cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-01-2016
Executado por User (administrador) em GABRIELLE (30-01-2016 15:10:16)
Executando a partir de C:\Users\User\Desktop
Perfis Carregados: User (Perfis Disponíveis: User & DefaultAppPool)
Platform: Windows 10 Pro Versão 1511 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(VLOME) C:\Users\User\AppData\Local\Temp\00009971\casrss.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\ProgramData\WindowsMsg\osmsg.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\Calculator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912 2015-08-01] (Synaptics Incorporated)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ GbPluginAbn: C:\Program Files (x86)\GbPlugin\gbiehAbn.dll [2014-11-18] (Banco Real)
HKU\S-1-5-21-1388445924-3286991114-2444111617-1001\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-05-15] (Google Inc.)
HKU\S-1-5-21-1388445924-3286991114-2444111617-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1388445924-3286991114-2444111617-1001\...\Run: [Pritc] => C:\Users\User\AppData\Local\Temp\00009971\casrss.exe [2954240 2016-01-30] (VLOME) <===== ATENÇÃO
HKU\S-1-5-21-1388445924-3286991114-2444111617-1001\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\osmsg.exe [1907200 2016-01-20] ()
HKU\S-1-5-21-1388445924-3286991114-2444111617-1001\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - C:\Program Files (x86)\GbPlugin\gbiehabn.dll [1939512 2014-11-18] (Banco Real)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Nenhum Arquivo
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{03f8346e-d471-42e6-a7da-0d0272a8890e}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{13b581be-2f00-4acf-98b0-e4fa49ae599f}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=e27b809e057fcc91fc444dbbce5f965a
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.hao123.com/?tn=sdkc_inner_hp_09_hao123_br&guid=e27b809e057fcc91fc444dbbce5f965a
SearchScopes: HKU\S-1-5-21-1388445924-3286991114-2444111617-1001 -> DefaultScope {A2E1B1BC-DFD8-427C-9C6D-53B0FDE306FF} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1388445924-3286991114-2444111617-1001 -> {A2E1B1BC-DFD8-427C-9C6D-53B0FDE306FF} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-14] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540007} -> C:\Program Files (x86)\GbPlugin\gbiehabn.dll [2014-11-18] (Banco Real)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-14] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1388445924-3286991114-2444111617-1001 -> hxxp://www.google.com.br/

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ph135y7g.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-20] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-20] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-14] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1388445924-3286991114-2444111617-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\User\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1388445924-3286991114-2444111617-1001: @talk.google.com/O1DPlugin -> C:\Users\User\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1388445924-3286991114-2444111617-1001: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1388445924-3286991114-2444111617-1001: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-1388445924-3286991114-2444111617-1001: gastecnologia.com.br/sf/abn -> C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll [2015-02-19] (GAS Tecnologia)
FF Plugin HKU\S-1-5-21-1388445924-3286991114-2444111617-1001: gastecnologia.com.br/sf/abn64 -> C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll [2015-02-19] (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml [2015-05-26]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml [2015-05-26]
FF Extension: Primary Color 1.0.1 - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ph135y7g.default\Extensions\{14399205-100e-435b-93e2-9f4ebefe8918}.xpi [2016-01-28] [não assinado]
FF HKU\S-1-5-21-1388445924-3286991114-2444111617-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E8874}] - C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\abn\xpi
FF Extension: GBBD Banco Santander (Brasil) S.A. - C:\Users\User\AppData\Local\GAS Tecnologia\GBBD\abn\xpi [2015-08-02] [não assinado]
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/
CHR StartupUrls: Default -> "hxxps://www.google.com.br/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\User\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => Nenhum Arquivo
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-14]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-07]
CHR Extension: (Área de trabalho remota do Google Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-01-07]
CHR Extension: (Documentos Google off-line) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-07]
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-30]
CHR Extension: (Classic) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkacjpbfdknhflllbcmjibkdeoafencn [2016-01-07]
CHR Extension: (GBBD Banco Santander (Brasil) S.A.) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idnljhnpjegfbcohjhdnhjlnfnffmbnf [2015-05-12]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-07]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [555320 2014-10-31] (GAS Tecnologia)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736 2015-08-01] (Synaptics Incorporated)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [Arquivo não assinado]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 pucufecozbt; C:\Program Files (x86)\02DC3B9D-1454121735-E011-A64C-000418411445\knshD64B.tmpfs [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2015-01-18] (The OpenVPN Project)
R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-30] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-01] (Synaptics Incorporated)
S3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2014-10-31] (GAS Tecnologia LTDA)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; não ImagePath

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-01-30 15:10 - 2016-01-30 15:10 - 00017195 _____ C:\Users\User\Desktop\FRST.txt
2016-01-30 15:09 - 2016-01-30 15:10 - 00000000 ____D C:\FRST
