Ir ao conteúdo
  • Cadastre-se

vitorhcs

Membros Plenos
  • Total de itens

    30
  • Registro em

  • Última visita

  • Qualificações

    N/D

Reputação

0

Informações gerais

  • Cidade e Estado
    Ponta Grossa/PR
  • Sexo
    Masculino
  1. Ok, @diego_moicano . Muito obrigado pela ajuda.
  2. Olá, segue o log: SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17] WebSite: www.safezone.cc DateLog: 12.02.2019 14:05:43 Path starting: C:\Users\vitor correia\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe Log directory: C:\SecurityCheck\ IsAdmin: True User: vitor correia VersionXML: 5.93is-10.02.2019 ___________________________________________________________________________ Windows 10(6.3.17134) (x64) CoreSingleLanguage Release: 1803 Lang: Portuguese(0416) Installation date OS: 18.06.2018 21:00:43 LicenseStatus: Windows(R), CoreSingleLanguage edition The machine is permanently activated. Boot Mode: Normal Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe SystemDrive: FS: [NTFS] Capacity: [930.9 Gb] Used: [85.8 Gb] Free: [845.1 Gb] ------------------------------- [ Windows ] ------------------------------- Internet Explorer 11.523.17134.0 User Account Control enabled (Level 3) Windows Update (wuauserv) - The service is running Central de Segurança (wscsvc) - The service is running Registro remoto (RemoteRegistry) - The service has stopped Descoberta SSDP (SSDPSRV) - The service is running Serviços de Área de Trabalho Remota (TermService) - The service has stopped Windows Remote Management (WS-Management) (WinRM) - The service has stopped ---------------------------- [ Antivirus_WMI ] ---------------------------- Avast Antivirus (enabled and up to date) Windows Defender (disabled and up to date) --------------------------- [ FirewallWindows ] --------------------------- Windows Defender Firewall (mpssvc) - The service is running --------------------------- [ AntiSpyware_WMI ] --------------------------- Windows Defender (disabled and up to date) Avast Antivirus (enabled and up to date) ---------------------- [ AntiVirusFirewallInstall ] ----------------------- Malwarebytes versão 3.7.1.2839 v.3.7.1.2839 Avast Free Antivirus v.19.1.2360 Warning! Download Update --------------------------- [ OtherUtilities ] ---------------------------- WinRAR 5.50 (64-bit) v.5.50.0 Warning! Download Update ---------------------------- [ ProxyAndVPNs ] ----------------------------- Avast SecureLine v.5.1.419 -------------------------------- [ Java ] --------------------------------- Java 8 Update 201 v.8.0.2010.9 --------------------------- [ AdobeProduction ] --------------------------- Adobe Acrobat Reader DC - Português v.19.010.20069 ------------------------------- [ Browser ] ------------------------------- Google Chrome v.71.0.3578.98 Warning! Download Update Mozilla Firefox 59.0.1 (x86 en-US) v.59.0.1 Warning! Download Update ------------------ [ AntivirusFirewallProcessServices ] ------------------- aswbIDSAgent (aswbIDSAgent) - The service is running C:\Program Files\AVAST Software\Avast\aswidsagent.exe v.19.1.4.1587 C:\Program Files\AVAST Software\Avast\AvastUI.exe v.19.1.4142.454 AvastWscReporter (AvastWscReporter) - The service has stopped aswbIDSAgent (aswbIDSAgent) - The service is running C:\Program Files\AVAST Software\Avast\AvastSvc.exe v.19.1.4142.0 Avast SecureLine (SecureLine) - The service is running C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe v.5.1.419.0 AVG Service (avgsvc) - The service has stopped AVG Service (avgsvc) - The service has stopped C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe v.3.1.0.1731 Malwarebytes Service (MBAMService) - The service is running C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe v.3.2.0.765 McAfee Validation Trust Protection Service (mfevtp) - The service is running C:\Windows\System32\mfevtps.exe C:\Program Files\Windows Defender\MSASCuiL.exe v.4.13.17134.1 Serviço Windows Defender Antivirus (WinDefend) - The service has stopped Serviço de Inspeção de Rede do Windows Defender Antivirus (WdNisSvc) - The service has stopped ---------------------------- [ UnwantedApps ] ----------------------------- WildTangent Games v.1.0.4.0 Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering. Update Installer for WildTangent Games App << Hidden Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering. WildTangent Games App v.4.0.11.16 << Hidden Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering. ----------------------------- [ End of Log ] ------------------------------
  3. olá @diego_moicano , melhorou bastante, obrigado por me ajudar.
  4. Olá @diego_moicano 08/02/2019 15:44:27 Files scanned: 321558 Infected files: 4 Cleaned threats: 4 Total scan time 03:24:38 Scan status: Finished C:\Users\vitor correia\AppData\Local\Everest Poker\internalSetupPokerUninstall1548169056050_na_pt.exe a variant of Win32/PlayTech.A potentially unwanted application cleaned by deleting C:\Users\vitor correia\Downloads\ccsetup540.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application cleaned by deleting C:\Users\vitor correia\Downloads\cc_setup536.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application cleaned by deleting C:\Users\vitor correia\Downloads\TitanPSetup.exe Win32/PlayTech.A potentially unwanted application,a variant of Win32/PlayTech.A potentially unwanted application cleaned by deleting
  5. Olá, @diego_moicano Malwarebytes www.malwarebytes.com -Detalhes de registro- Data da análise: 07/02/2019 Hora da análise: 17:04 Arquivo de registro: 42cb5e72-2b0b-11e9-a1be-548ca05ae844.json -Informação do software- Versão: 3.7.1.2839 Versão de componentes: 1.0.538 Versão do pacote de definições: 1.0.9158 Licença: Gratuita -Informação do sistema- Sistema operacional: Windows 10 (Build 17134.523) CPU: x64 Sistema de arquivos: NTFS Usuário: LAPTOP-2HCNJKH4\vitor correia -Resumo da análise- Tipo de análise: Análise de Ameaças Análise Iniciada Por: Manual Resultado: Concluído Objetos verificados: 312230 Ameaças detectadas: 6 Ameaças em quarentena: 6 Tempo decorrido: 24 min, 0 seg -Opções da análise- Memória: Habilitado Inicialização: Habilitado Sistema de arquivos: Habilitado Arquivos compactados: Habilitado Rootkits: Habilitado Heurística: Habilitado PUP: Detectar PUM: Detectar -Detalhes da análise- Processo: 0 (Nenhum item malicioso detectado) Módulo: 0 (Nenhum item malicioso detectado) Chave de registro: 0 (Nenhum item malicioso detectado) Valor de registro: 0 (Nenhum item malicioso detectado) Dados de registro: 0 (Nenhum item malicioso detectado) Fluxo de dados: 0 (Nenhum item malicioso detectado) Pasta: 0 (Nenhum item malicioso detectado) Arquivo: 6 Generic.Malware/Suspicious, C:\USERS\VITOR CORREIA\DESKTOP\ZA-SCAN.EXE, Quarentena, [0], [392686],1.0.9158 Generic.Malware/Suspicious, C:\USERS\VITOR CORREIA\DESKTOP\ZOEK.EXE, Quarentena, [0], [392686],1.0.9158 Generic.Malware/Suspicious, C:\USERS\VITOR CORREIA\DESKTOP\ZOEK.ZIP, Quarentena, [0], [392686],1.0.9158 Adware.InstallCore, C:\USERS\VITOR CORREIA\DOWNLOADS\BAIXAKI_KINDLE FOR PC_1894527396.EXE, Quarentena, [423], [615405],1.0.9158 PUP.Optional.Linkury, C:\USERS\VITOR CORREIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\SyncData.sqlite3, Substituído, [252], [455237],1.0.9158 PUP.Optional.Linkury, C:\USERS\VITOR CORREIA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Substituído, [252], [455237],1.0.9158 Setor físico: 0 (Nenhum item malicioso detectado) Instrumentação do Windows (WMI): 0 (Nenhum item malicioso detectado) (end)
  6. Olá @diego_moicano . Segue log: Resultado da Correção pela Farbar Recovery Scan Tool (x64) Versão: 30.01.2019 Executado por vitor correia (01-02-2019 16:57:39) Run:1 Executando a partir de C:\Users\vitor correia\Desktop Perfis Carregados: vitor correia (Perfis Disponíveis: vitor correia) Modo da Inicialização: Normal ============================================== fixlist Conteúdo: ***************** CreateRestorePoint: CloseProcesses: 2019-01-28 10:16 - 2019-01-28 10:16 - 001974624 _____ (Oracle Corporation) C:\Users\vitor correia\AppData\Local\Temp\jre-8u201-windows-au.exe 2019-01-22 18:42 - 2009-11-10 20:09 - 000157184 _____ () C:\Users\vitor correia\AppData\Local\Temp\virustotal.exe CustomCLSID: HKU\S-1-5-21-1583823125-3370265694-1763537218-1001_Classes\CLSID\{c31ca596-532d-a36f-e223-ce16b9ac70a56}\InprocServer32 -> 0x019D7D30E9A5D40176E4AE7FF7AFD401020000000300000000000000 => Nenhum Arquivo ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => -> Nenhum Arquivo ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => -> Nenhum Arquivo FirewallRules: [{C8A4C85E-99D6-4A41-A860-6293B31303D1}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe Nenhum Arquivo FirewallRules: [{7FE36486-B102-4708-A6D8-83D9D829107C}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe Nenhum Arquivo CMD: ipconfig /flushdns EmptyTemp: ***************** Ponto de Restauração criado com sucesso. Processos fechados com sucesso. C:\Users\vitor correia\AppData\Local\Temp\jre-8u201-windows-au.exe => movido com sucesso "C:\Users\vitor correia\AppData\Local\Temp\virustotal.exe" => não encontrado (a) HKU\S-1-5-21-1583823125-3370265694-1763537218-1001_Classes\CLSID\{c31ca596-532d-a36f-e223-ce16b9ac70a56} => removido (a) com sucesso. HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ ACloudSynced => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => não encontrado (a) HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ ACloudSyncing => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{C1E1456F-C2D8-4C96-870D-35F1E13941EE} => não encontrado (a) HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ ACloudToBeSynced => removido (a) com sucesso. HKLM\Software\Classes\CLSID\{307523FA-DDC0-4068-983F-2A6B34627744} => não encontrado (a) "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8A4C85E-99D6-4A41-A860-6293B31303D1}" => removido (a) com sucesso. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7FE36486-B102-4708-A6D8-83D9D829107C}" => removido (a) com sucesso. ========= ipconfig /flushdns ========= Configura‡Æo de IP do Windows Libera‡Æo do Cache do DNS Resolver bem-sucedida. ========= Fim de CMD: ========= =========== EmptyTemp: ========== BITS transfer queue => 10510336 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 301906765 B Java, Flash, Steam htmlcache => 0 B Windows/system/drivers => 21935 B Edge => 536745 B Chrome => 487535397 B Firefox => 54254938 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 56782 B LocalService => 0 B NetworkService => 11370 B NetworkService => 0 B vitor correia => 118436434 B RecycleBin => 10287088 B EmptyTemp: => 938 MB de dados temporários Removidos. ================================ O sistema precisou ser reiniciado. ==== Fim de Fixlog 17:00:48 ====
  7. Olá, @diego_moicano . Seguem os logs: Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 27.01.2019 Executado por vitor correia (administrador) em LAPTOP-2HCNJKH4 (29-01-2019 14:38:57) Executando a partir de C:\Users\vitor correia\Desktop Perfis Carregados: vitor correia (Perfis Disponíveis: vitor correia) Platform: Windows 10 Home Single Language Versão 1803 17134.523 (X64) Idioma: Português (Brasil) Navegador padrão: Chrome Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxCUIService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_c341b9f860fc726f\IntelCpHDCPSvc.exe (SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe (ICEpower) C:\Windows\System32\ICEsoundService64.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\pg_ctl.exe (AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_c341b9f860fc726f\IntelCpHeciSvc.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\11\bin\postgres.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxEM.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeApp.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIRWE.EXE (Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (AVAST Software) C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe (The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxOutlook.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe () C:\Program Files\WindowsApps\Microsoft.BingNews_4.28.3242.0_x64__8wekyb3d8bbwe\Microsoft.Msn.News.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (GSNovaes - Sistemas) C:\Program Files (x86)\COLOGA\Cologa.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (The OpenVPN Project) C:\Program Files\AVAST Software\SecureLine\OpenVPN\openvpn.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor) HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-07-03] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-05] (AVAST Software) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1092304 2016-03-14] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-05] (AVAST Software) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4090176 2019-01-22] (Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation) HKU\S-1-5-21-1583823125-3370265694-1763537218-1001\...\Run: [EPLTarget\P0000000000000003] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRWE.EXE [417776 2014-11-13] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-1583823125-3370265694-1763537218-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd) HKU\S-1-5-21-1583823125-3370265694-1763537218-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2136416 2018-11-20] (Sony) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-13] (Google Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine.lnk [2019-01-18] ShortcutTarget: Avast SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software) ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\..\Interfaces\{2a535065-1571-4571-9495-64d1318ad0ed}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{2a535065-1571-4571-9495-64d1318ad0ed}: [DhcpNameServer] 100.127.253.11 100.127.253.21 Tcpip\..\Interfaces\{8a0dc9d2-4ee8-4df9-bb76-1b70565b3346}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{d922fd3e-94aa-437a-adb3-c3a6d9c00cad}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f494104a-48eb-49c5-8f64-a7e625442735}: [NameServer] 100.120.208.