API tools faq
paste
Advertisement
Guest User

batata

a guest
Jul 2nd, 2017
1,958
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 316.20 KB | None | 0 0
raw download clone embed print report
  1. Action Time Description Filename Full Path More Information File Extension
  2. 02/07/2017 22:13:15 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  3. 02/07/2017 22:13:02 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  4. 02/07/2017 22:13:02 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  5. 02/07/2017 22:10:28 Run .EXE file USERASSISTVIEW.EXE C:\Users\Cliente\DOWNLOADS\USERASSISTVIEW.EXE NirSoft, UserAssistView, UserAssistView, 1.02 EXE
  6. 02/07/2017 22:09:24 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  7. 02/07/2017 22:09:24 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  8. 02/07/2017 22:08:42 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  9. 02/07/2017 22:08:42 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  10. 02/07/2017 21:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  11. 02/07/2017 21:56:11 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  12. 02/07/2017 21:56:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  13. 02/07/2017 21:56:05 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  14. 02/07/2017 21:56:05 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  15. 02/07/2017 21:55:01 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  16. 02/07/2017 21:53:42 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  17. 02/07/2017 21:53:42 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  18. 02/07/2017 21:52:33 Open file or folder LabyMod-1.8.8 C:\Users\Cliente\AppData\Roaming\.minecraft\versions\LabyMod-1.8.8 8
  19. 02/07/2017 21:52:33 Open file or folder LabyMod-1.8.8.jar C:\Users\Cliente\AppData\Roaming\.minecraft\versions\LabyMod-1.8.8\LabyMod-1.8.8.jar jar
  20. 02/07/2017 21:52:33 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  21. 02/07/2017 21:52:33 Select file in open/save dialog-box WinRAR.exe C:\Program Files (x86)\WinRAR\WinRAR.exe exe
  22. 02/07/2017 21:52:33 Select file in open/save dialog-box WinRAR.exe C:\Program Files (x86)\WinRAR\WinRAR.exe exe
  23. 02/07/2017 21:52:12 View Folder in Explorer C:\
  24. 02/07/2017 21:50:50 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  25. 02/07/2017 21:49:02 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  26. 02/07/2017 21:49:00 Run .EXE file AdobeARM.exe C:\PROGRAM FILES (X86)\COMMON FILES\Adobe\ARM\1.0\AdobeARM.exe Adobe Systems Incorporated, Adobe Reader and Acrobat Manager, Adobe Reader and Acrobat Manager, 1.824.22.5037 exe
  27. 02/07/2017 21:48:27 Run .EXE file AcroRd32.exe C:\PROGRAM FILES (X86)\Adobe\READER 11.0\Reader\AcroRd32.exe Adobe Systems Incorporated, Adobe Reader, Adobe Reader, 11.0.20.17 exe
  28. 02/07/2017 21:48:27 Open file or folder LabyMod-1.8.8.json C:\Users\Cliente\AppData\Roaming\.minecraft\versions\LabyMod-1.8.8\LabyMod-1.8.8.json json
  29. 02/07/2017 21:48:27 Run .EXE file AcroRd32.exe C:\PROGRAM FILES (X86)\Adobe\READER 11.0\Reader\AcroRd32.exe Adobe Systems Incorporated, Adobe Reader, Adobe Reader, 11.0.20.17 exe
  30. 02/07/2017 21:48:24 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  31. 02/07/2017 21:48:22 View Folder in Explorer LabyMod-1.8.8-natives-194607904108381 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\LabyMod-1.8.8\LabyMod-1.8.8-natives-194607904108381 8-natives-194607904108381
  32. 02/07/2017 21:48:22 View Folder in Explorer LabyMod-1.8.8 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\LabyMod-1.8.8 8
  33. 02/07/2017 21:47:05 View Folder in Explorer versions C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions
  34. 02/07/2017 21:46:32 View Folder in Explorer .minecraft C:\Users\Cliente\AppData\Local\Roaming\.minecraft minecraft
  35. 02/07/2017 21:46:27 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  36. 02/07/2017 21:45:03 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  37. 02/07/2017 21:44:28 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  38. 02/07/2017 21:38:42 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  39. 02/07/2017 21:38:42 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  40. 02/07/2017 21:37:07 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  41. 02/07/2017 21:31:19 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  42. 02/07/2017 21:30:46 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  43. 02/07/2017 21:28:29 Run .EXE file AnyDesk.exe C:\Users\Cliente\DOWNLOADS\AnyDesk.exe philandro Software GmbH, AnyDesk, AnyDesk, 3.3.1.0 exe
  44. 02/07/2017 21:23:42 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  45. 02/07/2017 21:23:42 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  46. 02/07/2017 21:19:45 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  47. 02/07/2017 21:19:44 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  48. 02/07/2017 21:19:44 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  49. 02/07/2017 21:19:43 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  50. 02/07/2017 21:19:43 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  51. 02/07/2017 21:19:42 Run .EXE file BROWSER_BROKER.EXE C:\WINDOWS\SYSTEM32\BROWSER_BROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Browser_Broker, 11.00.14393.1198 (rs1_release_sec.170427-1353) EXE
  52. 02/07/2017 21:19:42 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  53. 02/07/2017 21:16:59 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  54. 02/07/2017 21:16:00 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  55. 02/07/2017 21:15:59 Run .EXE file SEARCHFILTERHOST.EXE C:\Windows\System32\SEARCHFILTERHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Filter Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  56. 02/07/2017 21:15:59 Run .EXE file SEARCHPROTOCOLHOST.EXE C:\Windows\System32\SEARCHPROTOCOLHOST.EXE Microsoft Corporation, Windows® Search, Microsoft Windows Search Protocol Host, 7.0.14393.953 (rs1_release_inmarket.170303-1614) EXE
  57. 02/07/2017 21:15:58 Run .EXE file ONENOTEIM.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.OFFICE.ONENOTE_17.8269.57841.0_X64__8WEKYB3D8BBWE\ONENOTEIM.EXE Microsoft Corporation, Microsoft OneNote, OneNote, 16.0.8269.5784 EXE
  58. 02/07/2017 21:15:58 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  59. 02/07/2017 21:15:58 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  60. 02/07/2017 21:12:16 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  61. 02/07/2017 21:09:07 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  62. 02/07/2017 21:05:25 Run .EXE file AnyDesk.exe C:\Users\Cliente\DOWNLOADS\AnyDesk.exe philandro Software GmbH, AnyDesk, AnyDesk, 3.3.1.0 exe
  63. 02/07/2017 21:00:32 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  64. 02/07/2017 21:00:27 Run .EXE file AnyDesk.exe C:\Users\Cliente\DOWNLOADS\AnyDesk.exe philandro Software GmbH, AnyDesk, AnyDesk, 3.3.1.0 exe
  65. 02/07/2017 21:00:26 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  66. 02/07/2017 20:58:51 Run .EXE file AnyDesk.exe C:\Users\Cliente\DOWNLOADS\AnyDesk.exe philandro Software GmbH, AnyDesk, AnyDesk, 3.3.1.0 exe
  67. 02/07/2017 20:58:51 Run .EXE file AnyDesk.exe C:\Users\Cliente\DOWNLOADS\AnyDesk.exe philandro Software GmbH, AnyDesk, AnyDesk, 3.3.1.0 exe
  68. 02/07/2017 20:58:50 Run .EXE file AnyDesk.exe C:\Users\Cliente\DOWNLOADS\AnyDesk.exe philandro Software GmbH, AnyDesk, AnyDesk, 3.3.1.0 exe
  69. 02/07/2017 20:58:49 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  70. 02/07/2017 20:58:36 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  71. 02/07/2017 20:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  72. 02/07/2017 20:49:43 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  73. 02/07/2017 20:46:43 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  74. 02/07/2017 20:46:42 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  75. 02/07/2017 20:43:44 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  76. 02/07/2017 20:41:50 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  77. 02/07/2017 20:41:41 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  78. 02/07/2017 20:40:27 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  79. 02/07/2017 20:35:36 Run .EXE file GATEWAYVERSION.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\GATEWAYVERSION.EXE Skype Technologies S.A., Skype Web Plugin, Skype Version Plugin, 7.32.6.278 EXE
  80. 02/07/2017 19:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  81. 02/07/2017 19:47:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  82. 02/07/2017 19:47:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  83. 02/07/2017 19:47:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  84. 02/07/2017 19:47:07 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  85. 02/07/2017 19:46:51 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  86. 02/07/2017 19:41:56 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  87. 02/07/2017 19:37:55 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  88. 02/07/2017 19:37:55 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  89. 02/07/2017 19:37:55 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  90. 02/07/2017 19:29:23 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  91. 02/07/2017 19:20:06 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  92. 02/07/2017 19:19:51 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  93. 02/07/2017 19:19:51 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  94. 02/07/2017 19:17:23 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  95. 02/07/2017 19:14:56 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  96. 02/07/2017 18:58:33 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  97. 02/07/2017 18:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  98. 02/07/2017 18:44:00 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  99. 02/07/2017 18:41:50 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  100. 02/07/2017 18:40:32 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  101. 02/07/2017 18:37:55 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  102. 02/07/2017 18:37:27 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  103. 02/07/2017 18:24:52 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  104. 02/07/2017 18:24:52 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  105. 02/07/2017 18:21:40 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  106. 02/07/2017 18:21:25 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  107. 02/07/2017 18:21:25 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  108. 02/07/2017 18:21:24 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  109. 02/07/2017 18:13:04 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  110. 02/07/2017 17:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  111. 02/07/2017 17:56:00 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  112. 02/07/2017 17:56:00 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  113. 02/07/2017 17:45:52 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  114. 02/07/2017 17:42:21 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  115. 02/07/2017 17:32:40 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  116. 02/07/2017 17:21:09 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  117. 02/07/2017 17:17:29 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  118. 02/07/2017 16:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  119. 02/07/2017 16:46:36 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  120. 02/07/2017 16:46:36 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  121. 02/07/2017 16:41:47 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  122. 02/07/2017 16:41:34 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  123. 02/07/2017 16:22:22 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  124. 02/07/2017 15:58:01 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  125. 02/07/2017 15:24:02 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  126. 02/07/2017 15:10:32 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  127. 02/07/2017 15:06:13 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  128. 02/07/2017 15:06:13 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  129. 02/07/2017 15:06:08 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  130. 02/07/2017 15:02:57 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  131. 02/07/2017 15:02:57 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  132. 02/07/2017 15:02:57 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  133. 02/07/2017 14:58:49 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  134. 02/07/2017 14:58:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  135. 02/07/2017 14:58:02 Run .EXE file FLASHPLAYERUPDATESERVICE.EXE C:\Windows\SysWOW64\Macromed\Flash\FLASHPLAYERUPDATESERVICE.EXE Adobe Systems Incorporated, Adobe® Flash® Player Update Service, Adobe® Flash® Player Update Service 26.0 r0, 26,0,0,131 EXE
  136. 02/07/2017 14:57:58 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  137. 02/07/2017 14:57:45 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  138. 02/07/2017 14:57:45 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  139. 02/07/2017 14:57:45 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  140. 02/07/2017 14:57:22 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  141. 02/07/2017 14:57:21 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  142. 02/07/2017 14:57:21 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  143. 02/07/2017 14:57:21 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  144. 02/07/2017 14:57:17 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  145. 02/07/2017 14:57:17 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  146. 02/07/2017 14:54:01 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  147. 02/07/2017 14:46:13 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  148. 02/07/2017 14:41:06 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  149. 02/07/2017 14:41:06 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  150. 02/07/2017 14:33:22 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  151. 02/07/2017 14:14:56 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  152. 02/07/2017 14:14:55 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  153. 02/07/2017 14:14:55 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  154. 02/07/2017 13:56:43 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  155. 02/07/2017 13:56:14 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  156. 02/07/2017 13:38:48 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  157. 02/07/2017 13:38:47 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_2017.18062.12990.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE , , , EXE
  158. 02/07/2017 13:35:22 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  159. 02/07/2017 13:32:13 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  160. 02/07/2017 13:30:06 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  161. 02/07/2017 13:29:20 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  162. 02/07/2017 13:29:20 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  163. 02/07/2017 13:29:20 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  164. 02/07/2017 13:29:20 Run .EXE file SMARTSCREEN.EXE C:\WINDOWS\SYSTEM32\SMARTSCREEN.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, SmartScreen, 10.0.14393.0 (rs1_release.160715-1616) EXE
  165. 02/07/2017 13:16:59 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  166. 02/07/2017 13:02:16 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  167. 02/07/2017 13:02:16 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  168. 02/07/2017 12:55:27 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  169. 02/07/2017 12:46:17 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  170. 02/07/2017 12:46:17 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  171. 02/07/2017 12:45:27 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  172. 02/07/2017 12:45:25 Run .EXE file TASKHOSTW.EXE C:\WINDOWS\SYSTEM32\TASKHOSTW.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Tarefas do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  173. 02/07/2017 12:45:17 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  174. 02/07/2017 12:45:13 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  175. 02/07/2017 12:45:04 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  176. 02/07/2017 12:44:26 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  177. 02/07/2017 12:44:03 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  178. 02/07/2017 12:44:00 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  179. 02/07/2017 12:43:25 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  180. 02/07/2017 12:43:25 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  181. 02/07/2017 12:43:24 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  182. 02/07/2017 12:43:22 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  183. 02/07/2017 12:43:22 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  184. 02/07/2017 12:42:41 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  185. 02/07/2017 12:42:11 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  186. 02/07/2017 12:41:44 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  187. 02/07/2017 12:41:22 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  188. 02/07/2017 12:41:21 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  189. 02/07/2017 12:41:11 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  190. 02/07/2017 12:41:03 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  191. 02/07/2017 12:40:57 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  192. 02/07/2017 12:40:42 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  193. 02/07/2017 12:40:41 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  194. 02/07/2017 12:40:41 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  195. 02/07/2017 12:40:40 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  196. 02/07/2017 12:40:38 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  197. 02/07/2017 12:40:37 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  198. 02/07/2017 12:40:37 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  199. 02/07/2017 12:40:37 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  200. 02/07/2017 12:40:36 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  201. 02/07/2017 12:40:29 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  202. 02/07/2017 12:40:26 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  203. 02/07/2017 12:40:24 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  204. 02/07/2017 12:40:24 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  205. 02/07/2017 12:40:24 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  206. 02/07/2017 12:40:24 User Logon WORKGROUP\Cliente
  207. 02/07/2017 12:40:24 Resumed from sleep
  208. 02/07/2017 05:16:51 Sleep
  209. 02/07/2017 05:16:50 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  210. 02/07/2017 05:16:50 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  211. 02/07/2017 05:16:50 User Logoff DESKTOP-G71LO1P\Cliente
  212. 02/07/2017 05:16:48 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  213. 02/07/2017 05:16:48 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  214. 02/07/2017 05:16:48 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  215. 02/07/2017 05:16:48 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  216. 02/07/2017 05:16:48 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  217. 02/07/2017 05:16:48 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  218. 02/07/2017 05:16:48 User Logon WORKGROUP\DWM-3
  219. 02/07/2017 05:16:32 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  220. 02/07/2017 04:06:27 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  221. 02/07/2017 04:06:27 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  222. 02/07/2017 04:01:26 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  223. 02/07/2017 04:01:00 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  224. 02/07/2017 03:52:22 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  225. 02/07/2017 03:52:22 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  226. 02/07/2017 03:52:02 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  227. 02/07/2017 03:44:07 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  228. 02/07/2017 03:39:33 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  229. 02/07/2017 03:20:55 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  230. 02/07/2017 03:14:09 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  231. 02/07/2017 03:02:55 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  232. 02/07/2017 03:00:05 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  233. 02/07/2017 02:01:32 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  234. 02/07/2017 02:01:00 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  235. 02/07/2017 01:52:03 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  236. 02/07/2017 01:44:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  237. 02/07/2017 01:44:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  238. 02/07/2017 01:44:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  239. 02/07/2017 01:44:07 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  240. 02/07/2017 01:43:45 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  241. 02/07/2017 01:39:51 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  242. 02/07/2017 01:31:36 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  243. 02/07/2017 00:58:04 Run .EXE file bcastdvr.exe C:\Windows\System32\bcastdvr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Broadcast DVR server, 10.0.14393.1066 (rs1_release_sec.170327-1835) exe
  244. 02/07/2017 00:35:47 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  245. 02/07/2017 00:18:45 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  246. 02/07/2017 00:08:29 Run .EXE file GAMEPANEL.EXE C:\Windows\SysWOW64\GAMEPANEL.EXE Microsoft Corporation, Microsoft® Windows® Sistema Operacional, Barra de jogo, 10.0.14393.0 (rs1_release.160715-1616) EXE
  247. 02/07/2017 00:06:21 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  248. 02/07/2017 00:06:21 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  249. 02/07/2017 00:01:19 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  250. 02/07/2017 00:01:00 Run .EXE file SLUI.EXE C:\WINDOWS\SYSTEM32\SLUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Cliente de Ativação do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  251. 02/07/2017 00:00:17 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  252. 02/07/2017 00:00:16 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  253. 01/07/2017 23:14:36 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  254. 01/07/2017 23:14:22 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  255. 01/07/2017 22:46:54 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  256. 01/07/2017 22:46:43 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  257. 01/07/2017 22:46:43 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  258. 01/07/2017 22:03:32 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  259. 01/07/2017 21:56:51 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  260. 01/07/2017 21:56:39 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  261. 01/07/2017 21:56:39 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  262. 01/07/2017 21:39:56 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  263. 01/07/2017 21:37:07 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  264. 01/07/2017 21:11:59 Run .EXE file GAMEBARPRESENCEWRITER.EXE C:\Windows\System32\GAMEBARPRESENCEWRITER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Gamebar Presence Writer, 10.0.14393.0 (rs1_release.160715-1616) EXE
  265. 01/07/2017 21:11:50 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  266. 01/07/2017 21:11:50 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  267. 01/07/2017 20:20:03 Run .EXE file MINECRAFT LAUNCHER.EXE C:\Users\Cliente\AppData\Roaming\.MINECRAFT\MINECRAFT LAUNCHER\MINECRAFT LAUNCHER.EXE Titan Launcher, Titan Launcher, 1.10.2 Minecraft Launcher, 3.6.1 EXE