2016-01-30 15:08 - 2016-01-30 15:09 - 02370560 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2016-01-30 04:28 - 2016-01-30 14:55 - 00003642 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2016-01-30 02:38 - 2016-01-30 14:55 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-30 02:37 - 2016-01-30 05:08 - 00001169 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-01-30 02:37 - 2016-01-30 02:37 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes
2016-01-30 02:37 - 2016-01-30 02:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-30 02:37 - 2016-01-30 02:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-30 02:37 - 2016-01-30 02:37 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-01-30 02:37 - 2016-01-30 02:36 - 22908888 ____N (Malwarebytes ) C:\Users\User\Desktop\mbam-setup-2.2.0.1024.exe
2016-01-30 02:37 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-01-30 02:37 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-01-30 02:37 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-01-30 01:51 - 2016-01-30 01:51 - 00003314 _____ C:\WINDOWS\System32\Tasks\{9C617DE1-C108-45F1-BACD-754CC979D47D}
2016-01-30 01:45 - 2016-01-30 01:45 - 00003246 _____ C:\WINDOWS\System32\Tasks\{DBB40D07-D69A-45BF-A7A7-508B3052388D}
2016-01-30 01:45 - 2016-01-30 01:45 - 00000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2016-01-30 01:39 - 2016-01-30 01:39 - 00003234 _____ C:\WINDOWS\System32\Tasks\{26B575E9-C5E4-4EA1-B31D-880118EA66E5}
2016-01-30 01:20 - 2016-01-30 01:20 - 00003222 _____ C:\WINDOWS\System32\Tasks\{9966AAC8-F6E1-46A7-A8FD-94CCF93AD9D5}
2016-01-30 01:17 - 2016-01-30 01:17 - 00000000 ____D C:\Users\Public\Documents\Tools
2016-01-30 01:17 - 2016-01-30 01:17 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-01-30 01:16 - 2016-01-30 01:16 - 00003514 _____ C:\WINDOWS\System32\Tasks\Viproost
2016-01-30 01:16 - 2016-01-30 01:16 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-01-30 01:09 - 2016-01-30 04:27 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-01-30 01:09 - 2016-01-30 04:27 - 00000286 __RSH C:\ProgramData\ntuser.pol
2016-01-30 00:59 - 2016-01-30 14:59 - 00000296 _____ C:\WINDOWS\Tasks\SpeedUpMyPC Maintenance.job
2016-01-30 00:59 - 2016-01-30 14:55 - 00000310 _____ C:\WINDOWS\Tasks\SpeedUpMyPC Startup.job
2016-01-30 00:59 - 2016-01-30 00:59 - 00003346 _____ C:\WINDOWS\System32\Tasks\SpeedUpMyPC Maintenance
2016-01-30 00:59 - 2016-01-30 00:59 - 00002720 _____ C:\WINDOWS\System32\Tasks\SpeedUpMyPC Startup
2016-01-30 00:57 - 2016-01-30 00:57 - 00000074 _____ C:\Users\Todos os Usuários\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2016-01-30 00:57 - 2016-01-30 00:57 - 00000074 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2016-01-30 00:56 - 2016-01-30 01:06 - 00000000 ____D C:\Users\User\AppData\Roaming\Uniblue
2016-01-30 00:55 - 2016-01-30 02:29 - 00000000 ____D C:\Users\User\AppData\Local\Setup Wizard
2016-01-30 00:53 - 2016-01-30 00:53 - 00003108 _____ C:\WINDOWS\System32\Tasks\ttwifi
2016-01-30 00:53 - 2016-01-30 00:53 - 00003036 _____ C:\WINDOWS\System32\Tasks\Pritc
2016-01-30 00:53 - 2016-01-30 00:53 - 00003002 _____ C:\WINDOWS\System32\Tasks\osTip
2016-01-30 00:53 - 2016-01-30 00:53 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-01-30 00:53 - 2016-01-30 00:53 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-01-30 00:53 - 2016-01-30 00:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ttwifi
2016-01-30 00:52 - 2016-01-30 00:52 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Modelos
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Meus Documentos
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Menu Iniciar
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Minhas Músicas
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Minhas Imagens
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Meus Vídeos
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Dados de Aplicativos
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Configurações Locais
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Histórico
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Dados de Aplicativos
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Ambiente de Rede
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Ambiente de Impressão
2016-01-30 00:52 - 2016-01-30 00:52 - 00000000 ____D C:\Users\DefaultAppPool
2016-01-30 00:52 - 2016-01-09 19:08 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-01-30 00:52 - 2016-01-09 19:08 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2016-01-30 00:43 - 2016-01-30 00:41 - 00000965 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-01-29 02:55 - 2015-11-30 17:20 - 00128728 _____ C:\Users\User\Documents\New Doc 1.pdf
2016-01-29 02:55 - 2015-11-30 17:12 - 00174061 _____ C:\Users\User\Documents\New Doc.pdf
2016-01-29 02:54 - 2015-11-30 15:06 - 00213320 _____ C:\Users\User\Documents\droid-sans.zip
2016-01-29 02:42 - 2015-09-20 22:18 - 01501372 _____ C:\Users\User\Documents\roboto.zip
2016-01-28 22:17 - 2016-01-28 22:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-01-28 21:22 - 2016-01-16 04:23 - 08728920 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-01-28 21:22 - 2016-01-16 04:20 - 06971752 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-01-28 21:22 - 2016-01-16 03:44 - 22394368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-28 21:22 - 2016-01-16 03:35 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-01-28 21:22 - 2016-01-16 03:32 - 24602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-28 21:22 - 2016-01-16 03:26 - 19338752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-28 21:22 - 2016-01-16 03:24 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-28 21:21 - 2016-01-16 04:37 - 00202472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-01-28 21:21 - 2016-01-16 04:36 - 01173344 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-28 21:21 - 2016-01-16 04:36 - 00713568 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-28 21:21 - 2016-01-16 04:34 - 00513888 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-28 21:21 - 2016-01-16 04:24 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-01-28 21:21 - 2016-01-16 04:23 - 