Resultado do anÃ¡lise da Farbar Recovery Scan Tool (FRST) (x64) VersÃ£o: 14-06-2022
Executado por rayll (administrador) em NOTE-RAYON (Dell Inc. Inspiron 5481) (14-06-2022 22:08:33)
Executando a partir de C:\Users\rayll\Downloads
Perfis Carregados: rayll
Plataforma: Microsoft Windows 11 Home Single Language VersÃ£o 22H2 22621.160 (X64) Idioma: PortuguÃªs (Brasil)
Navegador padrÃ£o: Chrome
Modo da InicializaÃ§Ã£o: Normal

==================== Processos (Whitelisted) =================

(Se uma entrada for incluÃ­da na fixlist, o processo serÃ¡ fechado. O arquivo nÃ£o serÃ¡ movido.)

(Banco Bradesco S.A. -> Scopus SoluÃ§Ãµes em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Common Files\mcafee\platform\McUICnt.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\MAT\McPvTray.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\mmsshost\MMSSHOST.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\mfeav\MfeAVSvc.exe
(C:\Program Files\mcafee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22133.500.1346.3200_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\101.0.1210.53\msedgewebview2.exe <12>
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\msc\MfeBrowserHost.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_5207db0559876a61\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_5207db0559876a61\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) () [Arquivo nÃ£o assinado] C:\Program Files (x86)\3G PERA MODEM\WCDMA_Eject.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Banco Bradesco S.A. -> Scopus SoluÃ§Ãµes em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(services.exe ->) (FingerPower Digital Technology Ltd. -> ) C:\Users\rayll\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe
(services.exe ->) (GAS INFORMATICA LTDA -> GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\43_dell_corp_mobile_whl_iigd_dch.inf_amd64_df13cea2870464c5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\43_dell_corp_mobile_whl_iigd_dch.inf_amd64_df13cea2870464c5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_5207db0559876a61\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_401fde8782680631\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> IntelÂ® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\csp\5.1.104.0\McCSPServiceHost.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <3>
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\VSCore_22_2\mcapexe.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe <3>
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSysSvc64.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.116.0529.0003_2\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.22621.1.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.425.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe

==================== Registro (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, o Ã­tem no Registro serÃ¡ restaurado para o padrÃ£o ou removido. O arquivo nÃ£o serÃ¡ movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a1020546271138b9\RtkAudUService64.exe [1343072 2021-08-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe [1570400 2019-09-19] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-12-10] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS INFORMATICA LTDA -> GAS Tecnologia LTDA)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] RestriÃ§Ã£o <==== ATENÃÃO
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] RestriÃ§Ã£o <==== ATENÃÃO
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: RestriÃ§Ã£o <==== ATENÃÃO
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2580055532-482096993-373310797-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632096 2022-06-12] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\HP1120PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1120PP.DLL [65024 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP LJ M1120 MFP LM: C:\WINDOWS\system32\ZLM1120.dll [167424 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
HKLM\...\Print\Monitors\PrimoMon: C:\WINDOWS\system32\Primomonnt.dll [95008 2015-09-01] (Nitro PDF Software -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.115\Installer\chrmstp.exe [2022-06-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
HKLM\Software\...\Authentication\Credential Providers: [{f64945df-4fa9-4068-a2fb-61af319edd33}] -> C:\WINDOWS\system32\rdpcredentialprovider.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
GroupPolicy: RestriÃ§Ã£o ? <==== ATENÃÃO
Policies: C:\ProgramData\NTUSER.pol: RestriÃ§Ã£o <==== ATENÃÃO
HKLM\SOFTWARE\Policies\Google: RestriÃ§Ã£o <==== ATENÃÃO

==================== Tarefas Agendadas (Whitelisted) ============

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

Task: {03BFACD8-9A7A-4EF3-91F4-09B374D8898B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {08BD09F4-BBD5-4759-9418-2A6680D41823} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [49152 2022-05-07] (Microsoft Windows -> )
Task: {0EE3FC58-71FD-4325-833E-289DA589FE01} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {1055CE14-C002-449A-96C1-F5A28E36C452} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214176 2022-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1830F471-A0C1-4E45-AF66-47DF38611295} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DD363F9-4B3E-4DE7-8A0D-28932EFC4073} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2640322A-2245-48CA-92A9-DE60FD726128} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
"C:\Windows\System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask" nÃ£o pode ser desbloqueado. <==== ATENÃÃO
Task: {27CE9D59-9D48-4D29-99BC-64657AEBA494} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask
Task: {3986C685-15FB-45C3-B204-7AB84E6383AB} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe /c (Nenhum Arquivo)
Task: {3A98F32D-C296-4563-BFAE-8A12A2CB0585} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2021-03-21] (McAfee, Inc. -> McAfee, LLC.)
Task: {43BD31EF-7D4A-4BE6-A2BA-62127959D14A} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [212992 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {484E1320-0229-4B33-935D-587F8A5501C7} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [768288 2022-03-24] (McAfee, LLC -> McAfee, LLC)
Task: {5A3E25F7-4CF6-4533-9B67-04D8050B74DD} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (Nenhum Arquivo)
Task: {5F46D3C5-9280-463B-98D1-EE5758565436} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [67472 2022-05-30] (Microsoft Corporation -> Microsoft Corporation)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" foi desbloqueado. <==== ATENÃÃO
Task: {6806F2F7-F33D-4F8D-946F-12984B658182} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [926064 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {68206E90-4206-4C2A-B9CA-E870D265A701} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe /ua /installsource scheduler (Nenhum Arquivo)
Task: {75A8E5AC-9EA8-4941-A443-39AC531B6FB1} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [926064 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {7922F87A-5ADF-4628-A9D1-8EA099CCC5C9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {87189423-120B-4077-8506-BB40D2988A24} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe ReadyToReboot (Nenhum Arquivo)
Task: {8CC99CAD-53D6-4274-B675-5E344B44F412} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {A120AD1B-7097-4C69-9E62-F48FFE8BCD66} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [212992 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {AC825D7C-C120-4D7E-A84E-A4BED3B9CFB2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {AC8C5D88-1963-48F1-9B39-0EA6EA046F90} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (Nenhum Arquivo)
Task: {B1BAB79B-AEBD-4026-9870-CDC1B9E1E105} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {BEE9753A-4C03-4613-929C-03B89D50D792} - System32\Tasks\Microsoft\Windows\CloudRestore\Restore => {B4BCFA6F-948D-46B8-BF27-E8B1117E23B3} C:\WINDOWS\system32\CloudRestoreLauncher.dll [233472 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {C375B8E7-1D4F-4E57-90E7-3BEFD0DFCE06} - System32\Tasks\Microsoft\Windows\WlanSvc\MoProfileManagement => {085EDA12-CF4A-4944-8222-8ADCADE137CB} C:\Windows\System32\WlanMediaManager.dll [897024 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {C6FD9550-5FA6-4269-85E6-BB6DEA9134CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-18] (Google Inc -> Google Inc.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Nenhum Arquivo)
Task: {DFDF13D2-D35C-4FE6-98D1-224734DD3FF2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2580055532-482096993-373310797-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214176 2022-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Nenhum Arquivo)
Task: {E62D8E29-277C-4DD5-98F1-518145BFE764} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\WINDOWS\system32\MusNotification.exe Display (Nenhum Arquivo)
Task: {F7758136-6BE9-4E8E-8081-EF004439E1CC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-18] (Google Inc -> Google Inc.)
Task: {F87BAE91-2470-40AB-9F94-A437578A5E4D} - System32\Tasks\Microsoft\Windows\Application Experience\SdbinstMergeDbTask => C:\WINDOWS\system32\sdbinst.exe [212992 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {FC7E5742-AA26-408A-8501-0C2EC8AD2E7C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {FE34835B-4DAF-48F8-980E-9F055FA526C6} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4089168 2022-02-08] (McAfee, LLC -> McAfee, LLC)

(Se uma entrada for incluÃ­da na fixlist, o arquivo da tarefa (.job) serÃ¡ movido. O arquivo que estÃ¡ sendo executado pela tarefa nÃ£o serÃ¡ movido.)


==================== Internet (Whitelisted) ====================

(Se um Ã­tem for incluÃ­do na fixlist, sendo um Ã­tem do Registro, serÃ¡ removido ou restaurado para o padrÃ£o.)

Tcpip\Parameters: [DhcpNameServer] 181.213.132.2 181.213.132.3
Tcpip\..\Interfaces\{2111db18-c342-4d46-a95f-77e2e8846206}: [DhcpNameServer] 181.213.132.2 181.213.132.3
Tcpip\..\Interfaces\{ed288ae3-e44d-4299-952e-27f83b10d6aa}: [DhcpNameServer] 10.8.8.8 10.7.7.7

Edge: 
=======
Edge Extension: (Sem Nome) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nÃ£o encontrado (a)]
Edge Extension: (Sem Nome) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nÃ£o encontrado (a)]
Edge Extension: (Sem Nome) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nÃ£o encontrado (a)]
Edge Extension: (Sem Nome) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nÃ£o encontrado (a)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\rayll\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-01]
Edge Extension: (Editor da Microsoft: Verificador OrtogrÃ¡fico e Gramatical) - C:\Users\rayll\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gpaiobkfhnonedkhhfjpmhdalgeoebfa [2022-04-24]
Edge Extension: (Editor da Microsoft: Verificador OrtogrÃ¡fico e Gramatical) - C:\Users\rayll\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hokifickgkhplphjiodbggjmoafhignh [2022-04-24]