  268. 01/07/2017 20:10:23 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  269. 01/07/2017 20:06:20 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  270. 01/07/2017 20:06:19 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  271. 01/07/2017 20:05:51 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  272. 01/07/2017 20:05:51 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  273. 01/07/2017 20:00:55 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  274. 01/07/2017 20:00:26 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  275. 01/07/2017 19:26:09 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  276. 01/07/2017 18:48:29 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  277. 01/07/2017 18:34:39 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  278. 01/07/2017 18:34:38 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  279. 01/07/2017 18:18:48 Run .EXE file javaw.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\javaw.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  280. 01/07/2017 17:51:23 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  281. 01/07/2017 17:49:59 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  282. 01/07/2017 17:49:59 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  283. 01/07/2017 17:25:34 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  284. 01/07/2017 17:02:39 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  285. 01/07/2017 16:05:22 Run .EXE file CONHOST.EXE C:\WINDOWS\SYSTEM32\CONHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Console Window Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  286. 01/07/2017 16:05:22 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  287. 01/07/2017 16:00:21 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  288. 01/07/2017 15:36:50 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  289. 01/07/2017 15:36:50 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  290. 01/07/2017 15:28:36 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  291. 01/07/2017 15:28:26 Run .EXE file BYTECODEGENERATOR.EXE C:\Windows\System32\BYTECODEGENERATOR.EXE Microsoft Corporation, Microsoft® Windows® Operating System, AppX Deployment Bytecode Generator EXE, 10.0.14393.0 (rs1_release.160715-1616) EXE
  292. 01/07/2017 15:28:26 Run .EXE file BYTECODEGENERATOR.EXE C:\Windows\SysWOW64\BYTECODEGENERATOR.EXE Microsoft Corporation, Microsoft® Windows® Operating System, AppX Deployment Bytecode Generator EXE, 10.0.14393.0 (rs1_release.160715-1616) EXE
  293. 01/07/2017 15:28:25 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  294. 01/07/2017 15:28:24 Run .EXE file BYTECODEGENERATOR.EXE C:\Windows\SysWOW64\BYTECODEGENERATOR.EXE Microsoft Corporation, Microsoft® Windows® Operating System, AppX Deployment Bytecode Generator EXE, 10.0.14393.0 (rs1_release.160715-1616) EXE
  295. 01/07/2017 15:28:23 Run .EXE file BYTECODEGENERATOR.EXE C:\Windows\System32\BYTECODEGENERATOR.EXE Microsoft Corporation, Microsoft® Windows® Operating System, AppX Deployment Bytecode Generator EXE, 10.0.14393.0 (rs1_release.160715-1616) EXE
  296. 01/07/2017 15:27:19 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  297. 01/07/2017 15:26:58 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  298. 01/07/2017 15:26:55 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  299. 01/07/2017 15:26:53 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  300. 01/07/2017 15:26:53 Run .EXE file INSTALLAGENT.EXE C:\Windows\System32\INSTALLAGENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, InstallAgent, 10.0.14393.0 (rs1_release.160715-1616) EXE
  301. 01/07/2017 15:00:42 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  302. 01/07/2017 14:58:00 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  303. 01/07/2017 13:56:09 Run .EXE file firefox.exe C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\firefox.exe Mozilla Corporation, Firefox, Firefox, 47.0.2 exe
  304. 01/07/2017 13:45:17 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  305. 01/07/2017 13:17:15 Run .EXE file CONSENT.EXE C:\WINDOWS\SYSTEM32\CONSENT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de consentimento para aplicativos administrativos, 10.0.14393.0 (rs1_release.160715-1616) EXE
  306. 01/07/2017 12:42:25 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  307. 01/07/2017 12:42:25 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  308. 01/07/2017 12:42:17 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  309. 01/07/2017 12:14:06 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  310. 01/07/2017 12:12:26 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  311. 01/07/2017 12:12:13 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  312. 01/07/2017 12:12:13 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  313. 01/07/2017 12:11:39 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  314. 01/07/2017 12:11:39 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  315. 01/07/2017 12:11:32 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  316. 01/07/2017 12:11:31 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  317. 01/07/2017 12:11:31 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  318. 01/07/2017 12:11:24 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  319. 01/07/2017 12:05:51 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  320. 01/07/2017 12:05:46 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  321. 01/07/2017 12:05:16 Run .EXE file AVBUGREPORT.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AVBUGREPORT.EXE AVAST Software, Avast Antivirus, Avast Antivirus Bug Report, 17.3.3443.0 EXE
  322. 01/07/2017 12:04:37 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  323. 01/07/2017 12:03:20 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  324. 01/07/2017 12:03:01 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  325. 01/07/2017 12:02:51 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  326. 01/07/2017 12:02:46 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  327. 01/07/2017 12:02:36 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  328. 01/07/2017 12:02:35 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  329. 01/07/2017 12:02:35 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  330. 01/07/2017 12:02:34 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  331. 01/07/2017 12:02:33 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  332. 01/07/2017 12:01:52 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  333. 01/07/2017 12:01:35 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  334. 01/07/2017 12:01:22 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  335. 01/07/2017 12:00:59 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  336. 01/07/2017 12:00:21 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  337. 01/07/2017 12:00:15 Run .EXE file instup.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\instup.exe AVAST Software, Avast Antivirus, Avast Antivirus Installer, 17.4.3482.0 exe
  338. 01/07/2017 11:59:56 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  339. 01/07/2017 11:59:55 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  340. 01/07/2017 11:59:54 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  341. 01/07/2017 11:59:53 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  342. 01/07/2017 11:59:51 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  343. 01/07/2017 11:59:50 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  344. 01/07/2017 11:59:49 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  345. 01/07/2017 11:59:49 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  346. 01/07/2017 11:59:48 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  347. 01/07/2017 11:59:44 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  348. 01/07/2017 11:59:41 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  349. 01/07/2017 11:59:41 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  350. 01/07/2017 11:59:39 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  351. 01/07/2017 11:59:39 Run .EXE file RUNTIMEBROKER.EXE C:\WINDOWS\SYSTEM32\RUNTIMEBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Runtime Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  352. 01/07/2017 11:59:37 Resumed from sleep
  353. 01/07/2017 11:59:36 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  354. 01/07/2017 11:59:36 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  355. 01/07/2017 11:59:36 User Logon WORKGROUP\Cliente
  356. 01/07/2017 02:16:04 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  357. 01/07/2017 02:16:04 Sleep
  358. 01/07/2017 02:16:03 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  359. 01/07/2017 02:16:02 User Logoff DESKTOP-G71LO1P\Cliente
  360. 01/07/2017 02:16:01 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  361. 01/07/2017 02:16:01 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  362. 01/07/2017 02:16:00 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  363. 01/07/2017 02:16:00 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  364. 01/07/2017 02:16:00 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  365. 01/07/2017 02:16:00 User Logon WORKGROUP\DWM-2
  366. 01/07/2017 02:15:59 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  367. 01/07/2017 00:38:06 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  368. 01/07/2017 00:31:08 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  369. 01/07/2017 00:01:49 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  370. 01/07/2017 00:01:48 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  371. 30/06/2017 20:25:17 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  372. 30/06/2017 20:24:56 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  373. 30/06/2017 19:43:30 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  374. 30/06/2017 19:42:38 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  375. 30/06/2017 18:59:11 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  376. 30/06/2017 18:13:19 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  377. 30/06/2017 17:17:58 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  378. 30/06/2017 16:29:21 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  379. 30/06/2017 16:28:56 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  380. 30/06/2017 16:28:55 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  381. 30/06/2017 16:28:53 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  382. 30/06/2017 16:27:54 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  383. 30/06/2017 13:46:48 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  384. 30/06/2017 13:32:07 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  385. 30/06/2017 13:31:06 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  386. 30/06/2017 13:28:10 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  387. 30/06/2017 13:22:30 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  388. 30/06/2017 13:22:19 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  389. 30/06/2017 13:22:19 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  390. 30/06/2017 13:21:54 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  391. 30/06/2017 13:21:54 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  392. 30/06/2017 13:20:51 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  393. 30/06/2017 13:20:51 Run .EXE file WMIADAP.exe C:\Windows\System32\wbem\WMIADAP.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Reverse Performance Adapter Maintenance Utility, 10.0.14393.0 (rs1_release.160715-1616) exe
  394. 30/06/2017 13:19:54 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  395. 30/06/2017 13:19:53 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  396. 30/06/2017 13:19:42 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  397. 30/06/2017 13:19:08 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  398. 30/06/2017 13:19:04 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  399. 30/06/2017 13:18:56 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  400. 30/06/2017 13:18:54 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  401. 30/06/2017 13:18:54 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  402. 30/06/2017 13:18:52 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  403. 30/06/2017 13:18:52 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  404. 30/06/2017 13:18:52 Run .EXE file GOOGLEUPDATE.EXE C:\PROGRAM FILES (X86)\Google\Update\GOOGLEUPDATE.EXE Google Inc., Google Update, Google Installer, 1.3.32.7 EXE
  405. 30/06/2017 13:18:19 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  406. 30/06/2017 13:18:19 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  407. 30/06/2017 13:17:55 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  408. 30/06/2017 13:17:49 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  409. 30/06/2017 13:17:40 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  410. 30/06/2017 13:17:37 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  411. 30/06/2017 13:17:37 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  412. 30/06/2017 13:17:18 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  413. 30/06/2017 13:17:18 Run .EXE file jusched.exe C:\PROGRAM FILES (X86)\COMMON FILES\Java\JAVA UPDATE\jusched.exe Oracle Corporation, Java Platform SE Auto Updater, Java Update Scheduler, 2.8.131.11 exe
  414. 30/06/2017 13:17:16 Run .EXE file runonce.exe C:\Windows\SysWOW64\runonce.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Wrapper Run Once, 10.0.14393.0 (rs1_release.160715-1616) exe
  415. 30/06/2017 13:17:15 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  416. 30/06/2017 13:17:15 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  417. 30/06/2017 13:17:14 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  418. 30/06/2017 13:17:13 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  419. 30/06/2017 13:17:09 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  420. 30/06/2017 13:17:08 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  421. 30/06/2017 13:17:08 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  422. 30/06/2017 13:17:07 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  423. 30/06/2017 13:16:52 User Logon WORKGROUP\Cliente
  424. 30/06/2017 13:16:48 System Started
  425. 30/06/2017 13:16:48 User Logon WORKGROUP\DWM-1
  426. 30/06/2017 13:11:18 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  427. 30/06/2017 13:11:17 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  428. 30/06/2017 13:10:15 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  429. 30/06/2017 13:10:15 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  430. 30/06/2017 13:10:03 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  431. 30/06/2017 13:09:32 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  432. 30/06/2017 13:08:47 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  433. 30/06/2017 13:08:47 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  434. 30/06/2017 13:08:37 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  435. 30/06/2017 13:08:36 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  436. 30/06/2017 13:07:34 Run .EXE file WmiPrvSE.exe C:\Windows\System32\wbem\WmiPrvSE.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Provider Host, 10.0.14393.0 (rs1_release.160715-1616) exe
  437. 30/06/2017 13:07:34 Run .EXE file WMIADAP.exe C:\Windows\System32\wbem\WMIADAP.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Reverse Performance Adapter Maintenance Utility, 10.0.14393.0 (rs1_release.160715-1616) exe
  438. 30/06/2017 13:05:54 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  439. 30/06/2017 13:05:39 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  440. 30/06/2017 13:05:37 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  441. 30/06/2017 13:05:37 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  442. 30/06/2017 13:05:35 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  443. 30/06/2017 13:05:24 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  444. 30/06/2017 13:05:01 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  445. 30/06/2017 13:04:40 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  446. 30/06/2017 13:04:23 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  447. 30/06/2017 13:04:01 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  448. 30/06/2017 13:04:00 Run .EXE file jusched.exe C:\PROGRAM FILES (X86)\COMMON FILES\Java\JAVA UPDATE\jusched.exe Oracle Corporation, Java Platform SE Auto Updater, Java Update Scheduler, 2.8.131.11 exe
  449. 30/06/2017 13:03:59 Run .EXE file RUNUSBGUARD.EXE C:\PROGRAM FILES (X86)\USB DISK SECURITY\RUNUSBGUARD.EXE Zbshareware Lab, RunUSBGuard Application, Run USB Disk Security, 1, 0, 0, 20 EXE
  450. 30/06/2017 13:03:59 Run .EXE file FACEBOOKGAMEROOM.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOKGAMEROOM.EXE Facebook, FacebookGameroom, FacebookGameroom, 1.4.1.* EXE
  451. 30/06/2017 13:03:57 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  452. 30/06/2017 13:03:57 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  453. 30/06/2017 13:03:56 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  454. 30/06/2017 13:03:52 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  455. 30/06/2017 13:03:50 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  456. 30/06/2017 13:03:50 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  457. 30/06/2017 13:03:50 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  458. 30/06/2017 13:03:49 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  459. 30/06/2017 13:03:35 User Logon WORKGROUP\Cliente
  460. 30/06/2017 13:03:31 System Started
  461. 30/06/2017 13:03:31 User Logon WORKGROUP\DWM-1
  462. 29/06/2017 23:26:44 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  463. 29/06/2017 23:26:42 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  464. 29/06/2017 23:26:41 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  465. 29/06/2017 22:36:26 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  466. 29/06/2017 22:36:26 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  467. 29/06/2017 22:33:22 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  468. 29/06/2017 22:32:38 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  469. 29/06/2017 22:30:45 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  470. 29/06/2017 21:42:00 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  471. 29/06/2017 21:41:55 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  472. 29/06/2017 21:41:54 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  473. 29/06/2017 21:40:45 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  474. 29/06/2017 21:37:08 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  475. 29/06/2017 19:27:47 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  476. 29/06/2017 19:27:47 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  477. 29/06/2017 17:03:48 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  478. 29/06/2017 16:59:09 View Folder in Explorer ystimpayGOD ystimpayGOD
  479. 29/06/2017 16:55:25 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  480. 29/06/2017 16:45:28 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  481. 29/06/2017 15:59:31 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  482. 29/06/2017 15:59:25 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  483. 29/06/2017 15:59:08 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  484. 29/06/2017 15:59:08 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  485. 29/06/2017 15:58:49 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  486. 29/06/2017 15:58:49 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  487. 29/06/2017 15:58:34 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  488. 29/06/2017 15:58:17 Run .EXE file RAREXTLOADER.EXE C:\PROGRAM FILES (X86)\WinRAR\RAREXTLOADER.EXE EXE
  489. 29/06/2017 15:30:58 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  490. 29/06/2017 15:30:14 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  491. 29/06/2017 15:27:05 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  492. 29/06/2017 15:27:05 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  493. 29/06/2017 15:26:43 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  494. 29/06/2017 15:25:34 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  495. 29/06/2017 13:45:24 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  496. 29/06/2017 12:22:34 Run .EXE file rundll32.exe C:\Windows\SysWOW64\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  497. 29/06/2017 12:01:06 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  498. 29/06/2017 11:56:00 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  499. 29/06/2017 11:55:45 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  500. 29/06/2017 11:55:45 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  501. 29/06/2017 11:55:26 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  502. 29/06/2017 11:55:25 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  503. 29/06/2017 11:55:21 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  504. 29/06/2017 11:55:12 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  505. 29/06/2017 11:52:15 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  506. 29/06/2017 11:52:15 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  507. 29/06/2017 11:50:39 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  508. 29/06/2017 11:49:52 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  509. 29/06/2017 11:48:06 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  510. 29/06/2017 11:48:06 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  511. 29/06/2017 11:47:50 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  512. 29/06/2017 11:47:47 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  513. 29/06/2017 11:47:25 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  514. 29/06/2017 11:46:55 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  515. 29/06/2017 11:46:28 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  516. 29/06/2017 11:46:05 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  517. 29/06/2017 11:45:53 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  518. 29/06/2017 11:45:25 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  519. 29/06/2017 11:45:25 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  520. 29/06/2017 11:45:24 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  521. 29/06/2017 11:45:23 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  522. 29/06/2017 11:45:22 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  523. 29/06/2017 11:45:21 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  524. 29/06/2017 11:45:20 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  525. 29/06/2017 11:45:20 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  526. 29/06/2017 11:45:20 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  527. 29/06/2017 11:45:14 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  528. 29/06/2017 11:45:10 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  529. 29/06/2017 11:45:10 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  530. 29/06/2017 11:45:08 Resumed from sleep
  531. 29/06/2017 11:45:08 User Logon WORKGROUP\Cliente
  532. 29/06/2017 00:41:49 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  533. 29/06/2017 00:41:49 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  534. 29/06/2017 00:41:49 User Logoff DESKTOP-G71LO1P\Cliente
  535. 29/06/2017 00:41:49 Sleep
  536. 29/06/2017 00:41:47 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  537. 29/06/2017 00:41:47 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  538. 29/06/2017 00:41:47 Run .EXE file LOGONUI.EXE C:\WINDOWS\SYSTEM32\LOGONUI.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Logon User Interface Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  539. 29/06/2017 00:41:47 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  540. 29/06/2017 00:41:47 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  541. 29/06/2017 00:41:47 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  542. 29/06/2017 00:41:47 User Logon WORKGROUP\DWM-8
  543. 29/06/2017 00:12:07 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  544. 28/06/2017 23:51:09 Run .EXE file SOFTWARE_REPORTER_TOOL.EXE C:\Users\Cliente\AppData\Local\Google\Chrome\USER DATA\SWREPORTER\19.109.2\SOFTWARE_REPORTER_TOOL.EXE Google, Software Reporter Tool, Software Reporter Tool, 19.109.2 EXE
  545. 28/06/2017 23:51:09 Run .EXE file SOFTWARE_REPORTER_TOOL.EXE C:\Users\Cliente\AppData\Local\Google\Chrome\USER DATA\SWREPORTER\19.109.2\SOFTWARE_REPORTER_TOOL.EXE Google, Software Reporter Tool, Software Reporter Tool, 19.109.2 EXE