00848160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-28 21:21 - 2016-01-16 04:23 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-28 21:21 - 2016-01-16 04:23 - 00536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-01-28 21:21 - 2016-01-16 04:23 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-28 21:21 - 2016-01-16 04:23 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-01-28 21:21 - 2016-01-16 04:21 - 22572624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-28 21:21 - 2016-01-16 04:21 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-01-28 21:21 - 2016-01-16 04:20 - 06600904 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-01-28 21:21 - 2016-01-16 04:20 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-28 21:21 - 2016-01-16 04:20 - 00431240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-01-28 21:21 - 2016-01-16 04:20 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-01-28 21:21 - 2016-01-16 04:19 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-28 21:21 - 2016-01-16 04:19 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-01-28 21:21 - 2016-01-16 04:17 - 21125400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-01-28 21:21 - 2016-01-16 04:16 - 05238360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-01-28 21:21 - 2016-01-16 04:13 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-01-28 21:21 - 2016-01-16 04:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-01-28 21:21 - 2016-01-16 04:12 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-01-28 21:21 - 2016-01-16 04:09 - 01089880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-01-28 21:21 - 2016-01-16 04:08 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-01-28 21:21 - 2016-01-16 04:08 - 00440152 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-28 21:21 - 2016-01-16 03:46 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-01-28 21:21 - 2016-01-16 03:45 - 16986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-28 21:21 - 2016-01-16 03:44 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-01-28 21:21 - 2016-01-16 03:44 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-01-28 21:21 - 2016-01-16 03:43 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2016-01-28 21:21 - 2016-01-16 03:42 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-28 21:21 - 2016-01-16 03:42 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-01-28 21:21 - 2016-01-16 03:41 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-01-28 21:21 - 2016-01-16 03:40 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-01-28 21:21 - 2016-01-16 03:40 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-01-28 21:21 - 2016-01-16 03:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-01-28 21:21 - 2016-01-16 03:40 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2016-01-28 21:21 - 2016-01-16 03:39 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2016-01-28 21:21 - 2016-01-16 03:38 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-01-28 21:21 - 2016-01-16 03:38 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-01-28 21:21 - 2016-01-16 03:38 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-01-28 21:21 - 2016-01-16 03:38 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2016-01-28 21:21 - 2016-01-16 03:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-01-28 21:21 - 2016-01-16 03:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-01-28 21:21 - 2016-01-16 03:37 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-01-28 21:21 - 2016-01-16 03:37 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-01-28 21:21 - 2016-01-16 03:36 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-01-28 21:21 - 2016-01-16 03:36 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2016-01-28 21:21 - 2016-01-16 03:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-28 21:21 - 2016-01-16 03:36 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-01-28 21:21 - 2016-01-16 03:35 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-28 21:21 - 2016-01-16 03:34 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-01-28 21:21 - 2016-01-16 03:34 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-01-28 21:21 - 2016-01-16 03:34 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2016-01-28 21:21 - 2016-01-16 03:34 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-28 21:21 - 2016-01-16 03:34 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2016-01-28 21:21 - 2016-01-16 03:33 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-01-28 21:21 - 2016-01-16 03:33 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-01-28 21:21 - 2016-01-16 03:33 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-01-28 21:21 - 2016-01-16 03:32 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-01-28 21:21 - 2016-01-16 03:32 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-01-28 21:21 - 2016-01-16 03:31 - 00851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-01-28 21:21 - 2016-01-16 03:31 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-01-28 21:21 - 2016-01-16 03:31 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-01-28 21:21 - 2016-01-16 03:31 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-01-28 21:21 - 2016-01-16 03:31 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2016-01-28 21:21 - 2016-01-16 03:30 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-28 21:21 - 2016-01-16 03:30 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-28 21:21 - 2016-01-16 03:30 - 01053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-28 21:21 - 2016-01-16 03:30 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-28 21:21 - 2016-01-16 03:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2016-01-28 21:21 - 2016-01-16 03:29 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-01-28 21:21 - 2016-01-16 03:29 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-01-28 21:21 - 2016-01-16 03:28 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-01-28 21:21 - 2016-01-16 03:28 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-01-28 21:21 - 2016-01-16 03:28 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-28 21:21 - 2016-01-16 03:28 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-01-28 21:21 - 2016-01-16 03:28 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2016-01-28 21:21 - 2016-01-16 03:27 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-01-28 21:21 - 2016-01-16 03:26 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-01-28 21:21 - 2016-01-16 03:26 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-01-28 21:21 - 2016-01-16 03:26 - 00260608 _____ C:\WINDOWS\system32\MTFServer.dll