FireFox:
========
FF DefaultProfile: z2d13yup.default-1585179525334
FF ProfilePath: C:\Users\rayll\AppData\Roaming\Mozilla\Firefox\Profiles\z2d13yup.default-1585179525334 [2022-06-14]
FF Homepage: Mozilla\Firefox\Profiles\z2d13yup.default-1585179525334 -> hxxps://www.google.com/
FF Extension: (McAfeeÂ® WebAdvisor) - C:\Users\rayll\AppData\Roaming\Mozilla\Firefox\Profiles\z2d13yup.default-1585179525334\Extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}.xpi [2022-06-08] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => nÃ£o encontrado (a)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nÃ£o encontrado (a)
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2022-04-26] (McAfee, LLC -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files (x86)\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files (x86)\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2022-04-26] (McAfee, LLC -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.7.913.0\npCCleanerBrowserUpdate3.dll [Nenhum Arquivo]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.7.913.0\npCCleanerBrowserUpdate3.dll [Nenhum Arquivo]
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\rayll\AppData\Local\Google\Chrome\User Data\Default [2022-06-14]
CHR Notifications: Default -> hxxps://beastbuying.com; hxxps://br.pinterest.com; hxxps://chat.blip.ai; hxxps://duo.google.com; hxxps://mail.google.com; hxxps://meet.google.com; hxxps://service.mcafee.com
CHR Extension: (True Keyâ¢ by McAfee) - C:\Users\rayll\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpaibbcbodhimfnjnakiidgbpiehfgci [2022-05-30]
CHR Extension: (Adobe Acrobat: ferramentas de ediÃ§Ã£o, conversÃ£o e assinatura de PDFs) - C:\Users\rayll\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-13]
CHR Extension: (Documentos Google off-line) - C:\Users\rayll\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\rayll\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== ServiÃ§os (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-11-11] (BattlEye Innovations e.K. -> )
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-09-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
R2 CDROM_Detect; C:\Program Files (x86)\3G PERA MODEM\WCDMA_Eject.exe [325632 2013-01-15] () [Arquivo nÃ£o assinado]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988424 2022-05-30] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2021-08-23] (Dell Inc -> Dell Inc.)
S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [802816 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [38096 2019-06-19] (Dell Inc -> )
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [21400 2022-03-23] (Dell Inc -> Dell INC.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{5A6AB857-AA17-4C71-A179-A1259272D687} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-11-11] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.116.0529.0003_2\FileSyncHelper.exe [3373984 2022-06-12] (Microsoft Corporation -> Microsoft Corporation)
S2 GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [75240 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 KingoSoftService; C:\Users\rayll\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\checkupdate.exe [377832 2022-04-05] (FingerPower Digital Technology Ltd. -> )
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [805808 2022-06-13] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_2\McApExe.exe [812536 2022-04-26] (McAfee, LLC -> McAfee, LLC)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2018-07-16] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.1.104.0\\McCSPServiceHost.exe [3378048 2022-02-17] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1548296 2022-04-04] (McAfee, LLC -> McAfee, LLC)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.116.0529.0003_2\OneDriveUpdaterService.exe [3812760 2022-06-12] (Microsoft Corporation -> Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4235968 2022-02-19] (McAfee, LLC -> McAfee, LLC)
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [2269056 2022-03-29] (Banco Bradesco S.A. -> Scopus SoluÃ§Ãµes em TI Ltda)
R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11786992 2018-11-14] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [1058864 2016-05-11] (GAS INFORMATICA LTDA -> GAS Tecnologia LTDA)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 webthreatdefsvc; C:\WINDOWS\System32\webthreatdefsvc.dll [163840 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S2 webthreatdefusersvc; C:\WINDOWS\System32\webthreatdefusersvc.dll [135168 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2022-01-27] (Intel Corporation -> Intel Corporation)
R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137576 2022-06-14] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91496 2022-06-14] (Microsoft Windows -> Microsoft Corporation)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [72224 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
S3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [214360 2022-06-14] (Microsoft Windows -> Microsoft Corporation)
S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [124264 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 McPvDrv; C:\WINDOWS\system32\drivers\McPvDrv.sys [97696 2021-07-27] (McAfee, LLC -> McAfee, LLC)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [469528 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [344088 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83400 2022-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [439320 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [911904 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [645656 2022-02-10] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [111136 2022-02-10] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [107040 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [228888 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2022-05-07] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R1 wsddfac; C:\WINDOWS\System32\drivers\wsddfac.sys [101080 2022-06-14] (GAS INFORMATICA LTDA -> GAS Tecnologia)
R1 wsddpp; C:\WINDOWS\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS INFORMATICA LTDA -> GAS Tecnologia)
R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-06-14] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluÃ­da na fixlist, serÃ¡ removida do Registro. O arquivo nÃ£o serÃ¡ movido, a menos que seja colocado separadamente.)

NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)

==================== TrÃªs meses (criados) (Whitelisted) =========

(Se uma entrada for incluÃ­da na fixlist, o arquivo/pasta serÃ¡ movido.)