  546. 28/06/2017 23:06:01 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  547. 28/06/2017 22:56:13 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  548. 28/06/2017 22:56:13 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  549. 28/06/2017 22:16:40 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  550. 28/06/2017 21:02:41 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  551. 28/06/2017 19:20:17 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  552. 28/06/2017 19:19:27 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  553. 28/06/2017 19:19:27 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  554. 28/06/2017 19:19:14 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  555. 28/06/2017 19:19:13 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  556. 28/06/2017 19:19:13 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  557. 28/06/2017 19:19:12 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  558. 28/06/2017 19:19:12 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  559. 28/06/2017 19:19:12 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  560. 28/06/2017 19:19:11 Run .EXE file DRVINST.EXE C:\WINDOWS\SYSTEM32\DRVINST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Módulo de Instalação de Driver, 10.0.14393.0 (rs1_release.160715-1616) EXE
  561. 28/06/2017 19:18:29 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  562. 28/06/2017 18:56:24 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  563. 28/06/2017 18:56:24 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  564. 28/06/2017 18:41:48 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  565. 28/06/2017 17:18:05 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  566. 28/06/2017 17:16:41 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  567. 28/06/2017 16:42:08 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  568. 28/06/2017 16:41:49 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  569. 28/06/2017 16:40:26 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  570. 28/06/2017 16:39:58 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  571. 28/06/2017 16:39:48 Run .EXE file SKYPESHELL.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\7.32.6.278\SKYPESHELL.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web App, 7.32.6.278 EXE
  572. 28/06/2017 16:39:48 Run .EXE file cmd.exe C:\Windows\System32\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  573. 28/06/2017 16:39:09 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  574. 28/06/2017 15:14:42 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  575. 28/06/2017 15:10:53 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  576. 28/06/2017 15:10:10 Run .EXE file PLUGINHOST.EXE C:\Users\Cliente\AppData\Local\SKYPEPLUGIN\PLUGINHOST.EXE Skype Technologies S.A., Skype Web Plugin, Skype Web Plugin, 7.32.6.278 EXE
  577. 28/06/2017 15:09:28 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  578. 28/06/2017 15:09:13 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  579. 28/06/2017 14:51:22 Run .EXE file TiWorker.exe C:\Windows\WinSxS\AMD64_MICROSOFT-WINDOWS-SERVICINGSTACK_31BF3856AD364E35_10.0.14393.1439_NONE_7EFE016621F50BD0\TiWorker.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Modules Installer Worker, 10.0.14393.693 (rs1_release.161220-1747) exe
  580. 28/06/2017 14:51:13 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  581. 28/06/2017 14:51:13 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  582. 28/06/2017 14:51:12 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  583. 28/06/2017 14:51:11 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  584. 28/06/2017 14:51:09 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  585. 28/06/2017 14:51:08 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  586. 28/06/2017 14:51:05 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  587. 28/06/2017 14:51:04 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  588. 28/06/2017 14:51:04 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  589. 28/06/2017 14:51:04 Run .EXE file SDIAGNHOST.EXE C:\Windows\System32\SDIAGNHOST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host Nativo com Diagnóstico Controlado por Script, 10.0.14393.0 (rs1_release.160715-1616) EXE
  590. 28/06/2017 14:51:04 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  591. 28/06/2017 14:51:04 Run .EXE file TRUSTEDINSTALLER.EXE C:\Windows\SERVICING\TRUSTEDINSTALLER.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Instalador de Módulos do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  592. 28/06/2017 14:49:42 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  593. 28/06/2017 14:49:42 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  594. 28/06/2017 14:49:33 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  595. 28/06/2017 14:44:19 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  596. 28/06/2017 14:44:04 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  597. 28/06/2017 14:43:29 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  598. 28/06/2017 14:43:14 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  599. 28/06/2017 14:43:12 Run .EXE file INSTALLAGENTUSERBROKER.EXE C:\Windows\System32\INSTALLAGENTUSERBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, InstallAgentUserBroker, 10.0.14393.1198 (rs1_release_sec.170427-1353) EXE
  600. 28/06/2017 14:43:12 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  601. 28/06/2017 14:42:32 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  602. 28/06/2017 14:42:03 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  603. 28/06/2017 14:41:38 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  604. 28/06/2017 14:41:10 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  605. 28/06/2017 14:41:02 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  606. 28/06/2017 14:40:36 Run .EXE file jusched.exe C:\PROGRAM FILES (X86)\COMMON FILES\Java\JAVA UPDATE\jusched.exe Oracle Corporation, Java Platform SE Auto Updater, Java Update Scheduler, 2.8.131.11 exe
  607. 28/06/2017 14:40:34 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  608. 28/06/2017 14:40:33 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  609. 28/06/2017 14:40:32 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  610. 28/06/2017 14:40:31 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  611. 28/06/2017 14:40:29 Run .EXE file Skype.exe C:\PROGRAM FILES (X86)\Skype\Phone\Skype.exe Skype Technologies S.A., Skype, Skype, 6.18.0.106 exe
  612. 28/06/2017 14:40:28 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  613. 28/06/2017 14:40:27 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  614. 28/06/2017 14:40:27 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  615. 28/06/2017 14:40:26 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  616. 28/06/2017 14:40:19 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  617. 28/06/2017 14:40:19 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  618. 28/06/2017 14:40:18 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  619. 28/06/2017 14:40:18 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  620. 28/06/2017 14:40:17 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  621. 28/06/2017 14:40:15 Resumed from sleep
  622. 28/06/2017 14:40:14 User Logon WORKGROUP\Cliente
  623. 27/06/2017 23:43:15 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  624. 27/06/2017 23:43:15 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  625. 27/06/2017 23:43:15 Sleep
  626. 27/06/2017 23:43:14 User Logoff DESKTOP-G71LO1P\Cliente
  627. 27/06/2017 23:43:12 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  628. 27/06/2017 23:43:12 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  629. 27/06/2017 23:43:12 User Logon WORKGROUP\DWM-7
  630. 27/06/2017 23:43:11 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  631. 27/06/2017 23:43:11 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  632. 27/06/2017 22:47:11 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  633. 27/06/2017 20:28:29 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  634. 27/06/2017 18:22:12 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  635. 27/06/2017 18:22:12 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  636. 27/06/2017 17:28:03 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  637. 27/06/2017 17:03:21 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  638. 27/06/2017 17:01:58 Run .EXE file shutdown.exe C:\Windows\System32\shutdown.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta para Anotação e Desligamento do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  639. 27/06/2017 16:57:00 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  640. 27/06/2017 16:50:42 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  641. 27/06/2017 16:26:56 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  642. 27/06/2017 15:59:55 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  643. 27/06/2017 15:59:54 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  644. 27/06/2017 15:59:52 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  645. 27/06/2017 15:59:46 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  646. 27/06/2017 15:59:46 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  647. 27/06/2017 15:59:43 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  648. 27/06/2017 15:59:43 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  649. 27/06/2017 15:59:43 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  650. 27/06/2017 15:59:42 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  651. 27/06/2017 15:59:42 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  652. 27/06/2017 15:59:42 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  653. 27/06/2017 15:59:41 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  654. 27/06/2017 15:46:29 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  655. 27/06/2017 15:46:29 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  656. 27/06/2017 15:45:44 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  657. 27/06/2017 15:42:56 Run .EXE file WinRAR.exe C:\PROGRAM FILES (X86)\WinRAR\WinRAR.exe Alexander Roshal, , WinRAR archiver, 3.51 exe
  658. 27/06/2017 15:42:26 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  659. 27/06/2017 15:30:50 Run .EXE file WSC_PROXY.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\WSC_PROXY.EXE AVAST Software, Avast Antivirus, Avast remediation exe, 17.3.3443.0 EXE
  660. 27/06/2017 13:25:27 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  661. 27/06/2017 12:15:14 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  662. 27/06/2017 12:15:11 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  663. 27/06/2017 12:14:36 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  664. 27/06/2017 12:14:12 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  665. 27/06/2017 12:13:15 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  666. 27/06/2017 11:53:26 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  667. 27/06/2017 11:53:25 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  668. 27/06/2017 10:13:54 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  669. 27/06/2017 07:44:47 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  670. 27/06/2017 07:35:37 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  671. 27/06/2017 07:34:34 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  672. 27/06/2017 07:32:01 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  673. 27/06/2017 07:31:56 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  674. 27/06/2017 07:31:12 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  675. 27/06/2017 07:30:42 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  676. 27/06/2017 07:30:17 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  677. 27/06/2017 07:29:42 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  678. 27/06/2017 07:29:15 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  679. 27/06/2017 07:29:14 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  680. 27/06/2017 07:29:14 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  681. 27/06/2017 07:29:13 Run .EXE file Updater.exe C:\PROGRAM FILES (X86)\Skype\Updater\Updater.exe Skype Technologies, Skype, Skype Updater Service, 6.8.0.112 exe
  682. 27/06/2017 07:29:10 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  683. 27/06/2017 07:29:10 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  684. 27/06/2017 07:29:10 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  685. 27/06/2017 07:29:09 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  686. 27/06/2017 07:29:02 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  687. 27/06/2017 07:28:59 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  688. 27/06/2017 07:28:58 Resumed from sleep
  689. 27/06/2017 07:28:57 User Logon WORKGROUP\Cliente
  690. 27/06/2017 01:05:42 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  691. 27/06/2017 01:05:42 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  692. 27/06/2017 01:05:42 User Logoff DESKTOP-G71LO1P\Cliente
  693. 27/06/2017 01:05:42 Sleep
  694. 27/06/2017 01:05:40 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  695. 27/06/2017 01:05:40 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  696. 27/06/2017 01:05:40 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  697. 27/06/2017 01:05:40 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  698. 27/06/2017 01:05:40 User Logon WORKGROUP\DWM-6
  699. 27/06/2017 00:51:24 Run .EXE file setup.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\59.0.3071.115\INSTALLER\setup.exe Google Inc., Google Chrome Installer, Google Chrome Installer, 59.0.3071.115 exe
  700. 27/06/2017 00:51:24 Run .EXE file setup.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\59.0.3071.115\INSTALLER\setup.exe Google Inc., Google Chrome Installer, Google Chrome Installer, 59.0.3071.115 exe
  701. 27/06/2017 00:51:24 Run .EXE file setup.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\59.0.3071.115\INSTALLER\setup.exe Google Inc., Google Chrome Installer, Google Chrome Installer, 59.0.3071.115 exe
  702. 27/06/2017 00:51:24 Run .EXE file setup.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\59.0.3071.115\INSTALLER\setup.exe Google Inc., Google Chrome Installer, Google Chrome Installer, 59.0.3071.115 exe
  703. 27/06/2017 00:51:23 Run .EXE file GOOGLEUPDATEONDEMAND.EXE C:\PROGRAM FILES (X86)\Google\Update\1.3.33.5\GOOGLEUPDATEONDEMAND.EXE Google Inc., Google Update, Google Update, 1.3.33.5 EXE
  704. 27/06/2017 00:50:15 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  705. 27/06/2017 00:06:59 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  706. 26/06/2017 23:50:59 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  707. 26/06/2017 23:26:09 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  708. 26/06/2017 23:21:40 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  709. 26/06/2017 23:21:40 Run .EXE file DEFRAG.EXE C:\WINDOWS\SYSTEM32\DEFRAG.EXE Microsoft Corp., Otimizador de Unidade do Windows, Desfragmentador de disco do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  710. 26/06/2017 23:21:39 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  711. 26/06/2017 23:21:39 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  712. 26/06/2017 23:21:37 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  713. 26/06/2017 23:21:35 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  714. 26/06/2017 23:21:32 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  715. 26/06/2017 23:21:32 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  716. 26/06/2017 23:21:31 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  717. 26/06/2017 23:21:31 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  718. 26/06/2017 23:21:28 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  719. 26/06/2017 23:21:27 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  720. 26/06/2017 23:21:26 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  721. 26/06/2017 23:21:26 Run .EXE file makecab.exe C:\Windows\System32\makecab.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft® Cabinet Maker, 5.00 (rs1_release.160715-1616) exe
  722. 26/06/2017 23:21:25 Run .EXE file SDIAGNHOST.EXE C:\Windows\System32\SDIAGNHOST.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host Nativo com Diagnóstico Controlado por Script, 10.0.14393.0 (rs1_release.160715-1616) EXE
  723. 26/06/2017 23:15:19 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  724. 26/06/2017 23:15:10 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  725. 26/06/2017 18:11:20 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  726. 26/06/2017 18:08:40 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  727. 26/06/2017 18:08:40 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  728. 26/06/2017 17:03:18 Software Installation chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Google Chrome exe
  729. 26/06/2017 17:01:32 Run .EXE file setup.exe C:\Windows\Temp\CR_3C5C1.tmp\setup.exe Google Inc., Google Chrome Installer, Google Chrome Installer, 59.0.3071.115 exe
  730. 26/06/2017 17:01:31 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.109\INSTALLER\SETUP.EXE EXE
  731. 26/06/2017 17:01:31 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.109\INSTALLER\SETUP.EXE EXE
  732. 26/06/2017 17:01:31 Run .EXE file 59.0.3071.115_59.0.3071.109_CHROME_UPDATER.EXE C:\PROGRAM FILES (X86)\GOOGLE\UPDATE\INSTALL\{74A77DE9-F664-411F-8EBE-6A3A28FD5B0C}\59.0.3071.115_59.0.3071.109_CHROME_UPDATER.EXE EXE
  733. 26/06/2017 16:55:26 Run .EXE file SYSTEMSETTINGSBROKER.EXE C:\WINDOWS\SYSTEM32\SYSTEMSETTINGSBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  734. 26/06/2017 16:55:19 Run .EXE file MUSIC.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEMUSIC_10.17042.14111.0_X64__8WEKYB3D8BBWE\MUSIC.UI.EXE , , , EXE
  735. 26/06/2017 16:55:19 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  736. 26/06/2017 16:29:08 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  737. 26/06/2017 13:23:42 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  738. 26/06/2017 12:09:43 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  739. 26/06/2017 12:06:20 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  740. 26/06/2017 12:01:03 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  741. 26/06/2017 12:00:09 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  742. 26/06/2017 11:59:29 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  743. 26/06/2017 11:58:59 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  744. 26/06/2017 11:58:31 Run .EXE file FACEBOOK GAMEROOM BROWSER.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOK GAMEROOM BROWSER.EXE The CefSharp Authors, CefSharp, CefSharp.BrowserSubprocess, 55.0.0.0 EXE
  745. 26/06/2017 11:58:28 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  746. 26/06/2017 11:57:57 Run .EXE file ASWOFFERTOOL.EXE C:\PROGRAM FILES\AVAST SOFTWARE\Avast\setup\ASWOFFERTOOL.EXE AVAST Software, Avast Antivirus, Avast Offer Installation Tool, 17.4.3482.0 EXE
  747. 26/06/2017 11:57:28 Run .EXE file FONTDRVHOST.EXE C:\Windows\System32\FONTDRVHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Usermode Font Driver Host, 10.0.14393.1358 (rs1_release.170602-2252) EXE
  748. 26/06/2017 11:57:28 Run .EXE file WINDSCRIBEOPENVPN.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBEOPENVPN.EXE The OpenVPN Project, OpenVPN, OpenVPN Daemon, 2.3.14.0 EXE
  749. 26/06/2017 11:57:28 Run .EXE file WINDSCRIBE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBE.EXE Windscribe Limited, Windscribe, Windscribe client, 1.70.0.4 EXE
  750. 26/06/2017 11:57:24 Run .EXE file OneDrive.exe C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\OneDrive.exe Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive, 17.3.6917.0607 exe
  751. 26/06/2017 11:57:23 Run .EXE file AvLaunch.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvLaunch.exe AVAST Software, Avast Antivirus, AvLaunch component, 17.3.3443.0 exe
  752. 26/06/2017 11:57:23 Run .EXE file NVBACKEND.EXE C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\UPDATE CORE\NVBACKEND.EXE NVIDIA Corporation, NVIDIA Update, NVIDIA Update Backend, 10.4.0.4 EXE
  753. 26/06/2017 11:57:23 Run .EXE file MSASCuiL.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCuiL.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender notification icon, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  754. 26/06/2017 11:57:16 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  755. 26/06/2017 11:57:13 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  756. 26/06/2017 11:57:11 User Logon WORKGROUP\Cliente
  757. 26/06/2017 11:57:10 Resumed from sleep
  758. 26/06/2017 01:17:47 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  759. 26/06/2017 01:17:47 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  760. 26/06/2017 01:17:47 Sleep
  761. 26/06/2017 01:17:46 User Logoff DESKTOP-G71LO1P\Cliente
  762. 26/06/2017 01:17:45 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  763. 26/06/2017 01:17:45 User Logon WORKGROUP\DWM-5
  764. 26/06/2017 01:17:44 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  765. 26/06/2017 01:17:44 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  766. 26/06/2017 01:17:44 Run .EXE file SMSS.EXE C:\WINDOWS\SYSTEM32\SMSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Sessão do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  767. 26/06/2017 00:12:29 Run .EXE file VIDEO.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.17042.14211.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE , , , EXE
  768. 25/06/2017 23:37:41 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  769. 25/06/2017 21:54:12 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  770. 25/06/2017 21:53:52 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  771. 25/06/2017 21:53:51 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  772. 25/06/2017 20:54:32 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  773. 25/06/2017 19:42:36 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  774. 25/06/2017 19:32:20 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  775. 25/06/2017 16:49:57 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  776. 25/06/2017 16:49:22 View Folder in Explorer Roaming C:\Users\Cliente\AppData\Local\Roaming
  777. 25/06/2017 16:12:34 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  778. 25/06/2017 15:29:06 Run .EXE file BACKGROUNDTRANSFERHOST.EXE C:\Windows\System32\BACKGROUNDTRANSFERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Download/Upload Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  779. 25/06/2017 14:57:11 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  780. 25/06/2017 14:26:36 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  781. 25/06/2017 14:18:55 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  782. 25/06/2017 14:16:13 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  783. 25/06/2017 13:53:03 Run .EXE file SPPEXTCOMOBJ.EXE C:\WINDOWS\SYSTEM32\SPPEXTCOMOBJ.EXE Microsoft Corporation, Microsoft® Windows® Operating System, KMS Connection Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  784. 25/06/2017 13:53:00 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  785. 25/06/2017 13:51:54 Run .EXE file AUDIODG.EXE C:\WINDOWS\SYSTEM32\AUDIODG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Isolamento de Gráfico de Dispositivo de Áudio do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  786. 25/06/2017 13:49:33 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  787. 25/06/2017 13:49:30 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  788. 25/06/2017 13:49:29 Resumed from sleep
  789. 25/06/2017 13:49:28 User Logon WORKGROUP\Cliente
  790. 25/06/2017 13:48:01 Sleep
  791. 25/06/2017 13:48:00 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  792. 25/06/2017 13:48:00 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  793. 25/06/2017 13:48:00 User Logoff DESKTOP-G71LO1P\Cliente
  794. 25/06/2017 13:47:58 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  795. 25/06/2017 13:47:58 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  796. 25/06/2017 13:47:58 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  797. 25/06/2017 13:47:58 User Logon WORKGROUP\DWM-4
  798. 25/06/2017 13:45:19 Run .EXE file SKYPEHOST.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.SKYPEAPP_11.18.614.0_X64__KZF8QXF38ZG5C\SKYPEHOST.EXE Microsoft Corporation, Microsoft® Skype, Microsoft Skype, 11.18.614.0 EXE