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1583823125-3370265694-1763537218-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKU\S-1-5-21-1583823125-3370265694-1763537218-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON CORPORATION) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-01-28] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-28] (Oracle Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2014-11-14] (SEIKO EPSON CORPORATION) FireFox: ======== FF ProfilePath: C:\Users\vitor correia\AppData\Roaming\Mozilla\Firefox\Profiles\gEe0qQH3.default [2019-01-29] FF Homepage: Mozilla\Firefox\Profiles\gEe0qQH3.default -> hxxps://www.google.com/?bcutc=sp-006 FF NewTab: Mozilla\Firefox\Profiles\gEe0qQH3.default -> about:newtab FF Extension: (Avira Browser Safety) - C:\Users\vitor correia\AppData\Roaming\Mozilla\Firefox\Profiles\gEe0qQH3.default\Extensions\abs@avira.com [2019-01-22] FF Extension: (Mozilla Partner Defaults) - C:\Users\vitor correia\AppData\Roaming\Mozilla\Firefox\Profiles\gEe0qQH3.default\Extensions\partnerdefaults@mozilla.com [2017-03-15] [Legacy] FF Extension: (Avast Online Security) - C:\Users\vitor correia\AppData\Roaming\Mozilla\Firefox\Profiles\gEe0qQH3.default\Extensions\wrc@avast.com.xpi [2019-01-26] FF Extension: (Acer Locale Fix) - C:\Users\vitor correia\AppData\Roaming\Mozilla\Firefox\Profiles\gEe0qQH3.default\features\{c8b28e62-3dbc-427b-a11d-e720dbb210d0}\acer-locale-fix@mozilla.org.xpi [2019-01-26] [Legacy] FF SearchPlugin: C:\Users\vitor correia\AppData\Roaming\Mozilla\Firefox\Profiles\gEe0qQH3.default\searchplugins\google-avast.xml [2018-03-17] FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2016-04-02] [Legacy] FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2016-04-02] [Legacy] FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-28] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-28] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-17] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-17] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-14] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\autoconf_warsaw.js [2018-08-16] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com.br/ CHR StartupUrls: Default -> "hxxp://www.google.com.br/","hxxps://www.google.com.br/" CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default CHR DefaultSearchKeyword: Default -> Yahoo CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10 CHR Profile: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default [2019-01-29] CHR Extension: (Apresentações) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12] CHR Extension: (Documentos) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12] CHR Extension: (Google Drive) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-28] CHR Extension: (Toggle JavaScript) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cidlcjdalomndpeagkjpnefhljffbnlo [2018-11-02] CHR Extension: (Avast Passwords) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2019-01-11] CHR Extension: (Planilhas) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12] CHR Extension: (Documentos Google off-line) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-20] CHR Extension: (AdBlock - bloqueador de anúncios grátis) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-01-29] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Amazon Assistant for Chrome) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2019-01-26] CHR Extension: (Gmail) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-28] CHR Extension: (Chrome Media Router) - C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - hxxps://clients2.google.com/service/update2/crx ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7834368 2019-01-05] (AVAST Software) S4 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [323152 2015-11-19] (Windows (R) Win 7 DDK provider) [Arquivo não assinado] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357816 2019-01-05] (AVAST Software) S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-01-05] (AVAST Software) S4 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-07-03] (AVG Technologies CZ, s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-16] () S4 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-01-09] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-01-09] (Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-01-22] (Dropbox, Inc.) R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [681400 2018-11-29] (SEIKO EPSON CORPORATION) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2017-03-10] (Seiko Epson Corporation) S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent) R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [799928 2018-10-18] (ICEpower) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes) R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [343544 2018-03-07] (McAfee, Inc.) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-05-03] () S4 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [440224 2016-07-29] (Acer Incorporated) S4 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [481696 2016-07-29] (Acer Incorporated) R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [5014728 2019-01-10] (AVAST Software) S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] () S4 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.) S4 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [291232 2016-02-01] (acer) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-17] (Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-17] (Microsoft Corporation) R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2198016 2018-11-20] (Sony) [Arquivo não assinado] R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-05-03] (Intel® Corporation) R2 postgresql-x64-11; "C:\Program Files\PostgreSQL\11\bin\pg_ctl.exe" runservice -N "postgresql-x64-11" -D "C:\Program Files\PostgreSQL\11\data" -w ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-05] (AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-05] (AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [223056 2019-01-14] (AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-05] (AVAST Software) R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-05] (AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-05] (AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-05] (AVAST Software) R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239808 2019-01-05] (AVAST Software) S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-05] (AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-05] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166792 2019-01-18] (AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-05] (AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-05] (AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-05] (AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-05] (AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-05] (AVAST Software) R3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (The OpenVPN Project) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-05] (AVAST Software) R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4317112 2016-05-11] (Qualcomm Atheros Communications, Inc.) S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3097560 2017-12-16] () R3 BthMtpEnum; C:\WINDOWS\system32\DRIVERS\BthMtpEnum.sys [68096 2018-04-11] (Microsoft Corporation) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-16] (Acer Incorporated) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [261032 2019-01-28] (Malwarebytes) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [917008 2018-03-07] (McAfee, Inc.) S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [124432 2018-03-07] (McAfee, Inc.) S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2018-04-11] (MediaTek Inc.) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-16] (Acer Incorporated) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2015-12-22] (Realtek ) S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [413912 2016-02-15] (Realsil Semiconductor Corporation) S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] () R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [57448 2015-10-26] (Synaptics Incorporated) S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-08-17] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-08-17] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-17] (Microsoft Corporation) R1 wsddntf; C:\WINDOWS\system32\DRIVERS\wsddntf.sys [56872 2018-04-25] (GAS Tecnologia) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-07-06] (BigNox Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Três meses (criados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-01-29 14:38 - 2019-01-29 14:40 - 000024200 _____ C:\Users\vitor correia\Desktop\FRST.txt 2019-01-29 14:38 - 2019-01-29 14:38 - 000000000 ____D C:\FRST 2019-01-29 14:37 - 2019-01-29 14:37 - 002428416 _____ (Farbar) C:\Users\vitor correia\Desktop\FRST64.exe 2019-01-28 16:57 - 2019-01-28 16:57 - 000001256 _____ C:\Users\vitor correia\Desktop\AIDA64 Extreme.lnk 2019-01-28 16:57 - 2019-01-28 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire 2019-01-28 16:57 - 2019-01-28 16:57 - 000000000 ____D C:\Program Files (x86)\FinalWire 2019-01-28 16:54 - 2019-01-28 16:55 - 052904728 _____ (FinalWire Ltd. ) C:\Users\vitor correia\Downloads\aida64extreme599.exe 2019-01-28 15:12 - 2019-01-28 15:12 - 000261032 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-01-26 13:15 - 2019-01-26 13:20 - 000032208 _____ C:\Users\vitor correia\Desktop\ZHPCleaner.txt 2019-01-26 13:03 - 2019-01-26 13:04 - 000000887 _____ C:\Users\vitor correia\Desktop\ZHPCleaner.lnk 2019-01-26 13:00 - 2019-01-26 13:00 - 003304320 _____ C:\Users\vitor correia\Desktop\ZHPCleaner.exe 2019-01-26 12:42 - 2019-01-26 12:42 - 000000000 ___HD C:\$AV_ASW 2019-01-26 12:40 - 2019-01-26 12:42 - 000000000 ____D C:\AdwCleaner 2019-01-23 21:32 - 2019-01-23 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-01-22 18:49 - 2019-01-22 18:49 - 000027583 _____ C:\ZA-Scan.txt 2019-01-22 18:42 - 2019-01-22 18:42 - 000000000 ____D C:\zoek_backup 2019-01-22 18:30 - 2018-04-19 23:18 - 002041445 _____ C:\Users\vitor correia\Desktop\Z-Analyse.exe 2019-01-22 18:30 - 2018-04-18 01:39 - 002038755 _____ C:\Users\vitor correia\Desktop\zoek.exe 2019-01-22 18:30 - 2018-04-18 01:39 - 002038755 _____ C:\Users\vitor correia\Desktop\ZA-Scan.exe 2019-01-22 14:44 - 2019-01-22 14:45 - 006102389 _____ C:\Users\vitor correia\Desktop\zoek.zip 2019-01-22 13:01 - 2019-01-22 13:01 - 000000000 ____D C:\Users\vitor correia\AppData\Local\PokerClient 2019-01-22 12:57 - 2019-01-22 12:57 - 000001874 _____ C:\Users\vitor correia\AppData\Roaming\Microsoft\Windows\Start Menu\Everest Poker.lnk 2019-01-22 12:57 - 2019-01-22 12:57 - 000001872 _____ C:\Users\vitor correia\Desktop\Everest Poker.lnk 2019-01-22 12:56 - 2019-01-22 12:58 - 000000000 ____D C:\Users\vitor correia\AppData\Local\Everest Poker 2019-01-22 11:14 - 2019-01-22 11:14 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2019-01-22 11:14 - 2019-01-22 11:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2019-01-22 11:14 - 2019-01-22 11:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2019-01-22 11:14 - 2019-01-22 11:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2019-01-22 10:43 - 2019-01-22 10:43 - 000914600 _____ (Titan Poker) C:\Users\vitor correia\Downloads\TitanPSetup.exe 2019-01-19 22:24 - 2019-01-19 22:24 - 000000000 ____D C:\Users\vitor correia\Desktop\livro 2019-01-19 22:21 - 2019-01-19 22:54 - 000000000 ____D C:\Users\vitor correia\AppData\Local\calibre-cache 2019-01-19 22:20 - 2019-01-26 12:07 - 000000000 ____D C:\Users\vitor correia\Biblioteca do calibre 2019-01-19 22:19 - 2019-01-19 22:58 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\calibre 2019-01-19 22:17 - 2019-01-19 22:17 - 000001033 _____ C:\Users\Public\Desktop\calibre - E-book management.lnk 2019-01-19 22:17 - 2019-01-19 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management 2019-01-19 22:17 - 2019-01-19 22:17 - 000000000 ____D C:\Program Files (x86)\Calibre2 2019-01-19 22:10 - 2019-01-26 12:10 - 000000000 ____D C:\Users\vitor correia\Documents\My Kindle Content 2019-01-19 22:08 - 2019-01-19 22:08 - 000002059 _____ C:\Users\vitor correia\Desktop\Kindle.lnk 2019-01-19 22:08 - 2019-01-19 22:08 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon 2019-01-19 22:07 - 2019-01-19 22:08 - 000000000 ____D C:\Program Files (x86)\Amazon 2019-01-19 22:03 - 2019-01-19 22:05 - 063594496 _____ C:\Users\vitor correia\Desktop\calibre-3.38.1.msi 2019-01-19 22:00 - 2019-01-19 22:03 - 066693792 _____ (Amazon.com) C:\Users\vitor correia\Desktop\KindleForPC-installer-1.17.44183.exe 2019-01-19 15:10 - 2019-01-19 15:11 - 000000000 ____D C:\Users\vitor correia\Desktop\drive intel 2019-01-19 14:55 - 2019-01-19 14:56 - 000000000 ____D C:\WINDOWS\LastGood 2019-01-19 14:27 - 2019-01-19 14:43 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2019-01-19 13:34 - 2019-01-19 22:09 - 000000000 ____D C:\Users\vitor correia\AppData\Local\Amazon 2019-01-19 13:32 - 2019-01-19 13:32 - 056284400 _____ (Amazon.com) C:\Users\vitor correia\Downloads\Baixaki_Kindle for PC.exe 2019-01-19 13:30 - 2019-01-19 13:30 - 002096840 _____ ( ) C:\Users\vitor correia\Downloads\Baixaki_Kindle for PC_1894527396.exe 2019-01-19 00:09 - 2019-01-19 00:09 - 003138179 _____ C:\Users\vitor correia\Downloads\MonkerViewer.exe 2019-01-18 11:47 - 2019-01-18 11:47 - 000004004 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine Update 2019-01-18 11:46 - 2019-01-18 11:46 - 000001017 _____ C:\Users\Public\Desktop\Avast SecureLine.lnk 2019-01-18 11:46 - 2019-01-18 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2019-01-18 11:46 - 2018-09-05 21:01 - 000053904 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\aswTap.sys 2019-01-16 22:13 - 2019-01-16 22:13 - 000000000 ____D C:\WINDOWS\system32\DAX3 2019-01-16 19:26 - 2019-01-16 19:26 - 000254944 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2019-01-16 19:26 - 2019-01-16 19:26 - 000254944 _____ C:\WINDOWS\system32\vulkaninfo.exe 2019-01-16 19:26 - 2019-01-16 19:26 - 000229344 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2019-01-16 19:26 - 2019-01-16 19:26 - 000229344 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2019-01-16 19:22 - 2019-01-16 19:22 - 021326856 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 020183344 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 019019600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 011671048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 003168184 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h265ve_64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 003160872 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_vp9ve_64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 003147272 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h264ve_64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002991624 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_mjpgvd_64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002951376 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_encrypt_64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002575816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h265ve_32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002570624 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_vp9ve_32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002562656 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h264ve_32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002433544 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_mjpgvd_32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 002410120 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_encrypt_32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 001014576 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 001014576 _____ C:\WINDOWS\system32\vulkan-1.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000878384 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000878384 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000204664 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000176512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000161312 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000147464 _____ C:\WINDOWS\SysWOW64\libEGL.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000144904 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000144904 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000125960 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000119816 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000119816 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll 2019-01-16 19:22 - 2019-01-16 19:22 - 000071044 _____ C:\WINDOWS\SysWOW64\vp9e_32.vp 2019-01-16 19:22 - 2019-01-16 19:22 - 000065213 _____ C:\WINDOWS\SysWOW64\mj_32.vp 2019-01-16 19:22 - 2019-01-16 19:22 - 000013860 _____ C:\WINDOWS\system32\vp9e_64.vp 2019-01-16 19:22 - 2019-01-16 19:22 - 000013181 _____ C:\WINDOWS\system32\mj_64.