2022-06-14 22:08 - 2022-06-14 22:09 - 000037841 _____ C:\Users\rayll\Downloads\FRST.txt
2022-06-14 22:08 - 2022-06-14 22:08 - 000000000 ____D C:\FRST
2022-06-14 22:06 - 2022-06-14 22:07 - 002368000 _____ (Farbar) C:\Users\rayll\Downloads\FRST64.exe
2022-06-14 22:02 - 2022-06-14 22:02 - 108656792 _____ (Oracle Corporation) C:\Users\rayll\Downloads\VirtualBox-6.1.34a-150636-Win.exe
2022-06-14 22:01 - 2022-06-14 22:01 - 000803084 _____ C:\WINDOWS\system32\prfh0416.dat
2022-06-14 22:01 - 2022-06-14 22:01 - 000164164 _____ C:\WINDOWS\system32\prfc0416.dat
2022-06-14 21:54 - 2022-06-14 21:54 - 000001535 _____ C:\WINDOWS\system32\config\VSMIDK
2022-06-14 21:52 - 2022-06-14 21:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS
2022-06-14 21:52 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2022-06-14 21:52 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2022-06-14 21:52 - 2022-06-14 21:52 - 000000000 ____D C:\inetpub
2022-06-14 21:41 - 2022-06-14 21:41 - 000062808 _____ C:\WINDOWS\system32\AppInstallerBackgroundUpdate.exe
2022-06-14 21:40 - 2022-06-14 21:40 - 000016080 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-14 20:57 - 2022-06-14 20:57 - 010752086 _____ C:\Users\rayll\Downloads\mpc-hc-1.7.13.zip
2022-06-14 20:57 - 2022-06-14 20:57 - 009366798 _____ C:\Users\rayll\Downloads\mpc-hc-1.7.13.tar.gz
2022-06-14 20:56 - 2022-06-14 20:57 - 000000891 _____ C:\Users\rayll\Downloads\README.txt
2022-06-14 20:56 - 2022-06-14 20:56 - 014185472 _____ (MPC-HC Team ) C:\Users\rayll\Downloads\MPC-HC.1.7.13.x64.exe
2022-06-14 20:40 - 2022-06-14 20:40 - 000134466 _____ C:\Users\rayll\Downloads\dcb91ddd-0c00-40ca-bae3-8f6e3196056e.jpeg
2022-06-12 23:16 - 2022-06-12 23:16 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-06-12 23:14 - 2022-06-14 22:01 - 001854560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-12 23:14 - 2022-06-12 23:14 - 000000020 ___SH C:\Users\rayll\ntuser.ini
2022-06-12 23:13 - 2022-06-14 21:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-12 23:13 - 2022-06-14 21:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2022-06-12 23:13 - 2022-06-14 20:25 - 000004170 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3F654E7B-8398-4055-B741-6140219A7EB1}
2022-06-12 23:13 - 2022-06-13 12:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-12 23:13 - 2022-06-12 23:13 - 000003602 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-12 23:13 - 2022-06-12 23:13 - 000003570 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2022-06-12 23:13 - 2022-06-12 23:13 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-06-12 23:13 - 2022-06-12 23:13 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-06-12 23:13 - 2022-06-12 23:13 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d85e57912ec25e
2022-06-12 23:13 - 2022-06-12 23:13 - 000003346 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2022-06-12 23:13 - 2022-06-12 23:13 - 000003322 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-06-12 23:13 - 2022-06-12 23:13 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-06-12 23:13 - 2022-06-12 23:13 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2580055532-482096993-373310797-1001
2022-06-12 23:13 - 2022-06-12 23:13 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-06-12 23:13 - 2022-06-12 23:13 - 000002644 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2022-06-12 23:13 - 2022-06-12 23:13 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-06-12 23:13 - 2022-06-12 23:13 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-06-12 23:13 - 2022-06-12 23:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2022-06-12 23:13 - 2022-06-12 23:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-06-12 23:13 - 2019-01-21 00:29 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2351462460-3752345134-3912415767-500
2022-06-12 23:10 - 2022-06-12 23:13 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2022-06-12 23:10 - 2022-06-12 23:13 - 000017148 _____ C:\WINDOWS\diagerr.xml
2022-06-12 23:04 - 2022-06-12 23:14 - 000000000 ____D C:\Users\rayll
2022-06-12 23:04 - 2022-06-12 23:07 - 000000000 ____D C:\Users\defaultuser100000
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\Modelos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\Meus Documentos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\Menu Iniciar
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\Dados de Aplicativos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\ConfiguraÃ§Ãµes Locais
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\AppData\Local\HistÃ³rico
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\AppData\Local\Dados de Aplicativos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\Ambiente de Rede
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\rayll\Ambiente de ImpressÃ£o
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\Modelos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\Meus Documentos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\Menu Iniciar
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\Dados de Aplicativos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\ConfiguraÃ§Ãµes Locais
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\HistÃ³rico
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\AppData\Local\Dados de Aplicativos
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\Ambiente de Rede
2022-06-12 23:04 - 2022-06-12 23:04 - 000000000 _SHDL C:\Users\defaultuser100000\Ambiente de ImpressÃ£o
2022-06-12 23:04 - 2022-05-07 02:19 - 000001281 _____ C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-06-12 23:04 - 2022-05-07 02:19 - 000001281 _____ C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-06-12 23:04 - 2022-05-07 02:19 - 000000407 _____ C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-06-12 23:04 - 2022-05-07 02:19 - 000000407 _____ C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-06-12 22:54 - 2022-06-14 21:54 - 000474480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-12 22:54 - 2022-06-14 16:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-12 22:53 - 2022-06-12 23:14 - 000000000 ____D C:\Windows.old
2022-06-12 22:51 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-06-12 22:49 - 2022-06-12 22:49 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\addins
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\Program Files\MSBuild
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-06-12 22:46 - 2022-06-12 22:46 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-06-12 22:39 - 2022-06-12 22:51 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-06-12 22:38 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\Intel
2022-06-12 22:38 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\cAVS
2022-06-12 21:34 - 2022-06-12 21:34 - 000007602 _____ C:\Users\rayll\AppData\Local\Resmon.ResmonCfg
2022-06-12 21:19 - 2022-06-12 21:19 - 000001521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk
2022-06-12 21:18 - 2022-06-12 21:18 - 000000000 ____D C:\ProgramData\BlueStacks
2022-06-12 21:17 - 2022-06-12 21:19 - 000000000 ____D C:\ProgramData\BlueStacksSetup
2022-06-12 21:15 - 2022-06-12 21:16 - 027532814 _____ C:\Users\rayll\Downloads\brasiltvmobile_2.22.3_db21889e_20211026.apk
2022-06-12 20:45 - 2022-06-14 21:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-12 20:41 - 2022-06-12 23:14 - 000000000 ___DC C:\WINDOWS\Panther
2022-06-12 20:39 - 2022-06-12 20:39 - 000000000 ___HD C:\$SysReset
2022-06-12 19:55 - 2022-06-12 19:55 - 011073336 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-Integrated-Sensor-Hub-Driver_346RV_WIN_3.10.100.3920_A01.EXE
2022-06-12 19:54 - 2022-06-12 19:54 - 011231408 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-Integrated-Sensor-Solution-Driver_36J7X_WIN_3.10.100.3437_A03.EXE
2022-06-12 19:53 - 2022-06-12 19:53 - 024416760 _____ (Dell Inc.) C:\Users\rayll\Downloads\7558_Application_7M5HW_WN32_4.13.61_A00.EXE
2022-06-12 19:44 - 2022-06-12 19:45 - 017676616 _____ (Dell, Inc.) C:\Users\rayll\Downloads\Inspiron_5481_2.14.0.exe
2022-06-12 19:43 - 2022-06-12 19:44 - 466979600 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-UHD-Graphics-Driver_T8CC2_WIN_27.20.100.8935_A05.EXE
2022-06-12 19:43 - 2022-06-12 19:43 - 022419120 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-Rapid-Storage-Technology-Driver_62C56_WIN64_17.9.6.1019_A04_01.EXE
2022-06-12 19:42 - 2022-06-12 19:43 - 455572704 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-UHD-Graphics-Driver_P5PHH_WIN_27.20.100.9664_A06.EXE
2022-06-12 19:42 - 2022-06-12 19:43 - 011232944 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-Serial-IO-Driver_3MK53_WIN_30.100.2020.7_A06_04.EXE
2022-06-12 19:42 - 2022-06-12 19:42 - 085494608 _____ (Dell Inc.) C:\Users\rayll\Downloads\Intel-AX211-AX210-AX200-AX201-9260-9560-9462-Wi-Fi_H45PP_WIN_22.130.0.5_A40_02.EXE
2022-06-12 19:42 - 2022-06-12 19:42 - 034529816 _____ (Dell Inc.) C:\Users\rayll\Downloads\Killer-AX1650-AX1675-AX1690-and-Intel-AX200-AX201-AC210-AX211-9560-9462-9260-8265-8260-7265-3165_RRJRD_WIN64_22.130.0.2_A35_07.EXE
2022-06-12 19:38 - 2022-06-12 19:38 - 000681664 _____ (Dell Inc.) C:\Users\rayll\Downloads\SupportAssistLauncher.exe
2022-06-12 19:37 - 2022-06-12 19:37 - 032294512 _____ (Dell Inc.) C:\Users\rayll\Downloads\XPS-1820_System-Utilities_Driver_KNY23_WN32_2.2.3.8_A00.EXE
2022-06-09 21:12 - 2022-06-10 20:22 - 000000000 ____D C:\Users\rayll\OneDrive\Documentos\AsBuiltData
2022-06-09 21:12 - 2022-06-10 00:07 - 000000000 ____D C:\Users\rayll\OneDrive\Documentos\FORScan
2022-06-09 21:12 - 2022-06-09 21:12 - 000000000 ____D C:\Users\rayll\OneDrive\Documentos\CalibrationFiles
2022-06-09 21:12 - 2022-06-09 21:12 - 000000000 ____D C:\Users\rayll\OneDrive\Documentos\AdapterFiles
2022-06-07 00:04 - 2022-05-31 18:29 - 000515168 _____ (Intel) C:\WINDOWS\system32\libvpl.dll
2022-06-07 00:04 - 2022-05-31 18:29 - 000455816 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll
2022-06-07 00:04 - 2022-05-31 18:28 - 000949080 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2022-06-07 00:04 - 2022-05-31 18:28 - 000709896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2022-06-07 00:04 - 2022-05-31 18:28 - 000594800 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2022-06-07 00:04 - 2022-05-31 18:28 - 000455072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 027949088 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 020673072 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 001970336 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-06-07 00:04 - 2022-05-31 18:27 - 001970336 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-06-07 00:04 - 2022-05-31 18:27 - 001526952 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-06-07 00:04 - 2022-05-31 18:27 - 001526952 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-06-07 00:04 - 2022-05-31 18:27 - 001432928 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 001432928 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 001146224 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 001146224 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 000468528 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 000376368 _____ C:\WINDOWS\system32\ze_loader.dll
2022-06-07 00:04 - 2022-05-31 18:27 - 000142368 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2022-06-06 23:48 - 2022-06-06 23:48 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-06-06 23:48 - 2022-06-06 23:48 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-06-06 23:29 - 2022-03-17 16:55 - 008818256 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw08.sys
2022-06-06 23:29 - 2022-03-17 16:55 - 001626192 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2022-06-06 23:29 - 2022-03-17 16:11 - 002687540 _____ C:\WINDOWS\system32\Drivers\Netwfw08.dat
2022-05-30 17:35 - 2022-05-30 17:35 - 000000000 ____D C:\Users\Default\AppData\Local\Dell
2022-05-30 17:33 - 2022-05-30 17:33 - 000000028 ____H C:\.GamingRoot
2022-05-30 17:33 - 2022-05-30 17:33 - 000000000 ____D C:\XboxGames
2022-05-07 07:40 - 2022-06-12 22:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-05-07 07:40 - 2022-06-12 22:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-05-07 07:40 - 2022-05-07 07:40 - 000023649 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2022-05-07 07:40 - 2022-05-07 07:40 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2022-05-07 07:40 - 2022-05-07 07:40 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2022-05-07 07:40 - 2022-05-07 02:20 - 000023461 _____ C:\WINDOWS\Core.xml
2022-05-07 07:39 - 2022-05-07 07:39 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2022-05-07 07:39 - 2022-05-07 07:39 - 000000000 ____D C:\ProgramData\ssh
2022-05-07 07:39 - 2022-05-06 14:52 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2022-05-07 07:39 - 2022-05-06 11:15 - 001783296 _____ C:\WINDOWS\system32\libcrypto.dll
2022-05-07 07:32 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2022-05-07 07:32 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-05-07 07:31 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-05-07 07:31 - 2022-05-07 07:31 - 000328664 _____ C:\WINDOWS\system32\prfi0416.dat
2022-05-07 07:31 - 2022-05-07 07:31 - 000040858 _____ C:\WINDOWS\system32\prfd0416.dat
2022-05-07 07:31 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2022-05-07 07:31 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2022-05-07 07:31 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\system32\0409
2022-05-07 07:31 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\DigitalLocker