  799. 25/06/2017 13:45:18 Run .EXE file SkypeApp.exe C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.SKYPEAPP_11.18.614.0_X64__KZF8QXF38ZG5C\SkypeApp.exe Microsoft, SkypeApp, SkypeApp, 11.18.614.0 exe
  800. 25/06/2017 13:45:18 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  801. 25/06/2017 13:42:00 Run .EXE file SPPSVC.EXE C:\WINDOWS\SYSTEM32\SPPSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço da Plataforma de Proteção de Software da Microsoft, 10.0.14393.0 (rs1_release.160715-1616) EXE
  802. 25/06/2017 13:40:10 Run .EXE file AvastUI.exe C:\PROGRAM FILES\AVAST SOFTWARE\Avast\AvastUI.exe AVAST Software, Avast Antivirus, Avast Antivirus, 17.3.3443.0 exe
  803. 25/06/2017 13:38:24 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  804. 25/06/2017 13:38:22 Run .EXE file nvtray.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvtray.exe NVIDIA Corporation, NVIDIA Settings, NVIDIA Settings, 7.17.13.4201 exe
  805. 25/06/2017 13:38:19 User Logon WORKGROUP\Cliente
  806. 25/06/2017 13:38:19 Resumed from sleep
  807. 25/06/2017 05:11:06 Run .EXE file nvxdsync.exe C:\PROGRAM FILES\NVIDIA CORPORATION\Display\nvxdsync.exe NVIDIA Corporation, NVIDIA User Experience Driver Component, NVIDIA User Experience Driver Component, 8.17.13.4201 exe
  808. 25/06/2017 05:11:06 Sleep
  809. 25/06/2017 05:11:06 User Logoff DESKTOP-G71LO1P\Cliente
  810. 25/06/2017 05:11:05 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  811. 25/06/2017 05:11:04 Run .EXE file DWM.EXE C:\WINDOWS\SYSTEM32\DWM.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Gerenciador de Janelas da Área de Trabalho, 10.0.14393.0 (rs1_release.160715-1616) EXE
  812. 25/06/2017 05:11:04 Run .EXE file WINLOGON.EXE C:\WINDOWS\SYSTEM32\WINLOGON.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Aplicativo de Logon do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  813. 25/06/2017 05:11:04 Run .EXE file CSRSS.EXE C:\WINDOWS\SYSTEM32\CSRSS.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo do tempo de Execução do Servidor do Cliente, 10.0.14393.0 (rs1_release.160715-1616) EXE
  814. 25/06/2017 05:11:04 User Logon WORKGROUP\DWM-3
  815. 25/06/2017 03:20:04 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  816. 25/06/2017 03:18:20 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  817. 25/06/2017 03:17:40 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  818. 25/06/2017 03:17:36 Run .EXE file sethc.exe C:\Windows\System32\sethc.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Teclas de atalho de acessibilidade, 10.0.14393.0 (rs1_release.160715-1616) exe
  819. 25/06/2017 03:14:51 Run .EXE file BLSQUAD 1.1.8.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\RAR$DR01.297\BLSQUAD 1.1.8\BLSQUAD 1.1.8.EXE EXE
  820. 25/06/2017 03:14:45 View Folder in Explorer Squad 1.1.8 Squad 1.1.8 8
  821. 25/06/2017 03:11:03 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  822. 25/06/2017 01:30:00 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  823. 25/06/2017 00:14:29 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  824. 24/06/2017 16:34:37 View Folder in Explorer assets assets
  825. 24/06/2017 16:33:15 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  826. 24/06/2017 16:31:02 Run .EXE file LASTACTIVITYVIEW.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\RAR$EX06.094\LASTACTIVITYVIEW\LASTACTIVITYVIEW.EXE EXE
  827. 24/06/2017 16:30:51 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  828. 24/06/2017 16:27:55 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  829. 24/06/2017 16:27:54 Run .EXE file explorer.exe C:\Windows\explorer.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Windows Explorer, 10.0.14393.0 (rs1_release.160715-1616) exe
  830. 24/06/2017 16:22:56 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  831. 24/06/2017 16:14:02 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  832. 24/06/2017 16:06:43 Run .EXE file CHEATSMASHER.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\RAR$EX04.016\CHEAT SMASHER\CHEATSMASHER\CHEATSMASHER.EXE EXE
  833. 24/06/2017 16:04:19 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  834. 24/06/2017 15:58:13 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  835. 24/06/2017 15:58:11 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  836. 24/06/2017 15:56:37 Run .EXE file notepad.exe C:\Windows\System32\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  837. 24/06/2017 15:55:41 View Folder in Explorer mods C:\Users\Cliente\AppData\Local\Roaming\.minecraft\mods
  838. 24/06/2017 15:47:32 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  839. 24/06/2017 15:45:26 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  840. 24/06/2017 14:41:44 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  841. 24/06/2017 14:37:33 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  842. 24/06/2017 14:37:31 Run .EXE file mobsync.exe C:\Windows\System32\mobsync.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Sync Center, 10.0.14393.0 (rs1_release.160715-1616) exe
  843. 24/06/2017 14:37:26 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  844. 24/06/2017 14:37:26 Resumed from sleep
  845. 24/06/2017 14:37:25 User Logon WORKGROUP\Cliente
  846. 24/06/2017 03:45:58 Run .EXE file NVVSVC.EXE C:\WINDOWS\SYSTEM32\NVVSVC.EXE NVIDIA Corporation, NVIDIA Driver Helper Service, Version 342.01, NVIDIA Driver Helper Service, Version 342.01, 8.17.13.4201 EXE
  847. 24/06/2017 03:45:58 Sleep
  848. 24/06/2017 03:45:56 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  849. 24/06/2017 03:45:56 User Logoff DESKTOP-G71LO1P\Cliente
  850. 24/06/2017 03:45:54 User Logon WORKGROUP\DWM-2
  851. 24/06/2017 02:23:24 View Folder in Explorer patch C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\patch
  852. 24/06/2017 00:06:50 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  853. 23/06/2017 17:50:58 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  854. 23/06/2017 13:15:53 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  855. 23/06/2017 13:11:43 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  856. 23/06/2017 12:42:40 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  857. 23/06/2017 12:42:26 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  858. 23/06/2017 12:41:32 Run .EXE file WMIADAP.exe C:\Windows\System32\wbem\WMIADAP.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Reverse Performance Adapter Maintenance Utility, 10.0.14393.0 (rs1_release.160715-1616) exe
  859. 23/06/2017 12:41:27 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  860. 23/06/2017 12:40:53 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  861. 23/06/2017 12:40:35 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  862. 23/06/2017 12:38:36 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  863. 23/06/2017 12:37:56 Run .EXE file runonce.exe C:\Windows\SysWOW64\runonce.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Wrapper Run Once, 10.0.14393.0 (rs1_release.160715-1616) exe
  864. 23/06/2017 12:37:55 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  865. 23/06/2017 12:37:33 User Logon WORKGROUP\Cliente
  866. 23/06/2017 12:37:29 User Logon WORKGROUP\DWM-1
  867. 23/06/2017 12:37:29 System Started
  868. 23/06/2017 00:06:21 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  869. 23/06/2017 00:06:20 User Logon WORKGROUP\DWM-7
  870. 22/06/2017 18:41:47 Run .EXE file SYSTEMSETTINGSBROKER.EXE C:\WINDOWS\SYSTEM32\SYSTEMSETTINGSBROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Broker, 10.0.14393.0 (rs1_release.160715-1616) EXE
  871. 22/06/2017 15:22:51 Run .EXE file rundll32.exe C:\Windows\SysWOW64\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  872. 22/06/2017 14:04:22 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  873. 22/06/2017 13:43:29 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  874. 22/06/2017 13:23:43 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  875. 22/06/2017 13:08:03 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  876. 22/06/2017 11:40:39 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  877. 22/06/2017 11:40:13 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  878. 22/06/2017 11:40:06 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  879. 22/06/2017 11:39:54 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  880. 22/06/2017 11:36:53 Resumed from sleep
  881. 22/06/2017 11:36:52 User Logon WORKGROUP\Cliente
  882. 22/06/2017 01:09:00 Sleep
  883. 22/06/2017 01:08:59 User Logoff DESKTOP-G71LO1P\Cliente
  884. 22/06/2017 01:08:58 User Logon WORKGROUP\DWM-6
  885. 21/06/2017 23:51:08 Run .EXE file SOFTWARE_REPORTER_TOOL.EXE C:\Users\Cliente\AppData\Local\Google\Chrome\USER DATA\SWREPORTER\19.109.2\SOFTWARE_REPORTER_TOOL.EXE Google, Software Reporter Tool, Software Reporter Tool, 19.109.2 EXE
  886. 21/06/2017 23:51:08 Run .EXE file SOFTWARE_REPORTER_TOOL.EXE C:\Users\Cliente\AppData\Local\Google\Chrome\USER DATA\SWREPORTER\19.109.2\SOFTWARE_REPORTER_TOOL.EXE Google, Software Reporter Tool, Software Reporter Tool, 19.109.2 EXE
  887. 21/06/2017 21:30:04 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  888. 21/06/2017 19:22:23 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  889. 21/06/2017 19:21:48 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  890. 21/06/2017 18:53:09 Run .EXE file RDRLEAKDIAG.EXE C:\Windows\SysWOW64\RDRLEAKDIAG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Diagnóstico de Perda de Recursos do Microsoft Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  891. 21/06/2017 16:35:41 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  892. 21/06/2017 13:15:52 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  893. 21/06/2017 13:05:27 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  894. 21/06/2017 12:17:53 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  895. 21/06/2017 11:53:21 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  896. 21/06/2017 11:52:46 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  897. 21/06/2017 11:50:30 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  898. 21/06/2017 11:50:26 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  899. 21/06/2017 11:50:08 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  900. 21/06/2017 11:47:17 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  901. 21/06/2017 11:47:15 Resumed from sleep
  902. 21/06/2017 11:47:14 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  903. 21/06/2017 11:47:14 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  904. 21/06/2017 11:47:14 User Logon WORKGROUP\Cliente
  905. 21/06/2017 00:50:14 Sleep
  906. 21/06/2017 00:50:14 User Logoff DESKTOP-G71LO1P\Cliente
  907. 21/06/2017 00:50:12 User Logon WORKGROUP\DWM-5
  908. 21/06/2017 00:50:09 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.109\INSTALLER\SETUP.EXE EXE
  909. 21/06/2017 00:50:09 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.109\INSTALLER\SETUP.EXE EXE
  910. 21/06/2017 00:50:09 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.109\INSTALLER\SETUP.EXE EXE
  911. 21/06/2017 00:50:09 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.109\INSTALLER\SETUP.EXE EXE
  912. 21/06/2017 00:50:09 Run .EXE file GOOGLEUPDATEONDEMAND.EXE C:\PROGRAM FILES (X86)\Google\Update\1.3.33.5\GOOGLEUPDATEONDEMAND.EXE Google Inc., Google Update, Google Update, 1.3.33.5 EXE
  913. 20/06/2017 22:46:58 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  914. 20/06/2017 22:46:56 Run .EXE file MUSIC.UI.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEMUSIC_10.17042.14111.0_X64__8WEKYB3D8BBWE\MUSIC.UI.EXE , , , EXE
  915. 20/06/2017 22:06:01 Run .EXE file SETUP.EXE C:\WINDOWS\TEMP\CR_FBDF4.TMP\SETUP.EXE EXE
  916. 20/06/2017 22:06:00 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.104\INSTALLER\SETUP.EXE EXE
  917. 20/06/2017 22:06:00 Run .EXE file SETUP.EXE C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\59.0.3071.104\INSTALLER\SETUP.EXE EXE
  918. 20/06/2017 22:06:00 Run .EXE file 59.0.3071.109_59.0.3071.104_CHROME_UPDATER.EXE C:\PROGRAM FILES (X86)\GOOGLE\UPDATE\INSTALL\{D7F1A5D5-CF5A-4CD7-8A5A-D373C72CFC29}\59.0.3071.109_59.0.3071.104_CHROME_UPDATER.EXE EXE
  919. 20/06/2017 18:41:27 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  920. 20/06/2017 18:41:27 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  921. 20/06/2017 18:41:27 Run .EXE file APPLICATIONFRAMEHOST.EXE C:\WINDOWS\SYSTEM32\APPLICATIONFRAMEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Application Frame Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  922. 20/06/2017 18:41:27 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  923. 20/06/2017 18:30:31 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  924. 20/06/2017 18:25:57 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  925. 20/06/2017 18:25:56 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  926. 20/06/2017 18:25:55 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  927. 20/06/2017 18:25:54 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  928. 20/06/2017 18:25:53 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  929. 20/06/2017 18:25:46 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  930. 20/06/2017 18:25:45 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  931. 20/06/2017 18:25:45 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  932. 20/06/2017 18:25:44 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  933. 20/06/2017 18:25:44 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  934. 20/06/2017 18:25:44 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  935. 20/06/2017 18:25:43 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  936. 20/06/2017 18:25:43 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  937. 20/06/2017 18:25:42 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  938. 20/06/2017 16:43:59 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  939. 20/06/2017 13:40:01 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  940. 20/06/2017 13:21:48 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  941. 20/06/2017 13:21:17 Software Installation OneDriveSetup.exe C:\Users\Cliente\AppData\Local\Microsoft\OneDrive\17.3.6917.0607\OneDriveSetup.exe Microsoft OneDrive exe
  942. 20/06/2017 13:21:17 Run .EXE file FILESYNCCONFIG.EXE C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\17.3.6917.0607\FILESYNCCONFIG.EXE Microsoft Corporation, Microsoft OneDrive, Microsoft OneDrive Configuration Application, 17.3.6917.0607 EXE
  943. 20/06/2017 13:21:07 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  944. 20/06/2017 13:20:23 Run .EXE file ONEDRIVESETUP.EXE C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\Update\ONEDRIVESETUP.EXE Microsoft Corporation, Windows Live, Microsoft OneDrive Setup, 17.3.6917.0607 EXE
  945. 20/06/2017 13:20:22 Run .EXE file ONEDRIVESETUP.EXE C:\Users\Cliente\AppData\Local\MICROSOFT\OneDrive\Update\ONEDRIVESETUP.EXE Microsoft Corporation, Windows Live, Microsoft OneDrive Setup, 17.3.6917.0607 EXE
  946. 20/06/2017 13:16:49 Run .EXE file chrome.exe C:\PROGRAM FILES (X86)\Google\Chrome\APPLICATION\chrome.exe Google Inc., Google Chrome, Google Chrome, 59.0.3071.115 exe
  947. 20/06/2017 13:05:52 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  948. 20/06/2017 12:05:33 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  949. 20/06/2017 12:02:19 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  950. 20/06/2017 12:02:18 Resumed from sleep
  951. 20/06/2017 12:02:17 User Logon WORKGROUP\Cliente
  952. 20/06/2017 00:51:09 Sleep
  953. 20/06/2017 00:51:08 User Logoff DESKTOP-G71LO1P\Cliente
  954. 20/06/2017 00:51:07 User Logon WORKGROUP\DWM-4
  955. 20/06/2017 00:44:48 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  956. 20/06/2017 00:35:12 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  957. 20/06/2017 00:24:14 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  958. 19/06/2017 23:57:30 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  959. 19/06/2017 23:40:13 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  960. 19/06/2017 23:34:22 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  961. 19/06/2017 20:31:10 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  962. 19/06/2017 19:28:44 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  963. 19/06/2017 19:18:36 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  964. 19/06/2017 19:18:00 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  965. 19/06/2017 19:17:59 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  966. 19/06/2017 19:17:58 Run .EXE file BROWSER_BROKER.EXE C:\WINDOWS\SYSTEM32\BROWSER_BROKER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Browser_Broker, 11.00.14393.1198 (rs1_release_sec.170427-1353) EXE
  967. 19/06/2017 19:17:58 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  968. 19/06/2017 17:46:45 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  969. 19/06/2017 17:15:43 Run .EXE file MICROSOFT.PHOTOS.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWS.PHOTOS_17.524.10020.0_X64__8WEKYB3D8BBWE\MICROSOFT.PHOTOS.EXE EXE
  970. 19/06/2017 16:48:30 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  971. 19/06/2017 16:30:37 User Logon WORKGROUP\Cliente
  972. 19/06/2017 16:30:37 Resumed from sleep
  973. 19/06/2017 16:29:34 Sleep
  974. 19/06/2017 16:29:33 User Logoff DESKTOP-G71LO1P\Cliente
  975. 19/06/2017 16:29:32 User Logon WORKGROUP\DWM-3
  976. 19/06/2017 15:16:45 Run .EXE file WINSAT.EXE C:\WINDOWS\SYSTEM32\WINSAT.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Avaliação de Sistema do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  977. 19/06/2017 15:16:45 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  978. 19/06/2017 15:15:44 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  979. 19/06/2017 15:15:44 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  980. 19/06/2017 15:15:44 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  981. 19/06/2017 15:15:44 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  982. 19/06/2017 15:15:43 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  983. 19/06/2017 15:15:43 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  984. 19/06/2017 15:15:42 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  985. 19/06/2017 15:15:42 Run .EXE file DEFRAG.EXE C:\WINDOWS\SYSTEM32\DEFRAG.EXE Microsoft Corp., Otimizador de Unidade do Windows, Desfragmentador de disco do Windows, 10.0.14393.0 (rs1_release.160715-1616) EXE
  986. 19/06/2017 14:38:07 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  987. 19/06/2017 14:07:18 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  988. 19/06/2017 14:06:56 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  989. 19/06/2017 12:43:01 View Folder in Explorer backup fabia 22-04-2017 backup fabia 22-04-2017
  990. 19/06/2017 12:42:39 View Folder in Explorer iginimaSE_v2000 iginimaSE_v2000
  991. 19/06/2017 12:42:33 View Folder in Explorer X and Linux iginimaSE_v2000\ X and Linux
  992. 19/06/2017 12:03:34 View Folder in Explorer texturepacks C:\Users\Cliente\AppData\Local\Roaming\.minecraft\texturepacks
  993. 19/06/2017 11:57:13 Run .EXE file SYSTEMSETTINGS.DLL C:\Windows\IMMERSIVECONTROLPANEL\SYSTEMSETTINGS.DLL Microsoft Corporation, Microsoft® Windows® Operating System, System Settings Application, 10.0.14393.1358 (rs1_release.170602-2252) DLL
  994. 19/06/2017 11:51:20 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  995. 19/06/2017 11:51:19 Resumed from sleep
  996. 19/06/2017 11:51:18 User Logon WORKGROUP\Cliente
  997. 19/06/2017 00:58:33 Sleep
  998. 19/06/2017 00:58:32 User Logoff DESKTOP-G71LO1P\Cliente
  999. 19/06/2017 00:58:30 User Logon WORKGROUP\DWM-2
  1000. 18/06/2017 20:56:42 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1001. 18/06/2017 20:42:06 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1002. 18/06/2017 19:37:59 Run .EXE file firefox.exe C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\firefox.exe Mozilla Corporation, Firefox, Firefox, 47.0.2 exe
  1003. 18/06/2017 18:55:40 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1004. 18/06/2017 16:35:12 Run .EXE file WMIADAP.exe C:\Windows\System32\wbem\WMIADAP.exe Microsoft Corporation, Microsoft® Windows® Operating System, WMI Reverse Performance Adapter Maintenance Utility, 10.0.14393.0 (rs1_release.160715-1616) exe
  1005. 18/06/2017 16:33:19 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1006. 18/06/2017 16:32:40 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1007. 18/06/2017 16:32:37 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1008. 18/06/2017 16:32:16 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1009. 18/06/2017 16:31:35 Run .EXE file RUNUSBGUARD.EXE C:\PROGRAM FILES (X86)\USB DISK SECURITY\RUNUSBGUARD.EXE Zbshareware Lab, RunUSBGuard Application, Run USB Disk Security, 1, 0, 0, 20 EXE
  1010. 18/06/2017 16:31:35 Run .EXE file FACEBOOKGAMEROOM.EXE C:\Users\Cliente\AppData\Local\Facebook\Games\FACEBOOKGAMEROOM.EXE Facebook, FacebookGameroom, FacebookGameroom, 1.4.1.* EXE
  1011. 18/06/2017 16:31:13 User Logon WORKGROUP\Cliente
  1012. 18/06/2017 16:31:09 System Started
  1013. 18/06/2017 16:31:09 User Logon WORKGROUP\DWM-1
  1014. 18/06/2017 15:36:39 Software Installation uninstall.ico C:\Program Files (x86)\Windscribe\uninstall.ico Windscribe versão 1.70 build 4 ico
  1015. 18/06/2017 15:36:39 Software Installation Skype Web Plugin
  1016. 18/06/2017 15:36:39 Software Installation AvastUI.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe Avast Free Antivirus exe
  1017. 18/06/2017 15:36:33 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1018. 18/06/2017 15:36:33 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1019. 18/06/2017 15:36:33 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1020. 18/06/2017 15:36:32 Run .EXE file ngentask.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngentask.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft .NET Framework optimization service, 4.6.1586.0 built by: NETFXREL2 exe
  1021. 18/06/2017 15:36:29 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1022. 18/06/2017 15:36:29 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1023. 18/06/2017 15:36:23 Run .EXE file COMPATTELRUNNER.EXE C:\WINDOWS\SYSTEM32\COMPATTELRUNNER.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Compatibility Telemetry, 10.0.15156.1008 (WinBuild.160101.0800) EXE
  1024. 18/06/2017 13:23:39 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1025. 18/06/2017 13:19:58 Run .EXE file BACKGROUNDTASKHOST.EXE C:\Windows\System32\BACKGROUNDTASKHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Background Task Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1026. 18/06/2017 13:19:50 Resumed from sleep
  1027. 18/06/2017 13:19:50 User Logon WORKGROUP\Cliente
  1028. 18/06/2017 04:39:40 Sleep
  1029. 18/06/2017 04:39:40 User Logoff DESKTOP-G71LO1P\Cliente
  1030. 18/06/2017 04:39:39 User Logon WORKGROUP\DWM-4
  1031. 17/06/2017 22:45:39 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1032. 17/06/2017 22:43:03 Run .EXE file netsh.exe C:\Windows\SysWOW64\netsh.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Shell de comando de rede, 10.0.14393.0 (rs1_release.160715-1616) exe
  1033. 17/06/2017 22:43:03 Run .EXE file netsh.exe C:\Windows\SysWOW64\netsh.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Shell de comando de rede, 10.0.14393.0 (rs1_release.160715-1616) exe
  1034. 17/06/2017 22:42:57 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  1035. 17/06/2017 22:42:43 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  1036. 17/06/2017 22:42:42 Run .EXE file WINDSCRIBESERVICE.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBESERVICE.EXE Windscribe Limited, Windscribe, Windscribe service, 1.7.0.0 EXE
  1037. 17/06/2017 22:42:40 Run .EXE file WINDSCRIBELAUNCHER.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\WINDSCRIBELAUNCHER.EXE Windscribe Limited, Windscribe, Windscribe launcher, 1.0.0.0 EXE
  1038. 17/06/2017 22:42:38 Run .EXE file subinacl.exe C:\PROGRAM FILES (X86)\WINDSCRIBE\subinacl.exe Microsoft Corporation, Microsoft® Windows® Operating System, SubInAcl, 5.2.3790.1180 exe
  1039. 17/06/2017 22:42:38 Run .EXE file sc.exe C:\Windows\SysWOW64\sc.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Configuração do Gerenciador de Controle de Serviço, 10.0.14393.0 (rs1_release.160715-1616) exe
  1040. 17/06/2017 22:42:38 Run .EXE file sc.exe C:\Windows\SysWOW64\sc.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Configuração do Gerenciador de Controle de Serviço, 10.0.14393.0 (rs1_release.160715-1616) exe
  1041. 17/06/2017 22:42:36 Run .EXE file TAPINSTALL.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\tap\TAPINSTALL.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Setup API, 6.1.7600.16385 (win7_wdk.100208-1538) EXE
