Ir ao conteúdo
  • Cadastre-se

gui1991

Membros Juniores
  • Total de itens

    16
  • Registro em

  • Última visita

  • Qualificações

    N/D
  1. Passei apenas para avisar que re-instalei o Comodo. ZoneAlarm tava me causando problemas e não curti muito. Acho o Windows Defender muito simples. Fico no aguardo para saber se precisamos realizar mais algum processo de verificação.
  2. Caro @diego_moicano Todas as etapas foram concluidas. Há algo mais para se fazer?
  3. Caro @diego_moicano Segue o log: SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17] WebSite: www.safezone.cc DateLog: 16.06.2019 16:29:12 Path starting: C:\Users\Guilherme\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe Log directory: C:\SecurityCheck\ IsAdmin: True User: Guilherme VersionXML: 6.56is-15.06.2019 ___________________________________________________________________________ Windows 7(6.1.7601) Service Pack 1 (x64) Ultimate Lang: Portuguese(0416) Installation date OS: 01.07.2013 18:45:26 LicenseStatus: Windows(R) 7, Ultimate edition The machine is permanently activated. Boot Mode: Normal Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe SystemDrive: FS: [NTFS] Capacity: [931.4 Gb] Used: [755.3 Gb] Free: [176.1 Gb] ------------------------------- [ Windows ] ------------------------------- Internet Explorer 11.0.9600.19377 User Account Control enabled (Level 2) Automatically download and schedule installation Date install updates: 2019-06-12 08:07:55 Windows Update (wuauserv) - The service is running Central de Segurança (wscsvc) - The service is running Registro remoto (RemoteRegistry) - The service has stopped Descoberta SSDP (SSDPSRV) - The service is running Serviços de Área de Trabalho Remota (TermService) - The service has stopped Windows Remote Management (WS-Management) (WinRM) - The service has stopped ------------------------------ [ MS Office ] ------------------------------ Microsoft Office 2007 v.12.0.6612.1000 ---------------------------- [ Antivirus_WMI ] ---------------------------- Bitdefender Antivirus (enabled and up to date) ---------------------------- [ Firewall_WMI ] ----------------------------- ZoneAlarm Free Firewall Firewall (enabled) --------------------------- [ AntiSpyware_WMI ] --------------------------- Bitdefender Antispyware (enabled and up to date) ---------------------- [ AntiVirusFirewallInstall ] ----------------------- Bitdefender Antivirus Plus v.23.0.24.120 Bitdefender Agent v.23.0.8.134 Check Point SBA v.86.5.6213 Malwarebytes versão 3.7.1.2839 v.3.7.1.2839 ZoneAlarm Free Firewall v.15.6.028.18012 ZoneAlarm Anti-Ransomware v.1.001.1308 ZoneAlarm Firewall v.15.6.028.18012 ZoneAlarm Security v.15.6.028.18012 -------------------------- [ SecurityUtilities ] -------------------------- ZoneAlarm Anti-Ransomware v.1.001.1308 --------------------------- [ OtherUtilities ] ---------------------------- Microsoft .NET Framework 4.7.2 v.4.7.03062 Microsoft .NET Framework 4.7.2 (PTB) v.4.7.03062 Microsoft Silverlight v.5.1.50918.0 Microsoft .NET Framework 4.7.2 (Português (Brasil)) v.4.7.03062 Microsoft Office Enterprise 2007 v.12.0.6612.1000 Warning! This software is no longer supported. Please use latest Microsift Office, Office Online or LibreOffice K-Lite Mega Codec Pack 13.0.0 v.13.0.0 Warning! Download Update RealPlayer Cloud v.17.0.12 Steam v.1.0.0.0 Warning! Download Update Microsoft Office 2007 Service Pack 3 (SP3) Warning! This software is no longer supported. Please use latest Microsift Office, Office Online or LibreOffice -------------------------------- [ Arch ] --------------------------------- WinRAR 5.30 (64-bit) v.5.30.0 Warning! Download Update 7-Zip 9.20 (x64 edition) v.9.20.00.0 Warning! This software is no longer supported. Uninstall old version, download and install new one. --------------------------------- [ IM ] ---------------------------------- Discord v.0.0.305 Skype versão 8.44 v.8.44 Warning! Download Update -------------------------------- [ Java ] --------------------------------- Java 8 Update 211 (64-bit) v.8.0.2110.12 JavaFX 2.1.1 v.2.1.1 Warning! This software is no longer supported. Please uninstall it and use Java SE 8 (jre-8u211-windows-i586.exe). --------------------------- [ AppleProduction ] --------------------------- iTunes v.12.7.2.60 Warning! Download Update ^Please use Apple Software Update tool.^ QuickTime 7 v.7.79.80.95 Warning! This software is no longer supported. Please uninstall it and use another software. --------------------------- [ AdobeProduction ] --------------------------- Adobe AIR v.3.7.0.1530 Warning! Download Update Adobe Flash Player 26 ActiveX v.26.0.0.137 Warning! Download Update Adobe Flash Player 23 NPAPI v.23.0.0.162 Warning! Download Update Adobe Flash Player 32 PPAPI v.32.0.0.192 Warning! Download Update ph v.1.0.0 << Hidden Warning! This software is no longer supported. Please uninstall it. bl v.1.0.0 << Hidden Warning! This software is no longer supported. Please uninstall it. Adobe Acrobat Reader DC - Português v.19.010.20099 Warning! Download Update ^Please run Acrobat Reader DC and go Help - Check for updates...^ ------------------------------- [ Browser ] ------------------------------- Google Chrome v.75.0.3770.90 ------------------ [ AntivirusFirewallProcessServices ] ------------------- C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe v.23.0.24.116 C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe v.23.0.24.116 C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe v.23.0.24.109 Bitdefender Auxiliary Service (BDAuxSrv) - The service is running C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe v.1.0.1.42 C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe v.23.0.24.116 Bitdefender RedLine Service (bdredline) - The service is running C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe v.23.0.24.116 Bitdefender Product Agent Service (ProductAgentService) - The service is running C:\Program Files\Bitdefender Agent\ProductAgentService.exe v.23.0.8.130 Bitdefender Desktop Update Service (UPDATESRV) - The service is running C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe v.23.0.24.116 Bitdefender Virus Shield (VSSERV) - The service is running C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe v.23.0.24.117 Malwarebytes Service (MBAMService) - The service has stopped Windows Defender (WinDefend) - The service has stopped ZoneAlarm ICM NET Service (ZA NET ICM Service) - The service is running C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe v.0.0.41.17637 Check Point Endpoint EFR (CPEFR) - The service is running C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe v.8.60.5.6205 Check Point Sandblast Agent Cipolla (CpSbaCipolla) - The service is running C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe v.8.60.5.6101 Check Point Sandblast Agent Updater (CpSbaUpdater) - The service is running C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe v.8.60.5.6101 Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - The service has stopped C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe v.8.60.5.6203 ZAAR Update Service (ZAARUpdateService) - The service is running C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe v.1.1.1308.18049 ZoneAlarm Privacy Service (ZAPrivacyService) - The service has stopped TrueVector Internet Monitor (vsmon) - The service is running C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe v.15.6.11.17997 C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe v.15.6.17.18012 ---------------------------- [ UnwantedApps ] ----------------------------- Driver Easy 5.6.10 v.5.6.10 Warning! Suspected demo version of anti-spyware or optimization program. If this program is not familiar to you it is recommended to uninstall it and execute PC scanning using Malwarebytes Anti-Malware. Possible you became a victim of fraud or social engineering. ----------------------------- [ End of Log ] ------------------------------
  4. Caro @diego_moicano Malwarebytes não encontrou nada. Não precisei reiniciar a máquina. Segue o log: Malwarebytes www.malwarebytes.com -Detalhes de registro- Data da análise: 15/06/2019 Hora da análise: 05:06 Arquivo de registro: 83a1a7d8-8f44-11e9-8c21-00ff5b157223.json -Informação do software- Versão: 3.7.1.2839 Versão de componentes: 1.0.586 Versão do pacote de definições: 1.0.11062 Licença: Gratuita -Informação do sistema- Sistema operacional: Windows 7 Service Pack 1 CPU: x64 Sistema de arquivos: NTFS Usuário: Guilherme-PC\Guilherme -Resumo da análise- Tipo de análise: Análise de Ameaças Análise Iniciada Por: Manual Resultado: Concluído Objetos verificados: 302096 Ameaças detectadas: 0 Ameaças em quarentena: 0 Tempo decorrido: 17 min, 48 seg -Opções da análise- Memória: Habilitado Inicialização: Habilitado Sistema de arquivos: Habilitado Arquivos compactados: Habilitado Rootkits: Habilitado Heurística: Habilitado PUP: Detectar PUM: Detectar -Detalhes da análise- Processo: 0 (Nenhum item malicioso detectado) Módulo: 0 (Nenhum item malicioso detectado) Chave de registro: 0 (Nenhum item malicioso detectado) Valor de registro: 0 (Nenhum item malicioso detectado) Dados de registro: 0 (Nenhum item malicioso detectado) Fluxo de dados: 0 (Nenhum item malicioso detectado) Pasta: 0 (Nenhum item malicioso detectado) Arquivo: 0 (Nenhum item malicioso detectado) Setor físico: 0 (Nenhum item malicioso detectado) Instrumentação do Windows (WMI): 0 (Nenhum item malicioso detectado) (end)
  5. Caro @diego_moicano Agradeço a resposta rápida. Algumas coisas para te deixar atualizado: Tive ontem duas BSOD. Não sei o porquê. Fui dar uma olhada nos Serviços e percebi que o Superfetch estava desligado. Reinicei e desde então não tive mais problemas (deixei a maquina ligada a noite)... Enfim, sobre o firewall, vou dar uma procurada melhor.... agradeço mesmo assim. Vamos continuar, segue os logs: FRST.txtAddition.txt
  6. Caro @diego_moicano. Peço desculpas pela demora. Estive ocupado com outras atividades. Após uma extensa procura na internet, optei por desinstalar o Comodo provisoriamente (Talvez, no futuro, eu o reinstale). Enfim, acabei seguindo os procedimentos que tu pedistes no dia 2 de junho, porém não consigo mais encontrar o fixlog.txt da remoção do Comodo (espero que não tenha problema). Obs: Optei por instalar e testar o ZoneAlarm Firewall neste meio tempo. Não tenho certeza se seguirei com ele. Tu me recomendas algum outro firewall para teste?? Não gosto do firewall basicão do Windows.... enfim, segue os logs do FRST: FRST.txtAddition.txt
  7. @diego_moicano Caro, a não ser que você me diga que o Comodo tá criando algum conflito no meu computador, prefiro continuar com ele como meu Firewall. Ainda não encontrei nada a respeito do Anti-Spyware (Comodo Advanced Protection), por isso preciso saber de ti se mante-lo vai me causar problemas adiante. Se não, prefiro pular a etapa sim. Grato.
  8. @diego_moicano Antes de efetuar os procedimentos requeridos, só uma dúvida: Esse processo vai desinstalar todo o Comodo ou apenas o Anti-Spyware (COMODO Advanced Protection) ?? Porque eu não quero desinstalar o Comodo, acho que em questão de Firewall gratuito nenhum supera, uso ele desde 2015.... eu curto muito o combo que eu tenho no momento (FW Comodo, AV Bitdefender Pago). Se for o caso dai podemos pular essa etapa, mas não sei, vou ficar no aguardo da tua resposta antes de realizar qualquer procedimento. Grato.