2022-05-07 02:41 - 2022-05-07 02:41 - 000000000 _SHDL C:\Users\Default User
2022-05-07 02:41 - 2022-05-07 02:41 - 000000000 _SHDL C:\Users\All Users
2022-05-07 02:28 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\Setup
2022-05-07 02:25 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\system32\Pbr
2022-05-07 02:25 - 2022-05-07 02:22 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2022-05-07 02:25 - 2022-05-07 02:22 - 000076800 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2022-05-07 02:25 - 2022-05-07 02:22 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2022-05-07 02:25 - 2022-05-07 02:22 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2022-05-07 02:24 - 2022-06-14 22:05 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-05-07 02:24 - 2022-06-14 22:01 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-05-07 02:24 - 2022-06-14 21:54 - 000000000 ____D C:\WINDOWS\ServiceState
2022-05-07 02:24 - 2022-06-14 21:54 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-07 02:24 - 2022-06-14 21:53 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2022-05-07 02:24 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\UUS
2022-05-07 02:24 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2022-05-07 02:24 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\SystemResources
2022-05-07 02:24 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2022-05-07 02:24 - 2022-06-14 21:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-05-07 02:24 - 2022-06-14 21:07 - 000000000 ___RD C:\Program Files (x86)
2022-05-07 02:24 - 2022-06-13 13:27 - 000000000 ____D C:\WINDOWS\appcompat
2022-05-07 02:24 - 2022-06-13 12:47 - 000000000 ___HD C:\Program Files\WindowsApps
2022-05-07 02:24 - 2022-06-13 12:06 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-05-07 02:24 - 2022-06-12 23:15 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-05-07 02:24 - 2022-06-12 23:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-05-07 02:24 - 2022-06-12 23:13 - 000000000 ____D C:\Program Files\Windows NT
2022-05-07 02:24 - 2022-06-12 23:11 - 000000000 ____D C:\WINDOWS\Registration
2022-05-07 02:24 - 2022-06-12 22:54 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-05-07 02:24 - 2022-06-12 22:54 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 __RHD C:\Users\Public\Libraries
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\spool
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\ModemLogs
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\ProgramData\USOPrivate
2022-05-07 02:24 - 2022-06-12 22:53 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-05-07 02:24 - 2022-06-12 22:47 - 000000000 ____D C:\WINDOWS\OCR
2022-05-07 02:24 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-05-07 02:24 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\system32\setup
2022-05-07 02:24 - 2022-06-12 22:46 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\Program Files\Windows Defender
2022-05-07 02:24 - 2022-06-12 22:44 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-05-07 02:24 - 2022-05-07 07:40 - 000000000 ____D C:\WINDOWS\SystemApps
2022-05-07 02:24 - 2022-05-07 07:40 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-05-07 02:24 - 2022-05-07 07:40 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\system32\id-ID
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2022-05-07 02:24 - 2022-05-07 07:32 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\system32\Com
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\IME
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\Help
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\WINDOWS\BrowserCore
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\Program Files\Common Files\System
2022-05-07 02:24 - 2022-05-07 07:31 - 000000000 ____D C:\Program Files (x86)\Windows NT
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 __SHD C:\Program Files\Windows Sidebar
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\Web
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\system32\winevt
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\system32\ras
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\SKB
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\security
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\schemas
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\Resources
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\Provisioning
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\PLA
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\Media
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\InputMethod
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\IdentityCRL
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\Globalization
2022-05-07 02:24 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\DiagTrack
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\WUModels
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2022-05-07 02:24 - 2022-05-07 02:25 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\system32\Nui
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\system32\lxss
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\WaaS
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Vss
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\tracing
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\TAPI
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Keywords
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\IME
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\icsxml
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\ias
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\DriverState
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\downlevel
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\System
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\SchCache
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\rescache
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Performance
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\L2Schemas
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Cursors
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Containers
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\WINDOWS\Branding
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\ProgramData\USOShared
2022-05-07 02:24 - 2022-05-07 02:24 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2022-05-07 02:24 - 2022-05-07 02:22 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2022-05-07 02:24 - 2022-05-07 02:22 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2022-05-07 02:24 - 2022-05-07 02:22 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2022-05-07 02:24 - 2022-05-07 02:22 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2022-05-07 02:24 - 2022-05-07 02:22 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2022-05-07 02:24 - 2022-05-07 02:22 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2022-05-07 02:22 - 2022-06-14 22:01 - 000000000 ____D C:\WINDOWS\INF
2022-05-07 02:20 - 2022-05-07 08:21 - 000132456 _____ C:\WINDOWS\system32\secfw_AuthenticAMD.dll
2022-05-07 02:20 - 2022-05-07 08:21 - 000094208 _____ C:\WINDOWS\system32\Drivers\vmbusproxy.sys
2022-05-07 02:20 - 2022-05-07 08:21 - 000036864 _____ C:\WINDOWS\system32\hnsproxy.dll
2022-05-07 02:20 - 2022-05-07 08:21 - 000006658 _____ C:\WINDOWS\system32\VmFirmwareHcl Third-Party Notices.txt
2022-05-07 02:20 - 2022-05-07 08:21 - 000006658 _____ C:\WINDOWS\system32\VmFirmware Third-Party Notices.txt
2022-05-07 02:20 - 2022-05-07 07:40 - 000316640 _____ C:\WINDOWS\WMSysPr9.prx
2022-05-07 02:20 - 2022-05-07 07:40 - 000196608 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\SysWOW64\l3codecp.acm
2022-05-07 02:20 - 2022-05-07 07:39 - 000569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-05-07 02:20 - 2022-05-07 07:39 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-05-07 02:20 - 2022-05-07 07:39 - 000208896 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\l3codecp.acm
2022-05-07 02:20 - 2022-05-07 07:39 - 000114688 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\l3codeca.acm
2022-05-07 02:20 - 2022-05-07 07:39 - 000073728 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\SysWOW64\l3codeca.acm
2022-05-07 02:20 - 2022-05-07 02:20 - 004154872 _____ C:\WINDOWS\system32\rdpnanoTransport.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 003310080 _____ C:\WINDOWS\system32\CloudRecoveryDownloadTool.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000839680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ir41_32original.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Bubbles.scr
2022-05-07 02:20 - 2022-05-07 02:20 - 000746496 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ir50_32original.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-05-07 02:20 - 2022-05-07 02:20 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-05-07 02:20 - 2022-05-07 02:20 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2022-05-07 02:20 - 2022-05-07 02:20 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2022-05-07 02:20 - 2022-05-07 02:20 - 000338432 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir41_qcxoriginal.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000286720 _____ C:\WINDOWS\system32\EsclScan.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2022-05-07 02:20 - 2022-05-07 02:20 - 000211938 _____ C:\WINDOWS\SysWOW64\lcphrase.tbl
2022-05-07 02:20 - 2022-05-07 02:20 - 000211938 _____ C:\WINDOWS\system32\lcphrase.tbl
2022-05-07 02:20 - 2022-05-07 02:20 - 000200704 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000200192 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir50_qcoriginal.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000197632 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\ir32_32original.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000197632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iac25_32.ax
2022-05-07 02:20 - 2022-05-07 02:20 - 000195618 _____ C:\WINDOWS\system32\C_10002.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000183808 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir50_qcxoriginal.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000180224 _____ C:\WINDOWS\system32\stordiag.exe
2022-05-07 02:20 - 2022-05-07 02:20 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Mystify.scr
2022-05-07 02:20 - 2022-05-07 02:20 - 000177698 _____ C:\WINDOWS\system32\C_10003.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Ribbons.scr
2022-05-07 02:20 - 2022-05-07 02:20 - 000173602 _____ C:\WINDOWS\system32\C_10008.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000163840 _____ C:\WINDOWS\system32\CodeIntegrityAggregator.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000162850 _____ C:\WINDOWS\system32\C_10001.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000146944 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ivfsrc.ax
2022-05-07 02:20 - 2022-05-07 02:20 - 000145622 _____ C:\WINDOWS\SysWOW64\devmgmt.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000145519 _____ C:\WINDOWS\SysWOW64\perfmon.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000145519 _____ C:\WINDOWS\system32\perfmon.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000145127 _____ C:\WINDOWS\SysWOW64\eventvwr.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000145127 _____ C:\WINDOWS\system32\eventvwr.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000144384 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000133120 _____ C:\WINDOWS\SysWOW64\stordiag.exe
2022-05-07 02:20 - 2022-05-07 02:20 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotesp.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000120320 _____ (Intel Corporation.) C:\WINDOWS\SysWOW64\ir41_qcoriginal.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000114688 _____ C:\WINDOWS\system32\ThreatResponseEngine.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000113256 _____ C:\WINDOWS\SysWOW64\compmgmt.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000113256 _____ C:\WINDOWS\system32\compmgmt.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlsrv32.rll
2022-05-07 02:20 - 2022-05-07 02:20 - 000098304 ____N C:\WINDOWS\system32\Drivers\RoutePolicy.sys
2022-05-07 02:20 - 2022-05-07 02:20 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.rll
2022-05-07 02:20 - 2022-05-07 02:20 - 000093702 _____ C:\WINDOWS\SysWOW64\SubRange.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000093702 _____ C:\WINDOWS\system32\SubRange.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000092746 _____ C:\WINDOWS\SysWOW64\services.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000092746 _____ C:\WINDOWS\system32\services.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000090704 _____ C:\WINDOWS\system32\gatherNetworkInfo.vbs
2022-05-07 02:20 - 2022-05-07 02:20 - 000090624 _____ (Radius Inc.) C:\WINDOWS\SysWOW64\iccvid.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000090112 _____ C:\WINDOWS\system32\BWContextHandler.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remotesp.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000083288 _____ C:\WINDOWS\system32\Drivers\NDKPerf.sys