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 001376256 _____ C:\WINDOWS\system32\c_64.cpa 2019-01-16 19:21 - 2019-01-16 19:21 - 001361159 _____ C:\WINDOWS\SysWOW64\c_32.cpa 2019-01-16 19:21 - 2019-01-16 19:21 - 000071481 _____ C:\WINDOWS\SysWOW64\h265e_32.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000069877 _____ C:\WINDOWS\SysWOW64\he_32.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000057143 _____ C:\WINDOWS\SysWOW64\dev_32.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000056359 _____ C:\WINDOWS\system32\dev_64.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000014009 _____ C:\WINDOWS\system32\h265e_64.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000013425 _____ C:\WINDOWS\system32\he_64.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000001125 _____ C:\WINDOWS\SysWOW64\cpa_32.vp 2019-01-16 19:21 - 2019-01-16 19:21 - 000001125 _____ C:\WINDOWS\system32\cpa_64.vp 2019-01-14 13:22 - 2019-01-14 13:22 - 000223056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2019-01-12 13:36 - 2019-01-12 13:36 - 000353900 _____ C:\Users\vitor correia\Desktop\Playing The Player - Ed Miller.mobi 2019-01-12 13:33 - 2019-01-12 13:33 - 000004325 _____ C:\Users\vitor correia\Downloads\[limetorrents.info]Ed.Miller.-.Playing.The.Player.Moving.Beyond.ABC.Poker.[pokerino2015].torrent 2019-01-12 13:33 - 2019-01-12 13:33 - 000000000 ___RD C:\Users\vitor correia\Downloads\BooStudioLLC.TorrexLite-TorrentDownloader_b6e429xa66pga!App 2019-01-12 13:27 - 2019-01-12 13:27 - 000004325 _____ C:\Users\vitor correia\Downloads\[limetorrents.info]Cardrunners.2015.Tourney.Theory.by.Matthew.Janda.[pokerino2015].torrent 2019-01-11 19:17 - 2019-01-11 19:17 - 001576530 _____ C:\Users\vitor correia\Downloads\st.coqsS2gPDHOJ.mp4 2019-01-10 08:05 - 2019-01-10 08:05 - 000020832 _____ C:\Users\vitor correia\Downloads\Double-Studying-Your-Hands-spreadsheets.xlsx 2019-01-09 16:05 - 2019-01-01 05:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-01-09 16:05 - 2019-01-01 05:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-01-09 16:05 - 2019-01-01 04:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-01-09 16:05 - 2019-01-01 04:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-01-09 16:05 - 2019-01-01 04:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-01-09 16:05 - 2019-01-01 04:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-01-09 16:05 - 2019-01-01 04:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-01-09 16:05 - 2019-01-01 04:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-01-09 16:04 - 2019-01-01 11:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2019-01-09 16:04 - 2019-01-01 11:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll 2019-01-09 16:04 - 2019-01-01 11:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-01-09 16:04 - 2019-01-01 11:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll 2019-01-09 16:04 - 2019-01-01 11:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll 2019-01-09 16:04 - 2019-01-01 11:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-01-09 16:04 - 2019-01-01 11:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-01-09 16:04 - 2019-01-01 11:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll 2019-01-09 16:04 - 2019-01-01 11:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll 2019-01-09 16:04 - 2019-01-01 11:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll 2019-01-09 16:04 - 2019-01-01 05:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-01-09 16:04 - 2019-01-01 05:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2019-01-09 16:04 - 2019-01-01 05:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-01-09 16:04 - 2019-01-01 05:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-01-09 16:04 - 2019-01-01 05:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-01-09 16:04 - 2019-01-01 05:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2019-01-09 16:04 - 2019-01-01 05:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-01-09 16:04 - 2019-01-01 05:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2019-01-09 16:04 - 2019-01-01 05:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2019-01-09 16:04 - 2019-01-01 05:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2019-01-09 16:04 - 2019-01-01 05:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2019-01-09 16:04 - 2019-01-01 05:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-01-09 16:04 - 2019-01-01 05:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-01-09 16:04 - 2019-01-01 05:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-01-09 16:04 - 2019-01-01 05:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll 2019-01-09 16:04 - 2019-01-01 05:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2019-01-09 16:04 - 2019-01-01 05:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2019-01-09 16:04 - 2019-01-01 05:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe 2019-01-09 16:04 - 2019-01-01 04:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-01-09 16:04 - 2019-01-01 04:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe 2019-01-09 16:04 - 2019-01-01 04:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2019-01-09 16:04 - 2019-01-01 04:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll 2019-01-09 16:04 - 2019-01-01 04:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-01-09 16:04 - 2019-01-01 04:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-01-09 16:04 - 2019-01-01 04:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2019-01-09 16:04 - 2019-01-01 04:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-01-09 16:04 - 2019-01-01 04:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-01-09 16:04 - 2019-01-01 04:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-01-09 16:04 - 2019-01-01 04:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-01-09 16:04 - 2019-01-01 04:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll 2019-01-09 16:04 - 2019-01-01 04:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll 2019-01-09 16:04 - 2019-01-01 04:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-01-09 16:04 - 2019-01-01 04:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-01-09 16:04 - 2019-01-01 04:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll 2019-01-09 16:04 - 2019-01-01 04:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll 2019-01-09 16:04 - 2019-01-01 04:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-01-09 16:04 - 2019-01-01 04:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2019-01-09 16:04 - 2019-01-01 04:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2019-01-09 16:04 - 2019-01-01 04:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll 2019-01-09 16:04 - 2019-01-01 04:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-01-09 16:04 - 2019-01-01 04:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-01-09 16:04 - 2019-01-01 04:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2019-01-09 16:04 - 2019-01-01 04:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-01-09 16:04 - 2019-01-01 04:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-01-09 16:04 - 2019-01-01 04:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-01-09 16:04 - 2019-01-01 04:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-01-09 16:04 - 2019-01-01 04:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2019-01-09 16:04 - 2019-01-01 04:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll 2019-01-09 16:04 - 2019-01-01 04:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2019-01-09 16:04 - 2019-01-01 04:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-01-09 16:04 - 2019-01-01 04:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2019-01-09 16:04 - 2019-01-01 04:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-01-09 16:04 - 2019-01-01 04:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll 2019-01-09 16:04 - 2019-01-01 04:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2019-01-09 16:04 - 2019-01-01 04:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2019-01-09 16:04 - 2019-01-01 04:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-01-09 16:04 - 2019-01-01 04:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-01-09 16:04 - 2019-01-01 04:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll 2019-01-09 16:04 - 2019-01-01 04:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-01-09 16:04 - 2019-01-01 04:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll 2019-01-09 16:04 - 2019-01-01 04:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-01-09 16:04 - 2019-01-01 04:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll 2019-01-09 16:04 - 2019-01-01 04:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2019-01-09 16:04 - 2019-01-01 04:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2019-01-09 16:04 - 2019-01-01 04:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2019-01-09 16:04 - 2019-01-01 04:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-01-09 16:04 - 2019-01-01 04:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll 2019-01-09 16:04 - 2019-01-01 03:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim 2019-01-09 16:04 - 2018-12-19 02:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-01-09 12:30 - 2019-01-29 07:55 - 000000000 ___RD C:\Users\vitor correia\Dropbox 2019-01-09 12:30 - 2019-01-09 12:30 - 000001307 _____ C:\Users\vitor correia\Desktop\Dropbox.lnk 2019-01-09 12:17 - 2019-01-09 12:17 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\Dropbox 2019-01-09 12:15 - 2019-01-23 23:38 - 000001066 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2019-01-09 12:15 - 2019-01-23 23:38 - 000001062 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2019-01-09 12:15 - 2019-01-23 21:37 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-01-09 12:15 - 2019-01-23 13:14 - 000003580 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA 2019-01-09 12:15 - 2019-01-23 13:14 - 000003356 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore 2019-01-09 12:15 - 2019-01-09 12:30 - 000000000 ____D C:\Users\vitor correia\AppData\Local\Dropbox 2019-01-09 12:15 - 2019-01-09 12:15 - 000000000 ____D C:\Users\Todos os Usuários\Dropbox 2019-01-09 12:15 - 2019-01-09 12:15 - 000000000 ____D C:\ProgramData\Dropbox 2019-01-09 12:14 - 2019-01-09 12:14 - 000696608 _____ (Dropbox, Inc.) C:\Users\vitor correia\Downloads\DropboxInstaller.exe 2019-01-09 10:25 - 2019-01-09 10:25 - 001772932 _____ C:\Users\vitor correia\Downloads\Applications of NLHE (1).pdf 2019-01-07 21:18 - 2019-01-07 21:18 - 000051086 _____ C:\Users\vitor correia\Downloads\Boletos - CobExpress.pdf 2019-01-07 09:18 - 2019-01-07 09:18 - 000552595 _____ C:\Users\vitor correia\Downloads\Fight me, Karen, I dare you!.mp4 2019-01-06 21:36 - 2019-01-06 21:36 - 000314265 _____ C:\Users\vitor correia\Downloads\FaturaHipercard-01-2019.pdf 2019-01-06 18:59 - 2019-01-06 18:59 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\SitNGoWizard 2019-01-06 15:48 - 2019-01-19 11:52 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\HoldemManager 2019-01-06 15:48 - 2019-01-06 15:48 - 000001158 _____ C:\Users\Public\Desktop\SitNGo Wizard 2.lnk 2019-01-06 15:48 - 2019-01-06 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SitNGo Wizard 2 2019-01-06 15:48 - 2019-01-06 15:48 - 000000000 ____D C:\Program Files (x86)\SitNGo Wizard 2 2019-01-06 15:44 - 2019-01-06 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 11 2019-01-06 15:37 - 2019-01-06 15:37 - 000000000 ____D C:\Program Files\PostgreSQL 2019-01-06 15:31 - 2019-01-06 15:32 - 197033664 _____ (PostgreSQL Global Development Group) C:\Users\vitor correia\Downloads\postgresql-11.1-1-windows-x64.exe 2019-01-06 15:29 - 2019-01-06 15:29 - 000000000 ____D C:\postgreSQL 2019-01-06 15:25 - 2019-01-06 16:04 - 000000000 ____D C:\Users\vitor correia\AppData\Local\SitNGo_Wizard_Software_LL 2019-01-06 15:22 - 2019-01-06 18:57 - 000000000 ____D C:\Users\vitor correia\Documents\SitNGo Wizard 3 2019-01-06 15:20 - 2019-01-06 15:20 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\SitNGo Wizard Software 2019-01-06 15:19 - 2019-01-06 15:19 - 000002339 _____ C:\Users\Public\Desktop\SitNGo Wizard 3.lnk 2019-01-06 15:18 - 2019-01-06 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SitNGo Wizard 2019-01-06 15:18 - 2019-01-06 15:18 - 000000000 ____D C:\Users\vitor correia\AppData\Local\SitNGo Wizard Software 2019-01-06 15:18 - 2019-01-06 15:18 - 000000000 ____D C:\Program Files (x86)\SitNGo Wizard Software 2019-01-06 15:17 - 2019-01-06 15:18 - 021530359 _____ C:\Users\vitor correia\Downloads\SitNGoWizardSetup.3.0.0.957.exe 2019-01-06 15:16 - 2019-01-06 15:29 - 000000000 ____D C:\PostgreSQL-prev-2017-21-Sep-14-12-34 2019-01-06 15:11 - 2019-01-06 15:12 - 112090662 _____ C:\Users\vitor correia\Downloads\SitNGoWizardSetup_2_0_0_555.exe 2019-01-06 15:05 - 2019-01-06 15:53 - 000000000 ____D C:\Program Files (x86)\PSQLINSTALL 2019-01-06 15:02 - 2019-01-06 15:04 - 131255152 _____ C:\Users\vitor correia\Downloads\HoldemManager2Setup_8544.exe 2019-01-06 09:21 - 2019-01-05 08:33 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2019-01-05 08:35 - 2019-01-05 08:33 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys 2019-01-05 08:35 - 2019-01-05 08:33 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2019-01-05 08:35 - 2019-01-05 08:33 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2019-01-05 08:35 - 2019-01-05 08:33 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2019-01-03 18:55 - 2019-01-03 18:55 - 000073885 _____ C:\Users\vitor correia\Downloads\EXT_19378489_Gerado_Em_03_01_2019_18_55_48.pdf 2019-01-03 18:05 - 2019-01-03 18:05 - 002642339 _____ C:\Users\vitor correia\Downloads\Combinatorics.pdf 2019-01-01 09:49 - 2019-01-01 09:50 - 001559471 _____ C:\Users\vitor correia\Downloads\Feeding old good boy vs. young good boy.mp4 2018-12-31 12:45 - 2018-12-31 12:45 - 000207004 _____ C:\Users\vitor correia\Downloads\em 2019 cenas como essa serão normais.mp4 2018-12-31 00:30 - 2018-12-31 00:30 - 001402312 _____ C:\Users\vitor correia\Downloads\Cachorro ensina humano a ser menos sacana.mp4 2018-12-30 10:24 - 2018-12-30 10:24 - 000330886 _____ C:\Users\vitor correia\Downloads\@akpolyme @valeriazolota @ANASTALYA @NkViktori42 @AmI3580 @AraiEij @bettinaschroed5 @MarionSpekker @marienassar_ Hello,dearest Anemos - - @akpolyme -.mp4 2018-12-29 21:53 - 2018-12-29 21:53 - 002155015 _____ C:\Users\vitor correia\Downloads\Um fazendeiro do Pantanal encontrou um filhotinho de onça abandonado e levou para casa. Ch (1).mp4 2018-12-29 21:47 - 2018-12-29 21:47 - 001778084 _____ C:\Users\vitor correia\Downloads\Um fazendeiro do Pantanal encontrou um filhotinho de onça abandonado e levou para casa. Ch.mp4 2018-12-29 13:11 - 2018-12-29 13:11 - 003757330 _____ C:\Users\vitor correia\Downloads\- amiga vem você é mais do que isso - - vou quebrar a cara dela me solta - - amiga vem.mp4 2018-12-25 09:09 - 2018-12-25 09:09 - 000669128 _____ C:\Users\vitor correia\Downloads\Alguém impaciente por aí.mp4 2018-12-22 10:45 - 2018-12-22 10:45 - 000000000 ____D C:\Users\vitor correia\Desktop\fotos praia 2018-12-20 19:02 - 2018-12-20 19:03 - 192850598 _____ C:\Users\vitor correia\Downloads\kupdf.net_gabriel-torres-hardware-curso-completopdf.pdf 2018-12-20 19:02 - 2018-12-20 19:02 - 001237751 _____ C:\Users\vitor correia\Downloads\kupdf.net_os-mitos-do-dinheiro-gabriel-torres.pdf 2018-12-20 18:59 - 2018-12-20 18:59 - 000278055 _____ C:\Users\vitor correia\Downloads\kupdf.net_montagem-de-micros-para-autodidatas-estudantes-e-teacutecnicos-gabriel-torres.pdf 2018-12-20 08:23 - 2018-12-14 05:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2018-12-20 08:23 - 2018-12-14 05:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2018-12-20 08:23 - 2018-12-14 05:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2018-12-20 08:23 - 2018-12-14 05:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2018-12-20 08:23 - 2018-12-14 05:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2018-12-20 08:23 - 2018-12-14 05:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2018-12-20 08:23 - 2018-12-14 05:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2018-12-20 08:23 - 2018-12-14 05:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll 2018-12-20 08:23 - 2018-12-14 05:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2018-12-20 08:23 - 2018-12-14 04:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2018-12-20 08:23 - 2018-12-14 04:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2018-12-20 08:23 - 2018-12-14 04:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2018-12-20 08:23 - 2018-12-14 04:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll 2018-12-20 08:23 - 2018-12-14 04:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2018-12-20 08:23 - 2018-12-14 04:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2018-12-20 08:23 - 2018-12-14 04:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2018-12-20 08:23 - 2018-12-14 04:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2018-12-19 21:03 - 2018-12-19 21:03 - 000460099 _____ C:\Users\vitor correia\Downloads\gato n respeita lei da fisica.mp4 2018-12-13 10:08 - 2018-12-08 10:42 - 004527800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2018-12-13 10:08 - 2018-12-08 10:42 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2018-12-13 10:08 - 2018-12-08 10:29 - 013572608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2018-12-13 10:08 - 2018-12-08 10:28 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2018-12-13 10:08 - 2018-12-08 10:28 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2018-12-13 10:08 - 2018-12-08 10:25 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2018-12-13 10:08 - 2018-12-08 10:23 - 003649024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2018-12-13 10:08 - 2018-12-08 06:07 - 005625352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2018-12-13 10:08 - 2018-12-08 06:06 - 001017168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll 2018-12-13 10:08 - 2018-12-08 06:05 - 007436216 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2018-12-13 10:08 - 2018-12-08 06:04 - 002371296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2018-12-13 10:08 - 2018-12-08 05:47 - 000861744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll 2018-12-13 10:08 - 2018-12-08 05:46 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2018-12-13 10:08 - 2018-12-08 05:45 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2018-12-13 10:08 - 2018-12-08 05:45 - 004789952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2018-12-13 10:08 - 2018-12-08 05:41 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2018-12-13 10:08 - 2018-12-08 05:40 - 004710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2018-12-13 10:08 - 2018-12-08 05:38 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2018-12-13 10:08 - 2018-12-08 05:38 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2018-12-13 10:08 - 2018-12-08 05:36 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2018-12-13 10:08 - 2018-12-08 05:36 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll 2018-12-13 10:08 - 2018-11-09 04:15 - 021388752 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2018-12-13 10:08 - 2018-11-09 03:32 - 020383832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2018-12-13 10:08 - 2018-11-09 00:56 - 001213472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2018-12-13 10:08 - 2018-11-09 00:21 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2018-12-13 10:07 - 2018-12-08 10:47 - 001048712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2018-12-13 10:07 - 2018-12-08 10:47 - 000645320 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2018-12-13 10:07 - 2018-12-08 10:46 - 000549760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll 2018-12-13 10:07 - 2018-12-08 10:42 - 001634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2018-12-13 10:07 - 2018-12-08 10:41 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2018-12-13 10:07 - 2018-12-08 10:41 - 000481880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2018-12-13 10:07 - 2018-12-08 10:40 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2018-12-13 10:07 - 2018-12-08 10:39 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll 2018-12-13 10:07 - 2018-12-08 10:27 - 005657600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2018-12-13 10:07 - 2018-12-08 10:27 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys 2018-12-13 10:07 - 2018-12-08 10:27 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll 2018-12-13 10:07 - 2018-12-08 10:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll 2018-12-13 10:07 - 2018-12-08 10:23 - 002892288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2018-12-13 10:07 - 2018-12-08 10:23 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2018-12-13 10:07 - 2018-12-08 10:23 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2018-12-13 10:07 - 2018-12-08 10:23 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2018-12-13 10:07 - 2018-12-08 10:23 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll 2018-12-13 10:07 - 2018-12-08 10:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2018-12-13 10:07 - 2018-12-08 10:22 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2018-12-13 10:07 - 2018-12-08 10:22 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2018-12-13 10:07 - 2018-12-08 06:12 - 000272408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll 2018-12-13 10:07 - 2018-12-08 06:12 - 000269336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2018-12-13 10:07 - 2018-12-08 06:12 - 000092688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2018-12-13 10:07 - 2018-12-08 06:07 - 001328632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2018-12-13 10:07 - 2018-12-08 06:06 - 000777512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2018-12-13 10:07 - 2018-12-08 06:06 - 000491416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2018-12-13 10:07 - 2018-12-08 06:06 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2018-12-13 10:07 - 2018-12-08 06:06 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2018-12-13 10:07 - 2018-12-08 06:05 - 002822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2018-12-13 10:07 - 2018-12-08 06:05 - 001935008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2018-12-13 10:07 - 2018-12-08 06:05 - 001209888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2018-12-13 10:07 - 2018-12-08 06:05 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys 2018-12-13 10:07 - 2018-12-08 06:05 - 000793592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2018-12-13 10:07 - 2018-12-08 06:05 - 000706040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2018-12-13 10:07 - 2018-12-08 06:05 - 000594224 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2018-12-13 10:07 - 2018-12-08 06:05 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll 2018-12-13 10:07 - 2018-12-08 06:05 - 000413920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2018-12-13 10:07 - 2018-12-08 06:05 - 000130312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll 2018-12-13 10:07 - 2018-12-08 06:05 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys 2018-12-13 10:07 - 2018-12-08 06:04 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 002590296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2018-12-13 10:07 - 2018-12-08 06:04 - 001943328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 001188512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 001150312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2018-12-13 10:07 - 2018-12-08 06:04 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000416024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000413176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2018-12-13 10:07 - 2018-12-08 06:04 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys 2018-12-13 10:07 - 2018-12-08 06:04 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000158624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll 2018-12-13 10:07 - 2018-12-08 06:04 - 000058168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys 2018-12-13 10:07 - 2018-12-08 05:47 - 000785760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2018-12-13 10:07 - 2018-12-08 05:46 - 001397104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll 2018-12-13 10:07 - 2018-12-08 05:46 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2018-12-13 10:07 - 2018-12-08 05:46 - 000457056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll 2018-12-13 10:07 - 2018-12-08 05:46 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 002307240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2018-12-13 10:07 - 2018-12-08 05:45 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 001620472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 001379816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 000567256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2018-12-13 10:07 - 2018-12-08 05:45 - 000129296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2018-12-13 10:07 - 2018-12-08 05:42 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2018-12-13 10:07 - 2018-12-08 05:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll 2018-12-13 10:07 - 2018-12-08 05:38 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll 2018-12-13 10:07 - 2018-12-08 05:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2018-12-13 10:07 - 2018-12-08 05:38 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys 2018-12-13 10:07 - 2018-12-08 05:37 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll 2018-12-13 10:07 - 2018-12-08 05:37 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2018-12-13 10:07 - 2018-12-08 05:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll 2018-12-13 10:07 - 2018-12-08 05:36 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll 2018-12-13 10:07 - 2018-12-08 05:36 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2018-12-13 10:07 - 2018-12-08 05:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2018-12-13 10:07 - 2018-12-08 05:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2018-12-13 10:07 - 2018-12-08 05:36 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll 2018-12-13 10:07 - 2018-12-08 05:36 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2018-12-13 10:07 - 2018-12-08 05:36 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys 2018-12-13 10:07 - 2018-12-08 05:35 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2018-12-13 10:07 - 2018-12-08 05:35 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2018-12-13 10:07 - 2018-12-08 05:34 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2018-12-13 10:07 - 2018-12-08 05:34 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2018-12-13 10:07 - 2018-12-08 05:34 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2018-12-13 10:07 - 2018-12-08 05:34 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2018-12-13 10:07 - 2018-12-08 05:34 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll 2018-12-13 10:07 - 2018-12-08 05:33 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2018-12-13 10:07 - 2018-12-08 05:33 - 001457152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2018-12-13 10:07 - 2018-12-08 05:33 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2018-12-13 10:07 - 2018-12-08 05:33 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2018-12-13 10:07 - 2018-12-08 05:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2018-12-13 10:07 - 2018-12-08 05:33 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2018-12-13 10:07 - 2018-12-08 05:33 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2018-12-13 10:07 - 2018-12-08 05:32 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2018-12-13 10:07 - 2018-12-08 05:32 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2018-12-13 10:07 - 2018-12-08 05:32 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2018-12-13 10:07 - 2018-12-08 05:32 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2018-12-13 10:07 - 2018-12-08 05:32 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2018-12-13 10:07 - 2018-12-08 05:30 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2018-12-13 10:07 - 2018-12-08 05:30 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2018-12-13 10:07 - 2018-12-08 05:29 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2018-12-13 10:07 - 2018-12-08 05:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2018-12-13 10:07 - 2018-12-08 05:29 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll 2018-12-13 10:07 - 2018-12-08 05:28 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2018-12-13 10:07 - 2018-12-08 05:28 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2018-12-13 10:07 - 2018-12-08 05:28 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2018-12-13 10:07 - 2018-12-08 05:27 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll 2018-12-13 10:07 - 2018-12-08 05:27 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll 2018-12-13 10:07 - 2018-12-08 05:27 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2018-12-13 10:07 - 2018-12-08 05:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll 2018-12-13 10:07 - 2018-12-08 05:26 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll 2018-12-13 10:07 - 2018-12-08 05:26 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll 2018-12-13 10:07 - 2018-12-08 05:25 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2018-12-13 10:07 - 2018-12-08 05:25 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2018-12-13 10:07 - 2018-12-08 05:25 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2018-12-13 10:07 - 2018-12-08 05:25 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2018-12-13 10:07 - 2018-12-08 05:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2018-12-13 10:07 - 2018-12-08 05:24 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2018-12-13 10:07 - 2018-12-08 05:24 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2018-12-13 10:07 - 2018-12-08 05:24 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2018-12-13 10:07 - 2018-11-09 04:00 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2018-12-13 10:07 - 2018-11-09 03:59 - 008623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2018-12-13 10:07 - 2018-11-09 03:58 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2018-12-13 10:07 - 2018-11-09 03:57 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2018-12-13 10:07 - 2018-11-09 03:57 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll 2018-12-13 10:07 - 2018-11-09 03:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2018-12-13 10:07 - 2018-11-09 03:56 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll 2018-12-13 10:07 - 2018-11-09 03:56 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll 2018-12-13 10:07 - 2018-11-09 03:55 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2018-12-13 10:07 - 2018-11-09 03:55 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2018-12-13 10:07 - 2018-11-09 03:54 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe 2018-12-13 10:07 - 2018-11-09 03:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2018-12-13 10:07 - 2018-11-09 