2016-01-28 21:21 - 2016-01-16 03:26 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-28 21:21 - 2016-01-16 03:25 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-01-28 21:21 - 2016-01-16 03:25 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-01-28 21:21 - 2016-01-16 03:25 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-01-28 21:21 - 2016-01-16 03:24 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-01-28 21:21 - 2016-01-16 03:24 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-01-28 21:21 - 2016-01-16 03:24 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-01-28 21:21 - 2016-01-16 03:24 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-01-28 21:21 - 2016-01-16 03:23 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-01-28 21:21 - 2016-01-16 03:23 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-28 21:21 - 2016-01-16 03:21 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-01-28 21:21 - 2016-01-16 03:20 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-01-28 21:21 - 2016-01-16 03:20 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-28 21:21 - 2016-01-16 03:20 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-01-28 21:21 - 2016-01-16 03:20 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-01-28 21:21 - 2016-01-16 03:19 - 12126208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-28 21:21 - 2016-01-16 03:19 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-01-28 21:21 - 2016-01-16 03:19 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-01-28 21:21 - 2016-01-16 03:19 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-01-28 21:21 - 2016-01-16 03:19 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-01-28 21:21 - 2016-01-16 03:18 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-01-28 21:21 - 2016-01-16 03:18 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-28 21:21 - 2016-01-16 03:17 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-01-28 21:21 - 2016-01-16 03:16 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-01-28 21:21 - 2016-01-16 03:16 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-28 21:21 - 2016-01-16 03:15 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-01-28 21:21 - 2016-01-16 03:14 - 01946624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-01-28 21:21 - 2016-01-16 03:14 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-01-28 21:21 - 2016-01-16 03:11 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-01-28 21:20 - 2016-01-16 03:44 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-01-28 21:20 - 2016-01-16 03:36 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2016-01-28 21:20 - 2016-01-16 03:35 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2016-01-28 21:20 - 2016-01-16 03:30 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2016-01-28 21:20 - 2016-01-16 03:09 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-01-24 21:29 - 2016-01-24 21:29 - 00033962 _____ C:\Users\User\Documents\Trabalho e Desenvolvimento Social.pdf
2016-01-23 19:51 - 2016-01-23 19:53 - 00000000 ____D C:\Users\User\Documents\NFe_PDF_23012016195028
2016-01-23 19:16 - 2016-01-23 19:16 - 00062531 _____ C:\Users\User\Documents\Caixa Econômica Federal - Sistema Integrado de Segurança.pdf
2016-01-23 19:05 - 2016-01-23 19:05 - 00138989 _____ C:\Users\User\Documents\Simulação do Cálculo da Renda Mensal.pdf
2016-01-14 23:27 - 2016-01-14 23:27 - 00065022 _____ C:\Users\User\Downloads\607.pdf
2016-01-14 03:36 - 2016-01-05 00:51 - 07477600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-14 03:36 - 2016-01-05 00:51 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-01-14 03:36 - 2016-01-05 00:51 - 01141496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-01-14 03:36 - 2016-01-05 00:50 - 00671472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-14 03:36 - 2016-01-05 00:48 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-14 03:36 - 2016-01-05 00:45 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-01-14 03:36 - 2016-01-05 00:42 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-01-14 03:36 - 2016-01-05 00:37 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-14 03:36 - 2016-01-05 00:37 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-14 03:36 - 2016-01-05 00:37 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-14 03:36 - 2016-01-05 00:37 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-14 03:36 - 2016-01-05 00:37 - 00234504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-14 03:36 - 2016-01-05 00:36 - 00808800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-01-14 03:36 - 2016-01-05 00:33 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-14 03:36 - 2016-01-05 00:33 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-14 03:36 - 2016-01-05 00:33 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-14 03:36 - 2016-01-05 00:33 - 00208176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-01-14 03:36 - 2016-01-05 00:33 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-14 03:36 - 2016-01-05 00:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-01-14 03:36 - 2016-01-05 00:27 - 01594408 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-14 03:36 - 2016-01-05 00:24 - 00796352 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-14 03:36 - 2016-01-05 00:23 - 01804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-14 03:36 - 2016-01-05 00:23 - 01309376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-14 03:36 - 2016-01-05 00:23 - 00786696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-14 03:36 - 2016-01-05 00:23 - 00119320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-14 03:36 - 2016-01-05 00:21 - 01371792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-14 03:36 - 2016-01-05 00:17 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-14 