2022-05-07 02:20 - 2022-05-07 02:20 - 000069120 _____ (Twain Working Group) C:\WINDOWS\twain_32.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_875.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_870.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_500.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_21027.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_21025.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20924.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20905.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20880.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20871.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20838.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20833.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20424.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20423.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20420.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20297.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20290.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20285.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20284.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20280.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20278.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20277.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20273.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20269.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20108.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20107.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20106.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_20105.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1149.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1148.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1147.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1146.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1145.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1144.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1143.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1142.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1141.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1140.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1047.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_1026.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10082.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10081.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10079.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10029.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10021.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10017.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10010.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10007.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10006.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10005.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10004.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_10000.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000066082 _____ C:\WINDOWS\system32\C_037.NLS
2022-05-07 02:20 - 2022-05-07 02:20 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidphone.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000063081 _____ C:\WINDOWS\SysWOW64\certlm.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000063081 _____ C:\WINDOWS\system32\certlm.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000063070 _____ C:\WINDOWS\SysWOW64\certmgr.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000063070 _____ C:\WINDOWS\system32\certmgr.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000061440 _____ C:\WINDOWS\system32\SpectrumSyncClient.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000060458 _____ C:\WINDOWS\SysWOW64\ideograf.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000060458 _____ C:\WINDOWS\system32\ideograf.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000060267 _____ C:\WINDOWS\system32\srms.dat
2022-05-07 02:20 - 2022-05-07 02:20 - 000058736 _____ C:\WINDOWS\system32\esimtool.exe
2022-05-07 02:20 - 2022-05-07 02:20 - 000057856 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000055136 _____ C:\WINDOWS\system32\SFAPE.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000049152 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-05-07 02:20 - 2022-05-07 02:20 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\more.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\format.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\cliconfg.rll
2022-05-07 02:20 - 2022-05-07 02:20 - 000041587 _____ C:\WINDOWS\SysWOW64\azman.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000041587 _____ C:\WINDOWS\system32\azman.msc
2022-05-07 02:20 - 2022-05-07 02:20 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000038624 _____ C:\WINDOWS\system32\tprtdll.dll
2022-05-07 02:20 - 2022-05-07 02:20 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cliconfg.rll
2022-05-07 02:20 - 2022-05-07 02:20 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hidphone.tsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\more.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000024114 _____ C:\WINDOWS\SysWOW64\lcptr.tbl
2022-05-07 02:20 - 2022-05-07 02:20 - 000024114 _____ C:\WINDOWS\system32\lcptr.tbl
2022-05-07 02:20 - 2022-05-07 02:20 - 000024006 _____ C:\WINDOWS\SysWOW64\gb2312.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000024006 _____ C:\WINDOWS\system32\gb2312.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000022984 _____ C:\WINDOWS\SysWOW64\bopomofo.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000022984 _____ C:\WINDOWS\system32\bopomofo.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000021656 _____ C:\WINDOWS\system32\NetTrace.PLA.Diagnostics.xml
2022-05-07 02:20 - 2022-05-07 02:20 - 000020268 _____ C:\WINDOWS\system32\DeliveryOptimizationMIProv.mof
2022-05-07 02:20 - 2022-05-07 02:20 - 000019485 _____ C:\WINDOWS\SysWOW64\srms-apr.dat
2022-05-07 02:20 - 2022-05-07 02:20 - 000019485 _____ C:\WINDOWS\system32\srms-apr.dat
2022-05-07 02:20 - 2022-05-07 02:20 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000017363 _____ C:\WINDOWS\SysWOW64\EventViewer_EventDetails.xsl
2022-05-07 02:20 - 2022-05-07 02:20 - 000017363 _____ C:\WINDOWS\system32\EventViewer_EventDetails.xsl
2022-05-07 02:20 - 2022-05-07 02:20 - 000016740 _____ C:\WINDOWS\SysWOW64\ShiftJIS.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000016740 _____ C:\WINDOWS\system32\ShiftJIS.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000012876 _____ C:\WINDOWS\SysWOW64\korean.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000012876 _____ C:\WINDOWS\system32\korean.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-05-07 02:20 - 2022-05-07 02:20 - 000011292 _____ C:\WINDOWS\SysWOW64\srms-apr-v.dat
2022-05-07 02:20 - 2022-05-07 02:20 - 000011292 _____ C:\WINDOWS\system32\srms-apr-v.dat
2022-05-07 02:20 - 2022-05-07 02:20 - 000008484 _____ C:\WINDOWS\SysWOW64\kanji_2.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000008484 _____ C:\WINDOWS\system32\kanji_2.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000008269 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2022-05-07 02:20 - 2022-05-07 02:20 - 000008269 _____ C:\WINDOWS\system32\ResPriHMImageList
2022-05-07 02:20 - 2022-05-07 02:20 - 000008266 _____ C:\WINDOWS\system32\ResPriUHMImageList
2022-05-07 02:20 - 2022-05-07 02:20 - 000008264 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2022-05-07 02:20 - 2022-05-07 02:20 - 000008240 _____ C:\WINDOWS\system32\ResPriLMImageList
2022-05-07 02:20 - 2022-05-07 02:20 - 000008240 _____ C:\WINDOWS\system32\ResPriImageList
2022-05-07 02:20 - 2022-05-07 02:20 - 000006948 _____ C:\WINDOWS\SysWOW64\kanji_1.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000006948 _____ C:\WINDOWS\system32\kanji_1.uce
2022-05-07 02:20 - 2022-05-07 02:20 - 000004453 _____ C:\WINDOWS\SysWOW64\odbcconf.rsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000004014 _____ C:\WINDOWS\SysWOW64\xwizard.dtd
2022-05-07 02:20 - 2022-05-07 02:20 - 000004014 _____ C:\WINDOWS\system32\xwizard.dtd
2022-05-07 02:20 - 2022-05-07 02:20 - 000003789 _____ C:\WINDOWS\SysWOW64\WwanFeatureTests.xml
2022-05-07 02:20 - 2022-05-07 02:20 - 000003789 _____ C:\WINDOWS\system32\WwanFeatureTests.xml
2022-05-07 02:20 - 2022-05-07 02:20 - 000003666 _____ C:\WINDOWS\SysWOW64\sysprtj.sep
2022-05-07 02:20 - 2022-05-07 02:20 - 000003468 _____ C:\WINDOWS\system32\rootporterr.mof
2022-05-07 02:20 - 2022-05-07 02:20 - 000003317 _____ C:\WINDOWS\SysWOW64\sysprint.sep
2022-05-07 02:20 - 2022-05-07 02:20 - 000002233 _____ C:\WINDOWS\SysWOW64\12520850.cpx
2022-05-07 02:20 - 2022-05-07 02:20 - 000002151 _____ C:\WINDOWS\SysWOW64\12520437.cpx
2022-05-07 02:20 - 2022-05-07 02:20 - 000002044 _____ C:\WINDOWS\system32\DeliveryOptimizationMIProvUninstall.mof
2022-05-07 02:20 - 2022-05-07 02:20 - 000001820 _____ C:\WINDOWS\SysWOW64\rasctrnm.h
2022-05-07 02:20 - 2022-05-07 02:20 - 000001673 _____ C:\WINDOWS\SysWOW64\tcpbidi.xml
2022-05-07 02:20 - 2022-05-07 02:20 - 000001540 _____ C:\WINDOWS\system32\Drivers\etc\quotes
2022-05-07 02:20 - 2022-05-07 02:20 - 000000714 _____ C:\WINDOWS\SysWOW64\RestartManager.mof
2022-05-07 02:20 - 2022-05-07 02:20 - 000000565 _____ C:\WINDOWS\SysWOW64\NdfEventView.xml
2022-05-07 02:20 - 2022-05-07 02:20 - 000000565 _____ C:\WINDOWS\system32\NdfEventView.xml
2022-05-07 02:20 - 2022-05-07 02:20 - 000000263 _____ C:\WINDOWS\system32\odbcconf.rsp
2022-05-07 02:20 - 2022-05-07 02:20 - 000000256 _____ C:\WINDOWS\system32\removerootporterr.mof
2022-05-07 02:20 - 2022-05-07 02:20 - 000000176 _____ C:\WINDOWS\SysWOW64\RestartManagerUninstall.mof
2022-05-07 02:20 - 2022-05-07 02:20 - 000000150 _____ C:\WINDOWS\SysWOW64\pcl.sep
2022-05-07 02:20 - 2022-05-07 02:20 - 000000112 _____ C:\WINDOWS\SysWOW64\MixedRealityRuntime.json
2022-05-07 02:20 - 2022-05-07 02:20 - 000000112 _____ C:\WINDOWS\system32\MixedRealityRuntime.json
2022-05-07 02:20 - 2022-05-07 02:20 - 000000051 _____ C:\WINDOWS\SysWOW64\pscript.sep
2022-05-07 02:19 - 2022-05-07 02:19 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 004355072 _____ C:\WINDOWS\system32\Windows.UI.Input.Inking.Analysis.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 003635200 _____ C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.Analysis.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 003441512 _____ (Marvell Semiconductor Inc.) C:\WINDOWS\system32\Drivers\evbda.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 003440660 _____ C:\WINDOWS\SysWOW64\Drivers\gm.dls
2022-05-07 02:19 - 2022-05-07 02:19 - 003424104 _____ (QLogic Corporation) C:\WINDOWS\system32\Drivers\evbd0a.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 003170304 _____ C:\WINDOWS\SysWOW64\boot.sdi
2022-05-07 02:19 - 2022-05-07 02:19 - 003170304 _____ C:\WINDOWS\system32\boot.sdi
2022-05-07 02:19 - 2022-05-07 02:19 - 002575624 ____R (The ICU Project) C:\WINDOWS\system32\icu.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 002318336 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 002126336 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 002088768 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 001854832 _____ (Chelsio Communications) C:\WINDOWS\system32\Drivers\cht4vx64.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 001136472 _____ (PMC-Sierra) C:\WINDOWS\system32\Drivers\adp80xx.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 001132392 _____ (Mellanox) C:\WINDOWS\system32\Drivers\mlx4_bus.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000987512 _____ C:\WINDOWS\SysWOW64\HrtfDspCpu.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000928960 _____ (SQLite Development Team) C:\WINDOWS\system32\winsqlite3.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000885584 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAVC.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000841544 _____ C:\WINDOWS\SysWOW64\locale.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000841544 _____ C:\WINDOWS\system32\locale.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000745552 _____ C:\WINDOWS\system32\DynamicLong.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000703672 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\winsqlite3.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000673088 _____ C:\WINDOWS\SysWOW64\mlang.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000673088 _____ C:\WINDOWS\system32\mlang.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000576856 _____ (LSI Corporation, Inc.) C:\WINDOWS\system32\Drivers\megasr.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000559976 _____ (Mellanox) C:\WINDOWS\system32\Drivers\ibbus.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000534872 _____ (QLogic Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000515152 _____ C:\WINDOWS\system32\DynamicMedium.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000413008 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorV.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000385024 _____ C:\WINDOWS\system32\hwreqchk.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000323152 _____ C:\WINDOWS\system32\DynamicShort.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000320880 _____ (Chelsio Communications) C:\WINDOWS\system32\Drivers\cht4sx64.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000306512 _____ (VIA Corporation) C:\WINDOWS\system32\Drivers\VSTXRAID.SYS
2022-05-07 02:19 - 2022-05-07 02:19 - 000296448 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000267624 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000264704 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000260440 _____ (AMD Technologies Inc.) C:\WINDOWS\system32\Drivers\amdsbs.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000210784 _____ (Microsemi Corportation) C:\WINDOWS\system32\Drivers\SmartSAMD.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000204074 _____ C:\WINDOWS\SysWOW64\winrm.vbs