03:20 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2018-12-13 10:07 - 2018-11-09 03:20 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2018-12-13 10:07 - 2018-11-09 03:19 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll 2018-12-13 10:07 - 2018-11-09 03:18 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2018-12-13 10:07 - 2018-11-09 03:18 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll 2018-12-13 10:07 - 2018-11-09 03:17 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2018-12-13 10:07 - 2018-11-09 00:49 - 000723416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2018-12-13 10:07 - 2018-11-09 00:49 - 000565048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2018-12-13 10:07 - 2018-11-09 00:49 - 000368656 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll 2018-12-13 10:07 - 2018-11-09 00:48 - 003179760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2018-12-13 10:07 - 2018-11-09 00:48 - 002719736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2018-12-13 10:07 - 2018-11-09 00:48 - 001613288 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll 2018-12-13 10:07 - 2018-11-09 00:48 - 000899920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2018-12-13 10:07 - 2018-11-09 00:48 - 000766704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2018-12-13 10:07 - 2018-11-09 00:48 - 000745472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2018-12-13 10:07 - 2018-11-09 00:48 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2018-12-13 10:07 - 2018-11-09 00:47 - 002571128 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2018-12-13 10:07 - 2018-11-09 00:47 - 002062392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2018-12-13 10:07 - 2018-11-09 00:47 - 001285432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2018-12-13 10:07 - 2018-11-09 00:47 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2018-12-13 10:07 - 2018-11-09 00:47 - 000537912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2018-12-13 10:07 - 2018-11-09 00:22 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2018-12-13 10:07 - 2018-11-09 00:21 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2018-12-13 10:07 - 2018-11-09 00:21 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll 2018-12-13 10:07 - 2018-11-09 00:21 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys 2018-12-13 10:07 - 2018-11-09 00:20 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2018-12-13 10:07 - 2018-11-09 00:20 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll 2018-12-13 10:07 - 2018-11-09 00:20 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys 2018-12-13 10:07 - 2018-11-09 00:19 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2018-12-13 10:07 - 2018-11-09 00:19 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2018-12-13 10:07 - 2018-11-09 00:18 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2018-12-13 10:07 - 2018-11-09 00:18 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2018-12-13 10:07 - 2018-11-09 00:18 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll 2018-12-13 10:07 - 2018-11-09 00:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2018-12-13 10:07 - 2018-11-09 00:18 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2018-12-13 10:07 - 2018-11-09 00:17 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2018-12-13 10:07 - 2018-11-09 00:17 - 001069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2018-12-13 10:07 - 2018-11-09 00:16 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2018-12-13 10:07 - 2018-11-09 00:16 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll 2018-12-13 10:07 - 2018-11-09 00:16 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2018-12-13 10:07 - 2018-11-09 00:16 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2018-12-13 10:07 - 2018-11-09 00:15 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2018-12-13 10:07 - 2018-11-09 00:15 - 000933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2018-12-13 10:07 - 2018-11-09 00:15 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2018-12-13 10:07 - 2018-11-09 00:07 - 002417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2018-12-13 10:07 - 2018-11-09 00:07 - 001299704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll 2018-12-13 10:07 - 2018-11-08 23:48 - 000550728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2018-12-13 10:07 - 2018-11-08 23:47 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll 2018-12-13 10:07 - 2018-11-08 23:46 - 002161008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2018-12-13 10:07 - 2018-11-08 23:46 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2018-12-13 10:07 - 2018-11-08 23:46 - 000829960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2018-12-13 10:07 - 2018-11-08 23:46 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2018-12-13 10:07 - 2018-11-08 23:46 - 000573504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2018-12-13 10:07 - 2018-11-08 23:31 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll 2018-12-13 10:07 - 2018-11-08 23:30 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2018-12-13 10:07 - 2018-11-08 23:29 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2018-12-13 10:07 - 2018-11-08 23:29 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2018-12-13 10:07 - 2018-11-08 23:29 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2018-12-13 10:07 - 2018-11-08 23:28 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2018-12-13 10:07 - 2018-11-08 23:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll 2018-12-13 10:07 - 2018-11-08 23:26 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2018-12-13 10:07 - 2018-11-08 23:26 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2018-12-13 10:07 - 2018-11-08 23:25 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2018-12-13 10:07 - 2018-11-08 23:25 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2018-12-13 10:06 - 2018-12-08 05:38 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe 2018-12-13 10:06 - 2018-12-08 05:38 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll 2018-12-13 10:06 - 2018-12-08 05:38 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2018-12-13 10:06 - 2018-12-08 05:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2018-12-13 10:06 - 2018-12-08 05:36 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll 2018-12-13 10:06 - 2018-12-08 05:30 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe 2018-12-13 10:06 - 2018-12-08 05:29 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2018-12-13 10:06 - 2018-11-09 00:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll 2018-12-13 10:06 - 2018-11-09 00:21 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2018-12-13 10:06 - 2018-11-09 00:20 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2018-12-13 10:06 - 2018-11-08 23:31 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2018-12-13 10:06 - 2018-11-08 23:30 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll 2018-12-09 10:40 - 2018-12-09 10:40 - 000000000 ____D C:\Program Files\Sony Mobile 2018-12-09 10:40 - 2018-12-09 10:40 - 000000000 ____D C:\Program Files\DIFX 2018-12-09 10:39 - 2018-12-09 10:39 - 000000000 ____D C:\Users\Todos os Usuários\Sony Mobile 2018-12-09 10:39 - 2018-12-09 10:39 - 000000000 ____D C:\ProgramData\Sony Mobile 2018-12-09 10:36 - 2018-12-09 10:36 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\Apple Computer 2018-12-09 10:34 - 2018-12-09 10:34 - 000002276 _____ C:\Users\Public\Desktop\Xperia Companion.lnk 2018-12-09 10:34 - 2018-12-09 10:34 - 000000000 ____D C:\Users\vitor correia\Documents\Sony 2018-12-09 10:34 - 2018-12-09 10:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2018-12-09 10:34 - 2018-12-09 10:34 - 000000000 ____D C:\Program Files\Sony 2018-12-09 10:34 - 2018-12-09 10:34 - 000000000 ____D C:\Program Files (x86)\Sony 2018-12-09 10:30 - 2018-12-09 10:31 - 050496864 _____ (Sony) C:\Users\vitor correia\Downloads\XperiaCompanion.exe 2018-12-07 22:03 - 2018-12-07 22:03 - 000073869 _____ C:\Users\vitor correia\Downloads\EXT_19173622_Gerado_Em_07_12_2018_22_03_24.pdf 2018-11-30 21:06 - 2018-11-30 21:06 - 001159815 _____ C:\Users\vitor correia\Downloads\kkkkkkkkkkkkkkkkkkkkkkkkkk.mp4 2018-11-25 08:05 - 2018-11-25 08:05 - 000124948 _____ C:\Users\vitor correia\Downloads\What a leap. .mp4 2018-11-18 17:00 - 2018-11-18 17:00 - 000910048 _____ C:\Users\vitor correia\Downloads\Nunca roube comida de uma garota .mp4 2018-11-16 20:44 - 2018-11-01 07:15 - 023861760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2018-11-16 20:44 - 2018-11-01 07:13 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2018-11-16 20:44 - 2018-11-01 05:25 - 001784680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2018-11-16 20:44 - 2018-11-01 05:25 - 001288920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2018-11-16 20:44 - 2018-11-01 05:00 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2018-11-16 20:44 - 2018-11-01 02:47 - 001020064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2018-11-16 20:44 - 2018-11-01 02:33 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2018-11-16 20:44 - 2018-10-21 11:00 - 001516120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2018-11-16 20:44 - 2018-10-21 10:46 - 004393472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2018-11-16 20:44 - 2018-10-21 05:45 - 003283512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll 2018-11-16 20:44 - 2018-10-21 05:28 - 016592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2018-11-16 20:44 - 2018-10-21 05:15 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2018-11-16 20:44 - 2018-10-21 05:09 - 013873664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2018-11-16 20:43 - 2018-11-01 09:45 - 001376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2018-11-16 20:43 - 2018-11-01 08:09 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2018-11-16 20:43 - 2018-11-01 05:25 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll 2018-11-16 20:43 - 2018-11-01 04:59 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2018-11-16 20:43 - 2018-11-01 04:58 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2018-11-16 20:43 - 2018-11-01 04:57 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2018-11-16 20:43 - 2018-11-01 04:56 - 002929664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2018-11-16 20:43 - 2018-11-01 04:56 - 001395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2018-11-16 20:43 - 2018-11-01 04:56 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2018-11-16 20:43 - 2018-11-01 04:54 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2018-11-16 20:43 - 2018-11-01 04:54 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2018-11-16 20:43 - 2018-11-01 04:53 - 001373696 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2018-11-16 20:43 - 2018-11-01 04:53 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2018-11-16 20:43 - 2018-11-01 02:48 - 000384520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll 2018-11-16 20:43 - 2018-11-01 02:28 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2018-11-16 20:43 - 2018-10-21 11:00 - 001639560 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2018-11-16 20:43 - 2018-10-21 11:00 - 000790416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2018-11-16 20:43 - 2018-10-21 10:43 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll 2018-11-16 20:43 - 2018-10-21 10:42 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2018-11-16 20:43 - 2018-10-21 10:42 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2018-11-16 20:43 - 2018-10-21 10:41 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2018-11-16 20:43 - 2018-10-21 09:38 - 001322376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2018-11-16 20:43 - 2018-10-21 09:37 - 001626656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2018-11-16 20:43 - 2018-10-21 09:22 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll 2018-11-16 20:43 - 2018-10-21 05:46 - 000717112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2018-11-16 20:43 - 2018-10-21 05:46 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2018-11-16 20:43 - 2018-10-21 05:46 - 000560136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2018-11-16 20:43 - 2018-10-21 05:45 - 000607136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2018-11-16 20:43 - 2018-10-21 05:21 - 001589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2018-11-16 20:43 - 2018-10-21 05:19 - 002487088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2018-11-16 20:43 - 2018-10-21 05:19 - 000505616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2018-11-16 20:43 - 2018-10-21 05:17 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll 2018-11-16 20:43 - 2018-10-21 05:17 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2018-11-16 20:43 - 2018-10-21 05:17 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcp.dll 2018-11-16 20:43 - 2018-10-21 05:16 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2018-11-16 20:43 - 2018-10-21 05:15 - 000743936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL 2018-11-16 20:43 - 2018-10-21 05:14 - 001919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2018-11-16 20:43 - 2018-10-21 05:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2018-11-16 20:43 - 2018-10-21 05:01 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2018-11-16 20:43 - 2018-10-21 04:57 - 002611200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2018-11-16 20:43 - 2018-10-21 03:59 - 000806320 _____ C:\WINDOWS\SysWOW64\locale.nls 2018-11-16 20:43 - 2018-10-21 03:59 - 000806320 _____ C:\WINDOWS\system32\locale.nls 2018-11-16 20:42 - 2018-11-01 09:49 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2018-11-16 20:42 - 2018-11-01 09:30 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2018-11-16 20:42 - 2018-11-01 09:30 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll 2018-11-16 20:42 - 2018-11-01 09:29 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll 2018-11-16 20:42 - 2018-11-01 09:28 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll 2018-11-16 20:42 - 2018-11-01 09:27 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2018-11-16 20:42 - 2018-11-01 07:56 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll 2018-11-16 20:42 - 2018-11-01 07:56 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll 2018-11-16 20:42 - 2018-11-01 07:53 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll 2018-11-16 20:42 - 2018-11-01 05:03 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe 2018-11-16 20:42 - 2018-11-01 05:02 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll 2018-11-16 20:42 - 2018-11-01 05:02 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll 2018-11-16 20:42 - 2018-11-01 04:59 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2018-11-16 20:42 - 2018-11-01 04:59 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2018-11-16 20:42 - 2018-11-01 04:59 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll 2018-11-16 20:42 - 2018-11-01 04:59 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll 2018-11-16 20:42 - 2018-11-01 04:57 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll 2018-11-16 20:42 - 2018-11-01 04:57 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2018-11-16 20:42 - 2018-11-01 04:57 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2018-11-16 20:42 - 2018-11-01 04:54 - 001679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2018-11-16 20:42 - 2018-11-01 02:29 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2018-11-16 20:42 - 2018-11-01 02:29 