03:36 - 2016-01-05 00:16 - 00100160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-14 03:36 - 2016-01-04 23:57 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-14 03:36 - 2016-01-04 23:57 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-14 03:36 - 2016-01-04 23:56 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-01-14 03:36 - 2016-01-04 23:54 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-01-14 03:36 - 2016-01-04 23:53 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-01-14 03:36 - 2016-01-04 23:52 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-14 03:36 - 2016-01-04 23:51 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-01-14 03:36 - 2016-01-04 23:51 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-14 03:36 - 2016-01-04 23:50 - 00644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-01-14 03:36 - 2016-01-04 23:50 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-01-14 03:36 - 2016-01-04 23:49 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-14 03:36 - 2016-01-04 23:49 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-14 03:36 - 2016-01-04 23:49 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-01-14 03:36 - 2016-01-04 23:49 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-01-14 03:36 - 2016-01-04 23:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-01-14 03:36 - 2016-01-04 23:48 - 01009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-14 03:36 - 2016-01-04 23:48 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-14 03:36 - 2016-01-04 23:48 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-01-14 03:36 - 2016-01-04 23:47 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-14 03:36 - 2016-01-04 23:47 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-14 03:36 - 2016-01-04 23:47 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-14 03:36 - 2016-01-04 23:45 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-14 03:36 - 2016-01-04 23:45 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-14 03:36 - 2016-01-04 23:44 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2016-01-14 03:36 - 2016-01-04 23:43 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-14 03:36 - 2016-01-04 23:43 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-14 03:36 - 2016-01-04 23:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-14 03:36 - 2016-01-04 23:42 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-14 03:36 - 2016-01-04 23:41 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-14 03:36 - 2016-01-04 23:41 - 00558592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-01-14 03:36 - 2016-01-04 23:40 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-14 03:36 - 2016-01-04 23:40 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2016-01-14 03:36 - 2016-01-04 23:39 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-01-14 03:36 - 2016-01-04 23:39 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-14 03:36 - 2016-01-04 23:39 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-01-14 03:36 - 2016-01-04 23:39 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-14 03:36 - 2016-01-04 23:38 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-14 03:36 - 2016-01-04 23:36 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-14 03:36 - 2016-01-04 23:36 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-14 03:36 - 2016-01-04 23:30 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-01-14 03:36 - 2016-01-04 23:30 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-14 03:36 - 2016-01-04 23:29 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-01-14 03:36 - 2016-01-04 23:28 - 07826432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-14 03:36 - 2016-01-04 23:28 - 04894720 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-01-14 03:36 - 2016-01-04 23:25 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-01-12 22:32 - 2016-01-12 22:32 - 00450636 _____ C:\Users\User\Downloads\Fatura.pdf
2016-01-12 15:17 - 2016-01-12 15:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-01-12 14:38 - 2016-01-12 14:38 - 00027596 _____ C:\Users\User\Downloads\the.revenant.(2015).por.1cd.(6435659).zip
2016-01-12 14:37 - 2016-01-12 14:37 - 00015247 _____ C:\Users\User\Downloads\[kat.cr]the.revenant.2015.dvdscr.xvid.ac3.etrg.torrent
2016-01-12 14:34 - 2016-01-30 05:07 - 00002676 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-01-12 14:34 - 2016-01-12 15:07 - 00000000 ____D C:\Users\User\AppData\LocalLow\uTorrent
2016-01-12 14:32 - 2016-01-12 14:32 - 01900056 _____ (BitTorrent Inc.) C:\Users\User\Downloads\uTorrent.exe
2016-01-12 03:05 - 2016-01-17 18:26 - 00000000 ____D C:\Users\User\Downloads\PopcornTime
2016-01-09 19:49 - 2016-01-10 00:00 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-09 19:45 - 2016-01-09 19:45 - 00000000 ____D C:\Windows.old
2016-01-09 19:43 - 2016-01-09 19:43 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-01-09 19:43 - 2016-01-09 19:43 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-01-09 19:43 - 2016-01-09 19:43 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-01-09 19:43 - 2016-01-09 19:43 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-09 19:43 - 2016-01-09 19:43 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-09 19:43 - 2016-01-09 19:43 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-01-09 19:43 - 2016-01-09 19:43 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00578912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-01-09 19:43 - 2016-01-09 19:43 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-01-09 19:43 - 2016-01-09 19:43 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-01-09 19:43 - 2016-01-09 19:43 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-01-09 19:43 - 2016-01-09 19:43 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-01-09 19:43 - 2016-01-09 19:43 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-01-09 19:43 - 2016-01-09 19:43 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-01-09 19:43 - 2016-01-09 19:43 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-01-09 19:43 - 2016-01-09 19:43 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2016-01-09 19:43 - 2016-01-09 19:43 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2016-01-09 19:42 - 2016-01-09 19:43 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2016-01-09 19:42 - 2016-01-09 19:42 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2016-01-09 19:42 - 2016-01-09 19:42 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2016-01-09 19:42 - 2016-01-09 19:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-01-09 19:38 - 2016-01-09 19:38 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-01-09 19:36 - 2016-01-30 15:00 - 00000000 ____D C:\inetpub