2022-05-07 02:19 - 2022-05-07 02:19 - 000204074 _____ C:\WINDOWS\system32\winrm.vbs
2022-05-07 02:19 - 2022-05-07 02:19 - 000196642 _____ C:\WINDOWS\system32\C_950.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000196642 _____ C:\WINDOWS\system32\C_949.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000196642 _____ C:\WINDOWS\system32\C_936.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000192512 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000189986 _____ C:\WINDOWS\system32\C_1361.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000187938 _____ C:\WINDOWS\system32\C_20005.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000187224 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\ItSas35i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000186402 _____ C:\WINDOWS\system32\C_20001.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000185378 _____ C:\WINDOWS\system32\C_20003.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000180770 _____ C:\WINDOWS\system32\C_20932.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000180258 _____ C:\WINDOWS\system32\C_20004.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000180258 _____ C:\WINDOWS\system32\C_20000.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000177698 _____ C:\WINDOWS\system32\C_20949.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000177664 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_I2C_GLK.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000177152 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_I2C_CNL.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000175104 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_I2C_BXT_P.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000173602 _____ C:\WINDOWS\system32\C_20936.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000173602 _____ C:\WINDOWS\system32\C_20002.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000171520 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_I2C.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000167784 _____ (VIA Technologies Inc.,Ltd) C:\WINDOWS\system32\Drivers\vsmraid.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000167640 _____ C:\WINDOWS\SysWOW64\chs_singlechar_pinyin.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000167640 _____ C:\WINDOWS\system32\chs_singlechar_pinyin.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000167256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvstor.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000162850 _____ C:\WINDOWS\system32\C_932.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000151392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvraid.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000149056 _____ C:\WINDOWS\system32\LargeRoom.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000147456 _____ C:\WINDOWS\system32\MediaFoundationAggregator.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000147304 _____ (Mellanox) C:\WINDOWS\system32\Drivers\ndfltr.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000145622 _____ C:\WINDOWS\system32\devmgmt.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000145256 _____ (Chelsio Communications) C:\WINDOWS\system32\Drivers\cht4dx64.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000145059 _____ C:\WINDOWS\SysWOW64\taskschd.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000145059 _____ C:\WINDOWS\system32\taskschd.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144998 _____ C:\WINDOWS\SysWOW64\lusrmgr.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144998 _____ C:\WINDOWS\system32\lusrmgr.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144909 _____ C:\WINDOWS\SysWOW64\fsmgmt.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144909 _____ C:\WINDOWS\system32\fsmgmt.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144862 _____ C:\WINDOWS\SysWOW64\tpm.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144862 _____ C:\WINDOWS\system32\tpm.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000144673 _____ C:\WINDOWS\system32\WmiMgmt.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000142904 _____ C:\WINDOWS\SysWOW64\slmgr.vbs
2022-05-07 02:19 - 2022-05-07 02:19 - 000142904 _____ C:\WINDOWS\system32\slmgr.vbs
2022-05-07 02:19 - 2022-05-07 02:19 - 000139810 _____ C:\WINDOWS\system32\C_20261.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000138600 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\lsi_sas3i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000138092 _____ C:\WINDOWS\system32\AverageRoom.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000132968 _____ (PMC-Sierra, Inc.) C:\WINDOWS\system32\Drivers\arcsas.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000125280 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas2i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000124118 _____ C:\WINDOWS\SysWOW64\comexp.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000124118 _____ C:\WINDOWS\system32\comexp.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000115109 _____ C:\WINDOWS\SysWOW64\WF.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000115109 _____ C:\WINDOWS\system32\WF.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000114688 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000113496 _____ (Apple Inc.) C:\WINDOWS\system32\Drivers\AppleSSD.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000113152 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_I2C.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000112128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_GPIO2_CNL.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000110036 _____ C:\WINDOWS\system32\MediumRoom.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000109920 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000108376 _____ (LSI) C:\WINDOWS\system32\Drivers\3ware.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000101224 _____ (Broadcom Inc) C:\WINDOWS\system32\Drivers\megasas35i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000100576 _____ C:\WINDOWS\system32\wow64con.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000098304 _____ C:\WINDOWS\system32\dplcsp.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000098304 _____ C:\WINDOWS\system32\CompatAggregator.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000096256 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_GPIO2_GLK.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000093184 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_GPIO2_BXT_P.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000091136 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\iai2c.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000090472 _____ (Broadcom Limited) C:\WINDOWS\system32\Drivers\mpi3drvi.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000090112 _____ C:\WINDOWS\system32\Windows.Internal.WaaSMedicDocked.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000089761 _____ C:\WINDOWS\system32\DiskSnapshot.conf
2022-05-07 02:19 - 2022-05-07 02:19 - 000086016 ____R (Realtek) C:\WINDOWS\system32\Drivers\rteth.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000084312 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdsata.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000082784 _____ (Silicon Integrated Systems) C:\WINDOWS\system32\Drivers\sisraid4.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000081870 _____ C:\WINDOWS\system32\normidna.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000081752 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000079360 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2i_GPIO2.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000079348 _____ C:\WINDOWS\system32\normnfkc.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000074096 _____ (Mellanox) C:\WINDOWS\system32\Drivers\winverbs.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000073728 _____ C:\WINDOWS\system32\PrintNotification.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000073114 _____ C:\WINDOWS\system32\normnfkd.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000072704 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000069788 _____ C:\WINDOWS\system32\SmallRoom.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000069632 _____ C:\WINDOWS\system32\pospaymentsworker.exe
2022-05-07 02:19 - 2022-05-07 02:19 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2022-05-07 02:19 - 2022-05-07 02:19 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\format.com
2022-05-07 02:19 - 2022-05-07 02:19 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000069464 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\percsas3i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_874.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_869.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_866.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_865.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_864.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_863.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_862.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_861.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_860.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_858.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_857.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_855.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_852.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_850.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_775.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_737.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_720.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066594 _____ C:\WINDOWS\system32\C_437.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_708.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28605.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\c_28603.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28599.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28598.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28597.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28596.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28595.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28594.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28593.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28592.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_28591.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_21866.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_20866.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_20127.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1258.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1257.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1256.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1255.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1254.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1253.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1252.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1251.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000066082 _____ C:\WINDOWS\system32\C_1250.NLS
2022-05-07 02:19 - 2022-05-07 02:19 - 000065360 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\Drivers\HpSAMD.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000064872 _____ (Marvell Semiconductor, Inc.) C:\WINDOWS\system32\Drivers\mvumis.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrnsave.scr
2022-05-07 02:19 - 2022-05-07 02:19 - 000060124 _____ C:\WINDOWS\system32\tcpmon.ini
2022-05-07 02:19 - 2022-05-07 02:19 - 000059752 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\percsas2i.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000057344 _____ C:\WINDOWS\system32\deploymentcsphelper.exe
2022-05-07 02:19 - 2022-05-07 02:19 - 000057136 _____ C:\WINDOWS\system32\normnfc.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000050984 _____ C:\WINDOWS\system32\camext.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000050442 _____ C:\WINDOWS\system32\normnfd.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000049152 _____ (Microsoft) C:\WINDOWS\system32\oflc-nz.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000049152 _____ (Microsoft) C:\WINDOWS\system32\csrr.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000047682 _____ C:\WINDOWS\SysWOW64\diskmgmt.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000047682 _____ C:\WINDOWS\system32\diskmgmt.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000046888 _____ C:\WINDOWS\system32\wow64base.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000046645 _____ C:\WINDOWS\SysWOW64\ctac.json
2022-05-07 02:19 - 2022-05-07 02:19 - 000046645 _____ C:\WINDOWS\system32\ctac.json
2022-05-07 02:19 - 2022-05-07 02:19 - 000045920 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\Drivers\sisraid2.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000045568 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdi2c.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000045408 _____ (VMware, Inc.) C:\WINDOWS\system32\Drivers\pvscsii.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000045056 _____ (Microsoft) C:\WINDOWS\system32\fpb.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000043131 _____ C:\WINDOWS\mib.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000040960 _____ (Microsoft) C:\WINDOWS\system32\esrb.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000040960 _____ (Microsoft) C:\WINDOWS\system32\cero.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000040784 _____ C:\WINDOWS\system32\OutdoorAudioEnvironment.bin
