-12-24 13:38 - 2018-09-15 14:45 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-12-24 13:38 - 2018-09-15 14:45 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-24 13:38 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-12-24 13:37 - 2018-02-25 23:11 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\WhatsApp
2018-12-24 12:38 - 2018-03-08 15:22 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\FileZilla
2018-12-24 11:03 - 2018-02-26 19:08 - 000000600 _____ C:\Users\darkreploid\AppData\Local\PUTTY.RND
2018-12-24 03:06 - 2018-04-03 20:39 - 000000600 _____ C:\Users\darkreploid\AppData\Roaming\winscp.rnd
2018-12-24 02:57 - 2018-02-20 13:35 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Packages
2018-12-24 02:54 - 2018-02-25 22:28 - 000000416 _____ C:\Users\darkreploid\openvpn-connect.json
2018-12-23 12:08 - 2018-09-15 05:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-12-21 22:15 - 2018-02-25 23:11 - 000002338 _____ C:\Users\darkreploid\Desktop\WhatsApp.lnk
2018-12-21 22:15 - 2018-02-25 23:11 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2018-12-21 22:15 - 2018-02-25 23:11 - 000000000 ____D C:\Users\darkreploid\AppData\Local\WhatsApp
2018-12-21 11:58 - 2018-04-11 21:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-12-21 11:51 - 2018-07-24 11:48 - 000000000 ____D C:\Users\darkreploid\Documents\Arquivos do Outlook
2018-12-19 17:41 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\ServiceState
2018-12-17 16:04 - 2018-09-15 04:09 - 000000000 ____D C:\WINDOWS\servicing
2018-12-17 03:56 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\appcompat
2018-12-16 19:36 - 2018-02-28 21:45 - 000000000 ____D C:\Program Files (x86)\Steam
2018-12-16 16:53 - 2018-08-11 21:47 - 000001124 _____ C:\Users\darkreploid\Desktop\Multi-Drive.lnk
2018-12-16 16:53 - 2018-08-11 21:47 - 000001043 _____ C:\Users\darkreploid\Desktop\Nox.lnk
2018-12-16 16:53 - 2018-05-03 19:28 - 000001494 _____ C:\Users\darkreploid\Desktop\Backuptrans Android WhatsApp Transfer (x64).lnk
2018-12-16 16:53 - 2018-04-10 22:47 - 000002296 _____ C:\Users\darkreploid\Desktop\Vysor.lnk
2018-12-16 16:53 - 2018-02-26 13:09 - 000002505 _____ C:\Users\darkreploid\Desktop\X-Lite.lnk
2018-12-16 16:53 - 2018-02-25 22:04 - 000001961 _____ C:\Users\darkreploid\Desktop\mRemoteNG.lnk
2018-12-16 16:19 - 2018-07-23 00:49 - 000000000 ____D C:\Users\darkreploid\AppData\Local\ElevatedDiagnostics
2018-12-16 16:15 - 2018-04-30 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-12-16 16:15 - 2018-04-30 17:14 - 000000000 ____D C:\Program Files (x86)\Java
2018-12-16 16:14 - 2018-04-30 17:14 - 000098680 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-12-16 15:03 - 2018-02-25 22:23 - 000000000 ___SD C:\Users\darkreploid\ownCloud
2018-12-16 15:03 - 2018-02-25 22:21 - 000000000 ____D C:\Program Files (x86)\ownCloud
2018-12-16 14:16 - 2018-07-10 15:34 - 000000000 ____D C:\Users\Todos os Usuários\Packages
2018-12-16 14:16 - 2018-07-10 15:34 - 000000000 ____D C:\ProgramData\Packages
2018-12-16 14:02 - 2018-08-06 10:53 - 000001386 _____ C:\Users\Public\Desktop\Skype.lnk
2018-12-16 14:02 - 2018-08-06 10:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-12-16 13:59 - 2018-02-20 13:35 - 000000000 ____D C:\Users\darkreploid\AppData\Local\ConnectedDevicesPlatform
2018-12-16 11:04 - 2018-09-15 05:36 - 000000000 ____D C:\WINDOWS\Setup
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\spool
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\Help
2018-12-16 11:04 - 2018-09-15 05:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-12-16 11:04 - 2018-09-15 05:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-12-16 11:04 - 2018-04-26 20:35 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2018-12-16 11:04 - 2018-03-28 00:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2018-12-16 11:04 - 2018-03-18 01:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-12-16 11:04 - 2018-03-12 10:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-16 11:04 - 2018-03-06 11:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kyocera
2018-12-16 11:04 - 2018-03-02 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Altitude uCI 8
2018-12-16 11:04 - 2018-03-01 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Desktop Manager
2018-12-16 11:04 - 2018-02-28 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-12-16 11:04 - 2018-02-27 11:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2018-12-16 11:04 - 2018-02-25 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mRemoteNG
2018-12-16 11:04 - 2018-02-25 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-12-16 11:04 - 2018-02-20 12:56 - 000000000 ____D C:\WINDOWS\SysWOW64\SDA
2018-12-16 11:04 - 2018-02-20 12:56 - 000000000 ____D C:\WINDOWS\system32\SDA
2018-12-16 11:04 - 2017-11-27 16:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-12-16 11:04 - 2017-11-27 16:39 - 000000000 ____D C:\Program Files\Intel
2018-12-16 11:04 - 2017-11-27 16:37 - 000000000 ____D C:\Program Files\CONEXANT
2018-12-16 11:04 - 2017-11-27 16:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
2018-12-16 11:04 - 2017-03-18 19:03 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2018-12-16 11:01 - 2018-09-15 05:33 - 000000000 __RHD C:\Users\Public\Libraries