  1042. 17/06/2017 22:42:34 Run .EXE file TAPINSTALL.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\tap\TAPINSTALL.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Setup API, 6.1.7600.16385 (win7_wdk.100208-1538) EXE
  1043. 17/06/2017 22:42:33 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  1044. 17/06/2017 22:42:33 Run .EXE file _IU14D2N.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\_IU14D2N.TMP TMP
  1045. 17/06/2017 22:42:33 Run .EXE file UNINS001.EXE C:\PROGRAM FILES (X86)\WINDSCRIBE\UNINS001.EXE EXE
  1046. 17/06/2017 22:42:24 Run .EXE file WINDSCRIBE.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\IS-6TK4H.TMP\WINDSCRIBE.TMP TMP
  1047. 17/06/2017 22:42:24 Run .EXE file WINDSCRIBE.EXE C:\Users\Cliente\Desktop\WINDSCRIBE.EXE Windscribe, Windscribe, Windscribe Setup, EXE
  1048. 17/06/2017 22:42:23 Run .EXE file WINDSCRIBE.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\IS-IEQ0S.TMP\WINDSCRIBE.TMP TMP
  1049. 17/06/2017 22:42:20 Run .EXE file WINDSCRIBE.EXE C:\Users\Cliente\Desktop\WINDSCRIBE.EXE Windscribe, Windscribe, Windscribe Setup, EXE
  1050. 17/06/2017 22:09:30 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1051. 17/06/2017 19:05:56 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1052. 17/06/2017 18:09:05 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1053. 17/06/2017 16:32:00 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1054. 17/06/2017 16:32:00 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1055. 17/06/2017 16:32:00 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1056. 17/06/2017 16:32:00 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1057. 17/06/2017 16:31:59 Run .EXE file ngen.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\ngen.exe Microsoft Corporation, Microsoft® .NET Framework, Microsoft Common Language Runtime native compiler, 4.6.1586.0 built by: NETFXREL2 exe
  1058. 17/06/2017 16:31:56 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1059. 17/06/2017 16:31:56 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1060. 17/06/2017 16:31:55 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1061. 17/06/2017 13:15:49 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1062. 17/06/2017 13:07:01 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1063. 17/06/2017 12:51:35 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1064. 17/06/2017 12:08:57 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1065. 17/06/2017 12:07:31 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  1066. 17/06/2017 12:04:44 Run .EXE file runonce.exe C:\Windows\SysWOW64\runonce.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Wrapper Run Once, 10.0.14393.0 (rs1_release.160715-1616) exe
  1067. 17/06/2017 12:04:27 Resumed from sleep
  1068. 17/06/2017 12:04:26 User Logon WORKGROUP\Cliente
  1069. 17/06/2017 03:08:42 Sleep
  1070. 17/06/2017 03:08:41 User Logoff DESKTOP-G71LO1P\Cliente
  1071. 17/06/2017 03:08:40 User Logon WORKGROUP\DWM-3
  1072. 16/06/2017 23:58:10 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1073. 16/06/2017 23:58:09 Software Installation FlashUtil32_26_0_0_131_Plugin.exe C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_131_Plugin.exe Adobe Flash Player 26 NPAPI exe
  1074. 16/06/2017 23:58:07 Run .EXE file INSTALLFLASHPLAYER.EXE C:\WINDOWS\SYSWOW64\MACROMED\TEMP\{21105B89-B874-4D46-8DB8-8E2E41EBFCF4}\INSTALLFLASHPLAYER.EXE EXE
  1075. 16/06/2017 23:58:06 Run .EXE file FLASHPLAYERINSTALLER.EXE C:\WINDOWS\SYSWOW64\FLASHPLAYERINSTALLER.EXE EXE
  1076. 16/06/2017 23:28:35 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1077. 16/06/2017 22:43:00 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1078. 16/06/2017 21:26:03 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1079. 16/06/2017 19:53:59 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1080. 16/06/2017 18:50:04 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1081. 16/06/2017 18:48:21 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1082. 16/06/2017 18:23:10 Run .EXE file mscorsvw.exe C:\Windows\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\mscorsvw.exe Microsoft Corporation, Microsoft® .NET Framework, .NET Runtime Optimization Service, 4.6.1586.0 built by: NETFXREL2 exe
  1083. 16/06/2017 18:23:08 Run .EXE file svchost.exe C:\Windows\System32\svchost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host para Serviços do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1084. 16/06/2017 18:23:08 Run .EXE file VSSVC.EXE C:\WINDOWS\SYSTEM32\VSSVC.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Serviço de cópias de sombra de volume da Microsoft®, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1085. 16/06/2017 12:36:04 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  1086. 16/06/2017 12:35:46 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  1087. 16/06/2017 12:35:35 Run .EXE file subinacl.exe C:\PROGRAM FILES (X86)\WINDSCRIBE\subinacl.exe Microsoft Corporation, Microsoft® Windows® Operating System, SubInAcl, 5.2.3790.1180 exe
  1088. 16/06/2017 12:35:34 Run .EXE file sc.exe C:\Windows\SysWOW64\sc.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Configuração do Gerenciador de Controle de Serviço, 10.0.14393.0 (rs1_release.160715-1616) exe
  1089. 16/06/2017 12:35:34 Run .EXE file sc.exe C:\Windows\SysWOW64\sc.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Configuração do Gerenciador de Controle de Serviço, 10.0.14393.0 (rs1_release.160715-1616) exe
  1090. 16/06/2017 12:35:28 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  1091. 16/06/2017 12:35:28 Run .EXE file _IU14D2N.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\_IU14D2N.TMP TMP
  1092. 16/06/2017 12:35:18 Run .EXE file WINDSCRIBE.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\IS-PE5HV.TMP\WINDSCRIBE.TMP TMP
  1093. 16/06/2017 12:35:18 Run .EXE file WINDSCRIBE.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\IS-S6HIE.TMP\WINDSCRIBE.TMP TMP
  1094. 16/06/2017 11:34:20 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  1095. 16/06/2017 11:32:18 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  1096. 16/06/2017 11:32:18 Run .EXE file wermgr.exe C:\Windows\System32\wermgr.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Problem Reporting, 10.0.14393.0 (rs1_release.160715-1616) exe
  1097. 16/06/2017 11:28:37 Resumed from sleep
  1098. 16/06/2017 11:28:36 User Logon WORKGROUP\Cliente
  1099. 16/06/2017 03:50:37 Sleep
  1100. 16/06/2017 03:50:35 User Logoff DESKTOP-G71LO1P\Cliente
  1101. 16/06/2017 03:50:33 User Logon WORKGROUP\DWM-2
  1102. 16/06/2017 00:13:00 Run .EXE file netsh.exe C:\Windows\SysWOW64\netsh.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Shell de comando de rede, 10.0.14393.0 (rs1_release.160715-1616) exe
  1103. 16/06/2017 00:13:00 Run .EXE file netsh.exe C:\Windows\SysWOW64\netsh.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Shell de comando de rede, 10.0.14393.0 (rs1_release.160715-1616) exe
  1104. 15/06/2017 23:07:38 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  1105. 15/06/2017 23:07:01 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  1106. 15/06/2017 23:05:29 Run .EXE file EASEOFACCESSDIALOG.EXE C:\Windows\System32\EASEOFACCESSDIALOG.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host da Caixa de Diálogo Facilidade de Acesso, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1107. 15/06/2017 23:03:54 Run .EXE file EVERYTHING.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\RAR$EX02.359\EVERYTHING\64BITS\EVERYTHING.EXE EXE
  1108. 15/06/2017 23:03:54 Run .EXE file EVERYTHING.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\RAR$EX02.359\EVERYTHING\64BITS\EVERYTHING.EXE EXE
  1109. 15/06/2017 23:03:49 Run .EXE file EVERYTHING.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\RAR$EX02.359\EVERYTHING\64BITS\EVERYTHING.EXE EXE
  1110. 15/06/2017 23:01:47 View Folder in Explorer Prefetch C:\Windows\Prefetch
  1111. 15/06/2017 20:34:07 Run .EXE file taskkill.exe C:\Windows\SysWOW64\taskkill.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Finaliza processos, 10.0.14393.0 (rs1_release.160715-1616) exe
  1112. 15/06/2017 20:31:07 Run .EXE file subinacl.exe C:\PROGRAM FILES (X86)\WINDSCRIBE\subinacl.exe Microsoft Corporation, Microsoft® Windows® Operating System, SubInAcl, 5.2.3790.1180 exe
  1113. 15/06/2017 20:31:07 Run .EXE file sc.exe C:\Windows\SysWOW64\sc.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Configuração do Gerenciador de Controle de Serviço, 10.0.14393.0 (rs1_release.160715-1616) exe
  1114. 15/06/2017 20:31:07 Run .EXE file sc.exe C:\Windows\SysWOW64\sc.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Ferramenta de Configuração do Gerenciador de Controle de Serviço, 10.0.14393.0 (rs1_release.160715-1616) exe
  1115. 15/06/2017 20:30:34 Run .EXE file WINDSCRIBE.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\IS-DFRSN.TMP\WINDSCRIBE.TMP TMP
  1116. 15/06/2017 20:30:34 Run .EXE file WINDSCRIBE.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\IS-PU1RQ.TMP\WINDSCRIBE.TMP TMP
  1117. 15/06/2017 18:28:24 View Folder in Explorer texturepacks-mp-cache C:\Users\Cliente\AppData\Local\Roaming\.minecraft\texturepacks-mp-cache
  1118. 15/06/2017 04:13:20 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1119. 15/06/2017 04:13:16 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1120. 15/06/2017 04:13:01 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  1121. 15/06/2017 04:13:00 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1122. 15/06/2017 04:12:56 User Logon WORKGROUP\Cliente
  1123. 15/06/2017 04:12:11 User Logon WORKGROUP\DWM-1
  1124. 15/06/2017 04:12:11 System Started
  1125. 15/06/2017 04:10:56 System Shutdown
  1126. 15/06/2017 04:06:59 User Logoff DESKTOP-G71LO1P\Cliente
  1127. 15/06/2017 01:48:49 Run .EXE file firefox.exe C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\firefox.exe Mozilla Corporation, Firefox, Firefox, 47.0.2 exe
  1128. 14/06/2017 22:36:38 Run .EXE file firefox.exe C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\firefox.exe Mozilla Corporation, Firefox, Firefox, 47.0.2 exe
  1129. 14/06/2017 18:10:30 View Folder in Explorer Cliente C:\Users\Cliente
  1130. 14/06/2017 17:46:05 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1131. 14/06/2017 17:45:06 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  1132. 14/06/2017 17:45:03 User Logon WORKGROUP\Cliente
  1133. 14/06/2017 17:44:59 System Started
  1134. 14/06/2017 17:44:58 User Logon WORKGROUP\DWM-1
  1135. 14/06/2017 17:22:19 Resumed from sleep
  1136. 14/06/2017 17:22:18 User Logon WORKGROUP\Cliente
  1137. 14/06/2017 17:21:02 Sleep
  1138. 14/06/2017 17:21:01 User Logoff DESKTOP-G71LO1P\Cliente
  1139. 14/06/2017 17:21:00 User Logon WORKGROUP\DWM-4
  1140. 14/06/2017 17:08:52 User Logon WORKGROUP\Cliente
  1141. 14/06/2017 17:08:51 Resumed from sleep
  1142. 14/06/2017 16:25:30 Sleep
  1143. 14/06/2017 16:25:29 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1144. 14/06/2017 16:25:29 User Logoff DESKTOP-G71LO1P\Cliente
  1145. 14/06/2017 16:25:28 User Logon WORKGROUP\DWM-3
  1146. 14/06/2017 16:24:20 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1147. 14/06/2017 16:24:20 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1148. 14/06/2017 16:24:10 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1149. 14/06/2017 16:23:47 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1150. 14/06/2017 16:23:47 Resumed from sleep
  1151. 14/06/2017 16:23:46 User Logon WORKGROUP\Cliente
  1152. 14/06/2017 15:48:01 Sleep
  1153. 14/06/2017 15:47:57 User Logoff DESKTOP-G71LO1P\Cliente
  1154. 14/06/2017 15:47:51 User Logon WORKGROUP\DWM-2
  1155. 14/06/2017 15:14:17 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1156. 14/06/2017 15:11:57 Run .EXE file PILOTSHUBAPP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSFEEDBACKHUB_1.1704.1603.0_X64__8WEKYB3D8BBWE\PILOTSHUBAPP.EXE , , , EXE
  1157. 14/06/2017 15:11:18 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1158. 14/06/2017 15:11:14 Run .EXE file PILOTSHUBAPP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSFEEDBACKHUB_1.1704.1603.0_X64__8WEKYB3D8BBWE\PILOTSHUBAPP.EXE , , , EXE
  1159. 14/06/2017 15:07:18 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1160. 14/06/2017 15:07:17 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1161. 14/06/2017 15:04:38 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1162. 14/06/2017 15:04:33 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1163. 14/06/2017 15:04:33 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1164. 14/06/2017 15:04:32 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1165. 14/06/2017 15:03:00 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1166. 14/06/2017 15:02:25 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1167. 14/06/2017 15:01:59 User Logon WORKGROUP\Cliente
  1168. 14/06/2017 15:01:56 System Started
  1169. 14/06/2017 15:01:56 User Logon WORKGROUP\DWM-1
  1170. 14/06/2017 15:00:38 System Shutdown
  1171. 14/06/2017 15:00:37 User Logoff DESKTOP-G71LO1P\Cliente
  1172. 14/06/2017 14:50:33 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1173. 14/06/2017 13:29:43 Run .EXE file MpCmdRun.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MpCmdRun.exe Microsoft Corporation, Microsoft® Windows® Operating System, Microsoft Malware Protection Command Line Utility, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1174. 14/06/2017 13:28:40 User Logon WORKGROUP\Cliente
  1175. 14/06/2017 13:28:36 User Logon WORKGROUP\DWM-1
  1176. 14/06/2017 13:28:36 System Started
  1177. 14/06/2017 12:17:52 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  1178. 14/06/2017 10:59:53 Resumed from sleep
  1179. 14/06/2017 10:59:52 User Logon WORKGROUP\Cliente
  1180. 14/06/2017 00:25:59 Sleep
  1181. 14/06/2017 00:25:58 User Logoff DESKTOP-G71LO1P\Cliente
  1182. 14/06/2017 00:25:57 User Logon WORKGROUP\DWM-5
  1183. 13/06/2017 21:58:12 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1184. 13/06/2017 16:27:57 View Folder in Explorer resourcepacks C:\Users\Cliente\AppData\Local\Roaming\.minecraft\resourcepacks
  1185. 13/06/2017 16:27:56 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1186. 13/06/2017 11:37:50 User Logon WORKGROUP\Cliente
  1187. 13/06/2017 11:37:49 Resumed from sleep
  1188. 12/06/2017 23:47:30 Sleep
  1189. 12/06/2017 23:47:29 User Logoff DESKTOP-G71LO1P\Cliente
  1190. 12/06/2017 23:47:27 User Logon WORKGROUP\DWM-4
  1191. 12/06/2017 16:23:45 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  1192. 12/06/2017 16:13:26 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1193. 12/06/2017 16:13:25 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1194. 12/06/2017 16:10:55 View Folder in Explorer Pictures backup fabia 22-04-2017\Rhayann\Pictures
  1195. 12/06/2017 16:10:55 View Folder in Explorer Rhayann backup fabia 22-04-2017\Rhayann
  1196. 12/06/2017 13:31:58 Resumed from sleep
  1197. 12/06/2017 13:31:58 User Logon WORKGROUP\Cliente
  1198. 12/06/2017 13:24:51 Sleep
  1199. 12/06/2017 13:24:50 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1200. 12/06/2017 13:24:50 User Logoff DESKTOP-G71LO1P\Cliente
  1201. 12/06/2017 13:24:47 User Logon WORKGROUP\DWM-3
  1202. 12/06/2017 13:07:15 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1203. 12/06/2017 13:07:14 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1204. 12/06/2017 13:07:14 Resumed from sleep
  1205. 12/06/2017 13:07:13 User Logon WORKGROUP\Cliente
  1206. 11/06/2017 21:39:44 Sleep
  1207. 11/06/2017 21:39:42 User Logoff DESKTOP-G71LO1P\Cliente
  1208. 11/06/2017 21:39:31 User Logon WORKGROUP\DWM-2
  1209. 11/06/2017 21:36:16 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1210. 11/06/2017 21:34:37 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1211. 11/06/2017 21:34:10 User Logon WORKGROUP\Cliente
  1212. 11/06/2017 21:34:03 User Logon WORKGROUP\DWM-1
  1213. 11/06/2017 21:34:03 System Started
  1214. 10/06/2017 20:47:05 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1215. 10/06/2017 20:46:40 User Logon WORKGROUP\Cliente
  1216. 10/06/2017 20:46:37 System Started
  1217. 10/06/2017 20:46:36 User Logon WORKGROUP\DWM-1
  1218. 10/06/2017 20:45:20 System Shutdown
  1219. 10/06/2017 20:42:41 Run .EXE file Utilman.exe C:\Windows\System32\Utilman.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Utility Manager, 10.0.14393.0 (rs1_release.160715-1616) exe
  1220. 10/06/2017 20:42:31 Run .EXE file Utilman.exe C:\Windows\System32\Utilman.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Utility Manager, 10.0.14393.0 (rs1_release.160715-1616) exe
  1221. 10/06/2017 20:42:18 Run .EXE file Utilman.exe C:\Windows\System32\Utilman.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Utility Manager, 10.0.14393.0 (rs1_release.160715-1616) exe
  1222. 10/06/2017 20:42:11 Run .EXE file Utilman.exe C:\Windows\System32\Utilman.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Utility Manager, 10.0.14393.0 (rs1_release.160715-1616) exe
  1223. 10/06/2017 20:37:11 Resumed from sleep
  1224. 10/06/2017 20:36:17 Sleep
  1225. 10/06/2017 20:36:17 User Logoff DESKTOP-G71LO1P\Cliente
  1226. 10/06/2017 20:36:12 User Logon WORKGROUP\DWM-3
  1227. 10/06/2017 20:23:29 Resumed from sleep
  1228. 10/06/2017 20:23:28 User Logon WORKGROUP\Cliente
  1229. 10/06/2017 17:49:34 Sleep
  1230. 10/06/2017 17:49:32 User Logoff DESKTOP-G71LO1P\Cliente
  1231. 10/06/2017 17:49:31 User Logon WORKGROUP\DWM-2
  1232. 10/06/2017 17:40:34 View Folder in Explorer Camera Roll backup fabia 22-04-2017\Rhayann\Pictures\Camera Roll
  1233. 10/06/2017 17:40:11 View Folder in Explorer Nova pasta backup fabia 22-04-2017\Rhayann\Pictures\Saved Pictures\Nova pasta
  1234. 10/06/2017 17:34:42 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1235. 10/06/2017 17:34:15 User Logon WORKGROUP\Cliente
  1236. 10/06/2017 17:34:12 System Started
  1237. 10/06/2017 17:34:11 User Logon WORKGROUP\DWM-1
  1238. 10/06/2017 15:36:51 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  1239. 10/06/2017 15:36:51 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1240. 10/06/2017 15:36:50 User Logon WORKGROUP\Cliente
  1241. 10/06/2017 15:36:49 Resumed from sleep
  1242. 10/06/2017 13:40:11 User Logoff DESKTOP-G71LO1P\Cliente
  1243. 10/06/2017 13:40:11 Sleep
  1244. 10/06/2017 13:40:06 User Logon WORKGROUP\DWM-4
  1245. 10/06/2017 13:33:38 User Logon WORKGROUP\Cliente
  1246. 10/06/2017 13:33:38 Resumed from sleep
  1247. 10/06/2017 00:49:32 Sleep
  1248. 10/06/2017 00:49:31 User Logoff DESKTOP-G71LO1P\Cliente
  1249. 10/06/2017 00:49:29 User Logon WORKGROUP\DWM-3
  1250. 09/06/2017 11:37:46 Resumed from sleep
  1251. 09/06/2017 11:37:45 User Logon WORKGROUP\Cliente
  1252. 09/06/2017 00:19:29 Sleep
  1253. 09/06/2017 00:19:27 User Logoff DESKTOP-G71LO1P\Cliente
  1254. 09/06/2017 00:19:25 User Logon WORKGROUP\DWM-2
  1255. 08/06/2017 19:57:11 View Folder in Explorer Nova pasta Nova pasta
  1256. 08/06/2017 11:52:00 Run .EXE file SearchUI.exe C:\Windows\SYSTEMAPPS\MICROSOFT.WINDOWS.CORTANA_CW5N1H2TXYEWY\SearchUI.exe Microsoft Corporation, Microsoft® Windows® Operating System, Search and Cortana application, 10.0.14393.953 (rs1_release_inmarket.170303-1614) exe
  1257. 08/06/2017 11:51:57 User Logon WORKGROUP\Cliente
  1258. 08/06/2017 11:51:53 User Logon WORKGROUP\DWM-1
  1259. 08/06/2017 11:51:53 System Started
  1260. 08/06/2017 11:37:28 Resumed from sleep
  1261. 08/06/2017 11:37:27 User Logon WORKGROUP\Cliente
  1262. 08/06/2017 00:33:30 Sleep
  1263. 08/06/2017 00:33:29 User Logoff DESKTOP-G71LO1P\Cliente
  1264. 08/06/2017 00:33:28 User Logon WORKGROUP\DWM-6
  1265. 08/06/2017 00:14:59 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1266. 07/06/2017 11:42:32 Resumed from sleep
  1267. 07/06/2017 11:42:32 User Logon WORKGROUP\Cliente
  1268. 07/06/2017 00:02:58 User Logoff DESKTOP-G71LO1P\Cliente
  1269. 07/06/2017 00:02:58 Sleep
  1270. 07/06/2017 00:02:55 User Logon WORKGROUP\DWM-5
  1271. 06/06/2017 12:42:39 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  1272. 06/06/2017 11:48:33 User Logon WORKGROUP\Cliente
  1273. 06/06/2017 11:48:33 Resumed from sleep
  1274. 06/06/2017 00:10:38 Sleep
  1275. 06/06/2017 00:10:37 User Logoff DESKTOP-G71LO1P\Cliente
  1276. 06/06/2017 00:10:36 User Logon WORKGROUP\DWM-4
  1277. 05/06/2017 23:21:24 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1278. 05/06/2017 23:19:06 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1279. 05/06/2017 22:56:59 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1280. 05/06/2017 22:15:05 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1281. 05/06/2017 12:05:41 Resumed from sleep
  1282. 05/06/2017 12:05:41 User Logon WORKGROUP\Cliente
  1283. 05/06/2017 00:08:17 Sleep
  1284. 05/06/2017 00:08:16 User Logoff DESKTOP-G71LO1P\Cliente
  1285. 05/06/2017 00:08:15 User Logon WORKGROUP\DWM-3
  1286. 04/06/2017 23:14:38 Run .EXE file regedit.exe C:\Windows\regedit.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Editor do Registro, 10.0.14393.0 (rs1_release.160715-1616) exe
  1287. 04/06/2017 12:43:33 Resumed from sleep
  1288. 04/06/2017 12:43:32 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1289. 04/06/2017 12:43:32 User Logon WORKGROUP\Cliente
  1290. 04/06/2017 02:47:06 Sleep
  1291. 04/06/2017 02:47:05 User Logoff DESKTOP-G71LO1P\Cliente
  1292. 04/06/2017 02:47:03 User Logon WORKGROUP\DWM-2
  1293. 03/06/2017 10:33:01 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1294. 03/06/2017 10:32:35 User Logon WORKGROUP\Cliente
  1295. 03/06/2017 10:32:30 User Logon WORKGROUP\DWM-1
  1296. 03/06/2017 10:32:30 System Started
  1297. 02/06/2017 22:34:44 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1298. 02/06/2017 20:14:24 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1299. 02/06/2017 20:13:58 User Logon WORKGROUP\Cliente
  1300. 02/06/2017 20:13:54 System Started
  1301. 02/06/2017 20:13:53 User Logon WORKGROUP\DWM-1
  1302. 02/06/2017 19:11:14 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1303. 02/06/2017 19:03:50 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1304. 02/06/2017 18:30:51 User Logon WORKGROUP\Cliente
  1305. 02/06/2017 18:30:47 System Started
  1306. 02/06/2017 18:30:47 User Logon WORKGROUP\DWM-1
  1307. 02/06/2017 12:05:42 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1308. 02/06/2017 12:01:15 Resumed from sleep
  1309. 02/06/2017 12:01:14 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1310. 02/06/2017 12:01:14 User Logon WORKGROUP\Cliente
  1311. 02/06/2017 12:00:21 Sleep
  1312. 02/06/2017 12:00:20 User Logoff DESKTOP-G71LO1P\Cliente
  1313. 02/06/2017 12:00:16 User Logon WORKGROUP\DWM-3
  1314. 02/06/2017 11:39:21 Resumed from sleep
  1315. 02/06/2017 11:39:20 User Logon WORKGROUP\Cliente
  1316. 02/06/2017 00:19:57 Sleep
  1317. 02/06/2017 00:19:56 User Logoff DESKTOP-G71LO1P\Cliente
  1318. 02/06/2017 00:19:54 User Logon WORKGROUP\DWM-2
  1319. 01/06/2017 15:04:50 User Logon WORKGROUP\Cliente
  1320. 01/06/2017 15:04:46 System Started
  1321. 01/06/2017 15:04:46 User Logon WORKGROUP\DWM-1
  1322. 01/06/2017 12:26:04 Resumed from sleep
  1323. 01/06/2017 12:26:04 User Logon WORKGROUP\Cliente
  1324. 31/05/2017 23:55:17 Sleep
  1325. 31/05/2017 23:55:16 User Logoff DESKTOP-G71LO1P\Cliente
  1326. 31/05/2017 23:55:15 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1327. 31/05/2017 23:55:15 User Logon WORKGROUP\DWM-6
  1328. 31/05/2017 23:32:21 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1329. 31/05/2017 23:32:21 Resumed from sleep
  1330. 31/05/2017 23:32:20 User Logon WORKGROUP\Cliente
  1331. 31/05/2017 23:31:08 User Logoff DESKTOP-G71LO1P\Cliente
  1332. 31/05/2017 23:31:08 Sleep
  1333. 31/05/2017 23:31:06 User Logon WORKGROUP\DWM-5
  1334. 31/05/2017 23:23:51 Software Installation Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506
  1335. 31/05/2017 20:25:23 Run .EXE file USBGuard.exe C:\PROGRAM FILES (X86)\USB DISK SECURITY\USBGuard.exe Zbshareware Lab, USBGuard Application, USB Disk Security, 5, 3, 0, 20 exe
  1336. 31/05/2017 20:25:06 User Logon WORKGROUP\Cliente
  1337. 31/05/2017 20:25:05 Resumed from sleep
  1338. 31/05/2017 20:23:31 Sleep
  1339. 31/05/2017 20:23:30 User Logoff DESKTOP-G71LO1P\Cliente
  1340. 31/05/2017 20:23:28 User Logon WORKGROUP\DWM-4
  1341. 31/05/2017 19:09:53 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1342. 31/05/2017 19:09:11 Software Installation VC_redist.x86.exe C:\ProgramData\Package Cache\{23daf363-3020-4059-b3ae-dc4ad39fed19}\VC_redist.x86.exe Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 exe