  9. Opa @diego_moicano Segue os logs como pedido. FRST.txtAddition.txt
  10. Caro @diego_moicano. Segue o log: - Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 06- 05.2019 Executado por Guilherme (20-05-2019 06:12:07) Run:1 Executando a partir de C:\Users\Guilherme\Desktop Perfis Carregados: Guilherme (Perfis Disponíveis: Guilherme & Convidado) Modo da Inicialização: Normal ============================================== fixlist Conteúdo: ***************** CreateRestorePoint: CloseProcesses: HKLM\Software\...\Authentication \Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> c: \Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation) CHR HKLM \SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO Task: {F31F8D3E-58E8- 44EB-A90F-3445709D9041} - System32\Tasks\steamwebhelper_killer => TASKKILL [Argument = /F /IM steamwebhelper.exe /T] <==== ATENÇÃO SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2319398334-3939529845-2917517441-1000 -> {33D59858-89D9-4AC2- A956-93875EB02323} URL = hxxp://search.sxe-anticheat.com/?q={searchTerms} &rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding} &startIndex={startIndex?}&startPage={startPage} S3 catchme; \??\C:\ComboFix \catchme.sys [X] S3 dbx; system32\DRIVERS\dbx.sys [X] S3 ESEADriver2; \??\C: \Users\GUILHE~1\AppData\Local\Temp\ESEADriver2.sys [X] <==== ATENÇÃO S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X] S4 nvvhci; system32\DRIVERS\nvvhci.sys [X] S3 Synth3dVsc; System32\drivers \synth3dvsc.sys [X] U4 TimeBroker; não ImagePath U4 TimeBrokerSvc; não ImagePath S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329- 978B-1DD28605D202} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D- CE28-4194-9BA3-BA2E9197FF8C} => -> Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329 -978B-1DD28605D202} => -> Nenhum Arquivo ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Nenhum Arquivo ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF- 9228-0228EC7D5F17} => -> Nenhum Arquivo ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Nenhum Arquivo ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF- 9228-0228EC7D5F17} => -> Nenhum Arquivo ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Nenhum Arquivo FirewallRules: [{F7FCA321-53E5-48CF-BB28-AE4E6A3D9969}] => (Allow) E:\Tor Browser 2.3.25-10 - Configurado by Saiba na Web - www.saibanaweb.tk \Tor Browser\Start Tor Browser.exe Nenhum Arquivo FirewallRules: [{766422A6 -FBE5-4DFD-B7B3-2A71F5AD7F6D}] => (Allow) E:\Tor Browser 2.3.25-10 - Configurado by Saiba na Web - www.saibanaweb.tk\Tor Browser\Start Tor Browser.exe Nenhum Arquivo FirewallRules: [{61E4F47B-3F81-4435-B009- 7782728217D5}] => (Allow) E:\Tor Browser\Start Tor Browser.exe Nenhum Arquivo FirewallRules: [{8C549E9E-EE63-40D3-BCE7-7A00348ECC17}] => (Allow) E:\Tor Browser\Start Tor Browser.exe Nenhum Arquivo FirewallRules: [{89CB26A1-3E32-4D58-A495-6E28B666B72B}] => (Allow) E:\Tor Browser\Start Tor Browser.exe Nenhum Arquivo FirewallRules: [{0CC8C5EF-C954-4E0D-8E4C- E2E9C427EB47}] => (Allow) E:\Tor Browser\Start Tor Browser.exe Nenhum Arquivo FirewallRules: [TCP Query User{65881764-CE82-4AEB-A9C2- E0D1E1B5855B}C:\users\guilherme\downloads\skypeportable\app\skype\phone \skype.exe] => (Allow) C:\users\guilherme\downloads\skypeportable\app \skype\phone\skype.exe Nenhum Arquivo FirewallRules: [UDP Query User {B2A7253A-3FAD-4161-A708-9C7D86A69FCB}C:\users\guilherme\downloads \skypeportable\app\skype\phone\skype.exe] => (Allow) C:\users\guilherme \downloads\skypeportable\app\skype\phone\skype.exe Nenhum Arquivo FirewallRules: [TCP Query User{B54167B8-D028-43CC-82B5-3BE4B5B394CD}C: \users\guilherme\appdata\local\popcorn-time\popcorn-time.exe] => (Allow) C:\users\guilherme\appdata\local\popcorn-time\popcorn-time.exe Nenhum Arquivo FirewallRules: [UDP Query User{CE586149-7DE4-4047-A50D- 5D936509303F}C:\users\guilherme\appdata\local\popcorn-time\popcorn- time.exe] => (Allow) C:\users\guilherme\appdata\local\popcorn-time \popcorn-time.exe Nenhum Arquivo FirewallRules: [TCP Query User{86CD0A85- B3C3-4093-8965-687F1449DE49}F:\steamlibrary\steamapps\common\realm royale \binaries\win64\realm.exe] => (Allow) F:\steamlibrary\steamapps\common \realm royale\binaries\win64\realm.exe Nenhum Arquivo FirewallRules: [UDP Query User{5398CF10-A331-401B-8151-97B703D39B0E}F:\steamlibrary\steamapps \common\realm royale\binaries\win64\realm.exe] => (Allow) F:\steamlibrary \steamapps\common\realm royale\binaries\win64\realm.exe Nenhum Arquivo FirewallRules: [{38C9000D-345E-47D6-9D29-3CD9947D36E3}] => (Allow) C: \users\guilherme\appdata\local\popcorn-time\popcorn-time.exe Nenhum Arquivo FirewallRules: [{B294BC44-0F81-4A30-AA4D-15B0143E6F25}] => (Allow) C:\program files\bitdefender\bitdefender vpn\afvpnservice\openvpn.exe Nenhum Arquivo FirewallRules: [{1AAD1A66-4755-4167-81DE-4A9F969086F0}] => (Block) \device\harddiskvolume3\users\guilherme\appdata\local\adobe \5deb32df-c860-4bfb-a7cb-5c798811e605\613afe50-9e95-4149-a936- c4485373e3c0\11901e89-256d-4bd3-abdf-30ec686a0cb1 Nenhum Arquivo CMD: ipconfig /flushdns EmptyTemp: ***************** Ponto de Restauração criado com sucesso. Processos fechados com sucesso. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{F8A0B131-5F68-486c-8040-7E8FC3C85BB6} => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{F8A0B131-5F68-486c-8040-7E8FC3C85BB6} => removido (a) com sucesso. HKLM\SOFTWARE\Policies\Google => removido (a) com sucesso. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache \Plain\{F31F8D3E-58E8-44EB-A90F-3445709D9041}" => removido (a) com sucesso. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache \Tasks\{F31F8D3E-58E8-44EB-A90F-3445709D9041}" => removido (a) com sucesso. C:\Windows\System32\Tasks\steamwebhelper_killer => movido com sucesso "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree \steamwebhelper_killer" => removido (a) com sucesso. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => valor restaurado com sucesso HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776- 472f-A0FF-E1416B8B2E3A} => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => não encontrado (a) HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\ \DefaultScope => valor restaurado com sucesso HKU\S-1-5-21-2319398334-3939529845-2917517441-1000\SOFTWARE\Microsoft \Internet Explorer\SearchScopes\{33D59858-89D9-4AC2-A956-93875EB02323} => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{33D59858-89D9-4AC2-A956-93875EB02323} => não encontrado (a) HKLM\System\CurrentControlSet\Services\catchme => removido (a) com sucesso. catchme => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\dbx => removido (a) com sucesso. dbx => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\ESEADriver2 => removido (a) com sucesso. ESEADriver2 => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\nvvad_WaveExtensible => removido (a) com sucesso. nvvad_WaveExtensible => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\nvvhci => removido (a) com sucesso. nvvhci => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\Synth3dVsc => removido (a) com sucesso. Synth3dVsc => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\TimeBroker => removido (a) com sucesso. TimeBroker => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\TimeBrokerSvc => removido (a) com sucesso. TimeBrokerSvc => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\tsusbhub => removido (a) com sucesso. tsusbhub => serviço removido (a) com sucesso. HKLM\System\CurrentControlSet\Services\VGPU => removido (a) com sucesso. VGPU => serviço removido (a) com sucesso. HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer \ShellIconOverlayIdentifiers\ MEGA (Pending) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => não encontrado (a) HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer \ShellIconOverlayIdentifiers\ MEGA (Synced) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => não encontrado (a) HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer \ShellIconOverlayIdentifiers\ MEGA (Syncing) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => não encontrado (a) HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer \ShellIconOverlayIdentifiers\ MEGA (Pending) => removido (a) com sucesso. HKLM\Software\Wow6432Node\Classes\CLSID\{056D528D-CE28-4194-9BA3- BA2E9197FF8C} => não encontrado (a) HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer \ShellIconOverlayIdentifiers\ MEGA (Synced) => removido (a) com sucesso. HKLM\Software\Wow6432Node\Classes\CLSID\{05B38830-F4E9-4329-978B- 1DD28605D202} => não encontrado (a) HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer \ShellIconOverlayIdentifiers\ MEGA (Syncing) => removido (a) com sucesso. HKLM\Software\Wow6432Node\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF- 873BE6890637} => não encontrado (a) HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => não encontrado (a) HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => não encontrado (a) HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => não encontrado (a) HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => não encontrado (a) "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{F7FCA321-53E5-48CF-BB28-AE4E6A3D9969}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{766422A6-FBE5-4DFD-B7B3-2A71F5AD7F6D}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{61E4F47B-3F81-4435-B009-7782728217D5}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{8C549E9E-EE63-40D3-BCE7-7A00348ECC17}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{89CB26A1-3E32-4D58-A495-6E28B666B72B}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{0CC8C5EF-C954-4E0D-8E4C-E2E9C427EB47}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\TCP Query User{65881764-CE82-4AEB-A9C2- E0D1E1B5855B}C:\users\guilherme\downloads\skypeportable\app\skype\phone \skype.exe" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\UDP Query User{B2A7253A-3FAD-4161-A708- 9C7D86A69FCB}C:\users\guilherme\downloads\skypeportable\app\skype\phone \skype.exe" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\TCP Query User{B54167B8-D028-43CC-82B5- 3BE4B5B394CD}C:\users\guilherme\appdata\local\popcorn-time\popcorn- time.exe" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\UDP Query User{CE586149-7DE4-4047-A50D- 5D936509303F}C:\users\guilherme\appdata\local\popcorn-time\popcorn- time.exe" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\TCP Query User{86CD0A85-B3C3-4093-8965- 687F1449DE49}F:\steamlibrary\steamapps\common\realm royale\binaries \win64\realm.exe" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\UDP Query User{5398CF10-A331-401B-8151- 97B703D39B0E}F:\steamlibrary\steamapps\common\realm royale\binaries \win64\realm.exe" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{38C9000D-345E-47D6-9D29-3CD9947D36E3}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{B294BC44-0F81-4A30-AA4D-15B0143E6F25}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters \FirewallPolicy\FirewallRules\\{1AAD1A66-4755-4167-81DE-4A9F969086F0}" => removido (a) com sucesso. ========= ipconfig /flushdns ========= Configura‡Æo de IP do Windows Libera‡Æo do Cache do DNS Resolver bem-sucedida. ========= Fim de CMD: ========= =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 134450081 B Java, Flash, Steam htmlcache => 242110101 B Windows/system/drivers => 20797576 B Edge => 0 B Chrome => 401464050 B Firefox => 6200698 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 0 B Public => 0 B ProgramData => 0 B systemprofile => 33186 B systemprofile32 => 277426 B LocalService => 33058 B NetworkService => 0 B Guilherme => 297061932 B TEMP => 0 B Convidado => 26445 B RecycleBin => 1639896301 B EmptyTemp: => 2.6 GB de dados temporários Removidos. ================================ O sistema precisou ser reiniciado. ==== Fim de Fixlog 06:14:58 ====
  11. Caro @diego_moicano Uma pesquisa no Google não diz o que é Comodo Advanced Protection, ou como remove-lo. Pesquisei por ele em praticamente todas as minhas pastas, nada. Tentei usar o Revo Unistaller, também não encontra. Olhei no registro, também nada. Como eu posso remover algo que eu nem sei o que é. O site do Comodo também não diz nada. Uma pesquisada no Google não retorna nenhum resultado relevante ao problema.
  12. @diego_moicano Desculpa se parecer meio ***** a pergunta hehe, mas o que exatamente seria o Comodo Advanced Protection, porque eu só baixei o Firewall?? Seria o Internet Security Essentials? (Esse eu acabei de desinstalar). Seria o VirusScope? O Hips? Windows defender eu preciso desinstalar mesmo? Deixo ele sempre desativado e confio no Comodo pro resto.
  13. Caro @diego_moicano Já resolvi o problema do Comodo, grato! Segue os logs do FRST: Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 06-05.2019 Executado por Guilherme (administrador) em GUILHERME-PC (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (07-05-2019 19:01:33) Executando a partir de C:\Users\Guilherme\Desktop Perfis Carregados: Guilherme (Perfis Disponíveis: Guilherme & Convidado) Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) () [Arquivo não assinado] C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe () [Arquivo não assinado] C:\Program Files (x86)\Razer\DeathAdder\vdDaemon.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe (Hi-Rez Studios) [Arquivo não assinado] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) [Arquivo não assinado] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Razer Inc.) [Arquivo não assinado] C:\Program Files (x86)\Razer\DeathAdder\razerofa.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [475824 2019-03-28] (Bitdefender SRL -> Bitdefender) HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-05-03] (Comodo Security Solutions, Inc. -> COMODO) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [95024 2019-04-11] (Bitdefender SRL -> Bitdefender) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-03-02] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [DeathAdder] => C:\Program Files (x86)\Razer\DeathAdder\razerhid.exe [248832 2012-01-14] () [Arquivo não assinado] HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537088 2019-04-23] (Dropbox, Inc -> Dropbox, Inc.) HKU\S-1-5-21-2319398334-3939529845-2917517441-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3152160 2019-04-29] (Valve -> Valve Corporation) HKU\S-1-5-21-2319398334-3939529845-2917517441-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-2319398334-3939529845-2917517441-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [1427848 2019-04-10] (Nota Inc. -> Nota Inc.) HKLM\...\Drivers32: [VIDC.FPS1] => c:\windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32: [vidc.mjpg] => c:\windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.mpeg] => c:\windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => c:\windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.XVID] => c:\windows\system32\xvidvfw.dll [251392 2017-03-26] () [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.LAGS] => c:\windows\system32\lagarith.dll [148992 2017-04-07] ( ) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.X264] => c:\windows\system32\x264vfw64.dll [3642880 2017-04-07] (x264vfw project) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FFDS] => c:\windows\system32\ff_vfw.dll [126976 2017-04-07] () [Arquivo não assinado] HKLM\...\Drivers32: [msacm.ac3acm] => c:\windows\system32\ac3acm.acm [180736 2017-04-07] (fccHandler) [Arquivo não assinado] HKLM\...\Drivers32: [msacm.l3codecp] => c:\windows\system32\l3codecp.acm [182272 2009-07-13] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS) HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Arquivo não assinado] HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.MPG4] => C:\Windows\SysWOW64\MPG4c32.dll [413760 2015-12-28] (Microsoft Corporation) [Arquivo não assinado] HKLM\...\Drivers32: [vidc.MP42] => C:\Windows\SysWOW64\MPG4c32.dll [413760 2015-12-28] (Microsoft Corporation) [Arquivo não assinado] HKLM\...\Drivers32: [vidc.MP43] => C:\Windows\SysWOW64\MPG4c32.dll [413760 2015-12-28] (Microsoft Corporation) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.LAGS] => c:\windows\SysWOW64\lagarith.dll [216064 2017-04-07] ( ) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3613696 2017-04-07] (x264vfw project) [Arquivo não assinado] HKLM\...\Drivers32: [VIDC.FFDS] => c:\windows\SysWOW64\ff_vfw.dll [112128 2017-04-07] () [Arquivo não assinado] HKLM\...\Drivers32: [msacm.ac3acm] => c:\windows\SysWOW64\ac3acm.acm [122880 2017-04-07] (fccHandler) [Arquivo não assinado] HKLM\...\Drivers32: [msacm.l3codecp] => c:\windows\SysWOW64\l3codecp.acm [220672 2009-07-13] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-04-30] (Google LLC -> Google Inc.) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation) CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============= (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {01CFB7B6-C2DC-4CA0-AA17-430F2940452F} - System32\Tasks\EmptyList => C:\Program Files\StandbyList\EmptyStandbyList.exe [139424 2019-04-22] (Wen Jia Liu -> ) Task: {07BB99E4-EC2A-4DBB-B678-767C53270D09} - System32\Tasks\{738788AE-3277-40F8-88A5-E9423CB166E5} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Steam\bin\steamservice.exe" -d "C:\Program Files (x86)\Steam" -c /installscript "C:\Program Files (x86)\Steam\steamapps\common\Battlefield Bad Company 2\runasadmin.vdf" 24960 Task: {09D5CEE3-C480-478A-B18F-F3F27FF61055} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-21] (Adobe Inc. -> Adobe) Task: {0DF623B0-4FAF-4C85-BD88-146D1B253D20} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-04-10] (Nota Inc. -> Nota Inc.) Task: {1BB05D10-4065-45F8-9B3E-6AF088ECA894} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [462288 2018-11-15] (Bitdefender SRL -> Bitdefender) Task: {1DCE6618-27BC-4E7B-AF11-C4085989641C} - System32\Tasks\{E90FA80E-8F86-489E-B623-B476F79057FF} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=404 Task: {236C46FB-6053-4ACA-9BAE-CD68FF88A889} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-03] (Google Inc -> Google Inc.) Task: {270A77E3-B735-4E0F-A872-CBF962AEB07B} - System32\Tasks\{838E6509-6856-4A9C-AEC4-6DF23128C96E} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.23.0.105/pt/abandoninstall?page=tsMain Task: {2BC10711-533D-45E9-B674-30B424E232E4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {2CDC0C7D-1E43-405F-92F5-5BBDE2B6ABD8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-21] (Adobe Inc. -> Adobe) Task: {2E0BA9F4-2021-4409-BFE9-F593896F28B8} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [781808 2019-04-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {35060EEE-4642-4F4D-9388-9BBFADFD8843} - System32\Tasks\AdobeAAMUpdater-1.0-Guilherme-PC-Guilherme => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {36FF7103-C7EF-42F0-8567-EF5EBE92D663} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {39D86472-F4F7-4D18-B350-80C06434B748} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-05-03] (Comodo Security Solutions, Inc. -> COMODO) Task: {42E42FB4-B423-4D9F-81D3-D6BB5189B747} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-03] (Google Inc -> Google Inc.) Task: {55DC9040-A28A-468A-9F7A-45C090F12872} - System32\Tasks\{EF596331-4E9E-4C1B-A0E6-3A4D568EE4A6} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.28.64.101/pt/abandoninstall?page=tsMain Task: {574F2CA8-8EAA-40AC-AB12-BAB00F857F97} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2319398334-3939529845-2917517441-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [147016 2014-07-24] (RealNetworks, Inc. -> RealNetworks, Inc.) Task: {598D7BAD-A780-479E-9793-B5359AE3C604} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-07-24] (Apple Inc. -> Apple Inc.) Task: {60006762-1A3C-461A-BE98-E780CA9465B9} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {719A3994-3C66-44B3-B06B-6365897569C0} - System32\Tasks\{28E326E7-153E-47FD-8647-F31DAA8B5959} => C:\Windows\system32\pcalua.exe -a C:\Users\Guilherme\Downloads\ISCT\Setup.exe -d C:\Users\Guilherme\Downloads\ISCT Task: {7557B56C-3380-441D-AAC5-6E3886CC9DBE} - System32\Tasks\{3FBA9E2C-D761-4B3A-B9BB-376094147EAA} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.18.0.109/en/abandoninstall?page=tsProgressBar Task: {76286F67-BD84-4AF9-BE54-1F4E89437D5F} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {7892B8AE-EB7E-4476-A4A1-9A7240B27F3E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd) Task: {7ADD198A-4119-4FDE-99DA-C9B49B6A4F75} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {80374605-B7FF-4BA5-A088-C9ECA3A2ECE1} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3550176 2019-04-09] (Easeware Technology Limited -> Easeware) Task: {A340B637-99D3-4B5E-B59A-ECB3AC4AE372} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2319398334-3939529845-2917517441-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [368728 2014-07-24] (RealNetworks, Inc. -> RealNetworks, Inc.) Task: {AB41FE01-6A23-407B-8083-94947FA9EFAB} - System32\Tasks\{8582ED23-814C-491B-83ED-1947E6F4232C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=all Task: {AB663AE7-936E-4FB7-B59F-061940D6A1B1} - System32\Tasks\{62234C4E-4F0F-434A-8B6B-2B23B119E5E1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Steam\steam.exe" -c steam://uninstall/226700 Task: {B1BD8F0D-01B1-420E-A408-CFB1AD609C3D} - System32\Tasks\{15F640D9-AF92-4F0D-9279-0423BC0FE2F6} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/pt/abandoninstall?page=tsMain Task: {B39D11EC-1D31-45A6-B8A9-46C8A33278F5} - System32\Tasks\{43801293-908D-4ED7-90F9-6C69D195CAA3} => C:\Windows\system32\pcalua.exe -a C:\Users\Guilherme\Documents\Uninstal.exe Task: {BBD5C963-6CFE-45F3-A683-F54DCAFE1D07} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe Task: {D0BDBFAD-212C-458F-89D0-E2257A2ADB70} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-05-03] (Comodo Security Solutions, Inc. -> COMODO) Task: {D5487C4B-792C-4C76-B0FE-E1665C0795AE} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-04-10] (Nota Inc. -> Nota Inc.) Task: {DB7A833B-D3CA-472A-B6EE-45C32E8CD4AD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {DD193AAB-F74C-4FEB-9145-68D1A8972CF9} - System32\Tasks\AdobeGCInvoker-1.0-Guilherme-PC-Guilherme => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) Task: {F2F25DCB-D857-4AE7-AE72-04841D2A0982} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2319398334-3939529845-2917517441-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [147016 2014-07-24] (RealNetworks, Inc. -> RealNetworks, Inc.) Task: {F31F8D3E-58E8-44EB-A90F-3445709D9041} - System32\Tasks\steamwebhelper_killer => TASKKILL [Argument = /F /IM steamwebhelper.exe /T] <==== ATENÇÃO (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt Tcpip\Parameters: [DhcpNameServer] 201.21.192.119 201.21.192.123 Tcpip\..\Interfaces\{ECE1B55A-EB37-4FB9-8062-39709F36FA65}: [DhcpNameServer] 201.21.192.119 201.21.192.123 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2319398334-3939529845-2917517441-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2319398334-3939529845-2917517441-1000 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = SearchScopes: HKU\S-1-5-21-2319398334-3939529845-2917517441-1000 -> {33D59858-89D9-4AC2-A956-93875EB02323} URL = hxxp://search.sxe-anticheat.com/?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-03-28] (Bitdefender SRL -> Bitdefender) BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-07-24] (RealNetworks, Inc. -> RealDownloader) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-03-28] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-03-28] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-03-28] (Bitdefender SRL -> Bitdefender) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Software Sarl -> Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Guilherme\AppData\Roaming\Mozilla\Firefox\Profiles\bpp0o447.default-1431459471505 [2019-05-06] FF NewTab: Mozilla\Firefox\Profiles\bpp0o447.default-1431459471505 -> about:newtab FF Extension: (Cryptocat) - C:\Users\Guilherme\AppData\Roaming\Mozilla\Firefox\Profiles\bpp0o447.default-1431459471505\Extensions\cryptocat@crypto.cat.xpi [2015-05-29] [Legacy] FF Extension: (Firebug) - C:\Users\Guilherme\AppData\Roaming\Mozilla\Firefox\Profiles\bpp0o447.default-1431459471505\Extensions\firebug@software.joehewitt.com.xpi [2016-12-19] [Legacy] FF Extension: (MEGA) - C:\Users\Guilherme\AppData\Roaming\Mozilla\Firefox\Profiles\bpp0o447.default-1431459471505\Extensions\firefox@mega.co.nz.xpi [2016-12-19] [Legacy] FF Extension: (Video DownloadHelper) - C:\Users\Guilherme\AppData\Roaming\Mozilla\Firefox\Profiles\bpp0o447.default-1431459471505\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-12-19] [Legacy] FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2018-12-19] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2019-04-08] [Legacy] [não assinado] FF HKLM-x32\...\Firefox\Extensions: [{7C9C2591-51ED-44FA-8D03-450B92643F95}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF Extension: (RealDownloader) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-10-11] [Legacy] [não assinado] FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff => não encontrado (a) FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-24] (Adobe Systems Incorporated -> ) FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Nenhum Arquivo] FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-24] (Adobe Systems Incorporated -> ) FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [Nenhum Arquivo] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @real.com/nppl3260;version=17.0.12.0 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2014-10-11] (RealNetworks, Inc. -> RealNetworks, Inc.) FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.12 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2014-07-24] (RealNetworks, Inc. -> RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpplugin;version=17.0.12.0 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2014-10-11] (RealNetworks, Inc. -> RealPlayer Cloud) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> file:///C:/Users/Guilherme/Downloads CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default [2019-05-07] CHR Extension: (Play HLS M3u8) - C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckblfoghkjhaclegefojbgllenffajdc [2019-04-16] CHR Extension: (Bitdefender Wallet) - C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2019-04-11] CHR Extension: (AdBlock) - C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-01] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02] CHR Extension: (Chrome Media Router) - C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-25] CHR Profile: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-06] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <não encontrado (a)> CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated) S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\vpnservice.exe [322432 2019-03-25] (AnchorFree Inc -> AnchorFree Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc. -> Apple Inc.) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> ) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2019-02-01] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender) R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [96568 2019-04-11] (Bitdefender SRL -> Bitdefender) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-22] (BattlEye Innovations e.K. -> ) R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-03] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-03] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-04-23] (Dropbox, Inc -> Dropbox, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [Arquivo não assinado] S4 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Arquivo não assinado] S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Arquivo não assinado] R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Arquivo não assinado] S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2303792 2019-05-01] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3175216 2019-05-01] (Electronic Arts, Inc. -> Electronic Arts) S3 PAExec; C:\Windows\PAExec.exe [207872 2016-12-25] (Power Admin LLC) [Arquivo não assinado] R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2019-01-10] (Even Balance, Inc. -> ) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936 2018-11-15] (Bitdefender SRL -> Bitdefender) R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-12-25] (Razer USA Ltd. -> ) S4 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-07-24] (RealNetworks, Inc. -> ) S4 RealPlayer Cloud Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1141848 2014-10-11] (RealNetworks, Inc. -> RealNetworks, Inc.) S4 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-07-24] () [Arquivo não assinado] S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2017-01-05] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [114192 2019-03-28] (Bitdefender SRL -> Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [817128 2019-03-28] (Bitdefender SRL -> Bitdefender) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2018-06-15] (AnchorFree Inc -> The OpenVPN Project) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22680 2012-10-25] (Giga-Byte Technology -> ) R1 atc; C:\Windows\System32\DRIVERS\atc.sys [1423680 2019-01-21] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [367096 2019-01-29] (Bitdefender SRL -> Bitdefender) S3 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [45728 2018-09-17] (Bitdefender SRL -> © Bitdefender SRL) S3 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [34280 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [867864 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [59096 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO) S3 DAdderFltr; C:\Windows\System32\drivers\dadder.sys [12032 2010-04-19] (Microsoft Windows Hardware Compatibility Publisher -> Razer (Asia-Pacific) Pte Ltd) S3 etdrv; C:\Windows\etdrv.sys [25640 2013-07-22] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) S3 gdrv; C:\Windows\gdrv.sys [25640 2016-12-21] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [374632 2018-11-19] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-15] (GIGA-BYTE TECHNOLOGY CO., LTD -> ) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [201000 2018-11-20] (Bitdefender SRL -> BitDefender LLC) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-05] (Martin Malik - REALiX -> REALiX(tm)) S3 Ignis; C:\Windows\System32\DRIVERS\ignis.sys [196392 2019-01-21] (Bitdefender SRL -> Bitdefender) R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [126680 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO) R1 isedrv; C:\Windows\system32\drivers\isedrv.sys [51368 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) S3 jakstaVA; C:\Windows\System32\DRIVERS\jaksta_va.sys [103816 2016-08-05] (Jaksta Technologies Pty Ltd -> e2eSoft) S0 maagqb; não ImagePath R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49264 2014-07-28] (Visicom Media Inc. -> Visicom Media Inc.) R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35440 2014-05-13] (Visicom Media Inc. -> Visicom Media Inc.) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2019-01-07] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0067.sys [28768 2014-12-08] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.) R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [50392 2015-09-21] (Razer Inc. -> Razer Inc) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-16] (Razer Inc. -> Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer Inc. -> Razer, Inc.) R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2014-06-30] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2014-12-08] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.) S3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37496 2014-06-30] (OMT-LIDER, TOV -> Windows (R) Win 7 DDK provider) S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2018-05-01] (TunnelBear, Inc. -> The OpenVPN Project) R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2017-11-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-16] (AnchorFree Inc -> Anchorfree Inc.) S3 tapse01; C:\Windows\System32\DRIVERS\tapse01.sys [39096 2014-12-02] (SurfEasy Inc -> The OpenVPN Project) S3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2014-10-31] (Spotflux, Inc -> Spotflux, Inc.) S3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [45560 2018-07-13] (Windscribe Limited -> The OpenVPN Project) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [610640 2019-01-14] (Bitdefender SRL -> Bitdefender) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-10-24] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 visctap0901; C:\Windows\System32\DRIVERS\visctap0901.sys [39048 2015-06-01] (SparkLabs Pty Ltd -> The OpenVPN Project) R3 VKbms; C:\Windows\System32\DRIVERS\VKbms.sys [13312 2010-10-01] (G-SPY Co., Ltd. -> Windows (R) Win 7 DDK provider) S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [23200 2016-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-03-22] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 dbx; system32\DRIVERS\dbx.sys [X] S3 ESEADriver2; \??\C:\Users\GUILHE~1\AppData\Local\Temp\ESEADriver2.sys [X] <==== ATENÇÃO S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X] S4 nvvhci; system32\DRIVERS\nvvhci.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] U4 TimeBroker; não ImagePath U4 TimeBrokerSvc; não ImagePath S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três meses (criados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-05-07 19:01 - 2019-05-07 19:02 - 000043169 _____ C:\Users\Guilherme\Desktop\FRST.txt 2019-05-07 18:36 - 2019-05-07 18:45 - 000000000 ____D C:\Users\Guilherme\Desktop\downloade2 2019-05-07 18:13 - 2019-05-07 18:13 - 002430464 _____ (Farbar) C:\Users\Guilherme\Desktop\FRST64.exe 2019-05-07 15:47 - 2019-05-07 15:47 - 000002132 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk 2019-05-07 15:47 - 2019-05-07 15:47 - 000000000 ____D C:\Windows\LastGood 2019-05-07 15:47 - 2019-05-07 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN 2019-05-07 15:47 - 2018-06-15 10:26 - 000048624 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aftap0901.sys 2019-05-07 15:46 - 2019-05-07 15:47 - 000046061 _____ C:\Users\Todos os Usuários\vpn.1557254763.4508.bin 2019-05-07 15:46 - 2019-05-07 15:47 - 000046061 _____ C:\ProgramData\vpn.1557254763.4508.bin 2019-05-07 15:46 - 2019-05-07 15:47 - 000034178 _____ C:\Users\Todos os Usuários\vpn.1557254763.1392.bin 2019-05-07 15:46 - 2019-05-07 15:47 - 000034178 _____ C:\ProgramData\vpn.1557254763.1392.bin 2019-05-07 15:46 - 2019-05-07 15:46 - 000036951 _____ C:\Users\Todos os Usuários\vpn.uninstall.1557254772.bdinstall.bin 2019-05-07 15:46 - 2019-05-07 15:46 - 000036951 _____ C:\ProgramData\vpn.uninstall.1557254772.bdinstall.bin 2019-05-07 15:33 - 2019-05-07 15:33 - 000103298 _____ C:\Users\Guilherme\Desktop\ZHPCleaner (R).txt 2019-05-07 15:30 - 2019-05-07 15:30 - 000104096 _____ C:\Users\Guilherme\Desktop\ZHPCleaner (S).txt 2019-05-07 15:09 - 2019-05-07 15:09 - 000000000 ____D C:\Users\Guilherme\Desktop\zhp_1 2019-05-07 03:52 - 2019-05-07 15:09 - 000000840 _____ C:\Users\Guilherme\Desktop\ZHPCleaner.lnk 2019-05-07 03:42 - 2019-05-07 15:33 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\ZHP 2019-05-07 03:42 - 2019-05-07 03:42 - 000000000 ____D C:\Users\Guilherme\AppData\Local\ZHP 2019-05-07 03:17 - 2019-05-07 03:50 - 003142016 _____ C:\Users\Guilherme\Desktop\ZHPCleaner.exe 2019-05-07 03:15 - 2019-05-07 03:15 - 007025360 _____ (Malwarebytes) C:\Users\Guilherme\Desktop\adwcleaner_7.3.exe 2019-05-07 01:49 - 2019-05-07 01:49 - 000000992 _____ C:\Users\Public\Desktop\Bandicam.lnk 2019-05-07 01:49 - 2019-05-07 01:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam 2019-05-07 01:49 - 2019-05-07 01:49 - 000000000 ____D C:\Program Files (x86)\Bandicam 2019-05-07 01:47 - 2019-05-07 01:50 - 000000000 ____D C:\Users\Guilherme\Documents\Band 2019-05-06 19:56 - 2019-05-06 19:57 - 000000000 ____D C:\Users\Guilherme\Downloads\Ella R 2019-05-03 17:00 - 2019-05-03 17:00 - 000000000 ____D C:\Users\Guilherme\Desktop\Nova pasta 2019-05-03 16:40 - 2019-05-07 19:01 - 000000000 ____D C:\FRST 2019-05-03 16:02 - 2019-05-03 16:02 - 000000000 ____D C:\Users\Todos os Usuários\RogueKiller 2019-05-03 16:02 - 2019-05-03 16:02 - 000000000 ____D C:\ProgramData\RogueKiller 2019-05-03 13:58 - 2019-05-03 13:58 - 000000000 ____D C:\Users\Guilherme\Downloads\idontcareperiod 2019-04-30 00:33 - 2019-04-30 00:33 - 000054308 _____ C:\Users\Guilherme\Desktop\HWMonitor.txt 2019-04-30 00:28 - 2019-04-30 00:28 - 000000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2019-04-29 21:03 - 2019-04-29 21:04 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2019-04-29 21:03 - 2019-04-29 21:03 - 000000000 ____D C:\Program Files\Realtek 2019-04-29 21:03 - 2017-06-29 18:55 - 003509256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 003507688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 001347136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000914016 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000768808 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000691680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000410032 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000209528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000110976 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000074600 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll 2019-04-29 21:03 - 2017-06-29 18:55 - 000069920 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll 2019-04-29 21:03 - 2017-06-29 18:54 - 004059960 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2019-04-29 21:03 - 2017-06-29 18:54 - 000330552 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2019-04-29 21:03 - 2017-06-29 18:52 - 005826560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2019-04-29 21:03 - 2017-06-29 18:52 - 003677160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2019-04-29 21:03 - 2017-06-29 18:52 - 003205120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2019-04-29 21:03 - 2017-06-29 18:52 - 000574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2019-04-29 21:03 - 