2018-12-16 11:01 - 2018-04-11 21:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-12-16 10:59 - 2018-09-15 14:44 - 000000000 ____D C:\WINDOWS\OCR
2018-12-16 10:59 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\Resources
2018-12-16 10:59 - 2018-08-01 15:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-12-16 10:59 - 2018-06-21 01:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SD Association
2018-12-16 10:59 - 2018-06-04 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2018-12-16 10:59 - 2018-05-03 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2018-12-16 10:59 - 2018-04-30 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programas RFB2018
2018-12-16 10:59 - 2018-03-16 20:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\Lenovo
2018-12-16 10:59 - 2017-11-27 16:42 - 000000000 ____D C:\Program Files\Synaptics
2018-12-16 10:59 - 2017-11-27 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2018-12-16 10:57 - 2018-09-15 14:45 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-12-16 10:57 - 2018-09-15 14:43 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ___SD C:\WINDOWS\system32\dsc
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ___RD C:\Program Files\Windows Defender
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2018-12-16 10:57 - 2018-09-15 05:33 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-12-16 10:55 - 2018-09-15 05:39 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\telnet.exe
2018-12-16 10:55 - 2018-09-15 05:37 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-12-16 10:55 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-12-16 10:14 - 2018-09-15 05:33 - 000000000 ____D C:\Program Files\windows nt
2018-12-16 10:13 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\Registration
2018-12-16 10:11 - 2018-09-15 05:33 - 000000000 __RSD C:\WINDOWS\media
2018-12-16 10:11 - 2018-09-15 05:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-12-16 10:11 - 2018-02-20 13:09 - 000023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-12-16 10:10 - 2017-11-27 16:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-12-16 10:09 - 2018-08-11 21:47 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2018-12-16 10:09 - 2018-07-31 12:18 - 000000000 ____D C:\Users\adm_gfrancisco\AppData\Local\Packages
2018-12-16 10:09 - 2018-07-22 23:36 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2018-12-16 10:09 - 2018-05-24 15:00 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screencast-O-Matic v2.0
2018-12-16 10:09 - 2018-05-03 19:28 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android WhatsApp Transfer (x64)
2018-12-16 10:09 - 2018-04-09 19:30 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\ClockworkMod
2018-12-16 10:09 - 2018-03-28 12:27 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6
2018-12-16 10:09 - 2018-03-12 10:33 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-16 10:09 - 2018-03-08 15:21 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2018-12-16 10:08 - 2018-04-30 17:15 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas RFB2018
2018-12-16 10:08 - 2018-04-09 17:50 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ClockworkMod
2018-12-16 10:08 - 2018-03-03 01:08 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-12-16 10:08 - 2018-02-26 13:09 - 000000000 ____D C:\Users\darkreploid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CounterPath Corporation X-Lite
2018-12-16 10:07 - 2018-09-15 05:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-12-16 10:07 - 2018-09-15 05:33 - 000000000 ____D C:\Users\Todos os Usuários\USOPrivate
2018-12-16 10:07 - 2018-09-15 05:33 - 000000000 ____D C:\ProgramData\USOPrivate
2018-12-16 10:07 - 2017-11-27 16:41 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-12-16 10:05 - 2017-11-27 16:37 - 001705080 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2018-12-15 20:37 - 2018-02-24 21:35 - 000001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk
2018-12-15 20:37 - 2018-02-24 21:35 - 000001035 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk
2018-12-13 21:53 - 2018-02-25 21:45 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-12-13 16:01 - 2018-02-24 21:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-12-13 16:01 - 2018-02-24 21:55 - 137260640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-12-12 20:58 - 2018-02-25 21:22 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-12-12 20:58 - 2018-02-25 21:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-08 18:27 - 2018-03-03 01:31 - 000000000 ____D C:\Users\darkreploid\AppData\Local\CrashDumps
2018-12-01 01:53 - 2018-09-15 05:36 - 000835688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-12-01 01:53 - 2018-09-15 05:36 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-11-29 12:13 - 2018-02-26 13:09 - 000000000 ____D C:\Users\darkreploid\AppData\Local\CounterPath
2018-11-28 14:38 - 2018-05-24 15:01 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Screencast-O-Matic-v2
2018-11-25 21:49 - 2017-11-27 22:11 - 000000000 ____D C:\Users\Todos os Usuários\Lenovo
2018-11-25 21:49 - 2017-11-27 22:11 - 000000000 ____D C:\ProgramData\Lenovo
2018-11-25 21:48 - 2018-02-28 22:45 - 000000000 ____D C:\Users\darkreploid\AppData\Local\Aplicativo Itau