  1343. 31/05/2017 19:09:09 Run .EXE file VCREDIST_X86.EXE C:\Users\Cliente\AppData\Local\Temp\VCREDIST_X86.EXE Microsoft Corporation, Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506, Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506, 14.0.23506.0 EXE
  1344. 31/05/2017 19:09:09 Run .EXE file VCREDIST_X86.EXE C:\Users\Cliente\AppData\Local\Temp\VCREDIST_X86.EXE Microsoft Corporation, Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506, Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506, 14.0.23506.0 EXE
  1345. 31/05/2017 19:08:38 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1346. 31/05/2017 19:08:35 Select file in open/save dialog-box 2017-05-31_19.06.07.png C:\Users\Cliente\Pictures\2017-05-31_19.06.07.png png
  1347. 31/05/2017 19:08:31 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1348. 31/05/2017 19:07:52 Run .EXE file update.exe C:\PROGRAM FILES (X86)\TEAMSPEAK 3 CLIENT\update.exe TeamSpeak Systems GmbH, TeamSpeak 3 Client Updater, TeamSpeak 3 Client Updater, 1, 0, 0, 0 exe
  1349. 31/05/2017 19:07:52 Run .EXE file update.exe C:\PROGRAM FILES (X86)\TEAMSPEAK 3 CLIENT\update.exe TeamSpeak Systems GmbH, TeamSpeak 3 Client Updater, TeamSpeak 3 Client Updater, 1, 0, 0, 0 exe
  1350. 31/05/2017 14:33:56 Run .EXE file WINSTORE.APP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSSTORE_11703.1001.45.0_X64__8WEKYB3D8BBWE\WINSTORE.APP.EXE EXE
  1351. 31/05/2017 11:45:28 Run .EXE file SIHOST.EXE C:\WINDOWS\SYSTEM32\SIHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Shell Infrastructure Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1352. 31/05/2017 11:45:28 User Logon WORKGROUP\Cliente
  1353. 31/05/2017 11:45:28 Resumed from sleep
  1354. 31/05/2017 01:07:42 Sleep
  1355. 31/05/2017 01:07:41 User Logoff DESKTOP-G71LO1P\Cliente
  1356. 31/05/2017 01:07:39 User Logon WORKGROUP\DWM-3
  1357. 30/05/2017 22:04:59 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1358. 30/05/2017 21:46:21 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1359. 30/05/2017 21:46:13 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1360. 30/05/2017 21:44:06 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1361. 30/05/2017 15:23:21 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1362. 30/05/2017 15:22:23 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1363. 30/05/2017 13:42:35 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1364. 30/05/2017 13:42:24 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1365. 30/05/2017 13:42:20 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1366. 30/05/2017 13:42:05 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1367. 30/05/2017 11:19:53 Resumed from sleep
  1368. 30/05/2017 11:19:52 User Logon WORKGROUP\Cliente
  1369. 30/05/2017 00:46:31 Sleep
  1370. 30/05/2017 00:46:29 User Logoff DESKTOP-G71LO1P\Cliente
  1371. 30/05/2017 00:46:27 User Logon WORKGROUP\DWM-2
  1372. 29/05/2017 12:03:10 User Logon WORKGROUP\Cliente
  1373. 29/05/2017 12:03:05 User Logon WORKGROUP\DWM-1
  1374. 29/05/2017 12:03:05 System Started
  1375. 29/05/2017 06:04:16 Resumed from sleep
  1376. 29/05/2017 06:04:14 User Logon WORKGROUP\Cliente
  1377. 29/05/2017 00:47:10 Sleep
  1378. 29/05/2017 00:47:09 User Logoff DESKTOP-G71LO1P\Cliente
  1379. 29/05/2017 00:47:08 User Logon WORKGROUP\DWM-10
  1380. 28/05/2017 12:36:03 Resumed from sleep
  1381. 28/05/2017 12:36:02 User Logon WORKGROUP\Cliente
  1382. 28/05/2017 05:20:21 Sleep
  1383. 28/05/2017 05:20:20 User Logoff DESKTOP-G71LO1P\Cliente
  1384. 28/05/2017 05:20:17 User Logon WORKGROUP\DWM-9
  1385. 27/05/2017 14:23:05 Resumed from sleep
  1386. 27/05/2017 14:23:05 User Logon WORKGROUP\Cliente
  1387. 27/05/2017 05:21:39 User Logoff DESKTOP-G71LO1P\Cliente
  1388. 27/05/2017 05:21:39 Sleep
  1389. 27/05/2017 05:21:37 User Logon WORKGROUP\DWM-8
  1390. 26/05/2017 20:37:39 Run .EXE file _IU14D2N.TMP C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\_IU14D2N.TMP TMP
  1391. 26/05/2017 20:37:39 Run .EXE file UNINS000.EXE C:\PROGRAM FILES (X86)\GSAUTOCLICKER3\UNINS000.EXE EXE
  1392. 26/05/2017 20:36:07 Run .EXE file AcroRd32.exe C:\PROGRAM FILES (X86)\Adobe\READER 11.0\Reader\AcroRd32.exe Adobe Systems Incorporated, Adobe Reader, Adobe Reader, 11.0.20.17 exe
  1393. 26/05/2017 20:36:06 Run .EXE file AcroRd32.exe C:\PROGRAM FILES (X86)\Adobe\READER 11.0\Reader\AcroRd32.exe Adobe Systems Incorporated, Adobe Reader, Adobe Reader, 11.0.20.17 exe
  1394. 26/05/2017 20:36:02 View Folder in Explorer 1.5.2 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.5.2 2
  1395. 26/05/2017 20:36:00 View Folder in Explorer 1.6.1 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.6.1 1
  1396. 26/05/2017 20:35:56 View Folder in Explorer 1.7.2 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.7.2 2
  1397. 26/05/2017 20:35:50 View Folder in Explorer 1.8.3 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.8.3 3
  1398. 26/05/2017 20:35:49 View Folder in Explorer 1.8.6 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.8.6 6
  1399. 26/05/2017 20:35:35 View Folder in Explorer 1.8-LiteLoader1.8-1.8-forge1.8-11.14.4.1577 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.8-LiteLoader1.8-1.8-forge1.8-11.14.4.1577 1577
  1400. 26/05/2017 20:35:26 View Folder in Explorer 1.8-forge1.8-11.14.4.1577 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1577 1577
  1401. 26/05/2017 20:35:12 View Folder in Explorer 1.8 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\mods\1.8 8
  1402. 26/05/2017 20:34:20 View Folder in Explorer 1.0 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.0 0
  1403. 26/05/2017 20:27:29 View Folder in Explorer 1.6.4 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.6.4 4
  1404. 26/05/2017 20:26:08 View Folder in Explorer zuni zuni
  1405. 26/05/2017 20:26:01 View Folder in Explorer .tlauncher C:\Users\Cliente\AppData\Local\Roaming\.tlauncher tlauncher
  1406. 26/05/2017 20:15:56 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1407. 26/05/2017 11:37:59 User Logon WORKGROUP\Cliente
  1408. 26/05/2017 11:37:59 Resumed from sleep
  1409. 26/05/2017 00:01:38 Sleep
  1410. 26/05/2017 00:01:37 User Logoff DESKTOP-G71LO1P\Cliente
  1411. 26/05/2017 00:01:36 User Logon WORKGROUP\DWM-7
  1412. 25/05/2017 11:36:58 Resumed from sleep
  1413. 25/05/2017 11:36:58 User Logon WORKGROUP\Cliente
  1414. 25/05/2017 00:43:10 User Logoff DESKTOP-G71LO1P\Cliente
  1415. 25/05/2017 00:43:10 Sleep
  1416. 25/05/2017 00:43:09 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1417. 25/05/2017 00:43:08 User Logon WORKGROUP\DWM-6
  1418. 24/05/2017 17:22:23 Run .EXE file WINSTORE.APP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSSTORE_11703.1001.45.0_X64__8WEKYB3D8BBWE\WINSTORE.APP.EXE EXE
  1419. 24/05/2017 11:43:34 Run .EXE file 923976180967261.FBUNITY C:\Users\Public\FACEBOOK GAMES\923976180967261\57\923976180967261.FBUNITY , , , 5.4.5.6853691 FBUNITY
  1420. 24/05/2017 11:42:46 Software Installation Facebook Gameroom 1.4.1.0
  1421. 24/05/2017 11:42:40 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1422. 24/05/2017 11:39:21 Resumed from sleep
  1423. 24/05/2017 11:39:21 User Logon WORKGROUP\Cliente
  1424. 24/05/2017 00:53:48 Sleep
  1425. 24/05/2017 00:53:47 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1426. 24/05/2017 00:53:47 User Logoff DESKTOP-G71LO1P\Cliente
  1427. 24/05/2017 00:53:46 User Logon WORKGROUP\DWM-5
  1428. 24/05/2017 00:13:05 View Folder in Explorer mods-1.8.8 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\LabyMod\mods-1.8.8 8
  1429. 24/05/2017 00:13:05 View Folder in Explorer LabyMod C:\Users\Cliente\AppData\Local\Roaming\.minecraft\LabyMod
  1430. 23/05/2017 15:06:32 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1431. 23/05/2017 13:48:38 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1432. 23/05/2017 13:24:49 Run .EXE file WerFault.exe C:\Windows\SysWOW64\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1433. 23/05/2017 11:39:17 Resumed from sleep
  1434. 23/05/2017 11:39:16 User Logon WORKGROUP\Cliente
  1435. 23/05/2017 00:34:28 Sleep
  1436. 23/05/2017 00:34:27 User Logoff DESKTOP-G71LO1P\Cliente
  1437. 23/05/2017 00:34:26 User Logon WORKGROUP\DWM-4
  1438. 22/05/2017 19:31:01 Run .EXE file firefox.exe C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\firefox.exe Mozilla Corporation, Firefox, Firefox, 47.0.2 exe
  1439. 22/05/2017 18:05:50 View Folder in Explorer assets C:\Users\Cliente\AppData\Local\Roaming\.minecraft\assets
  1440. 22/05/2017 11:47:17 Resumed from sleep
  1441. 22/05/2017 11:47:16 User Logon WORKGROUP\Cliente
  1442. 22/05/2017 00:45:51 Sleep
  1443. 22/05/2017 00:45:50 User Logoff DESKTOP-G71LO1P\Cliente
  1444. 22/05/2017 00:45:48 User Logon WORKGROUP\DWM-3
  1445. 21/05/2017 12:11:38 Resumed from sleep
  1446. 21/05/2017 12:11:37 User Logon WORKGROUP\Cliente
  1447. 21/05/2017 12:09:14 Sleep
  1448. 21/05/2017 12:09:13 User Logoff DESKTOP-G71LO1P\Cliente
  1449. 21/05/2017 12:09:12 User Logon WORKGROUP\DWM-2
  1450. 21/05/2017 11:50:52 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1451. 21/05/2017 11:50:47 User Logon WORKGROUP\Cliente
  1452. 21/05/2017 11:49:12 User Logon WORKGROUP\DWM-1
  1453. 21/05/2017 11:49:12 System Started
  1454. 21/05/2017 05:21:06 System Shutdown
  1455. 21/05/2017 05:16:20 User Logoff DESKTOP-G71LO1P\Cliente
  1456. 20/05/2017 12:11:27 Resumed from sleep
  1457. 20/05/2017 12:11:27 User Logon WORKGROUP\Cliente
  1458. 20/05/2017 01:56:27 Sleep
  1459. 20/05/2017 01:56:23 User Logoff DESKTOP-G71LO1P\Cliente
  1460. 20/05/2017 01:56:21 User Logon WORKGROUP\DWM-2
  1461. 19/05/2017 15:08:15 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1462. 19/05/2017 13:03:32 View Folder in Explorer DrekayXD DrekayXD
  1463. 19/05/2017 07:11:59 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1464. 19/05/2017 07:10:29 User Logon WORKGROUP\Cliente
  1465. 19/05/2017 07:10:25 User Logon WORKGROUP\DWM-1
  1466. 19/05/2017 07:10:25 System Started
  1467. 19/05/2017 07:08:50 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1468. 19/05/2017 07:08:19 User Logon WORKGROUP\Cliente
  1469. 19/05/2017 07:08:08 System Started
  1470. 19/05/2017 07:08:07 User Logon WORKGROUP\DWM-1
  1471. 19/05/2017 00:21:14 User Logoff DESKTOP-G71LO1P\Cliente
  1472. 18/05/2017 23:48:17 Software Installation Java Auto Updater
  1473. 18/05/2017 23:48:17 Software Installation YSearchSetTool.exe C:\Program Files (x86)\Yahoo!\yset\{1C0CE3ED-7793-E34E-B609-50A352E21090}\YSearchSetTool.exe Yahoo Search Set exe
  1474. 18/05/2017 23:48:17 Software Installation Java 8 Update 131
  1475. 18/05/2017 23:48:17 Software Installation lol.launcher_1.exe C:\Windows\Installer\{8CCCD0E7-56E4-45FB-B3FB-9F5183C2F4F0}\lol.launcher_1.exe League of Legends exe
  1476. 18/05/2017 23:48:17 Software Installation nvstreg.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstreg.exe NVIDIA Stereoscopic 3D Driver exe
  1477. 18/05/2017 17:48:45 View Folder in Explorer resources C:\Users\Cliente\AppData\Local\Roaming\.minecraft\resources
  1478. 18/05/2017 17:21:22 Run .EXE file WWAHost.exe C:\Windows\System32\WWAHost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host WWA Microsoft, 10.0.14393.51 (rs1_release_inmarket.160801-1836) exe
  1479. 18/05/2017 17:21:07 Run .EXE file PICKERHOST.EXE C:\Windows\System32\PICKERHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, File Picker UI Host, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1480. 18/05/2017 17:21:05 Open file or folder Pictures C:\Users\Cliente\Pictures
  1481. 18/05/2017 17:21:05 Open file or folder 2017-05-18_17.20.44.png C:\Users\Cliente\Pictures\2017-05-18_17.20.44.png png
  1482. 18/05/2017 12:00:34 View Folder in Explorer ndows iginimaSE_v2000\ndows
  1483. 18/05/2017 11:41:55 Run .EXE file nvcplui.exe C:\PROGRAM FILES\NVIDIA CORPORATION\CONTROL PANEL CLIENT\nvcplui.exe NVIDIA Corporation, NVIDIA Control Panel, NVIDIA Control Panel Application, 7.8.840.0, 7.8.840.0 exe
  1484. 18/05/2017 11:41:47 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1485. 18/05/2017 11:41:33 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1486. 18/05/2017 11:41:21 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1487. 18/05/2017 11:41:12 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1488. 18/05/2017 11:40:56 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1489. 18/05/2017 11:40:44 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1490. 18/05/2017 11:39:49 Open file or folder launcher.jar C:\Users\Cliente\Desktop\launcher.jar jar
  1491. 18/05/2017 11:39:43 Open file or folder ShiginimaSE_v3100.zip C:\Users\Cliente\Desktop\ShiginimaSE_v3100.zip zip
  1492. 18/05/2017 11:37:02 Resumed from sleep
  1493. 18/05/2017 11:37:01 User Logon WORKGROUP\Cliente
  1494. 18/05/2017 00:48:59 Sleep
  1495. 18/05/2017 00:48:57 User Logoff DESKTOP-G71LO1P\Cliente
  1496. 18/05/2017 00:48:56 User Logon WORKGROUP\DWM-2
  1497. 17/05/2017 23:57:05 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1498. 17/05/2017 23:56:06 User Logon WORKGROUP\Cliente
  1499. 17/05/2017 23:56:02 System Started
  1500. 17/05/2017 23:56:02 User Logon WORKGROUP\DWM-1
  1501. 17/05/2017 23:36:04 Run .EXE file LEAGUE OF LEGENDS.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\SOLUTIONS\LOL_GAME_CLIENT_SLN\releases\0.0.1.174\deploy\LEAGUE OF LEGENDS.EXE , League of Legends (TM) Client, League of Legends (TM) Client, 7.10.187.7374 EXE
  1502. 17/05/2017 23:27:35 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\projects\LEAGUE_CLIENT\releases\0.0.0.75\deploy\LEAGUECLIENTUX.EXE , League of Legends, League of Legends, 7.10.187.7434 EXE
  1503. 17/05/2017 23:26:39 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\projects\LEAGUE_CLIENT\releases\0.0.0.72\deploy\LEAGUECLIENTUX.EXE , League of Legends, League of Legends, 7.9.186.1612 EXE
  1504. 17/05/2017 22:28:00 Run .EXE file 923976180967261.FBUNITY C:\Users\Public\FACEBOOK GAMES\923976180967261\57\923976180967261.FBUNITY , , , 5.4.5.6853691 FBUNITY
  1505. 17/05/2017 22:26:40 Run .EXE file notepad.exe C:\Windows\SysWOW64\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1506. 17/05/2017 22:26:13 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1507. 17/05/2017 22:25:32 User Logon WORKGROUP\Cliente
  1508. 17/05/2017 22:25:31 Resumed from sleep
  1509. 17/05/2017 22:24:42 Sleep
  1510. 17/05/2017 22:24:41 User Logoff DESKTOP-G71LO1P\Cliente
  1511. 17/05/2017 22:24:40 User Logon WORKGROUP\DWM-3
  1512. 17/05/2017 22:20:09 Software Installation Uninstall.exe C:\Users\Cliente\AppData\Roaming\.minecraft\minecraft launcher\Uninstall.exe Minecraft1.7.2 exe
  1513. 17/05/2017 22:20:01 Run .EXE file cmd.exe C:\Windows\SysWOW64\cmd.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processador de comandos do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1514. 17/05/2017 22:19:42 Run .EXE file MINECRAFT 1.7.2.EXE C:\USERS\CLIENTE\DESKTOP\MINECRAFT 1.7.2.EXE EXE
  1515. 17/05/2017 22:18:44 Open file or folder Downloads C:\Users\Cliente\Downloads
  1516. 17/05/2017 22:18:44 Open file or folder Minecraft 1.7.2.rar C:\Users\Cliente\Downloads\Minecraft 1.7.2.rar rar
  1517. 17/05/2017 21:37:03 Run .EXE file WerFault.exe C:\Windows\System32\WerFault.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Relatório de Problemas do Windows, 10.0.14393.0 (rs1_release.160715-1616) exe
  1518. 17/05/2017 21:28:12 Open file or folder Minecraft DTG HD.rar C:\Users\Cliente\Desktop\Minecraft DTG HD.rar rar
  1519. 17/05/2017 21:28:05 Select file in open/save dialog-box ShiginimaSE_v3100.zip C:\Users\Cliente\Desktop\ShiginimaSE_v3100.zip zip
  1520. 17/05/2017 21:28:02 View Folder in Explorer F:\
  1521. 17/05/2017 21:26:14 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  1522. 17/05/2017 21:25:49 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  1523. 17/05/2017 21:25:44 Open file or folder Skype (1).download C:\Users\Cliente\Desktop\Skype (1).download download
  1524. 17/05/2017 21:25:44 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  1525. 17/05/2017 21:18:23 Run .EXE file java.exe C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\java.exe Oracle Corporation, Java(TM) Platform SE 8, Java(TM) Platform SE binary, 8.0.1310.11 exe
  1526. 17/05/2017 21:17:11 Run .EXE file JP2LAUNCHER.EXE C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\JP2LAUNCHER.EXE Oracle Corporation, Java(TM) Platform SE 8 U131, Java(TM) Web Launcher, 11.131.2.11 EXE
  1527. 17/05/2017 21:17:07 Run .EXE file iexplore.exe C:\PROGRAM FILES (X86)\INTERNET EXPLORER\iexplore.exe Microsoft Corporation, Internet Explorer, Internet Explorer, 11.00.14393.0 (rs1_release.160715-1616) exe
  1528. 17/05/2017 21:17:07 Run .EXE file iexplore.exe C:\PROGRAM FILES (X86)\INTERNET EXPLORER\iexplore.exe Microsoft Corporation, Internet Explorer, Internet Explorer, 11.00.14393.0 (rs1_release.160715-1616) exe
  1529. 17/05/2017 21:16:48 Run .EXE file jaureg.exe C:\PROGRAM FILES (X86)\COMMON FILES\Java\JAVA UPDATE\jaureg.exe Oracle Corporation, Java Platform SE Auto Updater, Java Update Registration, 2.8.131.11 exe
  1530. 17/05/2017 21:16:27 Run .EXE file JP2LAUNCHER.EXE C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\JP2LAUNCHER.EXE Oracle Corporation, Java(TM) Platform SE 8 U131, Java(TM) Web Launcher, 11.131.2.11 EXE
  1531. 17/05/2017 21:16:24 Run .EXE file JP2LAUNCHER.EXE C:\PROGRAM FILES (X86)\Java\JRE1.8.0_131\bin\JP2LAUNCHER.EXE Oracle Corporation, Java(TM) Platform SE 8 U131, Java(TM) Web Launcher, 11.131.2.11 EXE
  1532. 17/05/2017 21:15:54 Run .EXE file JAVASETUP8U131 (1) (1).EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\JDS13116921.TMP\JAVASETUP8U131 (1) (1).EXE EXE
  1533. 17/05/2017 21:14:45 Run .EXE file JAVASETUP8U131.EXE C:\USERS\CLIENTE\APPDATA\LOCAL\TEMP\JDS13047640.TMP\JAVASETUP8U131.EXE EXE
  1534. 17/05/2017 21:13:25 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1535. 17/05/2017 21:12:59 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1536. 17/05/2017 21:11:54 Run .EXE file notepad.exe C:\Windows\System32\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1537. 17/05/2017 21:09:08 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1538. 17/05/2017 21:06:18 Run .EXE file notepad.exe C:\Windows\System32\notepad.exe Microsoft Corporation, Sistema operacional Microsoft® Windows®, Bloco de notas, 10.0.14393.0 (rs1_release.160715-1616) exe
  1539. 17/05/2017 21:05:27 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1540. 17/05/2017 21:01:58 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1541. 17/05/2017 20:56:45 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1542. 17/05/2017 20:56:10 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1543. 17/05/2017 20:55:00 Run .EXE file SKYPEAPP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.SKYPEAPP_11.4.86.0_X64__KZF8QXF38ZG5C\SKYPEAPP.EXE EXE
  1544. 17/05/2017 20:48:25 Software Installation PBLauncher.exe C:\ongame\Pointblank\PBLauncher.exe PointBlank exe
  1545. 17/05/2017 20:33:44 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1546. 17/05/2017 20:33:20 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1547. 17/05/2017 20:31:04 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1548. 17/05/2017 20:29:38 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1549. 17/05/2017 20:21:29 Run .EXE file JAVA.EXE C:\PROGRAM FILES\JAVA\JRE7\BIN\JAVA.EXE EXE
  1550. 17/05/2017 20:19:04 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1551. 17/05/2017 20:16:34 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1552. 17/05/2017 20:13:14 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1553. 17/05/2017 20:11:07 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\LAUNCHER.EXE EXE
  1554. 17/05/2017 18:59:07 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1555. 17/05/2017 18:59:07 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1556. 17/05/2017 18:59:07 Run .EXE file DSMUSERTASK.EXE C:\WINDOWS\SYSTEM32\DSMUSERTASK.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Device Setup Manager User Task Handler, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1557. 17/05/2017 18:40:28 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1558. 17/05/2017 18:40:26 User Logon WORKGROUP\Cliente
  1559. 17/05/2017 18:40:17 Resumed from sleep
  1560. 17/05/2017 17:44:52 Sleep
  1561. 17/05/2017 17:44:51 User Logoff DESKTOP-G71LO1P\Cliente
  1562. 17/05/2017 17:44:49 User Logon WORKGROUP\DWM-2
  1563. 17/05/2017 17:37:27 User Logon WORKGROUP\Cliente
  1564. 17/05/2017 17:37:24 User Logon WORKGROUP\DWM-1
  1565. 17/05/2017 17:37:24 System Started
  1566. 17/05/2017 17:36:10 System Shutdown
  1567. 17/05/2017 17:36:10 User Logoff DESKTOP-G71LO1P\Cliente
  1568. 17/05/2017 17:34:35 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1569. 17/05/2017 17:32:50 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1570. 17/05/2017 17:32:50 Resumed from sleep
  1571. 17/05/2017 17:32:49 User Logon WORKGROUP\Cliente
  1572. 17/05/2017 16:29:44 Sleep
  1573. 17/05/2017 16:29:42 User Logoff DESKTOP-G71LO1P\Cliente
  1574. 17/05/2017 16:29:37 User Logon WORKGROUP\DWM-2
  1575. 17/05/2017 13:49:32 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1576. 17/05/2017 13:42:43 User Logon WORKGROUP\Cliente
  1577. 17/05/2017 13:42:39 System Started
  1578. 17/05/2017 13:42:39 User Logon WORKGROUP\DWM-1
  1579. 17/05/2017 13:41:25 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\projects\LEAGUE_CLIENT\releases\0.0.0.72\deploy\LEAGUECLIENTUX.EXE , League of Legends, League of Legends, 7.9.186.1612 EXE
  1580. 17/05/2017 13:34:26 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\projects\LEAGUE_CLIENT\releases\0.0.0.72\deploy\LEAGUECLIENTUX.EXE , League of Legends, League of Legends, 7.9.186.1612 EXE
  1581. 17/05/2017 13:27:20 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\projects\LEAGUE_CLIENT\releases\0.0.0.72\deploy\LEAGUECLIENTUX.EXE , League of Legends, League of Legends, 7.9.186.1612 EXE
  1582. 17/05/2017 13:23:34 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1583. 17/05/2017 13:23:07 Resumed from sleep
  1584. 17/05/2017 13:23:06 User Logon WORKGROUP\Cliente
  1585. 17/05/2017 13:09:40 Sleep
  1586. 17/05/2017 13:09:39 User Logoff DESKTOP-G71LO1P\Cliente
  1587. 17/05/2017 13:09:34 User Logon WORKGROUP\DWM-8
  1588. 17/05/2017 13:06:00 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1589. 17/05/2017 13:05:21 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1590. 17/05/2017 13:03:53 Run .EXE file MSASCui.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCui.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender User Interface, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1591. 17/05/2017 13:02:53 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\projects\LEAGUE_CLIENT\releases\0.0.0.72\deploy\LEAGUECLIENTUX.EXE , League of Legends, League of Legends, 7.9.186.1612 EXE
  1592. 17/05/2017 13:02:43 Run .EXE file Taskmgr.exe C:\Windows\System32\Taskmgr.exe Microsoft® Windows® Operating System, Task Manager, Task Manager, 1, 0, 0, 1 exe
  1593. 17/05/2017 13:01:15 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1594. 17/05/2017 13:01:14 User Logon WORKGROUP\Cliente
  1595. 17/05/2017 13:01:14 Resumed from sleep
  1596. 17/05/2017 13:00:21 Sleep
  1597. 17/05/2017 13:00:20 User Logoff DESKTOP-G71LO1P\Cliente
  1598. 17/05/2017 13:00:14 User Logon WORKGROUP\DWM-7
  1599. 17/05/2017 12:59:59 Run .EXE file Taskmgr.exe C:\Windows\System32\Taskmgr.exe Microsoft® Windows® Operating System, Task Manager, Task Manager, 1, 0, 0, 1 exe
  1600. 17/05/2017 12:59:18 Run .EXE file MSASCui.exe C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCui.exe Microsoft Corporation, Microsoft® Windows® Operating System, Windows Defender User Interface, 4.10.14393.1198 (rs1_release_sec.170427-1353) exe
  1601. 17/05/2017 12:56:51 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1602. 17/05/2017 12:56:50 Resumed from sleep
  1603. 17/05/2017 12:56:50 User Logon WORKGROUP\Cliente
  1604. 17/05/2017 12:36:43 Sleep
  1605. 17/05/2017 12:36:42 User Logoff DESKTOP-G71LO1P\Cliente
  1606. 17/05/2017 12:36:37 User Logon WORKGROUP\DWM-6
  1607. 17/05/2017 12:33:06 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1608. 17/05/2017 12:23:03 User Logon WORKGROUP\Cliente
  1609. 17/05/2017 12:23:02 Resumed from sleep
  1610. 16/05/2017 22:36:01 Sleep
  1611. 16/05/2017 22:36:01 User Logoff DESKTOP-G71LO1P\Cliente
  1612. 16/05/2017 22:35:52 User Logon WORKGROUP\DWM-5
  1613. 16/05/2017 22:35:48 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENTUX.EXE EXE
  1614. 16/05/2017 22:35:47 Run .EXE file LEAGUECLIENT.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENT.EXE EXE