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\Program Files\MSBuild
2016-01-09 19:36 - 2016-01-09 19:36 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-01-09 19:36 - 2016-01-09 19:10 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-01-09 19:35 - 2015-10-23 18:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-01-09 19:35 - 2015-10-23 18:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-01-09 19:35 - 2015-10-23 18:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-01-09 19:34 - 2015-10-23 18:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-01-09 19:34 - 2015-10-23 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-01-09 19:34 - 2015-10-23 18:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-09 19:33 - 2016-01-09 19:33 - 00000000 ____D C:\Users\User\AppData\Local\ActiveSync
2016-01-09 19:26 - 2016-01-09 19:26 - 00000020 ___SH C:\Users\User\ntuser.ini
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Músicas
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas Imagens
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus Vídeos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de Aplicativos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Modelos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Meus Documentos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Menu Iniciar
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Músicas
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Documents\Minhas Imagens
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Documents\Meus Vídeos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Dados de Aplicativos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Configurações Locais
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de Aplicativos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Ambiente de Rede
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default\Ambiente de Impressão
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Músicas
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas Imagens
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default User\Documents\Meus Vídeos
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico
2016-01-09 19:24 - 2016-01-09 19:24 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de Aplicativos
2016-01-09 19:18 - 2016-01-30 05:04 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-09 19:18 - 2016-01-09 19:18 - 00002538 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2016-01-09 19:08 - 2016-01-30 05:08 - 00001495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-01-09 19:08 - 2016-01-09 19:08 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Media Center Programs
2016-01-09 19:08 - 2016-01-09 19:08 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\Microsoft Help
2016-01-09 19:08 - 2016-01-09 19:08 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-01-09 19:08 - 2016-01-09 19:08 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-01-09 19:08 - 2016-01-09 19:08 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-01-09 19:08 - 2016-01-09 19:08 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-01-09 19:03 - 2016-01-09 19:03 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-01-09 19:02 - 2016-01-09 19:10 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Modelos
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Meus Documentos
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Menu Iniciar
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Documents\Minhas Músicas
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Documents\Minhas Imagens
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Documents\Meus Vídeos
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Dados de Aplicativos
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Configurações Locais
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\AppData\Local\Histórico
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\AppData\Local\Dados de Aplicativos
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Ambiente de Rede
2016-01-09 18:59 - 2016-01-09 18:59 - 00000000 _SHDL C:\Users\User\Ambiente de Impressão
2016-01-09 18:58 - 2016-01-30 14:49 - 02092192 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-09 18:58 - 2016-01-09 18:58 - 02004266 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-01-09 18:55 - 2016-01-09 18:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-01-09 18:55 - 2016-01-09 18:55 - 00000000 ____H C:\Users\Todos os Usuários\DP45977C.lfl
2016-01-09 18:55 - 2016-01-09 18:55 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-01-09 18:55 - 2016-01-09 18:55 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-01-09 18:55 - 2016-01-09 18:55 - 00000000 ____D C:\Program Files\Realtek
2016-01-09 18:54 - 2016-01-09 18:54 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-01-09 18:54 - 2016-01-09 18:54 - 00000000 ____D C:\Program Files\Synaptics
2016-01-09 18:54 - 2015-10-30 05:17 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-01-09 18:50 - 2016-01-09 19:11 - 00335368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-08 19:18 - 2016-01-08 19:18 - 00933228 _____ C:\Users\User\Documents\Aprendere - Certificado JNM-VSV.pdf
2016-01-08 17:09 - 2016-01-08 17:09 - 00000000 ____D C:\Users\User\AppData\Local\CEF
2016-01-08 17:00 - 2016-01-08 17:00 - 01682416 _____ C:\Users\User\Downloads\FaturaOnline (1).pdf
2016-01-08 17:00 - 2016-01-08 17:00 - 01676026 _____ C:\Users\User\Downloads\FaturaOnline.pdf
2016-01-08 14:16 - 2016-01-30 05:08 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-08 14:16 - 2016-01-08 14:16 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-07 04:59 - 2016-01-07 04:59 - 00000000 ____D C:\Users\User\AppData\Local\PopcornTimeDesktop