2017-06-29 18:52 - 000118592 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2019-04-29 21:03 - 2017-06-29 18:51 - 002210304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2019-04-29 21:03 - 2017-06-29 18:51 - 002050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2019-04-29 21:03 - 2017-06-29 18:51 - 000023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2019-04-29 21:03 - 2017-06-29 18:50 - 000122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2019-04-29 21:03 - 2017-06-29 03:05 - 012334923 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2019-04-29 20:55 - 2019-04-18 14:01 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2019-04-29 20:55 - 2019-04-18 14:01 - 001006800 _____ C:\Windows\system32\vulkan-1.dll 2019-04-29 20:55 - 2019-04-18 14:01 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2019-04-29 20:55 - 2019-04-18 14:01 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll 2019-04-29 20:55 - 2019-04-18 14:01 - 000551816 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2019-04-29 20:55 - 2019-04-18 14:01 - 000456448 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2019-04-29 20:55 - 2019-04-18 14:01 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2019-04-29 20:55 - 2019-04-18 14:01 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe 2019-04-29 20:55 - 2019-04-18 14:01 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2019-04-29 20:55 - 2019-04-18 14:01 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2019-04-29 20:55 - 2019-04-18 14:00 - 071653336 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll 2019-04-29 20:55 - 2019-04-18 14:00 - 035342776 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll 2019-04-29 20:55 - 2019-04-18 14:00 - 022978768 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll 2019-04-29 20:55 - 2019-04-18 14:00 - 011048896 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2019-04-29 20:55 - 2019-04-18 14:00 - 009485192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2019-04-29 20:55 - 2019-04-18 14:00 - 000423872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 040872864 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 029840288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 021330312 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2019-04-29 20:55 - 2019-04-18 13:59 - 002038664 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 001539512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 001470344 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 001162168 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 001133824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000911808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000631688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000542656 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000521472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000469952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000428424 _____ C:\Windows\system32\nvofapi64.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000377224 _____ C:\Windows\SysWOW64\nvofapi.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000189376 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000171208 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000167632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2019-04-29 20:55 - 2019-04-18 13:59 - 000149248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 040412368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 035269568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 020182736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 017460936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 005015944 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 004473280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 001722064 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6443039.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 001467648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6443039.dll 2019-04-29 20:55 - 2019-04-18 13:58 - 000525192 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll 2019-04-29 20:55 - 2019-04-18 10:57 - 033414536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2019-04-29 20:55 - 2019-04-18 10:57 - 021646816 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2019-04-29 20:55 - 2019-04-18 10:56 - 004373344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2019-04-29 20:55 - 2019-04-17 20:06 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json 2019-04-29 20:55 - 2019-04-17 20:06 - 000000669 _____ C:\Windows\system32\nv-vk64.json 2019-04-29 18:48 - 2019-04-29 18:48 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Bandicam Company 2019-04-29 00:08 - 2019-04-29 00:08 - 000228608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2019-04-29 00:08 - 2019-04-29 00:08 - 000046848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2019-04-28 22:51 - 2019-05-07 15:50 - 000003038 _____ C:\Windows\System32\Tasks\MSIAfterburner 2019-04-27 21:32 - 2019-04-27 21:34 - 000001056 _____ C:\Users\Public\Desktop\CpuCoreParking.lnk 2019-04-27 21:32 - 2019-04-27 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CpuCoreParking 2019-04-27 21:32 - 2019-04-27 21:34 - 000000000 ____D C:\Program Files (x86)\CpuCoreParking 2019-04-27 21:04 - 2019-04-27 21:04 - 000000000 ____D C:\Users\Guilherme\Desktop\OldConfig_CS 2019-04-27 20:57 - 2019-01-20 02:59 - 000000000 ____D C:\Users\Guilherme\Desktop\CSGO F2P FPS Pack by Panj 2019-04-27 13:11 - 2019-04-27 13:11 - 000001257 _____ C:\Users\Guilherme\Desktop\MSI Kombustor v4 x64.lnk 2019-04-27 13:11 - 2019-04-27 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D 2019-04-27 13:11 - 2019-04-27 13:11 - 000000000 ____D C:\Program Files (x86)\Geeks3D 2019-04-27 13:09 - 2019-04-27 13:09 - 000001102 _____ C:\Users\Guilherme\Desktop\MSI Afterburner.lnk 2019-04-27 13:09 - 2019-04-27 13:09 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2019-04-27 13:08 - 2019-05-07 15:50 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2019-04-27 11:47 - 2019-04-27 11:47 - 000003566 _____ C:\Windows\System32\Tasks\AdobeGCInvoker-1.0-Guilherme-PC-Guilherme 2019-04-26 20:00 - 2019-04-26 20:34 - 000000132 _____ C:\Users\Guilherme\AppData\Roaming\Adobe PNG Format CS6 Prefs 2019-04-26 19:35 - 2019-04-29 18:31 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Adobe 2019-04-26 19:35 - 2016-02-19 21:31 - 000000000 ____D C:\Users\Guilherme\Desktop\CGB-Software-01-By Lord 2019-04-26 14:46 - 2019-04-26 14:46 - 000000000 ____D C:\Users\Guilherme\Desktop\Portolfio 2.0 2019-04-26 14:25 - 2019-04-26 14:25 - 002413375 _____ C:\Users\Guilherme\Desktop\Pai.ai 2019-04-26 10:51 - 2019-04-26 10:51 - 000000000 ____D C:\Users\Convidado\AppData\Local\Steam 2019-04-25 21:12 - 2019-04-25 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-04-24 07:35 - 2019-04-24 07:35 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\LiveMe Pro Tools 2019-04-24 07:34 - 2019-05-06 17:57 - 000000000 ____D C:\Users\Guilherme\Downloads\LiveME 2019-04-23 09:13 - 2019-04-23 09:13 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2019-04-23 09:13 - 2019-04-23 09:13 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2019-04-23 09:13 - 2019-04-23 09:13 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2019-04-23 09:13 - 2019-04-23 09:13 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2019-04-22 19:21 - 2019-04-22 19:21 - 000001822 _____ C:\Users\Guilherme\Desktop\Alpha Console.lnk 2019-04-22 16:23 - 2019-04-18 13:59 - 030347472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2019-04-22 16:23 - 2019-04-18 10:57 - 018078384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2019-04-22 16:23 - 2019-04-10 11:54 - 001734080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6442531.dll 2019-04-22 16:23 - 2019-04-10 11:54 - 001467648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6442531.dll 2019-04-22 16:15 - 2019-04-22 21:18 - 000003328 _____ C:\Windows\System32\Tasks\EmptyList 2019-04-22 16:04 - 2019-04-22 16:04 - 000000000 ____D C:\Program Files\StandbyList 2019-04-22 14:44 - 2019-05-04 03:00 - 000059590 _____ C:\Windows\system32\Drivers\fvstore.dat 2019-04-22 14:44 - 2019-04-22 14:44 - 000000000 ___HD C:\VTRoot 2019-04-22 01:13 - 2019-04-22 16:33 - 000000414 _____ C:\Windows\Tasks\Driver Easy Scheduled Scan.job 2019-04-22 01:13 - 2019-04-22 01:13 - 000003828 _____ C:\Windows\System32\Tasks\Driver Easy Scheduled Scan 2019-04-22 01:13 - 2019-04-22 01:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy 2019-04-21 21:20 - 2019-04-21 21:21 - 000347955 _____ C:\Users\Guilherme\Desktop\Pai.psd 2019-04-19 02:48 - 2019-04-19 02:49 - 000000022 _____ C:\Users\Guilherme\Desktop\BERNA.txt 2019-04-16 19:17 - 2019-04-20 10:40 - 000000208 _____ C:\Users\Guilherme\Desktop\lm.txt 2019-04-15 20:56 - 2019-04-15 20:58 - 000000000 ____D C:\Program Files (x86)\Gamers Club 2019-04-14 18:22 - 2019-04-14 18:22 - 000000022 _____ C:\Users\Guilherme\Desktop\lord.txt 2019-04-14 06:08 - 2019-04-15 01:51 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Comodo 2019-04-11 10:35 - 2019-04-11 10:35 - 000000000 ____D C:\Program Files\HitmanPro 2019-04-11 04:13 - 2019-05-03 11:12 - 000002138 _____ C:\Users\Public\Desktop\COMODO Firewall.lnk 2019-04-11 04:13 - 2019-04-11 04:14 - 000000000 ____D C:\Windows\System32\Tasks\COMODO 2019-04-11 04:12 - 2019-04-11 04:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO 2019-04-11 04:12 - 2019-04-11 04:12 - 000000000 ____D C:\Program Files\COMODO 2019-04-11 04:12 - 2019-01-29 05:42 - 000254440 _____ (COMODO) C:\Windows\system32\iseguard64.dll 2019-04-11 04:12 - 2019-01-29 05:42 - 000205024 _____ (COMODO) C:\Windows\SysWOW64\iseguard32.dll 2019-04-11 04:12 - 2019-01-29 05:41 - 000051368 _____ (COMODO) C:\Windows\system32\Drivers\isedrv.sys 2019-04-11 04:06 - 2019-04-11 04:06 - 000000000 ____D C:\Users\Todos os Usuários\CheckPoint 2019-04-11 04:06 - 2019-04-11 04:06 - 000000000 ____D C:\ProgramData\CheckPoint 2019-04-10 12:14 - 2019-04-01 22:57 - 003229696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2019-04-10 12:14 - 2019-03-28 22:36 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys 2019-04-10 12:14 - 2019-03-28 00:35 - 000348776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2019-04-10 12:14 - 2019-03-27 22:55 - 000397120 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2019-04-10 12:14 - 2019-03-26 21:40 - 003181568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2019-04-10 12:14 - 2019-03-26 03:14 - 025736704 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2019-04-10 12:14 - 2019-03-26 03:03 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2019-04-10 12:14 - 2019-03-26 03:03 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2019-04-10 12:14 - 2019-03-26 02:52 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2019-04-10 12:14 - 2019-03-26 02:51 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2019-04-10 12:14 - 2019-03-26 02:51 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2019-04-10 12:14 - 2019-03-26 02:50 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2019-04-10 12:14 - 2019-03-26 02:50 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2019-04-10 12:14 - 2019-03-26 02:50 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2019-04-10 12:14 - 2019-03-26 02:44 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2019-04-10 12:14 - 2019-03-26 02:43 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2019-04-10 12:14 - 2019-03-26 02:41 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2019-04-10 12:14 - 2019-03-26 02:40 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2019-04-10 12:14 - 2019-03-26 02:40 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2019-04-10 12:14 - 2019-03-26 02:40 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2019-04-10 12:14 - 2019-03-26 02:40 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2019-04-10 12:14 - 2019-03-26 02:40 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2019-04-10 12:14 - 2019-03-26 02:35 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2019-04-10 12:14 - 2019-03-26 02:31 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2019-04-10 12:14 - 2019-03-26 02:26 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2019-04-10 12:14 - 2019-03-26 02:26 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2019-04-10 12:14 - 2019-03-26 02:25 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2019-04-10 12:14 - 2019-03-26 02:22 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2019-04-10 12:14 - 2019-03-26 02:22 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2019-04-10 12:14 - 2019-03-26 02:20 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2019-04-10 12:14 - 2019-03-26 02:18 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2019-04-10 12:14 - 2019-03-26 02:12 - 020280832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2019-04-10 12:14 - 2019-03-26 02:10 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2019-04-10 12:14 - 2019-03-26 02:08 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2019-04-10 12:14 - 2019-03-26 02:08 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2019-04-10 12:14 - 2019-03-26 02:07 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2019-04-10 12:14 - 2019-03-26 02:06 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2019-04-10 12:14 - 2019-03-26 02:05 - 015284736 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2019-04-10 12:14 - 2019-03-26 02:01 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2019-04-10 12:14 - 2019-03-26 02:00 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2019-04-10 12:14 - 2019-03-26 01:51 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2019-04-10 12:14 - 2019-03-26 01:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2019-04-10 12:14 - 2019-03-26 01:50 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2019-04-10 12:14 - 2019-03-26 01:50 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2019-04-10 12:14 - 2019-03-26 01:50 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2019-04-10 12:14 - 2019-03-26 01:48 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2019-04-10 12:14 - 2019-03-26 01:48 - 001556992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2019-04-10 12:14 - 2019-03-26 01:46 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2019-04-10 12:14 - 2019-03-26 01:45 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2019-04-10 12:14 - 2019-03-26 01:44 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2019-04-10 12:14 - 2019-03-26 01:43 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2019-04-10 12:14 - 2019-03-26 01:43 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2019-04-10 12:14 - 2019-03-26 01:43 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2019-04-10 12:14 - 2019-03-26 01:36 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2019-04-10 12:14 - 2019-03-26 01:36 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2019-04-10 12:14 - 2019-03-26 01:33 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2019-04-10 12:14 - 2019-03-26 01:33 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2019-04-10 12:14 - 2019-03-26 01:32 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2019-04-10 12:14 - 2019-03-26 01:31 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2019-04-10 12:14 - 2019-03-26 01:29 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2019-04-10 12:14 - 2019-03-26 01:29 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2019-04-10 12:14 - 2019-03-26 01:29 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2019-04-10 12:14 - 2019-03-26 01:28 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2019-04-10 12:14 - 2019-03-26 01:24 - 013682176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2019-04-10 12:14 - 2019-03-26 01:23 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2019-04-10 12:14 - 2019-03-26 01:22 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2019-04-10 12:14 - 2019-03-26 01:21 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2019-04-10 12:14 - 2019-03-26 01:21 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2019-04-10 12:14 - 2019-03-26 01:08 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2019-04-10 12:14 - 2019-03-26 01:04 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2019-04-10 12:14 - 2019-03-26 01:02 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2019-04-10 12:14 - 2019-03-20 23:13 - 005552872 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2019-04-10 12:14 - 2019-03-20 23:13 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2019-04-10 12:14 - 2019-03-20 23:13 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2019-04-10 12:14 - 2019-03-20 23:13 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2019-04-10 12:14 - 2019-03-20 23:13 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2019-04-10 12:14 - 2019-03-20 23:12 - 001664352 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2019-04-10 12:14 - 2019-03-20 23:12 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2019-04-10 12:14 - 2019-03-20 23:10 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2019-04-10 12:14 - 2019-03-20 23:10 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:09 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:03 - 003961576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2019-04-10 12:14 - 2019-03-20 23:02 - 004056296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2019-04-10 12:14 - 2019-03-20 23:02 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 23:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 22:45 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2019-04-10 12:14 - 2019-03-20 22:45 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2019-04-10 12:14 - 2019-03-20 22:45 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2019-04-10 12:14 - 2019-03-20 22:44 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2019-04-10 12:14 - 2019-03-20 22:41 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2019-04-10 12:14 - 2019-03-20 22:41 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2019-04-10 12:14 - 2019-03-20 22:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys 2019-04-10 12:14 - 2019-03-20 22:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2019-04-10 12:14 - 2019-03-20 22:40 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2019-04-10 12:14 - 2019-03-20 22:38 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2019-04-10 12:14 - 2019-03-20 22:38 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2019-04-10 12:14 - 2019-03-20 22:38 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2019-04-10 12:14 - 2019-03-20 22:38 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2019-04-10 12:14 - 2019-03-20 22:38 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2019-04-10 12:14 - 2019-03-20 22:38 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2019-04-10 12:14 - 2019-03-20 22:37 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2019-04-10 12:14 - 2019-03-20 22:37 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys 2019-04-10 12:14 - 2019-03-20 22:37 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys 2019-04-10 12:14 - 2019-03-20 22:37 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys 2019-04-10 12:14 - 2019-03-20 22:37 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys 2019-04-10 12:14 - 2019-03-20 22:37 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys 2019-04-10 12:14 - 2019-03-20 22:37 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2019-04-10 12:14 - 2019-03-20 22:36 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2019-04-10 12:14 - 2019-03-20 22:36 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2019-04-10 12:14 - 2019-03-20 22:36 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2019-04-10 12:14 - 2019-03-20 22:36 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2019-04-10 12:14 - 2019-03-20 22:35 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2019-04-10 12:14 - 2019-03-20 22:35 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 22:35 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 22:35 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2019-04-10 12:14 - 2019-03-20 22:35 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2019-04-10 12:14 - 2019-03-16 01:11 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2019-04-10 12:14 - 2019-03-16 01:09 - 003247616 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000516608 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll 2019-04-10 12:14 - 2019-03-16 01:09 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll 2019-04-10 12:14 - 2019-03-16 01:08 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2019-04-10 12:14 - 2019-03-16 01:08 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 002368000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2019-04-10 12:14 - 2019-03-16 00:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll 2019-04-10 12:14 - 2019-03-16 00:42 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2019-04-10 12:14 - 2019-03-16 00:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll 2019-04-10 12:14 - 2019-03-16 00:38 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2019-04-10 12:14 - 2019-03-13 12:09 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2019-04-10 12:14 - 2019-03-13 12:02 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2019-04-10 12:14 - 2019-03-13 11:35 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll 2019-04-10 12:14 - 2019-03-13 11:35 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll 2019-04-10 12:14 - 2019-03-12 11:34 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll 2019-04-10 12:14 - 2019-03-12 11:34 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll 2019-04-10 12:14 - 2019-03-12 11:34 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 001894912 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 001032192 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 000688128 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2019-04-10 12:14 - 2019-03-11 18:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2019-04-10 12:14 - 2019-03-11 18:33 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2019-04-10 12:14 - 2019-03-11 18:33 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2019-04-10 12:14 - 2019-03-11 18:33 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2019-04-10 12:14 - 2019-03-11 18:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll 2019-04-10 12:14 - 2019-03-11 18:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2019-04-10 12:14 - 2019-03-11 18:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2019-04-10 12:14 - 2019-02-21 12:48 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe 2019-04-10 12:14 - 2019-02-21 12:43 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe 2019-04-10 12:14 - 2019-02-21 12:37 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2019-04-10 12:14 - 2019-02-12 13:08 - 014184448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2019-04-10 12:14 - 2019-02-12 13:08 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2019-04-10 12:14 - 2019-02-12 12:58 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2019-04-10 12:14 - 2019-02-12 12:58 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2019-04-10 12:14 - 2019-02-08 13:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2019-04-10 12:14 - 2019-02-08 13:00 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2019-04-10 11:27 - 2019-04-10 11:27 - 000792384 _____ C:\Users\Todos os Usuários\cl.1554906153.bdinstall.v2.bin 2019-04-10 11:27 - 2019-04-10 11:27 - 000792384 _____ C:\ProgramData\cl.1554906153.bdinstall.v2.bin 2019-04-10 11:27 - 2019-04-10 11:27 - 000096328 _____ C:\Users\Todos os Usuários\cl.kit.1554906148.bdinstall.v2.bin 2019-04-10 11:27 - 2019-04-10 11:27 - 000096328 _____ C:\ProgramData\cl.kit.1554906148.bdinstall.v2.bin 2019-04-10 11:24 - 2019-04-10 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security 2019-04-10 11:24 - 2019-04-10 11:24 - 000002283 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2019-04-10 11:24 - 2019-03-21 00:12 - 000022960 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys 2019-04-10 11:23 - 2019-01-29 08:39 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys 2019-04-10 11:23 - 2019-01-21 11:36 - 000196392 _____ (Bitdefender) C:\Windows\system32\Drivers\ignis.sys 2019-04-10 11:23 - 2019-01-21 00:58 - 001423680 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys 2019-04-10 11:23 - 2018-11-19 12:10 - 000374632 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\gemma.sys 2019-04-10 11:23 - 2018-09-17 05:36 - 000045728 _____ (© Bitdefender SRL) C:\Windows\system32\Drivers\bdprivmon.sys 2019-04-10 11:23 - 2018-04-27 08:45 - 000096448 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2019-04-10 11:22 - 2019-01-14 15:25 - 000610640 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys 2019-04-10 11:22 - 2018-11-20 09:42 - 000201000 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2019-04-10 10:17 - 2019-04-10 10:17 - 000000018 _____ C:\repair_starting.dat 2019-04-10 10:12 - 2019-04-10 10:12 - 000000000 ____D C:\RegBackup 2019-04-10 10:09 - 2019-04-10 15:47 - 000000000 ____D C:\Users\Guilherme\Desktop\Tweaking.com - Windows Repair 2019-04-10 08:10 - 2019-04-10 08:10 - 000000000 ____D C:\Users\Todos os Usuários\Shared Space 2019-04-10 08:10 - 2019-04-10 08:10 - 000000000 ____D C:\Users\Todos os Usuários\Comodo Downloader 2019-04-10 08:10 - 2019-04-10 08:10 - 000000000 ____D C:\ProgramData\Shared Space 2019-04-10 08:10 - 2019-04-10 08:10 - 000000000 ____D C:\ProgramData\Comodo Downloader 2019-04-10 08:07 - 2019-04-11 10:48 - 000000000 ____D C:\Users\Todos os Usuários\HitmanPro 2019-04-10 08:07 - 2019-04-11 10:48 - 000000000 ____D C:\ProgramData\HitmanPro 2019-04-10 06:41 - 2019-04-10 06:41 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\SUPERAntiSpyware.com 2019-04-10 06:40 - 2019-04-10 15:47 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2019-04-10 06:40 - 2019-04-10 06:41 - 000000000 ____D C:\Program Files\SUPERAntiSpyware 2019-04-10 06:40 - 2019-04-10 06:40 - 000000000 ____D C:\Users\Todos os Usuários\SUPERAntiSpyware.com 2019-04-10 06:40 - 2019-04-10 06:40 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com 2019-04-08 16:31 - 2019-04-21 13:46 - 000001911 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-04-08 16:31 - 2019-04-08 17:35 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-04-08 16:31 - 2019-04-08 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-04-05 09:02 - 2019-04-01 11:55 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\sipnotify.exe 2019-03-26 14:09 - 2019-04-22 13:37 - 000000219 _____ C:\Users\Guilherme\Desktop\Counter-Strike Global Offensive.url 2019-03-26 07:32 - 2019-04-11 10:17 - 000746888 _____ (COMODO) C:\Windows\SysWOW64\guard32.dll 2019-03-26 07:32 - 2019-04-11 10:17 - 000052896 _____ (COMODO) C:\Windows\system32\cmdcsr.dll 2019-03-26 07:31 - 2019-04-11 10:17 - 000988504 _____ (COMODO) C:\Windows\system32\guard64.dll 2019-03-26 07:29 - 2019-04-11 10:15 - 000514752 _____ (COMODO) C:\Windows\system32\cmdvrt64.dll 2019-03-26 07:27 - 2019-04-11 10:13 - 000373952 _____ (COMODO) C:\Windows\SysWOW64\cmdvrt32.dll 2019-03-24 07:18 - 2019-03-24 07:18 - 000000019 _____ C:\Users\Guilherme\Desktop\thot.txt 2019-03-24 01:27 - 2019-03-24 02:52 - 000000047 _____ C:\Users\Guilherme\Desktop\burner_insta.txt 2019-03-23 04:14 - 2019-03-23 04:14 - 000000000 ____D C:\Users\Guilherme\Desktop\Les Girls 2019-03-22 05:34 - 2019-03-22 05:36 - 000000000 ____D C:\Qoobox 2019-03-21 21:16 - 2019-03-21 21:16 - 000000222 _____ C:\Users\Guilherme\Desktop\Grand Theft Auto V.url 2019-03-19 01:12 - 2019-03-19 01:12 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\AlphaConsole 2019-03-16 21:03 - 2019-03-19 05:13 - 000000020 _____ C:\Users\Guilherme\Desktop\bat.txt 2019-03-15 15:05 - 2019-03-15 15:05 - 000867864 _____ (COMODO) C:\Windows\system32\Drivers\cmdguard.sys 2019-03-15 15:05 - 2019-03-15 15:05 - 000126680 _____ (COMODO) C:\Windows\system32\Drivers\inspect.sys 2019-03-15 15:05 - 2019-03-15 15:05 - 000059096 _____ (COMODO) C:\Windows\system32\Drivers\cmdhlp.sys 2019-03-15 15:05 - 2019-03-15 15:05 - 000034280 _____ (COMODO) C:\Windows\system32\Drivers\cmderd.sys 2019-03-13 15:42 - 2019-02-16 02:32 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2019-03-13 15:42 - 2019-02-16 02:30 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2019-03-13 15:42 - 2019-02-10 13:41 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2019-03-13 15:42 - 2019-02-10 13:41 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll 2019-03-13 15:42 - 2019-02-10 13:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2019-03-13 15:42 - 2019-02-10 13:29 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2019-03-13 15:42 - 2019-02-10 13:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2019-03-13 15:42 - 2019-02-10 13:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2019-03-13 15:42 - 2019-02-10 13:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2019-03-13 15:42 - 2019-02-10 13:28 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2019-03-13 15:42 - 2019-02-10 13:10 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2019-03-13 15:42 - 2019-02-10 13:09 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2019-03-13 15:42 - 2019-02-10 13:09 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2019-03-13 15:42 - 2019-02-10 13:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2019-03-13 15:42 - 2019-02-10 13:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2019-03-13 15:42 - 2019-02-10 13:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2019-03-13 15:42 - 2019-02-10 13:07 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2019-03-13 15:42 - 2019-02-10 13:07 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2019-03-13 15:42 - 2019-02-10 13:07 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2019-03-13 15:42 - 2019-02-10 13:07 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2019-03-13 15:42 - 2019-02-10 13:02 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2019-03-13 15:42 - 2019-02-10 12:50 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2019-03-13 15:42 - 2019-02-10 12:49 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2019-03-13 15:42 - 2019-02-10 12:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2019-03-13 15:42 - 2019-02-10 12:38 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2019-03-13 15:42 - 2019-02-10 12:38 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2019-03-13 15:40 - 2019-03-04 23:44 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2019-03-13 15:40 - 2019-03-04 23:44 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2019-03-13 15:40 - 2019-03-04 23:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2019-03-13 15:40 - 2019-02-21 23:35 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll 2019-03-13 15:40 - 2019-02-16 03:02 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2019-03-13 15:40 - 2019-02-16 03:02 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2019-03-13 15:40 - 2019-02-16 02:50 - 000321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2019-03-13 15:40 - 2019-02-15 13:09 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2019-03-13 15:40 - 2019-02-15 13:09 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2019-03-13 15:40 - 2019-02-15 13:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2019-03-13 15:40 - 2019-02-15 12:58 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2019-03-13 15:40 - 2019-02-15 12:58 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2019-03-13 15:40 - 2019-02-15 12:40 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2019-03-13 15:40 - 2019-02-15 12:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2019-03-13 15:40 - 2019-02-15 12:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2019-03-13 15:40 - 2019-02-15 12:38 - 000360960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2019-03-13 15:40 - 2019-02-15 12:38 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2019-03-13 15:40 - 2019-02-15 12:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2019-03-13 15:40 - 2019-02-15 12:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll 2019-03-13 15:40 - 2019-02-10 13:10 - 001680104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2019-03-13 15:40 - 2019-02-10 12:36 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2019-03-13 15:40 - 2019-02-10 12:36 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2019-03-13 15:40 - 2019-02-10 12:36 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys 2019-03-13 15:40 - 2019-02-10 12:35 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys 2019-03-13 15:40 - 2019-02-08 13:07 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll 2019-03-13 15:40 - 2019-02-08 12:59 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll 2019-03-13 15:40 - 2019-02-07 13:06 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll 2019-03-13 15:40 - 2019-02-07 13:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\bridgeres.dll 2019-03-13 15:40 - 2019-02-07 13:01 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys 2019-03-13 15:40 - 2019-02-07 12:46 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe 2019-03-13 15:40 - 2019-02-03 12:36 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys 2019-03-13 01:40 - 2019-03-13 01:40 - 000000016 _____ C:\Users\Guilherme\Desktop\pirates.txt 2019-03-11 03:25 - 2019-03-11 03:25 - 000000000 ____D C:\Users\Guilherme\AppData\Local\MultiPlayerManager 2019-03-10 21:18 - 2019-03-10 21:21 - 000000000 ____D C:\Users\Todos os Usuários\SecTaskMan 2019-03-10 21:18 - 2019-03-10 21:21 - 000000000 ____D C:\ProgramData\SecTaskMan 2019-03-09 23:56 - 2019-03-09 23:57 - 000000088 _____ C:\Users\Guilherme\Desktop\SANTOANTONIO_CANCELADO.txt 2019-03-04 18:36 - 2019-03-04 18:36 - 000000000 ____D C:\Users\Todos os Usuários\Bitdefender VPN 2019-03-04 18:36 - 2019-03-04 18:36 - 000000000 ____D C:\ProgramData\Bitdefender VPN 2019-03-04 05:17 - 2019-03-05 05:07 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2019-03-04 05:16 - 2019-04-11 09:51 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-03-04 05:16 - 2019-03-04 05:16 - 000002055 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2019-03-04 05:10 - 2019-04-21 23:46 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-03-03 22:32 - 2019-03-03 22:32 - 000034761 _____ C:\Users\Todos os Usuários\dm.uninstall.1551663120.bdinstall.bin 2019-03-03 22:32 - 2019-03-03 22:32 - 000034761 _____ C:\ProgramData\dm.uninstall.1551663120.bdinstall.bin 2019-03-03 22:29 - 2019-03-03 22:29 - 000061291 _____ C:\Users\Todos os Usuários\dm.1551662935.bdinstall.bin 2019-03-03 22:29 - 2019-03-03 22:29 - 000061291 _____ C:\ProgramData\dm.1551662935.bdinstall.bin 2019-03-03 22:29 - 2019-03-03 22:29 - 000000000 ____D C:\Users\Todos os Usuários\Gemma 2019-03-03 22:29 - 2019-03-03 22:29 - 000000000 ____D C:\Users\Todos os Usuários\Bitdefender Device Management 2019-03-03 22:29 - 2019-03-03 22:29 - 000000000 ____D C:\Users\Todos os Usuários\Atc 2019-03-03 22:29 - 2019-03-03 22:29 - 000000000 ____D C:\ProgramData\Gemma 2019-03-03 22:29 - 2019-03-03 22:29 - 000000000 ____D C:\ProgramData\Bitdefender Device Management 2019-03-03 22:29 - 2019-03-03 22:29 - 000000000 ____D C:\ProgramData\Atc 2019-03-03 22:24 - 2019-03-03 22:24 - 000000000 ____D C:\Windows\system32\elambkup 2019-03-03 22:23 - 2019-05-07 15:46 - 000000000 ____D C:\Program Files\Bitdefender 2019-03-03 22:23 - 2019-04-17 05:04 - 000000000 ____D C:\Users\Todos os Usuários\Bitdefender 2019-03-03 22:23 - 2019-04-17 05:04 - 000000000 ____D C:\ProgramData\Bitdefender 2019-03-03 22:23 - 2019-04-10 11:28 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Bitdefender 2019-03-03 22:22 - 2019-03-03 22:22 - 000077256 _____ C:\Users\Todos os Usuários\agent.update.1551662524.bdinstall.v2.bin 2019-03-03 22:22 - 2019-03-03 22:22 - 000077256 _____ C:\ProgramData\agent.update.1551662524.bdinstall.v2.bin 2019-03-03 21:32 - 2019-05-07 15:45 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2019-03-03 21:30 - 2019-04-30 08:40 - 000000000 ____D C:\Program Files\Bitdefender Agent 2019-03-03 21:30 - 2019-03-03 21:30 - 000105052 _____ C:\Users\Todos os Usuários\agent.1551659406.bdinstall.v2.bin 2019-03-03 21:30 - 2019-03-03 21:30 - 000105052 _____ C:\ProgramData\agent.1551659406.bdinstall.v2.bin 2019-03-03 21:30 - 2019-03-03 21:30 - 000000000 ____D C:\Users\Todos os Usuários\Bitdefender Agent 2019-03-03 21:30 - 2019-03-03 21:30 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2019-03-03 02:59 - 2019-03-03 02:59 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Dropbox 2019-03-03 02:57 - 2019-05-07 18:08 - 000001026 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2019-03-03 02:57 - 2019-05-07 15:42 - 000001022 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2019-03-03 02:57 - 2019-03-03 03:03 - 000004022 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA 2019-03-03 02:57 - 2019-03-03 03:02 - 000003770 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore 2019-03-02 04:53 - 2019-05-07 17:41 - 000000000 ____D C:\Users\Guilherme\.BigNox 2019-03-02 04:53 - 2019-03-02 04:53 - 000001048 _____ C:\Users\Guilherme\Desktop\Multi-Drive.lnk 2019-03-02 04:53 - 2019-03-02 04:53 - 000000967 _____ C:\Users\Guilherme\Desktop\Nox.lnk 2019-03-02 04:53 - 2019-03-02 04:53 - 000000000 ____D C:\Program Files (x86)\Bignox 2019-02-25 08:45 - 2018-12-07 23:47 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2019-02-25 08:45 - 2018-12-07 23:47 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys 2019-02-25 08:44 - 2019-01-04 13:13 - 000143592 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2019-02-25 08:44 - 2019-01-04 13:07 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 002862592 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2019-02-25 08:44 - 2019-01-04 11:05 - 001635328 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 000451584 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2019-02-25 08:44 - 2019-01-04 11:05 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2019-02-25 08:44 - 2018-12-28 15:09 - 000419608 _____ C:\Windows\SysWOW64\locale.nls 2019-02-25 08:44 - 2018-12-28 15:09 - 000419608 _____ C:\Windows\system32\locale.nls 2019-02-25 08:44 - 2018-12-08 00:08 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll 2019-02-25 08:44 - 2018-12-08 00:08 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll 2019-02-25 08:44 - 2018-12-08 00:08 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp 2019-02-25 08:44 - 2018-12-08 00:08 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp 2019-02-25 08:44 - 2018-12-08 00:08 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll 2019-02-25 08:44 - 2018-12-08 00:08 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll 2019-02-25 08:44 - 2018-12-07 23:56 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll 2019-02-25 08:44 - 2018-12-07 23:56 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll 2019-02-25 08:44 - 2018-12-07 23:56 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp 2019-02-25 08:44 - 2018-12-07 23:47 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2019-02-25 08:44 - 2018-12-07 23:41 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp 2019-02-25 08:44 - 2018-12-07 23:41 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll 2019-02-25 08:44 - 2018-12-07 23:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll 2019-02-25 08:44 - 2018-12-04 13:07 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll 2019-02-25 08:44 - 2018-12-04 13:07 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll 2019-02-25 08:44 - 2018-12-04 12:55 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll 2019-02-25 08:44 - 2018-12-04 12:55 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000998480 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000918408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000066000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000063936 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000021968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000020944 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000019408 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000017872 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000017856 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000017360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000017352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000016336 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000015824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000015808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000015296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000014312 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000014272 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000013768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000013760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000013760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000013264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012736 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012240 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012240 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012232 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011728 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2019-02-25 08:44 - 2018-10-12 10:05 - 000011200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2019-02-25 07:59 - 2019-03-07 22:57 - 000000000 ____D C:\AdwCleaner 2019-02-25 07:58 - 2019-02-25 07:58 - 000000792 _____ C:\DelFix.txt 2019-02-11 18:21 - 2019-02-11 18:21 - 000019696 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_1487911227694.dll 2019-02-11 18:15 - 2019-04-10 15:47 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Skype 2019-02-11 16:59 - 2019-02-11 16:59 - 000001233 _____ C:\Users\Guilherme\Desktop\TeamSpeak 3 Client.lnk 2019-02-11 16:59 - 2019-02-11 16:59 - 000001191 _____ C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk 2019-02-11 16:54 - 2019-02-11 16:54 - 000019696 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_556918324399638.dll 2019-02-11 05:18 - 2019-04-26 17:56 - 000131864 _____ C:\Users\Guilherme\AppData\Local\GDIPFONTCACHEV1.DAT 2019-02-07 10:02 - 2019-04-17 01:57 - 000001130 _____ C:\Users\Public\Desktop\Apex Legends.lnk 2019-02-07 10:02 - 2019-02-07 10:02 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller 2019-02-07 10:02 - 2019-02-07 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends 2019-02-07 06:39 - 2019-05-02 21:41 - 000000000 ____D C:\Program Files (x86)\Origin Games 2019-02-07 06:38 - 2019-05-01 20:28 - 000000000 ____D C:\Program Files (x86)\Origin 2019-02-07 06:38 - 2019-02-07 06:38 - 000000997 _____ C:\Users\Public\Desktop\Origin.lnk 2019-02-07 06:38 - 2019-02-07 06:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2019-02-07 06:34 - 2019-05-02 22:12 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Origin 2019-02-07 06:34 - 2019-02-07 06:39 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Origin 2019-02-06 23:53 - 2019-02-06 23:53 - 000001214 _____ C:\Users\Public\Desktop\ApowerMirror.lnk 2019-02-06 23:53 - 2019-02-06 23:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft 2019-02-06 23:12 - 2019-02-07 00:03 - 000000000 ____D C:\Program Files (x86)\Apowersoft 2019-02-06 08:30 - 2019-02-06 08:30 - 000000000 ____D C:\.android 2019-02-06 08:28 - 2019-02-07 00:26 - 000000000 ____D C:\Users\Guilherme\Documents\Apowersoft 2019-02-06 08:27 - 2019-04-10 15:45 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Apowersoft 2019-02-06 02:07 - 2019-02-16 20:59 - 000000000 ____D C:\Users\Guilherme\Downloads\Bed Tease ==================== Três meses (modificados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-05-07 18:17 - 2017-03-25 19:38 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Nox 2019-05-07 17:41 - 2017-03-25 19:39 - 000000000 ____D C:\Users\Guilherme\vmlogs 2019-05-07 17:41 - 2016-02-27 19:45 - 000000000 ____D C:\Users\Guilherme\.android 2019-05-07 17:38 - 2017-10-02 23:44 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\discord 2019-05-07 16:03 - 2013-07-02 16:31 - 000000000 ____D C:\Program Files (x86)\Steam 2019-05-07 15:51 - 2009-07-14 01:45 - 000020672 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-05-07 15:51 - 2009-07-14 01:45 - 000020672 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-05-07 15:47 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf 2019-05-07 15:42 - 2014-03-24 14:09 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2019-05-07 15:42 - 2013-07-01 16:08 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA 2019-05-07 15:42 - 2013-07-01 16:08 - 000000000 ____D C:\ProgramData\NVIDIA 2019-05-07 15:42 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-05-07 15:39 - 2014-11-30 05:40 - 000343737 _____ C:\bdlog.txt 2019-05-07 05:00 - 2017-12-27 19:15 - 000000000 ____D C:\Users\Guilherme\Documents\Bandicam 2019-05-07 04:17 - 2014-10-16 03:27 - 000000000 ____D C:\Users\Todos os Usuários\ManyCam 2019-05-07 04:17 - 2014-10-16 03:27 - 000000000 ____D C:\ProgramData\ManyCam 2019-05-07 03:35 - 2015-01-06 03:42 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\vlc 2019-05-07 01:49 - 2015-01-06 01:08 - 000000000 ____D C:\Program Files (x86)\BandiMPEG1 2019-05-07 01:48 - 2018-04-12 12:23 - 000000000 ____D C:\Users\Convidado 2019-05-06 23:14 - 2019-01-17 17:14 - 000000000 ____D C:\Users\Guilherme\Downloads\OPEN_peri 2019-05-06 17:57 - 2018-05-23 01:52 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\liveme-pro-tools 2019-05-06 03:35 - 2017-04-08 21:46 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\MPC-HC 2019-05-06 03:35 - 2016-06-14 17:25 - 000000000 ____D C:\Users\Guilherme\AppData\Local\CrashDumps 2019-05-05 20:18 - 2016-05-10 21:11 - 000000000 ____D C:\Users\Guilherme\Documents\VSO Downloader 2019-05-05 15:58 - 2018-07-04 15:17 - 000000000 ____D C:\Users\Guilherme\Downloads\BM 2019-05-04 21:54 - 2013-07-05 18:22 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-05-04 03:09 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\system32\NDF 2019-05-03 23:19 - 2018-02-01 01:03 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\Mozilla 2019-05-02 22:12 - 2013-08-16 16:50 - 000000000 ____D C:\Users\Todos os Usuários\Origin 2019-05-02 22:12 - 2013-08-16 16:50 - 000000000 ____D C:\ProgramData\Origin 2019-04-30 21:56 - 2015-10-03 16:32 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-04-30 21:56 - 2015-10-03 16:32 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-04-30 08:40 - 2013-07-18 03:58 - 000000000 ____D C:\Users\Todos os Usuários\COMODO 2019-04-30 08:40 - 2013-07-18 03:58 - 000000000 ____D C:\ProgramData\COMODO 2019-04-30 08:40 - 2013-07-01 17:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 2019-04-30 08:40 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\registration 2019-04-30 03:47 - 2013-07-01 15:45 - 000000000 ____D C:\Users\Guilherme 2019-04-30 03:17 - 2017-03-21 03:51 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Dropbox 2019-04-30 00:28 - 2015-02-17 21:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2019-04-30 00:28 - 2015-02-17 21:16 - 000000000 ____D C:\Program Files\CPUID 2019-04-29 21:05 - 2013-07-01 15:50 - 000000000 ___HD C:\Program Files (x86)\Temp 2019-04-29 21:03 - 2013-07-01 15:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-04-29 20:57 - 2013-07-01 16:08 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2019-04-29 20:56 - 2013-07-01 18:51 - 000000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation 2019-04-29 20:56 - 2013-07-01 18:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-04-29 01:57 - 2014-02-23 15:11 - 000000000 ____D C:\Users\Guilherme\AppData\Local\ElevatedDiagnostics 2019-04-29 00:08 - 2019-01-07 20:14 - 001682368 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2019-04-28 21:28 - 2019-01-07 18:38 - 000001015 _____ C:\Users\Public\Desktop\Driver Easy.lnk 2019-04-28 18:27 - 2018-04-18 23:12 - 000000033 _____ C:\Users\Guilherme\AppData\Roaming\AdobeWLCMCache.dat 2019-04-27 21:34 - 2009-07-29 13:08 - 000714658 _____ C:\Windows\system32\prfh0416.dat 2019-04-27 21:34 - 2009-07-29 13:08 - 000147316 _____ C:\Windows\system32\prfc0416.dat 2019-04-27 11:42 - 2018-11-16 01:52 - 005291776 _____ C:\Windows\system32\FNTCACHE.DAT 2019-04-26 10:50 - 2018-04-12 12:25 - 000131864 _____ C:\Users\Convidado\AppData\Local\GDIPFONTCACHEV1.DAT 2019-04-26 10:50 - 2018-04-12 12:25 - 000000000 ____D C:\Users\Convidado\AppData\Local\Dropbox 2019-04-26 02:00 - 2013-07-01 17:49 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Adobe 2019-04-25 21:13 - 2017-03-21 03:51 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-04-23 04:32 - 2018-09-16 08:05 - 000000000 ____D C:\Users\Guilherme\AppData\Local\NVIDIA 2019-04-22 01:31 - 2014-03-25 02:35 - 000000000 ____D C:\Users\Guilherme\Documents\My Games 2019-04-21 23:46 - 2013-07-05 18:22 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-04-21 23:46 - 2013-07-05 18:22 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-04-21 23:46 - 2013-07-05 18:22 - 000004384 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-04-21 23:46 - 2013-07-05 18:22 - 000000000 ____D C:\Windows\system32\Macromed 2019-04-21 04:17 - 2016-02-04 23:09 - 000000000 ____D C:\Program Files\Java 2019-04-21 04:17 - 2013-11-30 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-04-21 04:16 - 2016-02-04 23:10 - 000110968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2019-04-21 00:43 - 2017-08-20 01:13 - 000000000 ____D C:\Users\Guilherme\Downloads\Aurora 2019-04-18 14:00 - 2019-01-07 20:14 - 000508864 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2019-04-18 10:57 - 2019-01-07 20:14 - 038733456 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2019-04-18 10:57 - 2019-01-07 20:14 - 004930760 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2019-04-18 04:16 - 2017-12-30 02:33 - 000000000 ____D C:\Users\Guilherme\Downloads\tor 2019-04-17 20:06 - 2019-01-07 20:14 - 000049124 _____ C:\Windows\system32\nvinfo.pb 2019-04-17 18:08 - 2019-01-07 20:17 - 005432360 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2019-04-17 18:08 - 2019-01-07 20:17 - 002637808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2019-04-17 18:08 - 2019-01-07 20:17 - 001767280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2019-04-17 18:08 - 2019-01-07 20:17 - 000651248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2019-04-17 18:08 - 2019-01-07 20:17 - 000450872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2019-04-17 18:08 - 2019-01-07 20:17 - 000125424 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2019-04-17 18:08 - 2019-01-07 20:17 - 000082800 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2019-04-15 18:21 - 2013-07-02 16:22 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Apps\2.0 2019-04-15 18:17 - 2017-04-14 18:21 - 000000222 _____ C:\Users\Guilherme\Desktop\Rocket League.url 2019-04-15 03:11 - 2013-07-08 00:20 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\BitComet 2019-04-15 03:04 - 2019-01-20 03:37 - 000000000 ____D C:\Users\Guilherme\Downloads\leg 2019-04-14 02:20 - 2019-01-07 20:17 - 008557932 _____ C:\Windows\system32\nvcoproc.bin 2019-04-11 16:55 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\rescache 2019-04-11 09:55 - 2016-02-12 18:39 - 000003432 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachineDaily 2019-04-11 09:55 - 2016-02-12 18:39 - 000003306 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachine 2019-04-11 09:55 - 2016-02-12 18:39 - 000000000 ____D C:\Program Files (x86)\Gyazo 2019-04-11 09:43 - 2017-12-30 15:35 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update 2019-04-11 09:40 - 2009-07-14 02:13 - 000006502 _____ C:\Windows\system32\PerfStringBackup.INI 2019-04-11 04:12 - 2013-07-18 03:57 - 000000000 ____D C:\Program Files (x86)\Comodo 2019-04-11 03:07 - 2013-07-29 01:59 - 000000000 ____D C:\Windows\system32\MRT 2019-04-11 03:02 - 2013-07-01 18:57 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-04-10 15:47 - 2018-12-15 20:46 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\5KPlayer 2019-04-10 15:47 - 2018-09-29 00:17 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\DVDVideoSoft 2019-04-10 15:47 - 2018-07-08 01:31 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\360DrvMgr 2019-04-10 15:47 - 2018-05-15 18:54 - 000000000 ____D C:\Users\Guilherme\AppData\Local\CrashReportClient 2019-04-10 15:47 - 2018-05-08 17:32 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Nox 2019-04-10 15:47 - 2018-04-12 23:38 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Canon_INC 2019-04-10 15:47 - 2017-12-09 02:36 - 000000000 ____D C:\Users\Guilherme\AppData\Local\DigiDNA 2019-04-10 15:47 - 2017-10-02 23:44 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2019-04-10 15:47 - 2017-10-02 23:43 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Discord 2019-04-10 15:47 - 2017-09-30 08:52 - 000000000 ____D C:\Users\Guilherme\AppData\Local\EpicGamesLauncher 2019-04-10 15:47 - 2016-10-08 03:44 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Charles 2019-04-10 15:47 - 2016-05-21 18:37 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\WinFF 2019-04-10 15:47 - 2016-01-06 03:37 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-04-10 15:47 - 2015-10-19 19:19 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\Daybreak Game Company 2019-04-10 15:47 - 2015-09-05 22:00 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\IObit 2019-04-10 15:47 - 2015-09-05 22:00 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\IObit 2019-04-10 15:47 - 2015-08-13 00:49 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\DAZ 3D 2019-04-10 15:47 - 2015-02-21 02:02 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2019-04-10 15:47 - 2015-01-29 00:26 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\Sony Online Entertainment 2019-04-10 15:47 - 2015-01-06 01:09 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\BANDISOFT 2019-04-10 15:47 - 2014-12-27 20:57 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Anvsoft 2019-04-10 15:47 - 2013-07-11 22:50 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\OBS 2019-04-10 15:47 - 2013-07-03 20:57 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\TS3Client 2019-04-10 15:47 - 2013-07-02 17:05 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Razer 2019-04-10 15:47 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\servicing 2019-04-10 15:47 - 2009-07-14 00:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2019-04-10 15:45 - 2019-01-07 18:38 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Easeware 2019-04-10 15:45 - 2018-07-05 20:13 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Gaijin 2019-04-10 15:45 - 2017-09-30 22:28 - 000000000 ____D C:\Users\Guilherme\AppData\Local\FortniteGame 2019-04-10 15:45 - 2017-04-08 12:27 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Real 2019-04-10 15:45 - 2014-10-11 02:03 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\RealNetworks 2019-04-10 15:45 - 2014-07-15 16:28 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Red Giant 2019-04-10 15:45 - 2013-12-27 22:06 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Sony 2019-04-10 15:45 - 2013-10-31 12:51 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Poser Pro 2019-04-10 15:45 - 2013-07-25 01:05 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\DAEMON Tools Lite 2019-04-10 15:45 - 2013-07-22 01:31 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\e-on software 2019-04-10 15:45 - 2013-07-18 03:23 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Mozilla 2019-04-10 15:45 - 2013-07-05 18:23 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Macromedia 2019-04-10 15:45 - 2013-07-02 19:22 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\Adobe 2019-04-10 15:45 - 2013-07-01 17:49 - 000000000 ____D C:\Users\Guilherme\AppData\Roaming\Adobe-BackupByPhotoshopCS6Portable 2019-04-10 15:45 - 2013-07-01 17:48 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\Oracle 2019-04-10 15:45 - 2013-07-01 17:47 - 000000000 ____D C:\Users\Guilherme\AppData\LocalLow\Sun 2019-04-10 15:45 - 2013-07-01 15:45 - 000000000 ____D C:\Users\Guilherme\AppData\Local\VirtualStore 2019-04-10 15:44 - 2015-07-22 03:19 - 000000000 ____D C:\Users\Guilherme\AppData\Local\CEF 2019-04-10 15:44 - 2014-11-08 03:26 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Chromium 2019-04-10 15:44 - 2014-02-09 16:00 - 000000000 ____D C:\Users\Guilherme\AppData\Local\EdgeOfReality 2019-04-10 15:44 - 2013-08-16 00:13 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Criterion Games 2019-04-10 15:44 - 2013-07-30 19:12 - 000000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Macromedia 2019-04-10 15:44 - 2013-07-30 19:12 - 000000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2019-04-10 15:44 - 2013-07-30 19:12 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia 2019-04-10 15:44 - 2013-07-25 02:04 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Autodesk 2019-04-10 15:44 - 2013-07-18 03:57 - 000000000 ____D C:\Users\Guilherme\AppData\Local\Comodo 2019-04-10 11:22 - 2014-11-30 00:45 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2019-04-10 11:07 - 2014-11-30 00:54 - 000000000 ____D C:\Users\Todos os Usuários\BDLogging 2019-04-10 11:07 - 2014-11-30 00:54 - 000000000 ____D C:\ProgramData\BDLogging 2019-04-10 08:11 - 2018-03-06 21:54 - 000000000 ____D C:\Program Files\Malwarebytes 2019-04-10 05:40 - 2017-04-12 15:58 - 000000000 ___RD C:\Users\Guilherme\Dropbox 2019-04-09 10:30 - 2019-01-07 20:42 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat 2019-04-08 20:43 - 2015-09-05 22:00 - 000000000 ____D C:\Users\Todos os Usuários\IObit 2019-04-08 20:43 - 2015-09-05 22:00 - 000000000 ____D C:\ProgramData\IObit 2019-04-08 20:43 - 2015-09-05 22:00 - 000000000 ____D C:\Program Files (x86)\IObit 2019-04-08 16:32 - 2013-07-27 23:47 - 000000000 ____D C:\Users\Todos os Usuários\Malwarebytes 2019-04-08 16:32 - 2013-07-27 23:47 - 000000000 ____D C:\ProgramData\Malwarebytes ==================== Arquivos na raiz de alguns diretórios ======= 2019-04-26 20:00 - 2019-04-26 20:34 - 000000132 _____ () C:\Users\Guilherme\AppData\Roaming\Adobe PNG Format CS6 Prefs 2018-04-18 23:12 - 2019-04-28 18:27 - 000000033 _____ () C:\Users\Guilherme\AppData\Roaming\AdobeWLCMCache.dat 2013-08-24 05:25 - 2015-01-16 20:33 - 000000096 _____ () C:\Users\Guilherme\AppData\Roaming\Camdata.ini 2013-08-24 05:25 - 2015-01-16 20:33 - 000000408 _____ () C:\Users\Guilherme\AppData\Roaming\CamLayout.ini 2013-08-24 05:25 - 2015-01-16 20:33 - 000000408 _____ () C:\Users\Guilherme\AppData\Roaming\CamShapes.ini 2013-10-09 21:30 - 2015-01-16 20:33 - 000004547 _____ () C:\Users\Guilherme\AppData\Roaming\CamStudio.cfg 2018-09-21 03:35 - 2018-09-21 03:35 - 000000522 _____ () C:\Users\Guilherme\AppData\Local\Nox_crash.log 2018-09-22 20:18 - 2018-09-22 20:18 - 000000000 _____ () C:\Users\Guilherme\AppData\Local\oobelibMkey.log 2018-12-31 16:45 - 2018-12-31 16:45 - 000007602 _____ () C:\Users\Guilherme\AppData\Local\Resmon.ResmonCfg 2017-03-25 17:54 - 2017-03-25 17:54 - 000000552 _____ () C:\Users\Guilherme\AppData\Local\TroubleshooterConfig.json 2014-02-03 16:10 - 2014-02-03 16:10 - 000017408 _____ () C:\Users\Guilherme\AppData\Local\WebpageIcons.db 2016-01-31 22:16 - 2016-01-31 22:17 - 000000000 _____ () C:\Users\Guilherme\AppData\Local\{6312CD23-8944-42CE-9B50-6D0BC9F547E7} ==================== SigCheck =============================== (Não há correção automática para arquivos que não passaram na verificação.) LastRegBack: 2019-05-03 01:44 ==================== Fim de FRST.txt ============================ - Addition.txt
  14. Opa, @diego_moicano Obrigado pela resposta rápida. Cara, antes de mais nada, fiz todos os procedimentos. Quando cliquei em Reparar no ZHPCleaner, ao termino do processo eu fui abrir o log.txt e comecei a receber mensagens como esta : Só acontece com executaveis, programas como o Chrome, etc... Imagens e vídeos abrem normalmente. Fui dar uma fuçada, e percebi que o HIPS do comodo firewall tava bloqueando acesso ao notepad, chrome, explorer.exe, etc.... Acredito eu que após aplicar o Reparo com o ZHPCleaner ele resetou os parametros do meu Firewall e por isso o Comodo ta bloqueando o accesso a eles?? Quando eu desativo o HIPS no comodo tanto o Chrome quando o Notepad e outros executaveis abrem normalmente. Enfim, gostaria de saber se estou correto, se isso deveria acontencer ou se tem algo de muito errado na minha maquina. Segue, então, os logs do ADwcleaner e ZHPCleaner: # ------------------------------- # Malwarebytes AdwCleaner 7.3.0.0 # ------------------------------- # Build: 04-04-2019 # Database: 2019-04-03.1 (Local) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 05-07-2019 # Duration: 00:00:11 # OS: Windows 7 Ultimate # Scanned: 27198 # Detected: 0 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** No malicious folders found. ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** No malicious registry entries found. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries found. ***** [ Chromium URLs ] ***** No malicious Chromium URLs found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. AdwCleaner[S00].txt - [1253 octets] - [07/03/2019 22:57:08] AdwCleaner[S01].txt - [1314 octets] - [08/03/2019 05:19:19] AdwCleaner[S02].txt - [1787 octets] - [22/03/2019 04:52:35] AdwCleaner[C02].txt - [1879 octets] - [22/03/2019 04:53:48] AdwCleaner[S03].txt - [1820 octets] - [08/04/2019 20:42:50] AdwCleaner[C03].txt - [1930 octets] - [08/04/2019 20:43:31] AdwCleaner[S04].txt - [1619 octets] - [10/04/2019 07:55:04] AdwCleaner[S05].txt - [1680 octets] - [11/04/2019 13:43:25] AdwCleaner[S06].txt - [1741 octets] - [12/04/2019 09:04:51] AdwCleaner[S07].txt - [1802 octets] - [15/04/2019 03:20:16] AdwCleaner[S08].txt - [1863 octets] - [21/04/2019 13:42:22] AdwCleaner[S09].txt - [1924 octets] - [29/04/2019 17:30:21] AdwCleaner[S10].txt - [1985 octets] - [30/04/2019 03:24:28] AdwCleaner[C10].txt - [2171 octets] - [30/04/2019 03:24:57] AdwCleaner[S11].txt - [2107 octets] - [30/04/2019 04:20:44] AdwCleaner[S12].txt - [2168 octets] - [01/05/2019 03:01:16] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S13].txt ########## - ~ ZHPCleaner v2019.5.5.61 by Nicolas Coolman (2019/05/05) ~ Run by Guilherme (Administrator) (07/05/2019 04:16:10) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Certificate ZHPCleaner: Legal ~ Type : Repair ~ Report : C:\Users\Guilherme\Desktop\ZHPCleaner (R).txt ~ Quarantine : C:\Users\Guilherme\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt ~ UAC : Deactivate ~ Boot Mode : Normal (Normal boot) Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601) ---\\ Alternate Data Stream (ADS). (0) ~ No malicious or unnecessary items found. ---\\ Services (0) ~ No malicious or unnecessary items found. ---\\ Browser internet (2) DELETED: [bpp0o447.default-1431459471505] - user_pref("browser.search.defaultenginename", "Search Provided by Yahoo"); =>.SUP.YahooSearchProvided DELETED: [bpp0o447.default-1431459471505] - user_pref("browser.search.selectedEngine", "Search Provided by Yahoo"); =>.SUP.YahooSearchProvided ---\\ Hosts file (1) ~ The hosts file is legitimate (4) ---\\ Scheduled automatic tasks. (0) ~ No malicious or unnecessary items found. ---\\ Explorer ( File, Folder) (423) MOVED file: C:\Users\Guilherme\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ManyCam.lnk [Bad : C:\Program Files (x86)\ManyCam\ManyCam.exe](.Visicom Media Inc..) =>.SUP.VisicomMedia MOVED file: C:\Windows\Prefetch\POPCORN-TIME.EXE-AEAEFAF4.pf =>.SUP.PopcornTime MOVED file: C:\Windows\Installer\wix{31A0B634-BCF4-4D3F-8336-87FEACFEE142}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{BD6778C5-6FA5-492A-ADD6-E706339C2A7B}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{D4D86CB2-2370-4691-8272-3869EDED6C64}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\MSI1.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI11A.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI1485.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI1D6.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI254.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI25A4.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI2D51.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI3872.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI39FB.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI44AE.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI532D.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI5EAA.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI606F.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI6FD2.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI757E.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI76E6.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI7F9A.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI86AD.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI8788.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI89C.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI8B8A.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI8FE3.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI91A8.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI95A.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI97D5.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI9836.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI98E3.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI99AF.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI9F35.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIA596.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIA668.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIAF5E.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIB049.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIB625.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIC31B.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIC77E.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSICD7.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSICF22.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID045.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID0B4.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID23A.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID30.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID589.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID858.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE3F9.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE4F4.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE59.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE67B.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE6A2.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE6E9.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIE747.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIEA25.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIEAF0.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIEC7.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIECBB.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIEE21.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIF00.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIF794.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIF9C7.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIFBBB.tmp =>.SUP.MSIInstaller MOVED file: C:\ProgramData\ManyCam\youtubesource.dll [Visicom Media Inc. - ManyCam Virtual Webcam] =>.SUP.VisicomMedia MOVED file: C:\Users\Guilherme\AppData\Local\Temp\stsrvl.exe =>.SUP.Temporary.Empty MOVED file^: C:\Users\Guilherme\AppData\Local\Temp\~DFBF249C16E375F8FE.TMP =>.SUP.Temporary.Other MOVED folder: C:\Program Files (x86)\Popcorn Time =>.SUP.PopcornTime MOVED folder: C:\Users\Guilherme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn-Time =>.SUP.PopcornTime MOVED folder: C:\Users\Guilherme\AppData\Local\Popcorn-Time =>.SUP.PopcornTime MOVED folder: C:\Users\Guilherme\AppData\Local\PopcornTimeDesktop =>.SUP.PopcornTime MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign00227e00bd0db861 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0096ddf6b614e3b3 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign01d81700153663f4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0263f52ab9723b56 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign02ddbdf1bc7598e9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0311a3e1cc622f01 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign037fa8e34222a32e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0441e27160c090f5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign055f69bdcf39c16c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign05cd334c5a0a1fe8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign071ed4f38f100992 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0753800d93cf66e4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign085221fad260ab5e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign08aa64410e8f021f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign09288a1640e16d07 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0a6a9fb19bdd7fbb =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0c0e91ab9cd44856 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0c61140d953787b9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0e62ae57888dcc32 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign0f994b6f8d1554b2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1262e18e2a0dcb65 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign13efc4461e4d5942 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1499059fe0a3778c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign151535c2ca20b0c9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign162671584bc8aee6 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1925acaee0545763 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1c2b8b9c075cb3a2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1c97c64171ae3565 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1ddad56bc4a91476 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1f364ba70ea03ed9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign1fec729214434c50 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign212bb62036f2331e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign21c522f0280d7b32 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign25489f674cf4e656 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2849090f06397cc9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign292a8cc1cf97836f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign29703bb1a85a5cb5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2a2fff3c943a49df =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2a448aaf9e594576 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2abff91fcc9777a3 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2ae42d93bbe31a62 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2b1d603031bd8ff2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2c05c60069b58175 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2cf6c043e27fe99a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2d2919b0c1644797 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign2f89f9a4459c63ba =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign307a5b44d611245a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3342df374337d91f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign33544dc9cfe3e48b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign33fd1d0c7a3e965a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign36f8eb3af57b9b9b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign38ec3b74b22d1fe9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3ac231345a7fb992 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3bf5c57399d8b136 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3cdce836d8e5c457 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3d244f6af72224d6 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3d26add58742d421 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3e97b8b5687ec848 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign3f300f6acdad13f7 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign428983ef7b6aae12 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign42fe3444e2a59860 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign4361e6579d0c2ab1 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign4382c0a4d89240d4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign43b54eb8b8e09f25 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign45ae9f43dd7a3d01 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign4ceaa4e4f78f96b4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign4cec59c632a0028b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign4e19b043c0a78f48 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign506e45ca207006f8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign53c5523243fbd303 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign541d10714f3651fe =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign55593f05553153ec =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign55b8fe164e716804 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign571f6efe5a7d0752 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5b78885ba10368df =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5bb0b8f45abc191b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5d6c1b9d44c6ec13 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5d78397cfd95d2ce =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5efb4720836a01bc =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5efd556493f1a196 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign5f64d7eb27cbe15d =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign606cd7e8b7d8c8af =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign60d6b50bce78f52e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign62b9fa128b503629 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign63b11fa6af5f06a5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign64559a4623d15e1d =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign65e9910d07da1c10 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign65f8117acbc3246f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign6631d170a4ae2263 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign66e5447f86ee0a8e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign67f6b7def9a7721c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign6bc1e77606ab1c7f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign6d17dbd04958936b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign6e2aaddd1851035a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign6e3a822509183c07 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign6edca7f7acdf1e0d =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign747a3ed397a4da32 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign75d026f7b5a3acbe =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign7612d4eaefa6a029 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign7691ae5edf3b7ef9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign788923dca437d1aa =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign78bd82279f87b488 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign7c03bd19f8b18040 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign7c3bb6c83af67406 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign7d3854c9a86980aa =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign7e593e799dbfa1c1 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8025ba0f6f720c1c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign806c0db2d55b6bbe =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign81a121f9643c2131 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8251bec5c887beff =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign82b55b0a55a2d346 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8563229cdbe75a0e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8913dea368248d37 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8a036a9d595ffe3d =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8b03c79e70e9855b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8f50cf36ce7992bb =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8fcd3b0f29305cdd =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign8fd8611957d9cf4c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign90ab75c61f9a3406 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign90d1ba6fec8cbcc0 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9296cc5c83ece35e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign969b2bd5b7f37827 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign96d25ee40e92bb57 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9773c64b2b05c2e5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign97fc5f4813384ded =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9a549402899244d2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9c2477b30db25782 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9d48021694b02ba8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9de791b6ee35a444 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9e9b295d6863b23f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9ea14ba27a1f5ce5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsign9f792840ea6c2828 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigna0a4d8870c2c39cf =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigna0fe33646611630a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigna2866b11a8613daf =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigna3a959d597192489 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigna4ebf49ec1909d08 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigna4ffe81b42288f18 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignaaf5fcef26d29ee8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignab8d63e59ffab917 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignac641bd754654ef8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignace7fe0116b4d8ed =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignacfb8940146bc7ea =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignb41b04ebe4c74042 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignb41bf893fd55a073 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignb61c5d6b2fc1f1bb =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignb63c0a4cc79ba98e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignb9c140a949c2b583 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbb1a1bb70b25517c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbc9b87c1bf5bc9f6 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbcbfcd72379b34e7 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbce286cdf7f7fcf4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbdf8d8980701c637 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbee6f9ca73118a2b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbfa6b138eb7eca98 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbfd5a29d7c71846c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignbfe4da859d9ad6d9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc02164a9c06ceaeb =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc038495cf5a7503d =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc059e32ea9ce184a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc13dc799aea1098e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc174342a0d14bc6a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc1dc98e446c1a4e8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc2da9077cddf5498 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc3383133f6a544de =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc344ff8f99ad2e2d =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc39be2205f1ce78f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc427a66c5fdae33c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc43c83d7918afc94 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc5097188d492a2d1 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc69766aca9a81cd2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc777b3faa3f29dff =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignc9336e7fd2a83a4c =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigncd392ce9f8e2b90e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignce7e38dc0f8755ce =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigncfb6be4925cfd7f9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd3d71e8ab29c6d98 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd482b0d05e97e5e4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd54a5c959f0c49c5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd67c5e68eb34e4e9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd719714ca481bd2f =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd84bc68af13ed361 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignd8c6078c8f7195e2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigndad433807732c2ac =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigndb0da970bc8ca01b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigndb618a2c725450aa =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigndb73e7f7f8267223 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne0f41244323e12ac =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne11a3192ef3ea608 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne130f321368ac987 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne2c9e1b9878d7946 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne2d02c0bf42bde20 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne328c4a9c9a860ec =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne5110b867433ac35 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne55351c4e1acc0c8 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne60022687204b686 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigne8ef4113689ab1f4 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigneade1f9691bb9647 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigneaf0ea66d949c5f2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignedbe60138a239a8e =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignee957e9e208a1b30 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsigneefc287e106cda77 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignef82ced0e9e2b742 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignefd3bdaf08af8813 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf070b8c4c7db7b21 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf0adf1c2649933ec =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf2885f2b9e10e801 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf77eb866458f27f2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf88787ddfb24a157 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf8e26f65ca03fcaa =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignf8f81fc883b0d3dc =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignfd6e746df86614d5 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignfd90b2e7042f0e9b =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignfdfd128623b7b925 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignfe5838d5f992ed9a =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignfe613b74ac53bbd2 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignfec3dff7d89da3ee =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignff4430c6275cc025 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignff75a85d3b495078 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Tempzxpsignff8fe55bcbdd0fe9 =>.SUP.Temporary MOVED folder: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\File System\001 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\File System\002 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\File System\003 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\Guilherme\AppData\Local\Google\Chrome\User Data\Default\File System\004 =>.SUP.Temporary.Chrome MOVED folder: C:\Program Files (x86)\QuickTime =>Riskware.QuickTime MOVED folder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime MOVED folder: C:\Windows\Installer\MSI1187.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI12C6.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1408.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1489.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI157F.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1632.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI187F.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI18FC.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1BAC.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1D60.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1D7D.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1E2D.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1E3B.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI1F15.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2050.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI209.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2389.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2507.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI26FF.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI280C.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI29D8.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI29ED.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2A6E.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2CFA.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2D1D.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2E72.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI2FE9.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI30F5.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3161.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3196.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI32CE.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3453.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI34A9.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI364F.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI36A1.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3954.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3C6C.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3CDD.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI3DE.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI40B0.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4102.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4142.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI42B9.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI42B3.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI42D7.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI443.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4459.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4549.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI45A6.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4831.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4C12.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4DB3.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI4FF5.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI51F1.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI54.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI559B.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI55EF.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5730.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5766.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5984.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5B17.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5C95.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5E44.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI5EE7.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI622.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI6289.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI6290.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI629D.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI6723.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI6D5B.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI7089.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI7BA2.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI7D28.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI7E6F.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI81F9.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI83DE.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI85E6.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI85F1.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI8F45.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI928D.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI94E1.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI96D5.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI98BA.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI9AAA.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI9AAE.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI9BFB.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI9CC1.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI9DF6.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSI9F04.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIA009.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIA0D.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIA1D2.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIA684.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIA898.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIAA9C.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIAB9.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIAD7B.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIB047.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIB13.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIB443.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIB8EF.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIBBE3.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIC047.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIC3D8.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIC41F.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIC651.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIC920.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSICE65.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSID02B.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSID472.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSID6F5.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSID9AD.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIDCF0.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIE02A.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIE3C.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIE5A.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIE893.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIEBB0.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIF967.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIFB8A.tmp- =>.SUP.Empty MOVED folder: C:\Windows\Installer\MSIFED5.tmp- =>.SUP.Empty MOVED folder: C:\Users\Guilherme\AppData\LocalLow\EmieSiteList =>.SUP.Empty MOVED folder: C:\Users\Guilherme\AppData\LocalLow\EmieUserList =>.SUP.Empty ---\\ Registry ( Key, Value, Data) (12) DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ECE1B55A-EB37-4FB9-8062-39709F36FA65}\\DhcpNameServer [Bad : 201.21.192.119 201.21.192.123] =>Hijacker.Browser DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer [Bad : 201.21.192.119 201.21.192.123] =>Hijacker.Browser DELETED key*: [X64] HKLM\SOFTWARE\735f01a9-19ce-5f35-9838-248008e6220b [] =>Adware.CrossRider DELETED key*: HKEY_USERS\S-1-5-21-2319398334-3939529845-2917517441-1000\SOFTWARE\Popcorn Time [] =>.SUP.PopcornTime DELETED key*: HKEY_USERS\S-1-5-21-2319398334-3939529845-2917517441-1000\SOFTWARE\PopcornTime [] =>.SUP.PopcornTime DELETED key*: HKEY_USERS\S-1-5-21-2319398334-3939529845-2917517441-1000\SOFTWARE\Visicom Media [] =>.SUP.VisicomMedia DELETED key**: HKCU\Software\Popcorn Time [] =>.SUP.PopcornTime DELETED key**: HKCU\Software\PopcornTime [] =>.SUP.PopcornTime DELETED key**: HKCU\Software\Visicom Media [] =>.SUP.VisicomMedia DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn-Time [Popcorn Time] =>.SUP.PopcornTime DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Visicom Media [] =>.SUP.VisicomMedia DELETED key*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ManyCam [Visicom Media Inc.] =>.SUP.VisicomMedia ---\\ Summary of the elements found (12) https://nicolascoolman.eu/2017/04/06/superfluous-yahoosearchprovided/ =>.SUP.YahooSearchProvided https://nicolascoolman.eu/2017/03/18/superfluous-visicommedia/ =>.SUP.VisicomMedia https://nicolascoolman.eu/2017/02/26/superfluous-popcorntime/ =>.SUP.PopcornTime https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Empty https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.MSIInstaller https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Empty https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Other https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome https://nicolascoolman.eu/2017/01/15/riskware-quicktime/ =>Riskware.QuickTime https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/ =>Hijacker.Browser https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider ---\\ Other deletions. (11) ~ Registry Keys Tracing deleted (11) ~ Remove the old reports ZHPCleaner. (0) ---\\ Result of repair ~ Repair carried out successfully ~ Browser not found (Opera Software) ~ The system has been restarted. ---\\ Statistics ~ Items scanned : 1299 ~ Items found : 0 ~ Items cancelled : 0 ~ Items options : 12/12 ~ Space saving (bytes) : 16384 ~ End of clean in 00h02mn59s ---\\ Reports (2) ZHPCleaner--07052019-04_14_36.txt ZHPCleaner-[R]-07052019-04_19_09.txt
  15. Seguinte, meu caros. A um mês atrás, percebi que alguém estava realizando compras online com meu cartão de crédito. Pensei, deve ter sido clonado em algum posto de gasolina ou algo do tipo (mesmo usando-o para compras online). Fiz todos os procedimentos e já estou com o cartão novo a duas semanas. Desde então, realizei com ele apenas duas compras. Uma online, e outra para pagar tele-entrega (pagamento efetuado na hora com a maquina do restaurante). Ambas as compras ocorreram semana passada (sexta e domingo, respectivamente) Hoje, para minha surpresa, recebo uma mensagem do Santader pelo celular avisando que uma compra minha foi realizada as 14:30.... sendo que eu nem estava perto do computador muito menos havia utlizado meu cartao de credito hoje. Conclusão: ou eu tenho uma má sorte tremenada e o motoboy clonou meu cartao NOVO, ou meu computador está infectado com alguma coisa. Agredeço qualquer ajuda. Segue em anexo o log do ZA-Scan. ZA-Scan.txt

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...

GRÁTIS: minicurso “Como ganhar dinheiro montando computadores”

Gabriel TorresGabriel Torres, fundador e editor executivo do Clube do Hardware, acaba de lançar um minicurso totalmente gratuito: "Como ganhar dinheiro montando computadores".

Você aprenderá sobre o quanto pode ganhar, como cobrar, como lidar com a concorrência, como se tornar um profissional altamente qualificado e muito mais!

Inscreva-se agora!