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2018-11-16 20:42 - 2018-11-01 02:27 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2018-11-16 20:42 - 2018-10-21 11:00 - 000396304 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2018-11-16 20:42 - 2018-10-21 10:59 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2018-11-16 20:42 - 2018-10-21 10:59 - 000236728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2018-11-16 20:42 - 2018-10-21 10:45 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2018-11-16 20:42 - 2018-10-21 10:44 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe 2018-11-16 20:42 - 2018-10-21 10:44 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll 2018-11-16 20:42 - 2018-10-21 10:43 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll 2018-11-16 20:42 - 2018-10-21 10:43 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2018-11-16 20:42 - 2018-10-21 10:42 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll 2018-11-16 20:42 - 2018-10-21 10:42 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll 2018-11-16 20:42 - 2018-10-21 09:38 - 000662312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2018-11-16 20:42 - 2018-10-21 09:38 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2018-11-16 20:42 - 2018-10-21 09:38 - 000221216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll 2018-11-16 20:42 - 2018-10-21 09:28 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll 2018-11-16 20:42 - 2018-10-21 09:23 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2018-11-16 20:42 - 2018-10-21 09:23 - 000523264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll 2018-11-16 20:42 - 2018-10-21 09:22 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll 2018-11-16 20:42 - 2018-10-21 07:29 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll 2018-11-16 20:42 - 2018-10-21 06:44 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll 2018-11-16 20:42 - 2018-10-21 05:46 - 000497864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll 2018-11-16 20:42 - 2018-10-21 05:45 - 000185120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2018-11-16 20:42 - 2018-10-21 05:45 - 000175624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys 2018-11-16 20:42 - 2018-10-21 05:45 - 000139792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2018-11-16 20:42 - 2018-10-21 05:45 - 000058088 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe 2018-11-16 20:42 - 2018-10-21 05:21 - 000123424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2018-11-16 20:42 - 2018-10-21 05:20 - 000424000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2018-11-16 20:42 - 2018-10-21 05:20 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll 2018-11-16 20:42 - 2018-10-21 05:20 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2018-11-16 20:42 - 2018-10-21 05:20 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll 2018-11-16 20:42 - 2018-10-21 05:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2018-11-16 20:42 - 2018-10-21 05:19 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll 2018-11-16 20:42 - 2018-10-21 05:19 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2018-11-16 20:42 - 2018-10-21 05:19 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2018-11-16 20:42 - 2018-10-21 05:19 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll 2018-11-16 20:42 - 2018-10-21 05:19 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2018-11-16 20:42 - 2018-10-21 05:19 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe 2018-11-16 20:42 - 2018-10-21 05:19 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvrcpAppSvc.dll 2018-11-16 20:42 - 2018-10-21 05:19 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhf.sys 2018-11-16 20:42 - 2018-10-21 05:19 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll 2018-11-16 20:42 - 2018-10-21 05:18 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2018-11-16 20:42 - 2018-10-21 05:18 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll 2018-11-16 20:42 - 2018-10-21 05:18 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2018-11-16 20:42 - 2018-10-21 05:18 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll 2018-11-16 20:42 - 2018-10-21 05:18 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll 2018-11-16 20:42 - 2018-10-21 05:18 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll 2018-11-16 20:42 - 2018-10-21 05:17 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2018-11-16 20:42 - 2018-10-21 05:17 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll 2018-11-16 20:42 - 2018-10-21 05:16 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2018-11-16 20:42 - 2018-10-21 05:15 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2018-11-16 20:42 - 2018-10-21 05:14 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2018-11-16 20:42 - 2018-10-21 05:14 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2018-11-16 20:42 - 2018-10-21 05:02 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll 2018-11-16 20:42 - 2018-10-21 05:01 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll 2018-11-16 20:42 - 2018-10-21 05:00 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2018-11-16 20:42 - 2018-10-21 04:59 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2018-11-16 20:42 - 2018-10-21 04:58 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll 2018-11-16 20:42 - 2018-10-21 04:58 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2018-11-16 20:42 - 2018-10-21 04:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2018-11-16 20:42 - 2018-04-28 02:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2018-11-16 20:16 - 2019-01-17 21:01 - 000000000 ____D C:\Program Files\rempl 2018-11-16 15:40 - 2018-11-16 15:40 - 004830285 _____ C:\Users\vitor correia\Desktop\YjBX_7XwiDoCinNo.mp4 2018-11-14 09:28 - 2018-09-04 20:36 - 001476904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2018-11-02 20:50 - 2018-11-02 20:50 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\Google ==================== Três meses (modificados) ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2019-01-29 14:34 - 2018-04-11 21:38 - 000000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft 2019-01-29 14:34 - 2018-04-11 21:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-01-29 14:34 - 2018-03-17 18:35 - 000000000 ____D C:\Users\vitor correia\AppData\Local\AVAST Software 2019-01-29 14:27 - 2018-06-18 18:58 - 000004200 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B921D2DB-5D78-41BC-B572-03CE3E03AB0C} 2019-01-29 13:58 - 2018-06-18 18:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-01-29 07:58 - 2018-04-11 21:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-01-29 07:50 - 2017-01-28 12:02 - 000000000 __SHD C:\Users\vitor correia\IntelGraphicsProfiles 2019-01-28 17:27 - 2018-06-18 19:05 - 000000000 ____D C:\Users\Todos os Usuários\Packages 2019-01-28 17:27 - 2018-06-18 19:05 - 000000000 ____D C:\ProgramData\Packages 2019-01-28 17:27 - 2018-04-11 21:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-01-28 15:11 - 2018-10-03 15:21 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-01-28 10:49 - 2018-03-09 22:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-01-28 10:49 - 2018-03-09 22:15 - 000000000 ____D C:\Program Files (x86)\Java 2019-01-28 10:30 - 2018-03-09 22:16 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2019-01-27 15:03 - 2017-01-28 12:02 - 000000000 ____D C:\Users\vitor correia\AppData\Local\CrashDumps 2019-01-27 14:04 - 2018-06-18 18:58 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2019-01-26 14:58 - 2018-06-18 18:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-01-26 14:57 - 2018-04-11 19:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-01-26 13:20 - 2018-02-15 14:04 - 000000000 ____D C:\Users\vitor correia\AppData\Roaming\ZHP 2019-01-26 13:16 - 2018-06-18 18:58 - 000003394 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1583823125-3370265694-1763537218-1001 2019-01-26 13:16 - 2018-06-18 18:23 - 000002401 _____ C:\Users\vitor correia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-01-26 13:16 - 2017-01-28 12:06 - 000000000 ___RD C:\Users\vitor correia\OneDrive 2019-01-26 13:02 - 2018-02-15 14:04 - 000000000 ____D C:\Users\vitor correia\AppData\Local\ZHP 2019-01-26 11:56 - 2018-08-05 19:02 - 000000000 ____D C:\Users\vitor correia\AppData\LocalLow\Mozilla 2019-01-24 00:42 - 2018-06-18 18:23 - 000000000 ____D C:\Users\vitor correia 2019-01-23 23:38 - 2018-03-14 15:17 - 000000951 _____ C:\WINDOWS\Tasks\EPSON L395 Series Update {2E3E72EE-DC97-492D-9F17-E58C0BC78F26}.job 2019-01-23 13:15 - 2018-06-18 18:58 - 000004302 _____ C:\WINDOWS\System32\Tasks\Software Update Application 2019-01-23 13:15 - 2018-06-18 18:58 - 000003516 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2019-01-23 13:15 - 2018-06-18 18:58 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2019-01-23 13:15 - 2018-06-18 18:58 - 000003094 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater 2019-01-23 13:15 - 2018-06-18 18:58 - 000002706 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService 2019-01-23 13:15 - 2018-06-18 18:58 - 000002674 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP DeskJet 3630 series 2019-01-23 13:15 - 2018-06-18 18:58 - 000002256 _____ C:\WINDOWS\System32\Tasks\Power Button 2019-01-23 13:15 - 2018-06-18 18:58 - 000002180 _____ C:\WINDOWS\System32\Tasks\Quick Access 2019-01-23 13:15 - 2018-06-18 18:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software 2019-01-23 13:14 - 2018-06-18 18:58 - 000003852 _____ C:\WINDOWS\System32\Tasks\ACCAgent 2019-01-23 13:14 - 2018-06-18 18:58 - 000003692 _____ C:\WINDOWS\System32\Tasks\AcerCMUpdateTask2.1.16258 2019-01-23 13:14 - 2018-06-18 18:58 - 000003498 _____ C:\WINDOWS\System32\Tasks\EPSON L395 Series Update {2E3E72EE-DC97-492D-9F17-E58C0BC78F26} 2019-01-23 13:14 - 2018-06-18 18:58 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2019-01-23 13:14 - 2018-06-18 18:58 - 000003194 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-01-23 13:14 - 2018-06-18 18:58 - 000002992 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task 2019-01-23 13:14 - 2018-06-18 18:58 - 000002820 _____ C:\WINDOWS\System32\Tasks\ACC 2019-01-23 13:14 - 2018-06-18 18:58 - 000002760 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent 2019-01-23 13:14 - 2018-06-18 18:58 - 000002590 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask 2019-01-23 13:14 - 2018-06-18 18:58 - 000002328 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication 2019-01-23 13:14 - 2018-06-18 18:58 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2019-01-23 13:14 - 2018-06-18 18:58 - 000002074 _____ C:\WINDOWS\System32\Tasks\FUBTrackingByPLD 2019-01-23 13:14 - 2018-06-18 18:58 - 000002038 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance 2019-01-23 07:56 - 2018-04-11 21:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-01-19 19:31 - 2018-02-13 19:15 - 000000000 ____D C:\Users\vitor correia\AppData\Local\PlaceholderTileLogoFolder 2019-01-19 19:31 - 2017-11-07 17:16 - 000000000 ____D C:\Users\vitor correia\AppData\Local\Packages 2019-01-19 15:29 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\INF 2019-01-19 15:29 - 2017-07-13 19:05 - 000000000 ____D C:\Program Files (x86)\Intel 2019-01-19 15:24 - 2017-05-21 10:04 - 000000000 ____D C:\Intel 2019-01-19 14:44 - 2017-07-13 19:05 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2019-01-19 14:30 - 2018-06-18 18:20 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2019-01-18 13:22 - 2018-06-17 21:29 - 000166792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2019-01-18 11:46 - 2018-03-09 21:54 - 000000000 ____D C:\Program Files\AVAST Software 2019-01-18 11:46 - 2018-03-09 21:53 - 000000000 ____D C:\Users\Todos os Usuários\AVAST Software 2019-01-18 11:46 - 2018-03-09 21:53 - 000000000 ____D C:\ProgramData\AVAST Software 2019-01-16 22:14 - 2017-07-13 19:04 - 002033568 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2019-01-16 22:13 - 2017-07-13 19:04 - 000000000 ____D C:\WINDOWS\system32\DAX2 2019-01-16 22:12 - 2017-07-13 19:04 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2019-01-12 13:32 - 2017-01-30 23:08 - 000000000 ____D C:\Users\vitor correia\AppData\Local\ConnectedDevicesPlatform 2019-01-12 13:31 - 2017-01-28 12:03 - 000000000 ____D C:\Users\vitor correia\AppData\Local\Publishers 2019-01-09 18:13 - 2018-04-11 21:38 - 000000000 ____D C:\WINDOWS\TextInput 2019-01-09 18:13 - 2018-04-11 21:38 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-01-09 16:23 - 2017-01-30 15:58 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-01-09 16:17 - 2018-04-11 21:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-01-09 16:17 - 2017-01-30 15:57 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-01-06 18:49 - 2018-06-18 18:37 - 001737602 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-01-06 18:49 - 2018-04-12 14:41 - 000750780 _____ C:\WINDOWS\system32\prfh0416.dat 2019-01-06 18:49 - 2018-04-12 14:41 - 000148114 _____ C:\WINDOWS\system32\prfc0416.dat 2019-01-06 15:33 - 2016-04-02 16:20 - 000000000 ____D C:\Users\Todos os Usuários\Package Cache 2019-01-06 15:33 - 2016-04-02 16:20 - 000000000 ____D C:\ProgramData\Package Cache 2019-01-06 09:22 - 2018-03-09 21:58 - 000002092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk 2019-01-06 09:22 - 2018-03-09 21:58 - 000002080 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2019-01-06 09:21 - 2018-04-11 21:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-01-05 08:43 - 2017-02-24 17:09 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-01-05 08:34 - 2018-06-21 22:19 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2019-01-05 08:34 - 2018-06-17 21:29 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2019-01-05 08:34 - 2018-03-09 21:57 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys 2019-01-05 08:33 - 2018-10-10 18:41 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2019-01-05 08:33 - 2018-06-17 21:29 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2019-01-02 17:41 - 2018-09-13 08:24 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-01-02 17:41 - 2018-09-13 08:24 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl Alguns arquivos em TEMP: ==================== 2019-01-28 10:16 - 2019-01-28 10:16 - 001974624 _____ (Oracle Corporation) C:\Users\vitor correia\AppData\Local\Temp\jre-8u201-windows-au.exe 2019-01-22 18:42 - 2009-11-10 20:09 - 000157184 _____ () C:\Users\vitor correia\AppData\Local\Temp\virustotal.exe ==================== Bamital & volsnap ====================== (Não há correção automática para arquivos que não passaram na verificação.) C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\dllhost.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\dllhost.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2018-06-18 18:15 ==================== Fim de FRST.txt ============================ Addition.txt