==================== Arquivos na raiz de alguns diretórios =======

2018-04-03 20:39 - 2018-12-24 03:06 - 000000600 _____ () C:\Users\darkreploid\AppData\Roaming\winscp.rnd
2018-02-26 19:08 - 2018-12-24 11:03 - 000000600 _____ () C:\Users\darkreploid\AppData\Local\PUTTY.RND

==================== Bamital & volsnap ======================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente

==================== Fim de FRST.txt ============================

Addition.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro @DarkReploid

 

Desative temporariamente seu antivírus, antispywares e firewall, para não causar conflitos.

 

Baixe o arquivo (fixlist.txt) no anexo deste post e salve-o na Área de Trabalho (Desktop).

Execute o FRST.exe (ou FRST64.exe) e clique no botão Corrigir.

Aguarde... ao final será gerado o log Fixlog.txt  salvo em sua Área de Trabalho (Desktop).

Selecione, copie e cole o conteúdo deste log em sua sua próxima resposta.

 

Abraços :D

fixlist.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Tópico Arquivado

 

Como o autor não respondeu ao tópico por mais de 10 dias, o mesmo foi arquivado. Caso você seja o autor do tópico e quer que o mesmo seja reaberto, entre em contato com um Analista de Segurança ou Coordenador solicitando o desbloqueio.

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×