  1615. 16/05/2017 22:33:32 Resumed from sleep
  1616. 16/05/2017 22:33:31 User Logon WORKGROUP\Cliente
  1617. 16/05/2017 12:11:30 User Logoff DESKTOP-G71LO1P\Cliente
  1618. 16/05/2017 12:11:30 Sleep
  1619. 16/05/2017 12:11:24 User Logon WORKGROUP\DWM-4
  1620. 16/05/2017 12:08:01 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1621. 16/05/2017 12:07:44 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1622. 16/05/2017 12:07:40 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1623. 16/05/2017 12:07:39 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1624. 16/05/2017 11:56:31 User Logon WORKGROUP\Cliente
  1625. 16/05/2017 11:56:31 Resumed from sleep
  1626. 16/05/2017 00:47:32 Sleep
  1627. 16/05/2017 00:47:31 User Logoff DESKTOP-G71LO1P\Cliente
  1628. 16/05/2017 00:47:26 User Logon WORKGROUP\DWM-3
  1629. 15/05/2017 12:18:14 Run .EXE file xwizard.exe C:\Windows\System32\xwizard.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host de Assistente Extensível, 10.0.14393.0 (rs1_release.160715-1616) exe
  1630. 15/05/2017 12:16:28 Run .EXE file msdt.exe C:\Windows\System32\msdt.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Assistente de Solução de Problemas de Diagnóstico, 10.0.14393.0 (rs1_release.160715-1616) exe
  1631. 15/05/2017 12:12:58 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1632. 15/05/2017 12:12:58 Resumed from sleep
  1633. 15/05/2017 12:12:57 User Logon WORKGROUP\Cliente
  1634. 15/05/2017 12:11:22 Sleep
  1635. 15/05/2017 12:11:21 User Logoff DESKTOP-G71LO1P\Cliente
  1636. 15/05/2017 12:11:15 User Logon WORKGROUP\DWM-2
  1637. 15/05/2017 12:09:14 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1638. 15/05/2017 12:03:40 User Logon WORKGROUP\Cliente
  1639. 15/05/2017 12:03:37 System Started
  1640. 15/05/2017 12:03:36 User Logon WORKGROUP\DWM-1
  1641. 14/05/2017 23:48:32 Run .EXE file xwizard.exe C:\Windows\System32\xwizard.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host de Assistente Extensível, 10.0.14393.0 (rs1_release.160715-1616) exe
  1642. 14/05/2017 23:44:24 Run .EXE file firefox.exe C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\firefox.exe Mozilla Corporation, Firefox, Firefox, 47.0.2 exe
  1643. 14/05/2017 23:44:12 Run .EXE file WWAHost.exe C:\Windows\System32\WWAHost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host WWA Microsoft, 10.0.14393.51 (rs1_release_inmarket.160801-1836) exe
  1644. 14/05/2017 23:44:10 Run .EXE file PILOTSHUBAPP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSFEEDBACKHUB_1.3.1741.0_X64__8WEKYB3D8BBWE\PILOTSHUBAPP.EXE EXE
  1645. 14/05/2017 23:41:35 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1646. 14/05/2017 23:40:41 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1647. 14/05/2017 23:40:41 Run .EXE file MICROSOFTEDGECP.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGECP.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge Content Process, 11.00.14393.953 (rs1_release_inmarket.170303-1614) EXE
  1648. 14/05/2017 23:40:40 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1649. 14/05/2017 19:35:08 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\EXTREMELAUNCHER.EXE EXE
  1650. 14/05/2017 19:27:44 User Logon WORKGROUP\Cliente
  1651. 14/05/2017 19:27:40 User Logon WORKGROUP\DWM-1
  1652. 14/05/2017 19:27:40 System Started
  1653. 12/05/2017 22:25:38 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\EXTREMELAUNCHER.EXE EXE
  1654. 12/05/2017 22:25:27 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\EXTREMELAUNCHER.EXE EXE
  1655. 12/05/2017 21:59:44 Run .EXE file xwizard.exe C:\Windows\System32\xwizard.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host de Assistente Extensível, 10.0.14393.0 (rs1_release.160715-1616) exe
  1656. 12/05/2017 21:58:57 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1657. 12/05/2017 21:58:31 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1658. 12/05/2017 21:54:31 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1659. 12/05/2017 21:49:28 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1660. 12/05/2017 21:48:22 Run .EXE file xwizard.exe C:\Windows\System32\xwizard.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de Host de Assistente Extensível, 10.0.14393.0 (rs1_release.160715-1616) exe
  1661. 12/05/2017 21:46:33 Run .EXE file rundll32.exe C:\Windows\System32\rundll32.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Processo de host do Windows (Rundll32), 10.0.14393.0 (rs1_release.160715-1616) exe
  1662. 12/05/2017 21:45:54 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1663. 12/05/2017 21:45:18 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1664. 12/05/2017 21:45:08 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\LAUNCHER.EXE EXE
  1665. 12/05/2017 21:43:21 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1666. 12/05/2017 21:41:22 Run .EXE file AcroRd32.exe C:\PROGRAM FILES (X86)\Adobe\READER 11.0\Reader\AcroRd32.exe Adobe Systems Incorporated, Adobe Reader, Adobe Reader, 11.0.20.17 exe
  1667. 12/05/2017 21:41:22 Run .EXE file AcroRd32.exe C:\PROGRAM FILES (X86)\Adobe\READER 11.0\Reader\AcroRd32.exe Adobe Systems Incorporated, Adobe Reader, Adobe Reader, 11.0.20.17 exe
  1668. 12/05/2017 21:41:08 Open file or folder launcher_profiles.json C:\Users\Cliente\AppData\Roaming\.minecraft\launcher_profiles.json json
  1669. 12/05/2017 21:41:08 Run .EXE file OpenWith.exe C:\Windows\System32\OpenWith.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Selecionar um aplicativo, 10.0.14393.0 (rs1_release.160715-1616) exe
  1670. 12/05/2017 21:40:39 View Folder in Explorer versions backup fabia 22-04-2017\Jogos\Minecraft\versions
  1671. 12/05/2017 21:40:39 View Folder in Explorer 1.8.6 backup fabia 22-04-2017\Jogos\Minecraft\versions\1.8.6 6
  1672. 12/05/2017 21:40:38 View Folder in Explorer Minecraft backup fabia 22-04-2017\Jogos\Minecraft
  1673. 12/05/2017 21:40:29 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\LAUNCHER.EXE EXE
  1674. 12/05/2017 21:40:21 Run .EXE file EXTREMELAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\EXTREMELAUNCHER.EXE EXE
  1675. 12/05/2017 21:39:20 Run .EXE file MICROSOFTEDGE.EXE C:\Windows\SYSTEMAPPS\MICROSOFT.MICROSOFTEDGE_8WEKYB3D8BBWE\MICROSOFTEDGE.EXE Microsoft Corporation, Microsoft Edge, Microsoft Edge, 11.00.14393.1358 (rs1_release.170602-2252) EXE
  1676. 12/05/2017 21:33:04 Software Installation firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe Mozilla Firefox 47.0.2 (x86 pt-BR) exe
  1677. 12/05/2017 21:33:04 Software Installation unins000.exe C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe K-Lite Mega Codec Pack 10.8.5 exe
  1678. 12/05/2017 21:33:04 Software Installation ts3client_win32.exe C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe TeamSpeak 3 Client exe
  1679. 12/05/2017 21:33:04 Software Installation USB Disk Security
  1680. 12/05/2017 21:33:04 Software Installation Nero 7 Essentials
  1681. 12/05/2017 21:33:04 Software Installation Adobe Reader XI (11.0.20) - Português
  1682. 12/05/2017 21:33:04 Software Installation Adobe Refresh Manager
  1683. 12/05/2017 21:33:04 Software Installation Google Update Helper
  1684. 12/05/2017 21:33:04 Software Installation League of Legends
  1685. 12/05/2017 21:33:04 Software Installation Microsoft Visual C++ 2005 Redistributable
  1686. 12/05/2017 21:33:04 Software Installation Skype.exe C:\Program Files (x86)\Skype\Phone\Skype.exe Skype™ 6.18 exe
  1687. 12/05/2017 21:33:04 Software Installation Google Update Helper
  1688. 12/05/2017 21:23:29 Run .EXE file iexplore.exe C:\PROGRAM FILES (X86)\INTERNET EXPLORER\iexplore.exe Microsoft Corporation, Internet Explorer, Internet Explorer, 11.00.14393.0 (rs1_release.160715-1616) exe
  1689. 12/05/2017 21:23:26 Run .EXE file iexplore.exe C:\PROGRAM FILES (X86)\INTERNET EXPLORER\iexplore.exe Microsoft Corporation, Internet Explorer, Internet Explorer, 11.00.14393.0 (rs1_release.160715-1616) exe
  1690. 12/05/2017 21:23:26 Open file or folder PointBlankSetup_20161215.rar (3).torrent C:\Users\Cliente\Downloads\PointBlankSetup_20161215.rar (3).torrent torrent
  1691. 12/05/2017 21:23:26 Run .EXE file iexplore.exe C:\PROGRAM FILES (X86)\INTERNET EXPLORER\iexplore.exe Microsoft Corporation, Internet Explorer, Internet Explorer, 11.00.14393.0 (rs1_release.160715-1616) exe
  1692. 12/05/2017 19:25:10 Run .EXE file WWAHost.exe C:\Windows\System32\WWAHost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host WWA Microsoft, 10.0.14393.51 (rs1_release_inmarket.160801-1836) exe
  1693. 12/05/2017 19:09:36 Run .EXE file WWAHost.exe C:\Windows\System32\WWAHost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host WWA Microsoft, 10.0.14393.51 (rs1_release_inmarket.160801-1836) exe
  1694. 12/05/2017 19:09:26 Run .EXE file PILOTSHUBAPP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSFEEDBACKHUB_1.3.1741.0_X64__8WEKYB3D8BBWE\PILOTSHUBAPP.EXE EXE
  1695. 12/05/2017 18:39:39 User Logon WORKGROUP\Cliente
  1696. 12/05/2017 18:39:35 User Logon WORKGROUP\DWM-1
  1697. 12/05/2017 18:39:35 System Started
  1698. 12/05/2017 11:16:46 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENTUX.EXE EXE
  1699. 12/05/2017 11:16:45 Run .EXE file LEAGUECLIENT.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENT.EXE EXE
  1700. 12/05/2017 11:10:43 User Logon WORKGROUP\Cliente
  1701. 12/05/2017 11:10:39 User Logon WORKGROUP\DWM-1
  1702. 12/05/2017 11:10:39 System Started
  1703. 11/05/2017 20:56:38 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENTUX.EXE EXE
  1704. 11/05/2017 20:56:37 Run .EXE file LEAGUECLIENT.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENT.EXE EXE
  1705. 11/05/2017 20:50:09 User Logon WORKGROUP\Cliente
  1706. 11/05/2017 20:50:05 System Started
  1707. 11/05/2017 20:50:05 User Logon WORKGROUP\DWM-1
  1708. 11/05/2017 18:15:42 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1709. 11/05/2017 18:15:41 User Logon WORKGROUP\Cliente
  1710. 11/05/2017 18:15:41 Resumed from sleep
  1711. 11/05/2017 16:00:30 Sleep
  1712. 11/05/2017 16:00:29 User Logoff DESKTOP-G71LO1P\Cliente
  1713. 11/05/2017 16:00:23 User Logon WORKGROUP\DWM-2
  1714. 11/05/2017 15:43:34 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1715. 11/05/2017 15:36:05 User Logon WORKGROUP\Cliente
  1716. 11/05/2017 15:36:02 System Started
  1717. 11/05/2017 15:36:01 User Logon WORKGROUP\DWM-1
  1718. 11/05/2017 15:03:50 Run .EXE file dllhost.exe C:\Windows\System32\dllhost.exe Microsoft Corporation, Microsoft® Windows® Operating System, COM Surrogate, 10.0.14393.0 (rs1_release.160715-1616) exe
  1719. 11/05/2017 14:50:39 User Logon WORKGROUP\Cliente
  1720. 11/05/2017 14:50:36 System Started
  1721. 11/05/2017 14:50:36 User Logon WORKGROUP\DWM-1
  1722. 11/05/2017 14:49:16 System Shutdown
  1723. 11/05/2017 14:49:06 User Logoff DESKTOP-G71LO1P\Cliente
  1724. 11/05/2017 14:24:04 Run .EXE file WWAHost.exe C:\Windows\System32\WWAHost.exe Microsoft Corporation, Sistema Operacional Microsoft® Windows®, Host WWA Microsoft, 10.0.14393.51 (rs1_release_inmarket.160801-1836) exe
  1725. 11/05/2017 14:21:57 Run .EXE file PILOTSHUBAPP.EXE C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSFEEDBACKHUB_1.3.1741.0_X64__8WEKYB3D8BBWE\PILOTSHUBAPP.EXE EXE
  1726. 11/05/2017 14:16:49 Run .EXE file LAUNCHER.EXE C:\USERS\CLIENTE\DESKTOP\BACKUP FABIA 22-04-2017\JOGOS\MINECRAFT\LAUNCHER.EXE EXE
  1727. 11/05/2017 14:13:54 Run .EXE file LEAGUECLIENTUX.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENTUX.EXE EXE
  1728. 11/05/2017 14:13:53 Run .EXE file LEAGUECLIENT.EXE C:\RIOT GAMES\LEAGUE OF LEGENDS\RADS\PROJECTS\LEAGUE_CLIENT\RELEASES\0.0.0.73\DEPLOY\LEAGUECLIENT.EXE EXE
  1729. 11/05/2017 14:08:27 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1730. 11/05/2017 14:08:27 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1731. 11/05/2017 14:07:55 User Logon WORKGROUP\Cliente
  1732. 11/05/2017 14:07:54 Resumed from sleep
  1733. 11/05/2017 12:33:16 Sleep
  1734. 11/05/2017 12:33:13 User Logoff DESKTOP-G71LO1P\Cliente
  1735. 11/05/2017 12:33:08 User Logon WORKGROUP\DWM-2
  1736. 11/05/2017 12:26:45 Run .EXE file LICENSINGUI.EXE C:\WINDOWS\SYSTEM32\LICENSINGUI.EXE Microsoft Corporation, Sistema Operacional Microsoft® Windows®, IU de Licenciamento, 10.0.14393.0 (rs1_release.160715-1616) EXE
  1737. 11/05/2017 12:26:11 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1738. 11/05/2017 12:26:11 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1739. 11/05/2017 12:26:08 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1740. 11/05/2017 12:26:08 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1741. 11/05/2017 12:26:05 Run .EXE file SHELLEXPERIENCEHOST.EXE C:\Windows\SYSTEMAPPS\SHELLEXPERIENCEHOST_CW5N1H2TXYEWY\SHELLEXPERIENCEHOST.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Windows Shell Experience Host, 10.0.14393.447 (rs1_release_inmarket.161102-0100) EXE
  1742. 11/05/2017 12:26:04 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1743. 11/05/2017 12:26:04 Run .EXE file CLIPUP.EXE C:\WINDOWS\SYSTEM32\CLIPUP.EXE Microsoft Corporation, Microsoft® Windows® Operating System, Client License Platform migration tool, 10.0.14393.594 (rs1_release_inmarket.161213-1754) EXE
  1744. 11/05/2017 12:25:46 User Logon WORKGROUP\Cliente
  1745. 11/05/2017 12:23:18 View Folder in Explorer ativador win 10 \\server\d\programas\ativador win 10
  1746. 11/05/2017 12:23:18 View Folder in Explorer Installation Nero \\server\d\programas\CDS\Nero\Installation Nero
  1747. 11/05/2017 12:23:18 View Folder in Explorer Nero \\server\d\programas\CDS\Nero
  1748. 11/05/2017 12:23:18 View Folder in Explorer ativador win 10 \\server\d\programas\ativador win 10\ativador win 10
  1749. 11/05/2017 12:23:18 View Folder in Explorer Installation Nero \\server\D\programas\CDS\Nero\Installation Nero
  1750. 11/05/2017 12:23:18 View Folder in Explorer D \\server\D
  1751. 11/05/2017 12:23:18 View Folder in Explorer CDS \\server\d\programas\CDS
  1752. 11/05/2017 12:23:18 View Folder in Explorer pt_office_professional_plus_2013_x64_VL \\server\d\programas\Office 2013\pt_office_professional_plus_2013_x64_VL
  1753. 11/05/2017 12:23:18 View Folder in Explorer RATON ATIV 10 2015 \\server\d\programas\ativador win 10\ativador win 10\RATON ATIV 10 2015
  1754. 11/05/2017 12:23:18 View Folder in Explorer programas \\server\d\programas
  1755. 11/05/2017 12:23:18 View Folder in Explorer programas \\server\D\programas
  1756. 11/05/2017 12:23:18 View Folder in Explorer Nero \\server\D\programas\CDS\Nero
  1757. 11/05/2017 12:23:18 View Folder in Explorer Office 2013 \\server\D\programas\Office 2013
  1758. 11/05/2017 12:23:18 View Folder in Explorer CDS \\server\D\programas\CDS
  1759. 11/05/2017 12:23:18 View Folder in Explorer pt_office_professional_plus_2013_x64_VL \\server\D\programas\Office 2013\pt_office_professional_plus_2013_x64_VL
  1760. 11/05/2017 12:23:18 View Folder in Explorer Office 2013 \\server\d\programas\Office 2013
  1761. 11/05/2017 12:23:18 View Folder in Explorer USB.Disk.Security.5.3.0.20 \\server\d\programas\USB.Disk.Security.5.3.0.20 20
  1762. 11/05/2017 12:23:18 View Folder in Explorer d \\server\d
  1763. 11/05/2017 12:23:18 View Folder in Explorer Local C:\Users\Cliente\AppData\Local
  1764. 11/05/2017 12:23:18 View Folder in Explorer libraries C:\Users\Cliente\AppData\Local\Roaming\.minecraft\libraries
  1765. 11/05/2017 12:23:18 View Folder in Explorer skins C:\Users\Cliente\AppData\Local\Roaming\.minecraft\assets\skins
  1766. 11/05/2017 12:23:18 View Folder in Explorer config C:\Users\Cliente\AppData\Local\Roaming\.minecraft\config
  1767. 11/05/2017 12:23:18 View Folder in Explorer shaderpacks C:\Users\Cliente\AppData\Local\Roaming\.minecraft\shaderpacks
  1768. 11/05/2017 12:23:18 View Folder in Explorer server-resource-packs C:\Users\Cliente\AppData\Local\Roaming\.minecraft\server-resource-packs
  1769. 11/05/2017 12:23:18 View Folder in Explorer huzuni C:\Users\Cliente\AppData\Local\Roaming\.minecraft\huzuni
  1770. 11/05/2017 12:23:18 View Folder in Explorer 1.8.8 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.8.8 8
  1771. 11/05/2017 12:23:18 View Folder in Explorer 1.11.2 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.11.2 2
  1772. 11/05/2017 12:23:18 View Folder in Explorer 1.8 C:\Users\Cliente\AppData\Local\Roaming\.minecraft\versions\1.8 8
  1773. 11/05/2017 12:23:18 View Folder in Explorer logs C:\Users\Cliente\AppData\Local\Roaming\.minecraft\logs
  1774. 11/05/2017 12:23:18 View Folder in Explorer iginimaSE_v3100 iginimaSE_v3100
  1775. 11/05/2017 12:23:18 View Folder in Explorer X and Linux iginimaSE_v3100\ X and Linux
  1776. 11/05/2017 12:23:18 View Folder in Explorer Downloads backup fabia 22-04-2017\Rhayann\Downloads
  1777. 11/05/2017 12:23:18 View Folder in Explorer d0dbf3391ed8116d65fbbeeb1e4b127a3c73da80 backup fabia 22-04-2017\SoftwareDistribution\DeliveryOptimization\d0dbf3391ed8116d65fbbeeb1e4b127a3c73da80
  1778. 11/05/2017 12:23:18 View Folder in Explorer 8c3b35fb8998d3ae3595643def49cecaec6effc9 backup fabia 22-04-2017\SoftwareDistribution\DeliveryOptimization\8c3b35fb8998d3ae3595643def49cecaec6effc9
  1779. 11/05/2017 12:23:18 View Folder in Explorer 157be3a28ace84ebb6672ea85d0096c346807247 backup fabia 22-04-2017\SoftwareDistribution\DeliveryOptimization\157be3a28ace84ebb6672ea85d0096c346807247
  1780. 11/05/2017 12:23:18 View Folder in Explorer DeliveryOptimization backup fabia 22-04-2017\SoftwareDistribution\DeliveryOptimization
  1781. 11/05/2017 12:23:18 View Folder in Explorer Jogos backup fabia 22-04-2017\Jogos
  1782. 11/05/2017 12:23:18 View Folder in Explorer =) backup fabia 22,04,2017\Rhayann\Desktop\=)
  1783. 11/05/2017 12:23:18 View Folder in Explorer Desktop backup fabia 22,04,2017\Rhayann\Desktop
  1784. 11/05/2017 12:23:18 View Folder in Explorer Rhayann backup fabia 22,04,2017\Rhayann
  1785. 11/05/2017 12:23:18 View Folder in Explorer backup fabia 22,04,2017 backup fabia 22,04,2017
  1786. 11/05/2017 12:23:18 View Folder in Explorer SoftwareDistribution backup fabia 22-04-2017\SoftwareDistribution
  1787. 11/05/2017 12:23:18 View Folder in Explorer isso nao e hack backup fabia 22,04,2017\Rhayann\Desktop\=)\isso nao e hack
  1788. 11/05/2017 12:23:18 View Folder in Explorer Client F:\backup fabia 22-04-2017\Rhayann\Desktop\WyD ZoN Oficial\Client
  1789. 11/05/2017 12:23:18 View Folder in Explorer F:\
  1790. 11/05/2017 12:23:18 View Folder in Explorer Mesh F:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Mesh
  1791. 11/05/2017 12:23:18 View Folder in Explorer Pictures E:\backup fabia 22,04,2017\Rhayann\Pictures
  1792. 11/05/2017 12:23:18 View Folder in Explorer Rhayann E:\backup fabia 22,04,2017\Rhayann
  1793. 11/05/2017 12:23:18 View Folder in Explorer backup fabia 22,04,2017 E:\backup fabia 22,04,2017
  1794. 11/05/2017 12:23:18 View Folder in Explorer F:\
  1795. 11/05/2017 12:23:18 View Folder in Explorer WyD ZoN Oficial E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial
  1796. 11/05/2017 12:23:18 View Folder in Explorer OneDrive E:\backup fabia 22,04,2017\Rhayann\OneDrive
  1797. 11/05/2017 12:23:18 View Folder in Explorer Videos E:\backup fabia 22,04,2017\Rhayann\Videos
  1798. 11/05/2017 12:23:18 View Folder in Explorer Documents E:\backup fabia 22,04,2017\Rhayann\Documents
  1799. 11/05/2017 12:23:18 View Folder in Explorer Camera Roll E:\backup fabia 22,04,2017\Rhayann\Pictures\Camera Roll
  1800. 11/05/2017 12:23:18 View Folder in Explorer 14rhayanngiacomozzi@gmail.com youtube E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\isso nao e hack\14rhayanngiacomozzi@gmail.com youtube com youtube
  1801. 11/05/2017 12:23:18 View Folder in Explorer Desktop E:\backup fabia 22,04,2017\Rhayann\Desktop
  1802. 11/05/2017 12:23:18 View Folder in Explorer assets E:\backup fabia 22,04,2017\Rhayann\Desktop\assets
  1803. 11/05/2017 12:23:18 View Folder in Explorer nfsu2 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2
  1804. 11/05/2017 12:23:18 View Folder in Explorer Rhayann123@ E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\isso nao e hack\Rhayann123@
  1805. 11/05/2017 12:23:18 View Folder in Explorer craftpremiumbr@hotmail.com E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\isso nao e hack\craftpremiumbr@hotmail.com com
  1806. 11/05/2017 12:23:18 View Folder in Explorer =) E:\backup fabia 22,04,2017\Rhayann\Desktop\=)
  1807. 11/05/2017 12:23:18 View Folder in Explorer williamrita29 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\isso nao e hack\williamrita29
  1808. 11/05/2017 12:23:18 View Folder in Explorer isso nao e hack E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\isso nao e hack
  1809. 11/05/2017 12:23:18 View Folder in Explorer .minecraft C:\Users\Cliente\AppData\Roaming\.minecraft minecraft
  1810. 11/05/2017 12:23:18 View Folder in Explorer Downloads C:\Users\Cliente\Downloads
  1811. 11/05/2017 12:23:18 View Folder in Explorer E:\
  1812. 11/05/2017 12:23:18 View Folder in Explorer versions C:\Users\Cliente\AppData\Roaming\.minecraft\versions
  1813. 11/05/2017 12:23:18 View Folder in Explorer Nero 7 Essentials C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Essentials
  1814. 11/05/2017 12:23:18 View Folder in Explorer áudio C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Essentials\áudio
  1815. 11/05/2017 12:23:18 View Folder in Explorer rhayann@123 rhayann@123
  1816. 11/05/2017 12:22:47 System Started
  1817. 11/05/2017 12:22:42 User Logon WORKGROUP\DWM-1
  1818. 11/05/2017 12:21:19 System Shutdown
  1819. 11/05/2017 12:20:53 Software Installation neroxml
  1820. 11/05/2017 12:20:53 Software Installation Arquivo do WinRAR
  1821. 11/05/2017 12:20:53 Software Installation NeroBackItUp!UninstallKey
  1822. 11/05/2017 12:20:53 Software Installation Nero - Burning Rom!UninstallKey
  1823. 11/05/2017 12:20:53 Software Installation Uninstall.exe C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe Mozilla Maintenance Service exe
  1824. 11/05/2017 12:16:33 System Started
  1825. 11/05/2017 12:16:31 Software Installation WIC
  1826. 11/05/2017 12:16:31 Software Installation MPlayer2
  1827. 11/05/2017 12:16:31 Software Installation AddressBook
  1828. 11/05/2017 12:16:31 Software Installation SchedulingAgent
  1829. 11/05/2017 12:16:31 Software Installation MobileOptionPack
  1830. 11/05/2017 12:16:31 Software Installation IEData
  1831. 11/05/2017 12:16:31 Software Installation IE5BAKEX
  1832. 11/05/2017 12:16:31 Software Installation IE4Data
  1833. 11/05/2017 12:16:31 Software Installation IE40
  1834. 11/05/2017 12:16:31 Software Installation Fontcore
  1835. 11/05/2017 12:16:31 Software Installation DXM_Runtime
  1836. 11/05/2017 12:16:31 Software Installation DirectDrawEx
  1837. 11/05/2017 12:16:31 Software Installation Connection Manager
  1838. 11/05/2017 12:16:18 User Logon WORKGROUP\DWM-1
  1839. 11/05/2017 00:25:09 Open file or folder .minecraft C:\Users\Cliente\AppData\Roaming\.minecraft minecraft
  1840. 10/05/2017 23:16:28 Open file or folder DrekayXD C:\Users\Cliente\Desktop\DrekayXD
  1841. 10/05/2017 23:16:08 Open file or folder rhayann@123 C:\Users\Cliente\Desktop\rhayann@123
  1842. 10/05/2017 23:04:02 Open file or folder PointBlankSetup_20161215.part01.rar C:\Users\Cliente\Desktop\PointBlankSetup_20161215.part01.rar rar
  1843. 04/05/2017 17:04:52 Open file or folder versions C:\Users\Cliente\AppData\Roaming\.minecraft\versions
  1844. 04/05/2017 16:58:53 Open file or folder .minecraft C:\Users\Cliente\AppData\Roaming\.minecraft minecraft
  1845. 03/05/2017 23:16:33 Open file or folder shig.inima C:\Users\Cliente\AppData\Roaming\.minecraft\shig.inima inima
  1846. 03/05/2017 23:16:15 Open file or folder textures_4.png C:\Users\Cliente\AppData\Roaming\.minecraft\textures_4.png png
  1847. 03/05/2017 20:26:20 Open file or folder versions C:\Users\Cliente\AppData\Roaming\.minecraft\versions
  1848. 30/04/2017 19:22:09 Open file or folder Client C:\Users\Cliente\Desktop\backup fabia 22-04-2017\Rhayann\Desktop\WyD ZoN Oficial\Client
  1849. 29/04/2017 23:03:50 Open file or folder versions C:\Users\Cliente\AppData\Roaming\.minecraft\versions
  1850. 27/04/2017 00:57:20 Open file or folder versions C:\Users\Cliente\AppData\Roaming\.minecraft\versions
  1851. 26/04/2017 23:39:22 Open file or folder resourcepacks C:\Users\Cliente\AppData\Roaming\.minecraft\resourcepacks
  1852. 26/04/2017 23:27:46 Open file or folder Downloads C:\Users\Cliente\Downloads
  1853. 26/04/2017 23:27:46 Open file or folder Desktop C:\Users\Cliente\Desktop
  1854. 26/04/2017 23:26:14 Open file or folder ShiginimaSE_v3100 C:\Users\Cliente\Desktop\ShiginimaSE_v3100
  1855. 26/04/2017 23:26:14 Open file or folder Cliente C:\Users\Cliente