2022-05-07 02:19 - 2022-05-07 02:19 - 000040448 _____ (Microsoft) C:\WINDOWS\SysWOW64\csrr.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000038768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msgsm32.acm
2022-05-07 02:19 - 2022-05-07 02:19 - 000038400 _____ (Microsoft) C:\WINDOWS\SysWOW64\oflc-nz.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000038128 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000037888 _____ (Microsoft) C:\WINDOWS\SysWOW64\fpb.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000037224 _____ (Mellanox) C:\WINDOWS\system32\Drivers\winmad.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000036864 ____R (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000036864 _____ (Microsoft) C:\WINDOWS\system32\usk.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000036864 _____ (Microsoft) C:\WINDOWS\system32\cob-au.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000036352 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\iagpio.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000034128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imaadp32.acm
2022-05-07 02:19 - 2022-05-07 02:19 - 000033576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msadp32.acm
2022-05-07 02:19 - 2022-05-07 02:19 - 000033280 _____ (Microsoft) C:\WINDOWS\SysWOW64\cero.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrnsave.scr
2022-05-07 02:19 - 2022-05-07 02:19 - 000032768 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000032080 _____ (Promise Technology, Inc.) C:\WINDOWS\system32\Drivers\stexstor.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000031252 _____ C:\WINDOWS\system32\NarratorControlTemplates.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000030208 _____ (Microsoft) C:\WINDOWS\SysWOW64\esrb.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000029184 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\pegi-pt.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\pegi.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000028672 _____ (Microsoft) C:\WINDOWS\system32\grb.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfime.ime
2022-05-07 02:19 - 2022-05-07 02:19 - 000028672 _____ (Chelsio Communications) C:\WINDOWS\system32\Drivers\cht4vfx.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000028008 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdxata.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000027648 _____ (Microsoft) C:\WINDOWS\SysWOW64\usk.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000027648 _____ (Microsoft) C:\WINDOWS\SysWOW64\cob-au.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000026336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msg711.acm
2022-05-07 02:19 - 2022-05-07 02:19 - 000024576 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000024576 _____ (Microsoft) C:\WINDOWS\system32\pcbp.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000024576 _____ (Microsoft) C:\WINDOWS\system32\djctq.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000022720 _____ C:\WINDOWS\SysWOW64\camext.dll
2022-05-07 02:19 - 2022-05-07 02:19 - 000019456 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi-pt.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000019456 _____ (Microsoft) C:\WINDOWS\SysWOW64\pegi.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000018432 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdgpio2.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000017920 _____ (Microsoft) C:\WINDOWS\SysWOW64\grb.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000016384 _____ C:\WINDOWS\SysWOW64\BrokerFileDialog.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000016384 _____ C:\WINDOWS\system32\BrokerFileDialog.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000014336 _____ (Microsoft) C:\WINDOWS\SysWOW64\djctq.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000013824 _____ (Microsoft) C:\WINDOWS\SysWOW64\pcbp.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000013091 _____ C:\WINDOWS\system32\DevModeRunAsUserConfig.msc
2022-05-07 02:19 - 2022-05-07 02:19 - 000012288 _____ (Microsoft) C:\WINDOWS\system32\WEB.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000010576 _____ C:\WINDOWS\system32\TransformPPSToWlan.xslt
2022-05-07 02:19 - 2022-05-07 02:19 - 000010429 _____ C:\WINDOWS\system32\ScavengeSpace.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000009926 _____ C:\WINDOWS\SysWOW64\l_intl.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000009926 _____ C:\WINDOWS\system32\l_intl.nls
2022-05-07 02:19 - 2022-05-07 02:19 - 000009728 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\bcmfn2.sys
2022-05-07 02:19 - 2022-05-07 02:19 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfime.ime
2022-05-07 02:19 - 2022-05-07 02:19 - 000008192 _____ C:\WINDOWS\system32\settings.dat
2022-05-07 02:19 - 2022-05-07 02:19 - 000004675 _____ C:\WINDOWS\SysWOW64\wsmanconfig_schema.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000004675 _____ C:\WINDOWS\system32\wsmanconfig_schema.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000004608 _____ (Microsoft) C:\WINDOWS\SysWOW64\WEB.rs
2022-05-07 02:19 - 2022-05-07 02:19 - 000004148 _____ C:\WINDOWS\system32\psmodulediscoveryprovider.mof
2022-05-07 02:19 - 2022-05-07 02:19 - 000003944 _____ C:\WINDOWS\system32\DetailedReading-Default.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000003666 _____ C:\WINDOWS\system32\sysprtj.sep
2022-05-07 02:19 - 2022-05-07 02:19 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000003317 _____ C:\WINDOWS\system32\sysprint.sep
2022-05-07 02:19 - 2022-05-07 02:19 - 000002426 _____ C:\WINDOWS\SysWOW64\WsmTxt.xsl
2022-05-07 02:19 - 2022-05-07 02:19 - 000002426 _____ C:\WINDOWS\system32\WsmTxt.xsl
2022-05-07 02:19 - 2022-05-07 02:19 - 000002404 _____ C:\WINDOWS\SysWOW64\WimBootCompress.ini
2022-05-07 02:19 - 2022-05-07 02:19 - 000002404 _____ C:\WINDOWS\system32\WimBootCompress.ini
2022-05-07 02:19 - 2022-05-07 02:19 - 000001820 _____ C:\WINDOWS\system32\rasctrnm.h
2022-05-07 02:19 - 2022-05-07 02:19 - 000001688 _____ C:\WINDOWS\system32\TransformPPSToWlanCredentials.xslt
2022-05-07 02:19 - 2022-05-07 02:19 - 000001673 _____ C:\WINDOWS\system32\tcpbidi.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000001559 _____ C:\WINDOWS\SysWOW64\WsmPty.xsl
2022-05-07 02:19 - 2022-05-07 02:19 - 000001559 _____ C:\WINDOWS\system32\WsmPty.xsl
2022-05-07 02:19 - 2022-05-07 02:19 - 000001369 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2022-05-07 02:19 - 2022-05-07 02:19 - 000001281 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2022-05-07 02:19 - 2022-05-07 02:19 - 000000724 _____ C:\WINDOWS\system32\wpr.config.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000000714 _____ C:\WINDOWS\system32\RestartManager.mof
2022-05-07 02:19 - 2022-05-07 02:19 - 000000670 ___RH C:\WINDOWS\WindowsShell.Manifest
2022-05-07 02:19 - 2022-05-07 02:19 - 000000646 _____ C:\WINDOWS\SysWOW64\Drivers\gmreadme.txt
2022-05-07 02:19 - 2022-05-07 02:19 - 000000614 _____ C:\WINDOWS\system32\WdsUnattendTemplate.xml
2022-05-07 02:19 - 2022-05-07 02:19 - 000000407 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2022-05-07 02:19 - 2022-05-07 02:19 - 000000176 _____ C:\WINDOWS\system32\RestartManagerUninstall.mof
2022-05-07 02:19 - 2022-05-07 02:19 - 000000150 _____ C:\WINDOWS\system32\pcl.sep
2022-05-07 02:19 - 2022-05-07 02:19 - 000000051 _____ C:\WINDOWS\system32\pscript.sep
2022-05-07 02:19 - 2022-05-07 02:19 - 000000033 _____ C:\WINDOWS\SysWOW64\winrm.cmd
2022-05-07 02:19 - 2022-05-07 02:19 - 000000033 _____ C:\WINDOWS\system32\winrm.cmd
2022-05-07 02:18 - 2022-05-07 02:19 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2022-05-07 02:18 - 2022-05-07 02:18 - 003440660 _____ C:\WINDOWS\system32\Drivers\gm.dls
2022-05-07 02:18 - 2022-05-07 02:18 - 001219976 _____ C:\WINDOWS\system32\HrtfDspCpu.dll
2022-05-07 02:18 - 2022-05-07 02:18 - 000327680 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-07 02:18 - 2022-05-07 02:18 - 000270336 _____ C:\WINDOWS\system32\CoreMas.dll
2022-05-07 02:18 - 2022-05-07 02:18 - 000067528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msgsm32.acm
2022-05-07 02:18 - 2022-05-07 02:18 - 000063392 _____ (Microsoft Corporation) C:\WINDOWS\system32\imaadp32.acm
2022-05-07 02:18 - 2022-05-07 02:18 - 000059248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msadp32.acm
2022-05-07 02:18 - 2022-05-07 02:18 - 000050984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg711.acm
2022-05-07 02:18 - 2022-05-07 02:18 - 000000646 _____ C:\WINDOWS\system32\Drivers\gmreadme.txt
2022-05-07 02:17 - 2022-06-14 21:58 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-05-07 02:17 - 2022-06-14 21:53 - 115605504 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-05-07 02:17 - 2022-06-14 21:53 - 030932992 _____ C:\WINDOWS\system32\config\SYSTEM
2022-05-07 02:17 - 2022-06-14 21:53 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT
2022-05-07 02:17 - 2022-06-14 21:53 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-05-07 02:17 - 2022-06-14 21:53 - 000131072 _____ C:\WINDOWS\system32\config\SAM
2022-05-07 02:17 - 2022-06-14 21:53 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2022-05-07 02:17 - 2022-06-12 22:53 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2022-05-07 02:17 - 2022-06-12 22:44 - 000000000 ____D C:\WINDOWS\servicing
2022-05-07 02:17 - 2022-05-07 02:42 - 000000000 ____D C:\WINDOWS\system32\SMI
2022-05-06 21:02 - 2022-05-06 21:03 - 000000000 ____D C:\ProgramData\McInstTemp0171241651881768
2022-05-03 07:13 - 2022-06-12 22:54 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-05-02 13:57 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\system32\Samsung
2022-05-02 13:56 - 2022-06-12 22:53 - 000000000 ____D C:\WINDOWS\Firmware
2022-04-24 20:29 - 2022-04-24 20:29 - 000000000 ____D C:\Users\rayll\Downloads\Editor Removedor Marca D'Ãgua- Windows 11 (1)
2022-04-24 20:29 - 2021-09-07 15:00 - 025073647 _____ C:\Users\rayll\Downloads\Como excluir aviso de cÃ³pia de avaliaÃ§Ã£o.mp4
2022-04-24 20:29 - 2013-08-10 15:09 - 000567296 _____ (hxxp://www.My7Apps.Fr) C:\Users\rayll\Downloads\Removedor Editor Marca D'Ãgua.exe
2022-04-24 20:29 - 2013-07-15 08:37 - 000000188 _____ C:\Users\rayll\Downloads\NOVA GERAÃÃO EM INFORMÃTICA.url
2022-04-24 20:28 - 2022-04-24 20:28 - 024600172 _____ C:\Users\rayll\Downloads\Editor Removedor Marca D'Ãgua- Windows 11 (1).rar
2022-04-24 20:25 - 2022-04-24 20:26 - 024600172 _____ C:\Users\rayll\Downloads\Editor Removedor Marca D'Ãgua- Windows 11.rar
2022-04-23 16:44 - 2022-04-23 16:44 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2022-04-23 15:35 - 2022-04-23 15:35 - 000637070 _____ C:\Users\rayll\Downloads\05615-vw-volkswagen-gol-g5-k150k350k550.pdf
2022-04-23 15:35 - 2022-04-23 15:35 - 000553895 _____ C:\Users\rayll\Downloads\pdfslide.net_gol-gv-modulo-de-conforto-vw-novo-fox-gol-g5-saveiro-e-voyage-modelo-do.pdf
2022-04-05 18:12 - 2022-04-05 18:26 - 000000000 ____D C:\Program Files (x86)\KingRoot
2022-04-05 18:12 - 2022-04-05 18:12 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Tencent
2022-04-05 18:12 - 2022-04-05 18:12 - 000000000 ____D C:\Users\rayll\AppData\Roaming\KingRoot
2022-04-05 18:11 - 2022-04-05 18:11 - 032120384 _____ (KingRoot ) C:\Users\rayll\Downloads\KingRoot_pc_en(1).exe
2022-04-05 18:08 - 2022-04-05 18:08 - 000088607 _____ C:\Users\rayll\Downloads\File.zip
2022-04-05 17:44 - 2022-04-05 18:25 - 000000000 ____D C:\Program Files (x86)\Kingo ROOT
2022-04-05 17:44 - 2022-04-05 17:44 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Kingosoft
2022-04-05 17:44 - 2022-04-05 17:44 - 000000000 ____D C:\Users\rayll\AppData\Local\Kingosoft
2022-04-05 17:42 - 2022-04-05 17:42 - 000000000 ____D C:\Users\rayll\Downloads\android_root
2022-04-05 17:39 - 2022-04-05 17:40 - 017942344 _____ C:\Users\rayll\Downloads\android_root.zip
2022-04-05 17:33 - 2022-04-05 17:33 - 000000000 ___HD C:\$WinREAgent
2022-04-05 17:20 - 2022-04-05 17:20 - 006615009 _____ C:\Users\rayll\Downloads\KingoRoot.apk
2022-03-31 16:37 - 2022-03-31 16:37 - 083363896 _____ (McAfee, LLC) C:\Users\rayll\Downloads\McAfee_Installer_serial_8EBF-JhJ2BxaXPvA8fBUQA2_key_affid_105_akey.exe
2022-03-31 16:32 - 2022-03-31 16:32 - 083363896 _____ (McAfee, LLC) C:\Users\rayll\Downloads\McAfee_Installer_serial_FL1cnliHjD61RCgkk0DNcA2_key_affid_105_akey.exe
2022-03-31 16:11 - 2022-06-12 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-03-31 16:11 - 2022-05-01 20:43 - 000000000 ____D C:\Program Files (x86)\Java
2022-03-31 16:11 - 2022-04-28 16:54 - 000165600 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2022-03-31 16:11 - 2022-03-31 16:11 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Sun
2022-03-31 16:10 - 2022-03-31 16:10 - 002254024 _____ (Oracle Corporation) C:\Users\rayll\Downloads\JavaSetup8u321.exe
2022-03-29 21:20 - 2022-03-29 21:20 - 000065236 _____ C:\Users\rayll\Downloads\Bradesco_29032022_212033.pdf
2022-03-26 12:00 - 2022-03-26 12:00 - 000001133 _____ C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ksuite.lnk
2022-03-26 11:52 - 2022-03-26 11:52 - 000000000 ____D C:\Users\rayll\Downloads\Ksuite 2.70
2022-03-26 11:50 - 2022-03-26 11:52 - 1015445588 _____ C:\Users\rayll\Downloads\Ksuite 2.70.rar
2022-03-20 19:21 - 2022-03-20 19:21 - 000215201 _____ C:\Users\rayll\Downloads\570c9e3a6.pdf