2016-01-07 04:57 - 2016-01-09 19:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2016-01-07 04:56 - 2016-01-07 04:57 - 00000000 ____D C:\Program Files (x86)\Popcorn Time
2016-01-07 04:53 - 2016-01-07 04:56 - 48359224 _____ (Popcorn Time ) C:\Users\User\Downloads\PopcornTime-latest.exe

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-01-30 15:04 - 2015-01-18 18:59 - 00000902 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-30 14:49 - 2015-10-30 17:11 - 00887278 _____ C:\WINDOWS\system32\prfh0416.dat
2016-01-30 14:49 - 2015-10-30 17:11 - 00192582 _____ C:\WINDOWS\system32\prfc0416.dat
2016-01-30 14:49 - 2015-10-30 05:21 - 00000000 ____D C:\WINDOWS\INF
2016-01-30 05:16 - 2015-06-18 00:35 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1388445924-3286991114-2444111617-1001UA.job
2016-01-30 05:08 - 2015-08-01 01:37 - 00001051 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recursos Opcionais.lnk
2016-01-30 05:08 - 2015-08-01 01:33 - 00002409 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-30 05:08 - 2015-08-01 01:30 - 00001333 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gerenciador de áudio HD Realtek.lnk
2016-01-30 05:08 - 2015-06-17 19:39 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-30 05:08 - 2015-01-18 19:00 - 00002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-30 05:03 - 2015-10-30 04:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-30 04:35 - 2015-01-18 19:06 - 05006864 _____ (AVAST Software) C:\Users\User\Downloads\avast_free_antivirus_setup_online.exe
2016-01-30 04:24 - 2015-10-30 05:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-01-30 04:05 - 2015-01-24 00:03 - 00000000 ____D C:\Users\Todos os Usuários\APN
2016-01-30 04:05 - 2015-01-24 00:03 - 00000000 ____D C:\ProgramData\APN
2016-01-30 02:13 - 2015-08-01 01:26 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-30 01:55 - 2015-08-02 15:34 - 00004170 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{98E1704F-46DF-4F7B-91B9-4DE34981CBFC}
2016-01-30 01:41 - 2015-05-12 19:36 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
2016-01-30 01:09 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-01-30 01:09 - 2009-07-14 01:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-01-30 00:43 - 2015-01-20 20:40 - 00000000 ____D C:\Users\Todos os Usuários\boost_interprocess
2016-01-30 00:43 - 2015-01-20 20:40 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-01-30 00:40 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-29 19:40 - 2015-10-30 05:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-29 02:31 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-01-28 21:27 - 2015-10-30 05:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-26 13:16 - 2015-06-18 00:35 - 00001042 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1388445924-3286991114-2444111617-1001Core.job
2016-01-23 20:05 - 2015-01-25 01:04 - 00000000 ____D C:\Users\User\Documents\PUC
2016-01-23 19:44 - 2015-06-23 20:51 - 00133931 _____ C:\Users\User\Documents\Portal da Nota Fiscal Eletrônica.pdf
2016-01-23 17:38 - 2015-08-01 03:07 - 00000000 ____D C:\Users\User\AppData\Local\Comms
2016-01-21 18:28 - 2015-08-01 01:26 - 00000000 ____D C:\Users\User\AppData\Local\Packages
2016-01-20 02:04 - 2015-01-18 18:59 - 00003876 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-01-18 03:54 - 2014-09-15 10:12 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-18 03:44 - 2014-09-15 10:11 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-17 01:31 - 2015-06-19 01:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-17 01:31 - 2015-06-19 01:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-17 00:30 - 2015-01-24 00:03 - 00000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2016-01-17 00:24 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-14 23:46 - 2015-07-31 19:53 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-14 04:00 - 2015-06-19 01:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-14 04:00 - 2015-01-18 15:22 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2016-01-14 03:58 - 2009-07-14 00:34 - 00000478 _____ C:\WINDOWS\win.ini
2016-01-10 16:56 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\appcompat
2016-01-10 02:36 - 2015-06-28 00:41 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype
2016-01-09 19:49 - 2015-10-30 05:24 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-01-09 19:44 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-01-09 19:44 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-01-09 19:44 - 2015-10-30 04:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-01-09 19:44 - 2015-10-30 04:28 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-01-09 19:37 - 2015-08-01 01:33 - 00000000 ___RD C:\Users\User\OneDrive
2016-01-09 19:36 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-01-09 19:36 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-01-09 19:36 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-01-09 19:36 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-01-09 19:36 - 2015-10-30 05:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-01-09 19:36 - 2015-10-30 05:19 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2016-01-09 19:36 - 2015-10-30 05:19 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2016-01-09 19:36 - 2015-10-30 05:19 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2016-01-09 19:36 - 2015-10-30 05:19 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2016-01-09 19:36 - 2015-10-30 05:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2016-01-09 19:35 - 2015-10-30 05:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2016-01-09 19:35 - 2015-10-30 05:19 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2016-01-09 19:35 - 2015-10-30 05:18 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-01-09 19:35 - 2015-10-30 05:18 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-01-09 19:35 - 2015-10-30 05:18 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-01-09 19:35 - 2015-10-30 05:18 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-01-09 19:35 - 2015-10-30 05:18 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-01-09 19:35 - 2015-10-30 05:18 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-01-09 19:35 - 2015-10-30 05:18 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-01-09 19:35 - 2015-10-30 05:18 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-01-09 19:35 - 2015-10-30 05:18 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-01-09 19:35 - 2015-10-30 05:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-01-09 19:34 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\rescache