  8. Olá, @diego_moicano Obrigado pela atenção. Seguem os logs: ~ ZHPCleaner v2019.1.24.12 by Nicolas Coolman (2019/01/24) ~ Run by vitor correia (Administrator) (26/01/2019 13:17:01) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Certificate ZHPCleaner: Legal ~ Type : Repair ~ Report : C:\Users\vitor correia\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\vitor correia\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Home Single Language, 64-bit (Build 17134) ---\ Alternate Data Stream (ADS). (0) ~ No malicious or unnecessary items found. (ADS) ---\ Services (0) ~ No malicious or unnecessary items found. (Service) ---\ Browser internet (0) ~ No malicious or unnecessary items found. (Browser) ---\ Hosts file (1) ~ The hosts file is legitimate (25) ---\ Scheduled automatic tasks. (0) ~ No malicious or unnecessary items found. (Task) ---\ Explorer ( File, Folder) (321) MOVED file: C:\Users\vitor correia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Betmotion Poker.lnk [Bad : C:\Microgaming\Poker\BetMotionPokerMPP\mppoker.exe](.Microgaming.) =>.SUP.Microgaming MOVED file: C:\Users\vitor correia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\RedKings.lnk [Bad : C:\Microgaming\Poker\redkingsmpp\mppoker.exe](.Microgaming.) =>.SUP.Microgaming MOVED file: C:\Users\Public\Desktop\Betmotion Poker.lnk [Bad : C:\Microgaming\Poker\BetMotionPokerMPP\mppoker.exe](.Microgaming.) =>.SUP.Microgaming MOVED file: C:\Users\Public\Desktop\RedKings.lnk [Bad : C:\Microgaming\Poker\redkingsmpp\mppoker.exe](.Microgaming.) =>.SUP.Microgaming MOVED file: C:\Windows\Installer\wix{417A95B7-A57F-4245-A3B8-DE7A054F4E32}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{5095145F-A690-405A-9ABF-69C7A7319834}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{5437E77B-E4B5-45E7-BD33-95C3F0AA6602}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{9CBA860F-7437-4A75-941C-8EF559F2D145}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{BC5A9829-B67F-4E3A-83EE-0CDBDB6FBA1C}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{C5FDDED7-DEC7-48B4-AFD8-DFB8A0FD199A}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{CFCB3B71-2A0F-4E91-8B8E-A9DF809DEF6A}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{E2237AB2-C484-4362-A5B8-20F8389C0E89}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{F814D094-197F-43C8-87FA-3210BB780486}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\wix{FA378CD1-F32D-4610-9884-3902DF8AF826}.SchedServiceConfig.rmi =>.SUP.Empty MOVED file: C:\Windows\Installer\MSI1EFC.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI4AC0.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI4BE1.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI5103.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI55EC.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI57A3.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI8839.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI8BA5.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSI8C71.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIB496.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIB5FF.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIB67D.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID06A.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID52E.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID572.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID5CB.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSID6A7.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIDD44.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIDDD1.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIDE4F.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\MSIECD7.tmp =>.SUP.MSIInstaller MOVED file: C:\Windows\Installer\2ad3f1.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\3755e0.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\3991c6a.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\46a8da9.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\4e33701.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\58cebaf.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\61714.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\ec6cbdb.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Windows\Installer\efa9007.msp =>.SUP.Obsolete.Adobe MOVED file: C:\Users\vitor correia\Downloads\pokerinstaller.exe [ - Install Program] =>.SUP.Microgaming MOVED file: C:\Users\vitor correia\Downloads\redkings.exe [ - Install Program] =>.SUP.Microgaming MOVED file: C:\Users\vitor correia\AppData\Local\Temp\aria-debug-13008.log =>.SUP.Temporary.OneDrive MOVED file: C:\Users\vitor correia\AppData\Local\Temp\LocalStorage.txt =>.SUP.Temporary.Empty MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct23EA.tmp =>.SUP.Temporary.Office MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct2580.tmp =>.SUP.Temporary.Office MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct39A6.tmp =>.SUP.Temporary.Office MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct3AE4.tmp =>.SUP.Temporary.Office MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct46AE.tmp =>.SUP.Temporary.Office MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct4A80.tmp =>.SUP.Temporary.Office MOVED file: C:\Users\vitor correia\AppData\Local\Temp\wct4DB1.tmp =>.SUP.Temporary.Office MOVED folder: C:\Microgaming =>.SUP.Microgaming MOVED folder: C:\Users\vitor correia\AppData\Roaming\Microgaming =>.SUP.Microgaming MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\001 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\002 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\003 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\004 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\005 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\006 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\007 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\008 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\009 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\010 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\011 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\012 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\013 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\014 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\015 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\016 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\017 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\018 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\019 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\020 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\021 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\022 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\023 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\024 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\025 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\026 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\027 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\028 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\029 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\030 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\031 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\032 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\033 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\034 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\035 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\036 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\037 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\038 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\039 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\040 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\041 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\042 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\043 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\044 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\045 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\046 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\047 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\048 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\049 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\050 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\051 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\052 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\053 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\054 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\055 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\056 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\057 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\058 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\059 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\060 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\061 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\062 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\063 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\064 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\065 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\066 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\067 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\068 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\069 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\070 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\071 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\072 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\073 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\074 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\075 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\076 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\077 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\078 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\079 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\080 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\081 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\082 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\083 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\084 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\085 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\086 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\087 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\088 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\089 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\090 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\091 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\092 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\093 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\094 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\095 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\096 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\097 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\098 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\099 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\100 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\101 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\102 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\103 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\104 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\105 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\106 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\107 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\108 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\109 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\110 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\111 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\112 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\113 =>.SUP.Temporary.Chrome MOVED folder: C:\Users\vitor correia\AppData\Local\Google\Chrome\User Data\Default\File System\114 =>.SUP.Temporary.Chrome MOVED folder: C:\WINDOWS\Installer\MSI20E7.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI307.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI364D.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI3FAE.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI40AE.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI4136.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI4185.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI469.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI4A04.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI4AD1.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI502A.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI52A0.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI554E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI59B4.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI6142.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI62D9.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI69B1.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI6E81.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7163.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7696.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7714.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI77C1.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI780D.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI79EE.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7AA0.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7BA8.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7D01.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7E1B.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7E98.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7EEF.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI7F81.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI80DA.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI80D5.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI818C.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI82FE.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI85A8.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI8659.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI875F.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI8949.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI8B1.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI8BC7.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI8E80.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI909B.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI91E0.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI933A.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI935D.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI938E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9504.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9554.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9591.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI96B3.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI976B.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI97C5.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI98C0.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI996D.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9A71.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9ABC.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9AD9.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9B4A.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9B6C.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9BB5.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9BE1.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9BE7.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9C52.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9C93.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9CB3.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9D0E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9D88.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9DFA.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9E1A.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9E32.