==================== TrÃªs meses (modificados) ==================

(Se uma entrada for incluÃ­da na fixlist, o arquivo/pasta serÃ¡ movido.)

2022-06-14 21:58 - 2021-03-21 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2022-06-14 21:56 - 2021-03-21 20:29 - 000000000 __RSD C:\Users\rayll\OneDrive\Documentos\McAfee Vaults
2022-06-14 21:56 - 2019-02-18 15:28 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-14 21:56 - 2019-02-18 15:27 - 000000000 ___RD C:\Users\rayll\OneDrive
2022-06-14 21:56 - 2019-02-13 11:11 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2022-06-14 21:55 - 2019-02-18 15:22 - 000000000 __SHD C:\Users\rayll\IntelGraphicsProfiles
2022-06-14 21:54 - 2021-04-20 09:20 - 000012288 ___SH C:\DumpStack.log.tmp
2022-06-14 21:54 - 2020-05-20 08:35 - 000101080 _____ (GAS Tecnologia) C:\WINDOWS\system32\Drivers\wsddfac.sys
2022-06-14 21:54 - 2019-02-19 16:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-06-14 21:54 - 2019-02-13 11:06 - 000000000 ____D C:\Intel
2022-06-14 21:38 - 2019-02-13 11:18 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-06-14 21:37 - 2019-02-19 10:53 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-14 21:37 - 2019-02-18 15:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-06-14 21:34 - 2019-02-18 15:29 - 000000000 ____D C:\Users\rayll\AppData\LocalLow\Mozilla
2022-06-14 21:30 - 2019-02-19 10:53 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-14 21:07 - 2021-12-14 18:25 - 000000000 ___HD C:\Program Files (x86)\InstallJammer Registry
2022-06-13 12:47 - 2019-02-18 15:23 - 000000000 ____D C:\Users\rayll\AppData\Local\Packages
2022-06-13 12:35 - 2019-02-18 15:29 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-12 23:19 - 2019-02-18 15:26 - 000000000 ____D C:\Users\rayll\AppData\Local\D3DSCache
2022-06-12 23:14 - 2019-10-17 07:46 - 000000286 __RSH C:\ProgramData\ntuser.pol
2022-06-12 23:14 - 2019-01-21 00:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-06-12 23:10 - 2020-03-25 19:20 - 000027188 _____ C:\WINDOWS\system32\emptyregdb.dat
2022-06-12 23:09 - 2019-02-18 15:29 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-06-12 23:06 - 2021-06-13 15:58 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3G PERA MODEM
2022-06-12 23:06 - 2020-07-27 13:59 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativo desktop Cisco Webex Meetings
2022-06-12 23:06 - 2019-02-19 14:40 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-06-12 23:05 - 2021-12-14 15:34 - 000000000 ____D C:\Users\rayll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas SPED
2022-06-12 23:04 - 2020-08-07 13:57 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages
2022-06-12 22:55 - 2020-06-26 15:30 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-12 22:53 - 2021-11-17 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office
2022-06-12 22:53 - 2021-11-08 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2022-06-12 22:53 - 2021-06-12 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CMSClient
2022-06-12 22:53 - 2021-01-14 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2022-06-12 22:53 - 2020-07-29 13:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remap
2022-06-12 22:53 - 2020-06-28 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2022-06-12 22:53 - 2020-06-28 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marcos Velasco Security
2022-06-12 22:53 - 2020-03-23 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2022-06-12 22:53 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-06-12 22:53 - 2019-12-07 06:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2022-06-12 22:53 - 2019-06-18 14:04 - 000000000 ____D C:\Program Files\UNP
2022-06-12 22:53 - 2019-05-09 11:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2022-06-12 22:53 - 2019-03-31 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2022-06-12 22:53 - 2019-02-19 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Componente de SeguranÃ§a Bradesco
2022-06-12 22:53 - 2019-02-19 15:10 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2022-06-12 22:53 - 2019-02-19 14:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-06-12 22:53 - 2019-02-19 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF
2022-06-12 22:53 - 2019-02-13 11:09 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2022-06-12 22:53 - 2019-02-13 11:05 - 000000000 ____D C:\Program Files\Intel
2022-06-12 22:53 - 2018-09-15 04:33 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-06-12 22:53 - 2018-09-15 04:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-06-12 21:52 - 2020-08-01 11:25 - 000000000 ____D C:\Users\rayll\AppData\Local\ElevatedDiagnostics
2022-06-12 21:19 - 2020-05-19 17:24 - 000000000 ____D C:\Users\rayll\AppData\Local\Bluestacks
2022-06-12 21:18 - 2020-06-28 15:30 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2022-06-12 20:38 - 2021-12-14 15:11 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-06-12 20:35 - 2021-11-17 15:07 - 000002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-12 19:54 - 2019-02-13 11:06 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-06-12 19:44 - 2019-02-13 11:05 - 000000000 ____D C:\ProgramData\Package Cache
2022-06-12 19:42 - 2019-02-13 11:27 - 000000000 ____D C:\ProgramData\Dell
2022-06-12 19:41 - 2019-02-13 11:04 - 000000000 ____D C:\ProgramData\PCDr
2022-06-12 19:39 - 2019-02-13 11:19 - 000000000 ____D C:\ProgramData\Dell Inc
2022-06-12 19:39 - 2019-02-13 11:04 - 000000000 ____D C:\Program Files\Dell
2022-06-09 21:11 - 2019-02-18 15:14 - 000000000 ____D C:\ProgramData\Packages
2022-06-08 23:12 - 2022-02-21 18:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-06-08 22:35 - 2019-02-13 11:18 - 000000000 ____D C:\Program Files\Common Files\mcafee
2022-06-06 23:48 - 2021-12-02 15:39 - 000136672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-06-06 23:48 - 2020-10-04 11:07 - 002762208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-06-06 23:48 - 2020-10-04 11:07 - 000402920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-06-06 23:48 - 2020-10-04 11:07 - 000230864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-06-06 23:48 - 2020-10-04 11:07 - 000198112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-06-06 23:48 - 2020-10-04 11:07 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-06-06 23:48 - 2020-10-04 11:07 - 000062928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-05-30 17:43 - 2021-11-17 14:57 - 000000000 ____D C:\Program Files\Microsoft Office
2022-05-30 17:35 - 2022-01-17 07:58 - 000000000 ____D C:\ProgramData\Intel Package Cache {58E22E6B-0E58-4E93-AF9A-036556EB66F5}
2022-05-30 17:35 - 2022-01-17 07:57 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72}
2022-05-30 17:35 - 2022-01-17 07:57 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045}
2022-05-30 17:35 - 2022-01-17 07:56 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2022-05-30 17:34 - 2022-01-17 07:58 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237}

==================== Arquivos na raiz de alguns diretÃ³rios ========

2020-10-06 10:59 - 2020-11-11 16:51 - 000001536 _____ () C:\Users\rayll\AppData\Local\GfxMetrics.cfg
2019-05-15 19:54 - 2019-05-15 19:54 - 000000000 _____ () C:\Users\rayll\AppData\Local\oobelibMkey.log
2022-06-12 21:34 - 2022-06-12 21:34 - 000007602 _____ () C:\Users\rayll\AppData\Local\Resmon.ResmonCfg

==================== FLock ==============================

2022-05-07 02:24 C:\WINDOWS\system32\WebThreatDefSvc

==================== SigCheck ============================

(NÃ£o hÃ¡ correÃ§Ã£o automÃ¡tica para arquivos que nÃ£o passaram na verificaÃ§Ã£o.)

==================== Fim de FRST.txt ========================