  1856. 25/04/2017 11:42:01 Open file or folder DeliveryOptimization C:\Users\Cliente\Desktop\backup fabia 22,04,2017\SoftwareDistribution\DeliveryOptimization
  1857. 25/04/2017 11:42:01 Open file or folder d0dbf3391ed8116d65fbbeeb1e4b127a3c73da80 C:\Users\Cliente\Desktop\backup fabia 22,04,2017\SoftwareDistribution\DeliveryOptimization\d0dbf3391ed8116d65fbbeeb1e4b127a3c73da80
  1858. 25/04/2017 11:42:01 Open file or folder SoftwareDistribution E:\backup fabia 22,04,2017\SoftwareDistribution
  1859. 25/04/2017 11:42:00 Open file or folder backup fabia 22,04,2017 E:\backup fabia 22,04,2017
  1860. 25/04/2017 11:42:00 Open file or folder E:\
  1861. 25/04/2017 11:42:00 Open file or folder Videos E:\backup fabia 22,04,2017\Rhayann\Videos
  1862. 25/04/2017 11:42:00 Open file or folder Captures E:\backup fabia 22,04,2017\Rhayann\Videos\Captures
  1863. 25/04/2017 11:42:00 Open file or folder Videos C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Videos
  1864. 25/04/2017 11:42:00 Open file or folder Rhayann E:\backup fabia 22,04,2017\Rhayann
  1865. 25/04/2017 11:42:00 Open file or folder Searches E:\backup fabia 22,04,2017\Rhayann\Searches
  1866. 25/04/2017 11:41:59 Open file or folder Saved Games E:\backup fabia 22,04,2017\Rhayann\Saved Games
  1867. 25/04/2017 11:41:59 Open file or folder Saved Pictures C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Pictures\Saved Pictures
  1868. 25/04/2017 11:41:59 Open file or folder Nova pasta C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Pictures\Saved Pictures\Nova pasta
  1869. 25/04/2017 11:41:59 Open file or folder Pictures E:\backup fabia 22,04,2017\Rhayann\Pictures
  1870. 25/04/2017 11:41:59 Open file or folder Pictures C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Pictures
  1871. 25/04/2017 11:41:59 Open file or folder Pictures C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Pictures
  1872. 25/04/2017 11:41:59 Open file or folder Camera Roll E:\backup fabia 22,04,2017\Rhayann\Pictures\Camera Roll
  1873. 25/04/2017 11:41:59 Open file or folder Rhayann E:\backup fabia 22,04,2017\Rhayann
  1874. 25/04/2017 11:41:58 Open file or folder OneDrive E:\backup fabia 22,04,2017\Rhayann\OneDrive
  1875. 25/04/2017 11:41:58 Open file or folder Music E:\backup fabia 22,04,2017\Rhayann\Music
  1876. 25/04/2017 11:41:58 Open file or folder Links E:\backup fabia 22,04,2017\Rhayann\Links
  1877. 25/04/2017 11:41:58 Open file or folder Favorites E:\backup fabia 22,04,2017\Rhayann\Favorites
  1878. 25/04/2017 11:41:58 Open file or folder Links E:\backup fabia 22,04,2017\Rhayann\Favorites\Links
  1879. 25/04/2017 11:41:57 Open file or folder Favorites C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Favorites
  1880. 25/04/2017 11:41:57 Open file or folder Rhayann E:\backup fabia 22,04,2017\Rhayann
  1881. 25/04/2017 11:41:53 Open file or folder PointBlank E:\backup fabia 22,04,2017\Rhayann\Documents\PointBlank
  1882. 25/04/2017 11:41:53 Open file or folder ScreenShot E:\backup fabia 22,04,2017\Rhayann\Documents\PointBlank\ScreenShot
  1883. 25/04/2017 11:41:53 Open file or folder PointBlank C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Documents\PointBlank
  1884. 25/04/2017 11:41:53 Open file or folder Documents E:\backup fabia 22,04,2017\Rhayann\Documents
  1885. 25/04/2017 11:41:52 Open file or folder Replays C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Documents\League of Legends\Replays
  1886. 25/04/2017 11:41:52 Open file or folder Documents C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Documents
  1887. 25/04/2017 11:41:52 Open file or folder Replay C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Documents\Cross Fire\Replay
  1888. 25/04/2017 11:41:52 Open file or folder Rhayann E:\backup fabia 22,04,2017\Rhayann
  1889. 25/04/2017 11:41:51 Open file or folder XTrap E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\XTrap
  1890. 25/04/2017 11:41:51 Open file or folder Potal E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\UI\Potal
  1891. 25/04/2017 11:41:51 Open file or folder Hellgate E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\UI\Hellgate
  1892. 25/04/2017 11:41:50 Open file or folder WyD ZoN Oficial E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial
  1893. 25/04/2017 11:41:21 Open file or folder weather E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\weather
  1894. 25/04/2017 11:41:20 Open file or folder swing E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\swing
  1895. 25/04/2017 11:41:18 Open file or folder step E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\step
  1896. 25/04/2017 11:41:16 Open file or folder rich E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\monster\rich
  1897. 25/04/2017 11:41:15 Open file or folder Sound E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound
  1898. 25/04/2017 11:41:00 Open file or folder menu E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\menu
  1899. 25/04/2017 11:40:59 Open file or folder item E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\item
  1900. 25/04/2017 11:40:58 Open file or folder inventory E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\inventory
  1901. 25/04/2017 11:40:58 Open file or folder effect E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\effect
  1902. 25/04/2017 11:40:55 Open file or folder damage E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\damage
  1903. 25/04/2017 11:40:54 Open file or folder character E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\character
  1904. 25/04/2017 11:40:54 Open file or folder ambient E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Sound\ambient
  1905. 25/04/2017 11:40:52 Open file or folder WyD ZoN Oficial E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial
  1906. 25/04/2017 11:40:51 Open file or folder shader E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\shader
  1907. 25/04/2017 11:40:50 Open file or folder Settin E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Settin
  1908. 25/04/2017 11:40:49 Open file or folder Set E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Set
  1909. 25/04/2017 11:40:43 Open file or folder NUI E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\NUI
  1910. 25/04/2017 11:40:41 Open file or folder Mesh E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Mesh
  1911. 25/04/2017 11:33:14 Open file or folder Env E:\backup fabia 22,04,2017\Rhayann\Desktop\WyD ZoN Oficial\Env
  1912. 25/04/2017 11:31:31 Open file or folder Desktop C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Desktop
  1913. 25/04/2017 11:31:30 Open file or folder particle E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\particle
  1914. 25/04/2017 11:31:30 Open file or folder painting E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\painting
  1915. 25/04/2017 11:31:30 Open file or folder armor E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\models\armor
  1916. 25/04/2017 11:31:28 Open file or folder textures E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures
  1917. 25/04/2017 11:31:28 Open file or folder misc E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\misc
  1918. 25/04/2017 11:31:28 Open file or folder map E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\map
  1919. 25/04/2017 11:31:28 Open file or folder items E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\items
  1920. 25/04/2017 11:31:06 Open file or folder title E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\gui\title
  1921. 25/04/2017 11:31:06 Open file or folder creative_inventory E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\gui\container\creative_inventory
  1922. 25/04/2017 11:31:05 Open file or folder gui E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\gui
  1923. 25/04/2017 11:31:03 Open file or folder achievement E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\gui\achievement
  1924. 25/04/2017 11:31:03 Open file or folder textures E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures
  1925. 25/04/2017 11:31:02 Open file or folder font E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\font
  1926. 25/04/2017 11:30:40 Open file or folder environment E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\environment
  1927. 25/04/2017 11:30:40 Open file or folder zombie E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\zombie
  1928. 25/04/2017 11:30:40 Open file or folder wolf E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\wolf
  1929. 25/04/2017 11:30:39 Open file or folder wither E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\wither
  1930. 25/04/2017 11:30:39 Open file or folder villager E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\villager
  1931. 25/04/2017 11:30:38 Open file or folder spider E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\spider
  1932. 25/04/2017 11:30:37 Open file or folder slime E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\slime
  1933. 25/04/2017 11:30:37 Open file or folder skeleton E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\skeleton
  1934. 25/04/2017 11:30:37 Open file or folder sheep E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\sheep
  1935. 25/04/2017 11:30:36 Open file or folder rabbit E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\rabbit
  1936. 25/04/2017 11:30:35 Open file or folder pig E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\pig
  1937. 25/04/2017 11:30:35 Open file or folder armor E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\horse\armor
  1938. 25/04/2017 11:30:35 Open file or folder entity E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity
  1939. 25/04/2017 11:30:33 Open file or folder ghast E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\ghast
  1940. 25/04/2017 11:30:32 Open file or folder enderman E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\enderman
  1941. 25/04/2017 11:30:32 Open file or folder enderdragon E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\enderdragon
  1942. 25/04/2017 11:30:31 Open file or folder endercrystal E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\endercrystal
  1943. 25/04/2017 11:30:31 Open file or folder creeper E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\creeper
  1944. 25/04/2017 11:30:31 Open file or folder cow E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\cow
  1945. 25/04/2017 11:30:30 Open file or folder chest E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\chest
  1946. 25/04/2017 11:30:29 Open file or folder cat E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\cat
  1947. 25/04/2017 11:30:28 Open file or folder banner E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\banner
  1948. 25/04/2017 11:30:24 Open file or folder armorstand E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\entity\armorstand
  1949. 25/04/2017 11:30:23 Open file or folder textures E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures
  1950. 25/04/2017 11:30:20 Open file or folder blocks E:\backup fabia 22,04,2017\Rhayann\Desktop\assets\minecraft\textures\blocks
  1951. 25/04/2017 11:29:43 Open file or folder Desktop C:\Users\Cliente\Desktop\backup fabia 22,04,2017\Rhayann\Desktop
  1952. 25/04/2017 11:29:43 Open file or folder ROUTESL4RR E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RR
  1953. 25/04/2017 11:29:42 Open file or folder ROUTESL4RH E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RH
  1954. 25/04/2017 11:29:42 Open file or folder ROUTESL4RG E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RG
  1955. 25/04/2017 11:29:38 Open file or folder ROUTESL4RF E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RF
  1956. 25/04/2017 11:29:35 Open file or folder ROUTESL4RD E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RD
  1957. 25/04/2017 11:29:34 Open file or folder ROUTESL4RC E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RC
  1958. 25/04/2017 11:29:30 Open file or folder ROUTESL4RB E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RB
  1959. 25/04/2017 11:29:27 Open file or folder ROUTESL4RA E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\TRACKS\ROUTESL4RA
  1960. 25/04/2017 11:29:11 Open file or folder nfsu2 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2
  1961. 25/04/2017 11:28:58 Open file or folder en-us E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\en-us
  1962. 25/04/2017 11:28:57 Open file or folder whxdata E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\whxdata
  1963. 25/04/2017 11:28:57 Open file or folder whgdata E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\whgdata
  1964. 25/04/2017 11:28:51 Open file or folder whdata E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\whdata
  1965. 25/04/2017 11:28:49 Open file or folder Lockups E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Starting_the_Game\Lockups
  1966. 25/04/2017 11:28:49 Open file or folder Crashes E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Starting_the_Game\Crashes
  1967. 25/04/2017 11:28:49 Open file or folder EA Help E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help
  1968. 25/04/2017 11:28:48 Open file or folder Standard_Items E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Standard_Items
  1969. 25/04/2017 11:28:47 Open file or folder Lockups E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Playing_the_Game\Lockups
  1970. 25/04/2017 11:28:47 Open file or folder EA Help E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help
  1971. 25/04/2017 11:28:46 Open file or folder Online E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Online
  1972. 25/04/2017 11:28:46 Open file or folder Requirements_Issues E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Install\Requirements_Issues
  1973. 25/04/2017 11:28:45 Open file or folder Media_Issues E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Install\Media_Issues
  1974. 25/04/2017 11:28:45 Open file or folder Issues_After_Install E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\Install\Issues_After_Install
  1975. 25/04/2017 11:28:45 Open file or folder EA Help E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help
  1976. 25/04/2017 11:28:44 Open file or folder images E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\images
  1977. 25/04/2017 11:28:43 Open file or folder DirectX E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\Support\EA Help\DirectX
  1978. 25/04/2017 11:28:33 Open file or folder nfsu2 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2
  1979. 25/04/2017 11:28:30 Open file or folder SUBTITLES E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SUBTITLES
  1980. 25/04/2017 11:28:28 Open file or folder TURBO E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\TURBO
  1981. 25/04/2017 11:28:28 Open file or folder SOUND E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND
  1982. 25/04/2017 11:28:27 Open file or folder SKIDS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\SKIDS
  1983. 25/04/2017 11:28:26 Open file or folder SHIFTING E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\SHIFTING
  1984. 25/04/2017 11:28:25 Open file or folder NOS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\NOS
  1985. 25/04/2017 11:28:25 Open file or folder MIXMAPS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\MIXMAPS
  1986. 25/04/2017 11:28:24 Open file or folder IG_GLOBAL E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\IG_GLOBAL
  1987. 25/04/2017 11:28:23 Open file or folder GLOBAL E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\GLOBAL
  1988. 25/04/2017 11:28:23 Open file or folder FXEDIT E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\FXEDIT
  1989. 25/04/2017 11:28:22 Open file or folder FE E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\FE
  1990. 25/04/2017 11:28:21 Open file or folder EVT_SYS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\EVT_SYS
  1991. 25/04/2017 11:28:20 Open file or folder ENGINE E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SOUND\ENGINE
  1992. 25/04/2017 11:28:03 Open file or folder nfsu2 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2
  1993. 25/04/2017 11:28:03 Open file or folder SDATA E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\SDATA
  1994. 25/04/2017 11:28:02 Open file or folder NIS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\NIS
  1995. 25/04/2017 11:27:56 Open file or folder MOVIES E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\MOVIES
  1996. 25/04/2017 11:27:53 Open file or folder memcard E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\memcard
  1997. 25/04/2017 11:27:52 Open file or folder LANGUAGES E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\LANGUAGES
  1998. 25/04/2017 11:27:47 Open file or folder PLATFORMS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\FRONTEND\PLATFORMS
  1999. 25/04/2017 11:27:46 Open file or folder ENVMAPS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\FRONTEND\ENVMAPS
  2000. 25/04/2017 11:27:46 Open file or folder nfsu2 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2
  2001. 25/04/2017 11:27:45 Open file or folder CREDITS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CREDITS
  2002. 25/04/2017 11:27:44 Open file or folder WHEELS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\WHEELS
  2003. 25/04/2017 11:27:40 Open file or folder TT E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\TT
  2004. 25/04/2017 11:27:39 Open file or folder TIBURON E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\TIBURON
  2005. 25/04/2017 11:27:39 Open file or folder TAXI02 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\TAXI02
  2006. 25/04/2017 11:27:39 Open file or folder TAXI E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\TAXI
  2007. 25/04/2017 11:27:38 Open file or folder SUV E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SUV
  2008. 25/04/2017 11:27:38 Open file or folder SUPRA E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SUPRA
  2009. 25/04/2017 11:27:37 Open file or folder SPOILER_SUV E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SPOILER_SUV
  2010. 25/04/2017 11:27:37 Open file or folder SPOILER_HATCH E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SPOILER_HATCH
  2011. 25/04/2017 11:27:36 Open file or folder SPOILER E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SPOILER
  2012. 25/04/2017 11:27:36 Open file or folder SPINNER E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SPINNER
  2013. 25/04/2017 11:27:36 Open file or folder SKYLINE E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SKYLINE
  2014. 25/04/2017 11:27:35 Open file or folder SENTRA E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\SENTRA
  2015. 25/04/2017 11:27:35 Open file or folder S2000 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\S2000
  2016. 25/04/2017 11:27:35 Open file or folder RX8 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\RX8
  2017. 25/04/2017 11:27:34 Open file or folder RX7 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\RX7
  2018. 25/04/2017 11:27:34 Open file or folder RSX E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\RSX
  2019. 25/04/2017 11:27:33 Open file or folder ROOF E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\ROOF
  2020. 25/04/2017 11:27:33 Open file or folder PLATES E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\PLATES
  2021. 25/04/2017 11:27:32 Open file or folder PICKUP E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\PICKUP
  2022. 25/04/2017 11:27:32 Open file or folder PEUGOT E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\PEUGOT
  2023. 25/04/2017 11:27:32 Open file or folder PARCELVAN E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\PARCELVAN
  2024. 25/04/2017 11:27:31 Open file or folder PANELVAN E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\PANELVAN
  2025. 25/04/2017 11:27:30 Open file or folder NEON E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\NEON
  2026. 25/04/2017 11:27:30 Open file or folder NAVIGATOR E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\NAVIGATOR
  2027. 25/04/2017 11:27:30 Open file or folder MUSTANGGT E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\MUSTANGGT
  2028. 25/04/2017 11:27:29 Open file or folder MIRRORS_SUV E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\MIRRORS_SUV
  2029. 25/04/2017 11:27:29 Open file or folder MIRRORS_POST E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\MIRRORS_POST
  2030. 25/04/2017 11:27:29 Open file or folder MIRRORS_HUMMER E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\MIRRORS_HUMMER
  2031. 25/04/2017 11:27:28 Open file or folder MIRRORS_BODY E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\MIRRORS_BODY
  2032. 25/04/2017 11:27:28 Open file or folder MIRRORS E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\MIRRORS
  2033. 25/04/2017 11:27:14 Open file or folder 240SX E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2\CARS\240SX
  2034. 25/04/2017 11:27:14 Open file or folder nfsu2 E:\backup fabia 22,04,2017\Rhayann\Desktop\=)\nfsu2
  2035. 25/04/2017 11:27:13 Open file or folder =) E:\backup fabia 22,04,2017\Rhayann\Desktop\=)
  2036. 25/04/2017 11:27:12 Open file or folder =) E:\backup fabia 22,04,2017\Rhayann\Desktop\=)
  2037. 25/04/2017 11:27:03 Open file or folder Rhayann E:\backup fabia 22,04,2017\Rhayann
  2038. 25/04/2017 11:27:02 Open file or folder Contacts E:\backup fabia 22,04,2017\Rhayann\Contacts
  2039. 25/04/2017 11:27:02 Open file or folder backup fabia 22,04,2017 E:\backup fabia 22,04,2017
  2040. 25/04/2017 11:27:02 Open file or folder S-1-5-18 E:\backup fabia 22,04,2017\RECYCLER\S-1-5-18
  2041. 25/04/2017 11:27:01 Open file or folder backup fabia 22,04,2017 E:\backup fabia 22,04,2017
  2042. 25/04/2017 11:27:01 Open file or folder Minecraft E:\backup fabia 22,04,2017\Jogos\Minecraft
  2043. 25/04/2017 11:27:00 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2044. 25/04/2017 11:26:58 Open file or folder apache E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\org\apache
  2045. 25/04/2017 11:26:57 Open file or folder apache E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\org\apache
  2046. 25/04/2017 11:26:57 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2047. 25/04/2017 11:26:55 Open file or folder java E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\net\java
  2048. 25/04/2017 11:26:55 Open file or folder java E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\net\java
  2049. 25/04/2017 11:26:54 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2050. 25/04/2017 11:26:54 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2051. 25/04/2017 11:26:54 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2052. 25/04/2017 11:26:53 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2053. 25/04/2017 11:26:53 Open file or folder libraries E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries
  2054. 25/04/2017 11:26:53 Open file or folder 20120107 E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode\soundsystem\20120107
  2055. 25/04/2017 11:26:53 Open file or folder 20100824 E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode\librarylwjglopenal\20100824
  2056. 25/04/2017 11:26:53 Open file or folder paulscode E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode
  2057. 25/04/2017 11:26:52 Open file or folder 20101123 E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode\libraryjavasound\20101123
  2058. 25/04/2017 11:26:52 Open file or folder paulscode E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode
  2059. 25/04/2017 11:26:52 Open file or folder 20101023 E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode\codecwav\20101023
  2060. 25/04/2017 11:26:52 Open file or folder paulscode E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com\paulscode
  2061. 25/04/2017 11:26:52 Open file or folder com E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com
  2062. 25/04/2017 11:26:51 Open file or folder com E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com
  2063. 25/04/2017 11:26:51 Open file or folder com E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com
  2064. 25/04/2017 11:26:50 Open file or folder com E:\backup fabia 22,04,2017\Jogos\Minecraft\libraries\com
  2065. 25/04/2017 11:26:49 Open file or folder Minecraft E:\backup fabia 22,04,2017\Jogos\Minecraft
  2066. 25/04/2017 11:26:06 Open file or folder 00 E:\backup fabia 22,04,2017\Jogos\Minecraft\assets\objects\00
  2067. 25/04/2017 11:26:06 Open file or folder assets E:\backup fabia 22,04,2017\Jogos\Minecraft\assets
  2068. 25/04/2017 11:26:06 Open file or folder Jogos E:\backup fabia 22,04,2017\Jogos
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!