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9E73.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSI9E97.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA044.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA04E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA114.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA129.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA621.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA75E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA7A2.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA93F.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIA9CF.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIAD97.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIAE56.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIAE60.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB04B.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB0F8.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB28F.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB280.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB34C.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB3EB.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB3F9.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB536.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB5C4.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB652.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB664.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB68B.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB70E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB868.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB913.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB96A.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIB9CF.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIBB30.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIBCC8.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIBCDE.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIBE8F.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIBF93.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC13A.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC2FE.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC372.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC543.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC592.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC68D.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC7B6.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC8F0.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC9DC.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIC9DB.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSICEE8.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSICFD2.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSID018.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSID420.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSID569.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSID6B2.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSID826.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSID92F.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIDE57.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIDE80.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIE00D.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIE027.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIE0D4.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIE2DF.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIE933.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIE9D7.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIEAC2.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIEBCF.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIEBE4.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIED9C.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIF272.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIF31E.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIF40C.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIF49C.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIF604.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIF71F.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIFAF5.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIFBA2.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIFBE2.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIFD39.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIFED0.tmp- =>.SUP.Empty MOVED folder: C:\WINDOWS\Installer\MSIFF3F.tmp- =>.SUP.Empty ---\ Registry ( Key, Value, Data) (4) DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{2a535065-1571-4571-9495-64d1318ad0ed}\\DhcpNameServer [Bad : 100.127.253.21 100.127.253.11] =>Hijacker.Browser DELETED key*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C0C3CA4FFEA0346A0ACE4D9BEF71DD [c:\Program Files (x86)\Amazon\Amazon1ButtonApp\ (Not File)] =>.SUP.Amazon1ButtonApp DELETED key*: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\19BB5F38476A9A04699E5DF4D212E28D [c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe (Not File)] =>.SUP.Amazon1ButtonApp DELETED value: HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files (x86)\Java\jre1.8.0_181\ [No Folder] =>.SUP.Obsolete.NoFolder ---\ Summary of the elements found (11) https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Microgaming https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Empty https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.MSIInstaller https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.Adobe https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.OneDrive https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Empty https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Office https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/ =>Hijacker.Browser https://nicolascoolman.eu/2017/12/01/sup-amazon1buttonapp/ =>.SUP.Amazon1ButtonApp https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.NoFolder ---\ Other deletions. (10) ~ Registry Keys Tracing deleted (8) ~ Remove the old reports ZHPCleaner. (2) ---\ Result of repair ~ Repair carried out successfully ~ Browser not found (Opera Software) ---\ Statistics ~ Items scanned : 1100 ~ Items found : 0 ~ Items cancelled : 0 ~ Items options : 12/12 ~ Space saving (bytes) : 78870723 ~ End of clean in 00h03mn36s ---\ Reports (2) ZHPCleaner--26012019-13_15_47.txt ZHPCleaner-[R]-26012019-13_20_37.txt # ------------------------------- # Malwarebytes AdwCleaner 7.2.6.0 # ------------------------------- # Build: 12-18-2018 # Database: 2019-01-25.2 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Clean # ------------------------------- # Start: 01-26-2019 # Duration: 00:00:12 # OS: Windows 10 Home Single Language # Cleaned: 12 # Failed: 1 ***** [ Services ] ***** No malicious services cleaned. ***** [ Folders ] ***** No malicious folders cleaned. ***** [ Files ] ***** Deleted C:\Windows\ServiceProfiles\NetworkService\Favorites\Booking.com.url Deleted C:\Windows\ServiceProfiles\LocalService\Favorites\Booking.com.url Deleted C:\Users\vitor correia\Favorites\Booking.com.url ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** No malicious tasks cleaned. ***** [ Registry ] ***** Deleted HKU\S-1-5-18\Software\AppDataLow\Software\Amazon\AmazonAssistant Deleted HKCU\Software\AppDataLow\Software\Amazon\AmazonAssistant Deleted HKU\.DEFAULT\Software\AppDataLow\Software\Amazon\AmazonAssistant Deleted HKLM\Software\Wow6432Node\AppDataLow\Software\Amazon\AmazonAssistant Deleted HKLM\Software\Wow6432Node\Classes\AppID\AmazonAppIE.dll Deleted HKLM\SOFTWARE\Classes\AppID\AmazonAppIE.dll Deleted HKLM\Software\Wow6432Node\Classes\AppID\{F18AE3C4-D2AD-42AC-9282-509DCF035D06} Deleted HKLM\Software\Classes\AppID\{F18AE3C4-D2AD-42AC-9282-509DCF035D06} ***** [ Chromium (and derivatives) ] ***** Deleted Amazon Assistant for Chrome ***** [ Chromium URLs ] ***** Not Deleted Softonic BR ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries cleaned. ***** [ Firefox URLs ] ***** No malicious Firefox URLs cleaned. ************************* [+] Delete Tracing Keys [+] Reset Chromium Policies [+] Reset IE Policies [+] Reset Winsock ************************* AdwCleaner[S00].txt - [2283 octets] - [26/01/2019 12:41:47] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
  9. Olá, meu navegador (chrome) fica lento, às vezes trava (não respondendo). Por favor, verifiquem se não é algum malware. ZA-Scan.txt
  10. Olá, @diego_moicano . O PC esta bom, não reiniciou mais. Muito obrigado!
  11. Olá, @diego_moicano . Obrigado pela ajuda. Segue o log: SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17] WebSite: www.safezone.cc DateLog: 08.03.2018 11:27:24 Path starting: C:\Users\vitor correia\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe Log directory: C:\SecurityCheck\ IsAdmin: True User: vitor correia VersionXML: 4.88is-08.03.2018 ___________________________________________________________________________ Windows 10(6.3.16299) (x64) CoreSingleLanguage Release: 1709 Lang: Portuguese(0416) Installation date OS: 07.11.2017 19:38:09 LicenseStatus: Windows(R), CoreSingleLanguage edition The machine is permanently activated. Boot Mode: Normal Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe SystemDrive: C: FS: [NTFS] Capacity: [930.9 Gb] Used: [60.2 Gb] Free: [870.7 Gb] ------------------------------- [ Windows ] ------------------------------- Internet Explorer 11.248.16299.0 User Account Control enabled (Level 3) Windows Update (wuauserv) - The service is running Central de Segurança (wscsvc) - The service is running Registro remoto (RemoteRegistry) - The service has stopped Descoberta SSDP (SSDPSRV) - The service is running Serviços de Área de Trabalho Remota (TermService) - The service has stopped Windows Remote Management (WS-Management) (WinRM) - The service has stopped ---------------------------- [ Antivirus_WMI ] ---------------------------- Windows Defender (enabled and up to date) --------------------------- [ FirewallWindows ] --------------------------- Windows Defender Firewall (MpsSvc) - The service is running --------------------------- [ AntiSpyware_WMI ] --------------------------- Windows Defender (enabled and up to date) -------------------------- [ SecurityUtilities ] -------------------------- Malwarebytes versão 3.3.1.2183 v.3.3.1.2183 --------------------------- [ OtherUtilities ] ---------------------------- WinRAR 5.31 (64-bit) v.5.31.0 Warning! Download Update -------------------------------- [ Java ] --------------------------------- Java 8 Update 161 v.8.0.1610.12 Warning! Download Update Uninstall old version and install new one (jre-8u162-windows-i586.exe). --------------------------- [ AdobeProduction ] --------------------------- Adobe Acrobat Reader DC - Português v.18.011.20038 [+] ------------------------------- [ Browser ] ------------------------------- Google Chrome v.64.0.3282.186 Warning! Download Update Mozilla Firefox 45.0 (x86 en-US) v.45.0 Warning! Download Update --------------------------- [ RunningProcess ] ---------------------------- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe v.64.0.3282.186 ------------------ [ AntivirusFirewallProcessServices ] ------------------- AVG Service (avgsvc) - The service has stopped AVG Service (avgsvc) - The service has stopped C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe v.3.0.0.1284 Malwarebytes Service (MBAMService) - The service is running C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe v.3.1.0.595 McAfee Validation Trust Protection Service (mfevtp) - The service is running C:\Windows\System32\mfevtps.exe C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\MsMpEng.exe v.4.12.17007.18022 C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\NisSrv.exe v.4.12.17007.18022 C:\Program Files\Windows Defender\MSASCuiL.exe v.4.12.16299.15 Serviço Windows Defender Antivirus (WinDefend) - The service is running Serviço de Inspeção de Rede do Windows Defender Antivirus (WdNisSvc) - The service is running ---------------------------- [ UnwantedApps ] ----------------------------- WildTangent Games v.1.0.4.0 Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering. Update Installer for WildTangent Games App << Hidden Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering. WildTangent Games App v.4.0.11.16 << Hidden Warning! Application is distributed through the partnership programs and bundle assemblies. Uninstallation recommended. Possible you became a victim of fraud or social engineering. ----------------------------- [ End of Log ] ------------------------------
  12. Olá, @diego_moicano Segue o log: McAfee Stinger Scan Results McAfee® Labs Stinger™ Version 12.1.0.2692 built on Mar 7 2018 at 00:09:19 Copyright© 2013-2018, McAfee, LLC. All Rights Reserved. AV Engine version v5900.7806 for Windows. Virus data file v1000.0 created on Mar 7, 2018 Ready to scan for 10355 viruses, trojans and variants. Custom scan initiated on quarta-feira, março 07, 2018 10:22:28 Rootkit scan result : Clean. C:\Users\vitor correia\Downloads\2387627623897293832br.zip\2387627623897293832br.exe is infected with Artemis!3CB40F73270B C:\Users\vitor correia\Downloads\2387627623897293832br.zip\2387627623897293832br.exe has been Deleted Summary Report on C: D: File(s) TotalFiles:............ 411316 Clean:................. 231997 Not Scanned:........... 179318 Possibly Infected:..... 1 Time: 05:36:03 Scan completed on quarta-feira, março 07, 2018 15:58:31
  13. Olá@diego_moicano Segue o log: Malwarebytes www.malwarebytes.com -Detalhes de registro- Data da análise: 06/03/18 Hora da análise: 11:12 Arquivo de registro: 6e85a810-2148-11e8-99d0-548ca05ae844.json Administrador: Sim -Informação do software- Versão: 3.3.1.2183 Versão de componentes: 1.0.262 Versão do pacote de definições: 1.0.4224 Licença: Expirado -Informação do sistema- Sistema operacional: Windows 10 (Build 16299.248) CPU: x64 Sistema de arquivos: NTFS Usuário: LAPTOP-2HCNJKH4\vitor correia -Resumo da análise- Tipo de análise: Análise de Ameaças Resultado: Concluído Objetos verificados: 303776 Ameaças detectadas: 2 Ameaças em quarentena: 2 Tempo decorrido: 6 min, 12 seg -Opções da análise- Memória: Habilitado Inicialização: Habilitado Sistema de arquivos: Habilitado Arquivos compactados: Habilitado Rootkits: Desabilitado Heurística: Habilitado PUP: Detectar PUM: Detectar -Detalhes da análise- Processo: 0 (Nenhum item malicioso detectado) Módulo: 0 (Nenhum item malicioso detectado) Chave de registro: 0 (Nenhum item malicioso detectado) Valor de registro: 2 PUP.Optional.Amazon1Button, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|AMAZON1BUTTONTASKBARAPP.EXE, Quarentena, [838], [493348],1.0.4224 PUP.Optional.Amazon1Button, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|AMAZON1BUTTONTASKBARAPP.EXE, Quarentena, [838], [493348],1.0.4224 Dados de registro: 0 (Nenhum item malicioso detectado) Fluxo de dados: 0 (Nenhum item malicioso detectado) Pasta: 0 (Nenhum item malicioso detectado) Arquivo: 0 (Nenhum item malicioso detectado) Setor físico: 0 (Nenhum item malicioso detectado) (end)
  14. Olá, @diego_moicano . Fiz o novo scan e removi o que foi encontrado. Quanto a desinstalação do "Amazon 1Button App", não obtive sucesso. Mesmo com o programa indicado apareceu a mensagem da imagem 2 da resposta anterior. Há uma opção no programa pra verificar sobras de itens no registro, ao clicar nela, aparece um lista de itens encontrados. Não sei se é seguro marcar e excluir os mesmos.

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×