2016-01-09 19:31 - 2015-10-30 05:24 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-01-09 19:31 - 2015-10-30 05:24 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-01-09 19:26 - 2015-10-30 04:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-09 19:24 - 2015-10-30 05:24 - 00000000 ____D C:\Program Files\Windows NT
2016-01-09 19:23 - 2015-07-31 22:59 - 00019974 _____ C:\WINDOWS\diagerr.xml
2016-01-09 19:23 - 2015-07-31 22:59 - 00019053 _____ C:\WINDOWS\diagwrn.xml
2016-01-09 19:21 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-01-09 19:21 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\Registration
2016-01-09 19:18 - 2015-09-27 15:57 - 00002694 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP Deskjet 2540 series
2016-01-09 19:18 - 2015-08-01 01:20 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-01-09 19:18 - 2015-06-18 00:35 - 00003772 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1388445924-3286991114-2444111617-1001UA
2016-01-09 19:18 - 2015-06-18 00:35 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1388445924-3286991114-2444111617-1001Core
2016-01-09 19:18 - 2015-01-18 19:00 - 00003608 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-09 19:18 - 2015-01-18 19:00 - 00003384 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-09 19:18 - 2014-12-16 10:37 - 00002640 _____ C:\WINDOWS\System32\Tasks\IR7
2016-01-09 19:18 - 2014-12-16 10:37 - 00002226 _____ C:\WINDOWS\System32\Tasks\Hybrid4
2016-01-09 19:18 - 2014-12-16 10:37 - 00002222 _____ C:\WINDOWS\System32\Tasks\Hybrid3
2016-01-09 19:16 - 2015-10-30 05:24 - 00000000 __RSD C:\WINDOWS\Media
2016-01-09 19:16 - 2015-10-30 05:24 - 00000000 __RHD C:\Users\Public\Libraries
2016-01-09 19:10 - 2015-10-30 17:14 - 00000000 ____D C:\WINDOWS\ShellNew
2016-01-09 19:10 - 2015-09-27 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-01-09 19:10 - 2015-01-18 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-09 19:10 - 2015-01-18 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-01-09 19:10 - 2015-01-18 17:00 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-09 19:10 - 2015-01-18 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-09 19:10 - 2015-01-18 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-01-09 19:10 - 2015-01-18 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-09 19:08 - 2015-07-10 07:05 - 00000000 ____D C:\Users\Default.migrated
2016-01-09 19:05 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-01-09 19:05 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-01-09 19:05 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\spool
2016-01-09 19:05 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\system32\IME
2016-01-09 19:05 - 2015-01-18 14:54 - 00000000 ____D C:\WINDOWS\SysWOW64\vcredist
2016-01-09 19:04 - 2015-08-01 04:09 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-01-09 19:03 - 2015-10-30 17:11 - 00000000 ____D C:\WINDOWS\OCR
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\schemas
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 ____D C:\Users\Todos os Usuários\USOPrivate
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-09 19:03 - 2015-10-30 05:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-09 19:03 - 2015-06-28 00:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-09 19:03 - 2015-01-19 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2016-01-09 19:03 - 2011-04-12 12:20 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-01-09 18:58 - 2015-10-30 04:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-01-09 18:51 - 2015-10-30 17:18 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-01-09 18:17 - 2015-10-30 17:34 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-08 17:09 - 2015-01-18 18:59 - 00000000 ____D C:\Users\User\AppData\Local\Adobe
2016-01-08 14:16 - 2015-01-18 19:03 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-01-08 14:16 - 2015-01-18 19:03 - 00000000 ____D C:\ProgramData\Adobe
2016-01-07 04:59 - 2015-01-18 14:36 - 00000000 ____D C:\Users\User\AppData\Local\VirtualStore
2016-01-02 23:40 - 2015-10-30 05:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-02 23:40 - 2015-10-30 05:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-02 13:17 - 2015-06-17 19:39 - 00000000 ____D C:\Users\User\AppData\Roaming\Mozilla
2016-01-02 12:25 - 2015-01-18 19:00 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-02 12:25 - 2015-01-18 19:00 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

==================== Arquivos na raiz de alguns diretórios =======

2015-01-20 20:40 - 2015-08-02 15:49 - 0050971 _____ () C:\Users\User\AppData\Roaming\unins000.dat
2015-08-02 15:48 - 2015-08-02 15:36 - 0811218 _____ () C:\Users\User\AppData\Roaming\unins000.exe
2015-09-26 23:37 - 2015-09-26 23:42 - 28260104 _____ () C:\Users\User\AppData\Local\package.nw.new
2015-05-12 18:39 - 2015-05-12 18:39 - 0007603 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
2015-09-27 15:56 - 2015-09-27 15:56 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-01-09 18:55 - 2016-01-09 18:55 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-30 00:57 - 2016-01-30 00:57 - 0000074 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Arquivos para serem movidos ou deletados:
====================
C:\Users\User\AppData\Local\Temp\00009971\casrss.exe
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
C:\Users\Todos os Usuários\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Alguns arquivos em TEMP:
====================
C:\Users\User\AppData\Local\Temp\tu17p84.exe
C:\Users\User\AppData\Local\Temp\UninstallModule.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-01-25 22:52

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité